re-order roles to account for potential ordering failures
Showing
- config/roles/openvpn/tasks/credentials.yml 7 additions, 7 deletionsconfig/roles/openvpn/tasks/credentials.yml
- config/roles/openvpn/tasks/main.yml 2 additions, 2 deletionsconfig/roles/openvpn/tasks/main.yml
- config/roles/simplevpn/tasks/main.yml 0 additions, 2 deletionsconfig/roles/simplevpn/tasks/main.yml
- config/roles/vpnweb-frontend/templates/vpnweb.conf.j2 1 addition, 3 deletionsconfig/roles/vpnweb-frontend/templates/vpnweb.conf.j2
... | ... | @@ -9,12 +9,6 @@ |
ca: "{{ credentials_dir }}/common/api_ca.crt" | ||
ca_key: "{{ credentials_dir }}/common/api_ca.key" | ||
- name: Restart openvpn because gateway certificate has changed | ||
systemd: | ||
name: docker-openvpn-openvpn.service | ||
state: restarted | ||
when: sspki_sign.changed | ||
- name: Add the docker-openvpn user to the openvpn-sspki group | ||
user: | ||
name: docker-openvpn | ||
... | ... | @@ -46,8 +40,14 @@ |
- name: Install client certificate generating and API endpoint CA bundle | ||
copy: | ||
content: "{{ lookup('file', '{{ credentials_dir }}/common/api_ca.crt') }}\n{{ lookup('file', '{{ credentials_dir }}/common/client_ca.crt') }}\n" | ||
content: "{{ lookup('file', '{{ credentials_dir }}/common/old_client_ca.crt') }}\n{{lookup('file', '{{ credentials_dir }}/common/api_ca.crt') }}\n{{ lookup('file', '{{ credentials_dir }}/common/client_ca.crt') }}\n" | ||
|
||
dest: /etc/leap/ca/leap_ca_bundle.crt | ||
mode: 0444 | ||
notify: | ||
- "restart docker-openvpn-openvpn" | ||
- name: Restart openvpn because gateway certificate has changed | ||
systemd: | ||
name: docker-openvpn-openvpn.service | ||
state: restarted | ||
when: sspki_sign.changed |
-
mentioned in issue #54
-
mentioned in issue #59
-
mentioned in merge request !65 (merged)