You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
|
|
|
- block:
|
|
|
|
- name: Generate privatekey
|
|
|
|
openssl_privatekey:
|
|
|
|
path: '{{ output_dir }}/privatekey.pem'
|
|
|
|
|
|
|
|
- name: Generate publickey - PEM format
|
|
|
|
openssl_publickey:
|
|
|
|
path: '{{ output_dir }}/publickey.pub'
|
|
|
|
privatekey_path: '{{ output_dir }}/privatekey.pem'
|
|
|
|
|
|
|
|
- name: Generate publickey - OpenSSH format
|
|
|
|
openssl_publickey:
|
|
|
|
path: '{{ output_dir }}/publickey-ssh.pub'
|
|
|
|
privatekey_path: '{{ output_dir }}/privatekey.pem'
|
|
|
|
format: OpenSSH
|
|
|
|
# cryptography.hazmat.primitives import serialization.Encoding.OpenSSH and
|
|
|
|
# cryptography.hazmat.primitives import serialization.PublicFormat.OpenSSH constants
|
|
|
|
# appeared in version 1.4 of cryptography
|
|
|
|
when: cryptography_version.stdout|version_compare('1.4.0', '>=')
|
|
|
|
|
|
|
|
- name: Generate publickey2 - standard
|
|
|
|
openssl_publickey:
|
|
|
|
path: '{{ output_dir }}/publickey2.pub'
|
|
|
|
privatekey_path: '{{ output_dir }}/privatekey.pem'
|
|
|
|
|
|
|
|
- name: Delete publickey2 - standard
|
|
|
|
openssl_publickey:
|
|
|
|
state: absent
|
|
|
|
path: '{{ output_dir }}/publickey2.pub'
|
|
|
|
privatekey_path: '{{ output_dir }}/privatekey.pem'
|
|
|
|
|
|
|
|
- name: Generate privatekey3 - with passphrase
|
|
|
|
openssl_privatekey:
|
|
|
|
path: '{{ output_dir }}/privatekey3.pem'
|
|
|
|
passphrase: ansible
|
|
|
|
cipher: aes256
|
|
|
|
|
|
|
|
- name: Generate publickey3 - with passphrase protected privatekey
|
|
|
|
openssl_publickey:
|
|
|
|
path: '{{ output_dir }}/publickey3.pub'
|
|
|
|
privatekey_path: '{{ output_dir }}/privatekey3.pem'
|
|
|
|
privatekey_passphrase: ansible
|
|
|
|
|
|
|
|
- name: Generate publickey3 - with passphrase protected privatekey - idempotence
|
|
|
|
openssl_publickey:
|
|
|
|
path: '{{ output_dir }}/publickey3.pub'
|
|
|
|
privatekey_path: '{{ output_dir }}/privatekey3.pem'
|
|
|
|
privatekey_passphrase: ansible
|
|
|
|
register: publickey3_idempotence
|
|
|
|
|
|
|
|
- import_tasks: ../tests/validate.yml
|
|
|
|
|
|
|
|
when: pyopenssl_version.stdout|version_compare('16.0.0', '>=')
|