ansible-role-mastodon/tasks/bare/selfsigned-ssl.yml

---

- name: Create folder location for self-signed SSL certs
  become: true
  file: 
    path: "{{ item }}"
    state: directory
    owner: root
    group: root
    recurse: true
  loop: 
    - "{{ self_signed_cert_location }}"
    - "{{ self_signed_key_location }}"

- name: Create self-signed certificate
  become: true
  shell: >
    openssl req -x509 -nodes -subj '/CN={{ mastodon_host }}' -days 365
    -newkey rsa:4096 -sha256 -keyout '{{ self_signed_key_location }}/server.key' -out '{{ self_signed_cert_location }}/server.crt'
    creates='{{ self_signed_cert_location }}/server.crt'
adapt code from mastodon-ansible 2022-11-19 10:10:57 +01:00			`---`

			`- name: Create folder location for self-signed SSL certs`
			`become: true`
			`file:`
			`path: "{{ item }}"`
			`state: directory`
			`owner: root`
			`group: root`
			`recurse: true`
			`loop:`
			`- "{{ self_signed_cert_location }}"`
			`- "{{ self_signed_key_location }}"`

			`- name: Create self-signed certificate`
			`become: true`
			`shell: >`
			`openssl req -x509 -nodes -subj '/CN={{ mastodon_host }}' -days 365`
			`-newkey rsa:4096 -sha256 -keyout '{{ self_signed_key_location }}/server.key' -out '{{ self_signed_cert_location }}/server.crt'`
			`creates='{{ self_signed_cert_location }}/server.crt'`