diff options
author | ewolinetz <ewolinet@redhat.com> | 2017-01-20 15:17:04 -0600 |
---|---|---|
committer | ewolinetz <ewolinet@redhat.com> | 2017-01-20 18:13:01 -0600 |
commit | d740fd159416783c88839e6e2c2e150eb81b67da (patch) | |
tree | 6ab84550c02db271712f311dac5d613f65a6a96b /roles/openshift_logging/tasks/generate_certs.yaml | |
parent | 9edfa73d2caeca19472bb369580d10a1c9057c24 (diff) | |
download | openshift-d740fd159416783c88839e6e2c2e150eb81b67da.tar.gz openshift-d740fd159416783c88839e6e2c2e150eb81b67da.tar.bz2 openshift-d740fd159416783c88839e6e2c2e150eb81b67da.tar.xz openshift-d740fd159416783c88839e6e2c2e150eb81b67da.zip |
Adding to ansible spec and changing logging jks generation to be a local_action
Diffstat (limited to 'roles/openshift_logging/tasks/generate_certs.yaml')
-rw-r--r-- | roles/openshift_logging/tasks/generate_certs.yaml | 36 |
1 files changed, 2 insertions, 34 deletions
diff --git a/roles/openshift_logging/tasks/generate_certs.yaml b/roles/openshift_logging/tasks/generate_certs.yaml index 3940ff971..20e50482e 100644 --- a/roles/openshift_logging/tasks/generate_certs.yaml +++ b/roles/openshift_logging/tasks/generate_certs.yaml @@ -85,40 +85,8 @@ loop_control: loop_var: node_name -- name: Copy JKS generation script - copy: - src: generate-jks.sh - dest: "{{generated_certs_dir}}/generate-jks.sh" - check_mode: no - -# check if pod generated files exist -- if they all do don't run the pod -- name: Checking for elasticsearch.jks - stat: path="{{generated_certs_dir}}/elasticsearch.jks" - register: elasticsearch_jks - check_mode: no - -- name: Checking for logging-es.jks - stat: path="{{generated_certs_dir}}/logging-es.jks" - register: logging_es_jks - check_mode: no - -- name: Checking for system.admin.jks - stat: path="{{generated_certs_dir}}/system.admin.jks" - register: system_admin_jks - check_mode: no - -- name: Checking for truststore.jks - stat: path="{{generated_certs_dir}}/truststore.jks" - register: truststore_jks - check_mode: no - -- name: Run JKS generation script - script: generate-jks.sh {{generate_certs_dir}} {{openshift_logging_namespace}} - register: script_output - check_mode: no - become: yes - changed_when: script_output.RC == "0" - when: not elasticsearch_jks.stat.exists or not logging_es_jks.stat.exists or not system_admin_jks.stat.exists or not truststore_jks.stat.exists +- name: Creating necessary JKS certs + include: generate_jks.yaml # check for secret/logging-kibana-proxy - command: > |