Ansible roles
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

53 lines
1.3 KiB

---
- name: Create directories
file: path={{ pki_root_dir }}/{{ item.path }} state=directory owner={{ item.owner | default(omit) }} group={{ item.group | default(omit) }} mode={{ item.mode | default(omit) }}
with_items:
- path: /
group: apache
mode: 750
- path: etc/config.d/realm
owner: "{{ pki_user }}"
group: apache
mode: 750
- path: etc/ssl/root
owner: "{{ pki_user }}"
group: "{{ pki_user }}"
mode: 700
- path: log
owner: "{{ pki_user }}"
mode: 700
- path: data
owner: "{{ pki_user }}"
group: apache
mode: 750
- path: run
owner: "{{ pki_user }}"
group: apache
mode: 750
- path: tmp
owner: "{{ pki_user }}"
group: apache
mode: 770
- path: meta
mode: 700
- path: locale
- path: web
- path: db_dumps
mode: 700
- path: src
- path: archives
mode: 700
tags: pki
- name: Create data directories for realms
file: path={{ pki_root_dir }}/data/{{ item.name }} state=directory owner={{ pki_user }} group=apache mode=750
with_items: "{{ pki_realms }}"
tags: pki
- name: Create CA's directory
file: path={{ pki_root_dir }}/etc/ssl/{{ item.name }} state=directory
with_items: "{{ pki_realms }}"
tags: pki