Merge "Do not add cacert when it does not exist"

2022-08-29 23:37:03 +00:00 · 2022-08-29 23:37:03 +00:00 · 23980cfe4e
parent 8dc0ff4e1f dd842f4eb4
commit 23980cfe4e
1 changed files with 3 additions and 1 deletions
--- a/handlers/main.yml
+++ b/handlers/main.yml
@ -15,9 +15,11 @@

 - name: regen pem
  shell: >
-    cat {{ haproxy_ssl_cert_path ~ '/haproxy_' ~ ansible_facts['hostname'] ~ '-' ~ item  ~ '.crt' }} {{ haproxy_ssl_cert_path ~ '/haproxy_' ~ ansible_facts['hostname'] ~ '-' ~ item  ~ '-ca.crt' }} {{ haproxy_ssl_cert_path ~ '/haproxy_' ~ ansible_facts['hostname'] ~ '-' ~ item  ~ '.key' }} > {{ haproxy_ssl_cert_path ~ '/haproxy_' ~ ansible_facts['hostname'] ~ '-' ~ item  ~ '.pem' }}
+    cat {{ item_base_path ~ '.crt' }} $(test -f {{ item_base_path  ~ '-ca.crt' }} && echo {{ item_base_path  ~ '-ca.crt' }}) {{ item_base_path  ~ '.key' }} > {{ item_base_path  ~ '.pem' }}
  notify: Reload haproxy
  with_items: "{{ _haproxy_tls_vip_binds }}"
+  vars:
+    item_base_path: "{{ haproxy_ssl_cert_path ~ '/haproxy_' ~ ansible_facts['hostname'] ~ '-' ~ item }}"
  listen:
    - cert installed