|
|
@ -100,72 +100,23 @@
|
|
|
|
- name: Parse account key (to ease debugging some test failures)
|
|
|
|
- name: Parse account key (to ease debugging some test failures)
|
|
|
|
command: openssl ec -in {{ output_dir }}/accountkey2.pem -noout -text
|
|
|
|
command: openssl ec -in {{ output_dir }}/accountkey2.pem -noout -text
|
|
|
|
|
|
|
|
|
|
|
|
# Note that pebble has no change key endpoint implemented yet!
|
|
|
|
- name: Change account key
|
|
|
|
# When it has (and the container was updated), uncomment the
|
|
|
|
acme_account:
|
|
|
|
# uncomment the following tests, and delete the ones below the
|
|
|
|
select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
# out-commented ones.
|
|
|
|
account_key_src: "{{ output_dir }}/accountkey.pem"
|
|
|
|
|
|
|
|
acme_version: 2
|
|
|
|
# - name: Change account key
|
|
|
|
acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
# acme_account:
|
|
|
|
validate_certs: no
|
|
|
|
# select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
new_account_key_src: "{{ output_dir }}/accountkey2.pem"
|
|
|
|
# account_key_src: "{{ output_dir }}/accountkey.pem"
|
|
|
|
state: changed_key
|
|
|
|
# acme_version: 2
|
|
|
|
contact:
|
|
|
|
# acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
- mailto:example@example.com
|
|
|
|
# validate_certs: no
|
|
|
|
register: account_change_key
|
|
|
|
# new_account_key_src: "{{ output_dir }}/accountkey2.pem"
|
|
|
|
|
|
|
|
# state: changed_key
|
|
|
|
|
|
|
|
# contact:
|
|
|
|
|
|
|
|
# - mailto:example@example.com
|
|
|
|
|
|
|
|
# register: account_change_key
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# - name: Deactivate account
|
|
|
|
|
|
|
|
# acme_account:
|
|
|
|
|
|
|
|
# select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
|
|
|
|
# account_key_src: "{{ output_dir }}/accountkey2.pem"
|
|
|
|
|
|
|
|
# acme_version: 2
|
|
|
|
|
|
|
|
# acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
|
|
|
|
# validate_certs: no
|
|
|
|
|
|
|
|
# state: absent
|
|
|
|
|
|
|
|
# register: account_deactivate
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# - name: Deactivate account (idempotent)
|
|
|
|
|
|
|
|
# acme_account:
|
|
|
|
|
|
|
|
# select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
|
|
|
|
# account_key_src: "{{ output_dir }}/accountkey2.pem"
|
|
|
|
|
|
|
|
# acme_version: 2
|
|
|
|
|
|
|
|
# acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
|
|
|
|
# validate_certs: no
|
|
|
|
|
|
|
|
# state: absent
|
|
|
|
|
|
|
|
# register: account_deactivate_idempotent
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# - name: Do not try to create account II
|
|
|
|
|
|
|
|
# acme_account:
|
|
|
|
|
|
|
|
# select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
|
|
|
|
# account_key_src: "{{ output_dir }}/accountkey2.pem"
|
|
|
|
|
|
|
|
# acme_version: 2
|
|
|
|
|
|
|
|
# acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
|
|
|
|
# validate_certs: no
|
|
|
|
|
|
|
|
# state: present
|
|
|
|
|
|
|
|
# allow_creation: no
|
|
|
|
|
|
|
|
# ignore_errors: yes
|
|
|
|
|
|
|
|
# register: account_not_created_2
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# - name: Do not try to create account III
|
|
|
|
|
|
|
|
# acme_account:
|
|
|
|
|
|
|
|
# select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
|
|
|
|
# account_key_src: "{{ output_dir }}/accountkey.pem"
|
|
|
|
|
|
|
|
# acme_version: 2
|
|
|
|
|
|
|
|
# acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
|
|
|
|
# validate_certs: no
|
|
|
|
|
|
|
|
# state: present
|
|
|
|
|
|
|
|
# allow_creation: no
|
|
|
|
|
|
|
|
# ignore_errors: yes
|
|
|
|
|
|
|
|
# register: account_not_created_3
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- name: Deactivate account
|
|
|
|
- name: Deactivate account
|
|
|
|
acme_account:
|
|
|
|
acme_account:
|
|
|
|
select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
account_key_src: "{{ output_dir }}/accountkey.pem"
|
|
|
|
account_key_src: "{{ output_dir }}/accountkey2.pem"
|
|
|
|
acme_version: 2
|
|
|
|
acme_version: 2
|
|
|
|
acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
validate_certs: no
|
|
|
|
validate_certs: no
|
|
|
@ -175,7 +126,7 @@
|
|
|
|
- name: Deactivate account (idempotent)
|
|
|
|
- name: Deactivate account (idempotent)
|
|
|
|
acme_account:
|
|
|
|
acme_account:
|
|
|
|
select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
account_key_src: "{{ output_dir }}/accountkey.pem"
|
|
|
|
account_key_src: "{{ output_dir }}/accountkey2.pem"
|
|
|
|
acme_version: 2
|
|
|
|
acme_version: 2
|
|
|
|
acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
validate_certs: no
|
|
|
|
validate_certs: no
|
|
|
@ -185,7 +136,7 @@
|
|
|
|
- name: Do not try to create account II
|
|
|
|
- name: Do not try to create account II
|
|
|
|
acme_account:
|
|
|
|
acme_account:
|
|
|
|
select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
account_key_src: "{{ output_dir }}/accountkey.pem"
|
|
|
|
account_key_src: "{{ output_dir }}/accountkey2.pem"
|
|
|
|
acme_version: 2
|
|
|
|
acme_version: 2
|
|
|
|
acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
validate_certs: no
|
|
|
|
validate_certs: no
|
|
|
@ -193,3 +144,15 @@
|
|
|
|
allow_creation: no
|
|
|
|
allow_creation: no
|
|
|
|
ignore_errors: yes
|
|
|
|
ignore_errors: yes
|
|
|
|
register: account_not_created_2
|
|
|
|
register: account_not_created_2
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- name: Do not try to create account III
|
|
|
|
|
|
|
|
acme_account:
|
|
|
|
|
|
|
|
select_crypto_backend: "{{ select_crypto_backend }}"
|
|
|
|
|
|
|
|
account_key_src: "{{ output_dir }}/accountkey.pem"
|
|
|
|
|
|
|
|
acme_version: 2
|
|
|
|
|
|
|
|
acme_directory: https://{{ acme_host }}:14000/dir
|
|
|
|
|
|
|
|
validate_certs: no
|
|
|
|
|
|
|
|
state: present
|
|
|
|
|
|
|
|
allow_creation: no
|
|
|
|
|
|
|
|
ignore_errors: yes
|
|
|
|
|
|
|
|
register: account_not_created_3
|
|
|
|