ceph-ansible/roles/ceph-rgw/tasks/openstack-keystone.yml

---
- name: create nss directory for keystone certificates
  file:
    path: "{{ radosgw_nss_db_path }}"
    state: directory
    owner: root
    group: root
    mode: 0644

- name: create nss entries for keystone certificates
  shell: "{{ item }}"
  with_items:
    - "openssl x509 -in /etc/keystone/ssl/certs/ca.pem -pubkey |certutil -d {{ radosgw_nss_db_path }} -A -n ca -t 'TCu,Cu,Tuw'"
    - "openssl x509 -in /etc/keystone/ssl/certs/signing_cert.pem -pubkey | certutil -A -d {{ radosgw_nss_db_path }} -n signing_cert -t 'P,P,P'"
Add support for Rados Gateway configuration with Keystone Signed-off-by: Sébastien Han <seb@redhat.com> 2015-06-04 01:01:23 +08:00			`---`
Activate rados gateway with systemd Signed-off-by: leseb <seb@redhat.com> 2015-07-07 17:19:50 +08:00			`- name: create nss directory for keystone certificates`
Refactor rgw 2015-10-19 11:19:31 +08:00			`file:`
			`path: "{{ radosgw_nss_db_path }}"`
			`state: directory`
			`owner: root`
			`group: root`
			`mode: 0644`
Add support for Rados Gateway configuration with Keystone Signed-off-by: Sébastien Han <seb@redhat.com> 2015-06-04 01:01:23 +08:00
Activate rados gateway with systemd Signed-off-by: leseb <seb@redhat.com> 2015-07-07 17:19:50 +08:00			`- name: create nss entries for keystone certificates`
Add support for Rados Gateway configuration with Keystone Signed-off-by: Sébastien Han <seb@redhat.com> 2015-06-04 01:01:23 +08:00			`shell: "{{ item }}"`
			`with_items:`
			`- "openssl x509 -in /etc/keystone/ssl/certs/ca.pem -pubkey \|certutil -d {{ radosgw_nss_db_path }} -A -n ca -t 'TCu,Cu,Tuw'"`
			`- "openssl x509 -in /etc/keystone/ssl/certs/signing_cert.pem -pubkey \| certutil -A -d {{ radosgw_nss_db_path }} -n signing_cert -t 'P,P,P'"`