From: alex <alex@pdp7.net>
Date: Sun, 8 Oct 2023 12:09:18 +0000 (+0200)
Subject: Add playbook to set up blog certificate in k8s
X-Git-Tag: 20240214-emacs~249
X-Git-Url: https://xn--ix-yja.es/gitweb/?a=commitdiff_plain;h=708a5f688babc1a23e85ced758665bb22d93919b;p=alex.git

Add playbook to set up blog certificate in k8s
---

diff --git a/personal_infra/playbooks/setup_blog_keys.yaml b/personal_infra/playbooks/setup_blog_keys.yaml
new file mode 100644
index 0000000..b664bcb
--- /dev/null
+++ b/personal_infra/playbooks/setup_blog_keys.yaml
@@ -0,0 +1,23 @@
+---
+- hosts: h1.pdp7.net
+  tasks:
+  - name: get public cert
+    ansible.builtin.slurp:
+      src: "/etc/apache2/md/domains/blog.pdp7.net/pubcert.pem"
+    register: public_cert
+  - name: get private key
+    ansible.builtin.slurp:
+      src: "/etc/apache2/md/domains/blog.pdp7.net/privkey.pem"
+    register: private_key
+  - k8s:
+      context: "admin@k8s-test.h1"
+      state: present
+      definition:
+        kind: Secret
+        metadata:
+          namespace: blog
+          name: tls-gemini
+        data:
+          tls.crt: "{{ public_cert.content }}"
+          tls.key: "{{ private_key.content }}"
+    delegate_to: 127.0.0.1