diff options
author | Slava Semushin <vsemushi@redhat.com> | 2017-03-06 18:08:06 +0100 |
---|---|---|
committer | Slava Semushin <vsemushi@redhat.com> | 2017-03-29 15:50:09 +0200 |
commit | b463c613a80d07d1af097141ed6b632a1e424c63 (patch) | |
tree | 74f04dae42a41e877515948f0a52638abb5cad6a /roles/openshift_node_certificates/tasks | |
parent | 403b5c5545b9b07e7a4416e5a63609512ddaa224 (diff) | |
download | openshift-b463c613a80d07d1af097141ed6b632a1e424c63.tar.gz openshift-b463c613a80d07d1af097141ed6b632a1e424c63.tar.bz2 openshift-b463c613a80d07d1af097141ed6b632a1e424c63.tar.xz openshift-b463c613a80d07d1af097141ed6b632a1e424c63.zip |
openshift_node_certificates: add openshift_node_cert_expire_days parameter.
Diffstat (limited to 'roles/openshift_node_certificates/tasks')
-rw-r--r-- | roles/openshift_node_certificates/tasks/main.yml | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/roles/openshift_node_certificates/tasks/main.yml b/roles/openshift_node_certificates/tasks/main.yml index 4cb89aba2..9120915b2 100644 --- a/roles/openshift_node_certificates/tasks/main.yml +++ b/roles/openshift_node_certificates/tasks/main.yml @@ -66,6 +66,9 @@ --signer-key={{ openshift_ca_key }} --signer-serial={{ openshift_ca_serial }} --user=system:node:{{ hostvars[item].openshift.common.hostname }} + {% if openshift_version | oo_version_gte_3_5_or_1_5(openshift.common.deployment_type) | bool %} + --expire-days={{ openshift_node_cert_expire_days }} + {% endif %} args: creates: "{{ openshift_generated_configs_dir }}/node-{{ hostvars[item].openshift.common.hostname }}" with_items: "{{ hostvars @@ -79,6 +82,9 @@ {{ hostvars[openshift_ca_host].openshift.common.client_binary }} adm ca create-server-cert --cert={{ openshift_generated_configs_dir }}/node-{{ hostvars[item].openshift.common.hostname }}/server.crt --key={{ openshift_generated_configs_dir }}/node-{{ hostvars[item].openshift.common.hostname }}/server.key + {% if openshift_version | oo_version_gte_3_5_or_1_5(openshift.common.deployment_type) | bool %} + --expire-days={{ openshift_node_cert_expire_days }} + {% endif %} --overwrite=true --hostnames={{ hostvars[item].openshift.common.hostname }},{{ hostvars[item].openshift.common.public_hostname }},{{ hostvars[item].openshift.common.ip }},{{ hostvars[item].openshift.common.public_ip }} --signer-cert={{ openshift_ca_cert }} |