ansible/community.docker
1
0
Fork 0
mirror of https://github.com/ansible-collections/community.docker.git synced 2025-04-18 21:04:01 +03:00
Code

CI: fix certificates for HTTPS connection tests (#1066)

Browse Source 
* Try to fix CA cert for HTTPS connection tests.

* Try to fix leaf certificate.

* Add more properties.
This commit is contained in:
Felix Fontein 2025-04-11 14:09:01 +02:00 committed by GitHub
parent 106c3d33d6
commit 8694f488d7
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 13 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
tests/integration/targets/generic_connection_tests/tasks/main.yml
View File

@ -71,9 +71,19 @@
community.crypto.openssl_csr:
path: '{{ remote_tmp_dir }}/ca.csr'
privatekey_path: '{{ remote_tmp_dir }}/ca.key'
subject:
commonName: Ansible test CA for Docker HTTPS connection tests
useCommonNameForSAN: false
basic_constraints:
- 'CA:TRUE'
- 'CA:TRUE'
basic_constraints_critical: true
key_usage:
- digitalSignature
- Certificate Sign
key_usage_critical: true
extended_key_usage:
- serverAuth # the same as "TLS Web Server Authentication"
extended_key_usage_critical: true
- name: Create CA certificate
community.crypto.x509_certificate:
@ -87,7 +97,8 @@
path: '{{ remote_tmp_dir }}/cert.csr'
privatekey_path: '{{ remote_tmp_dir }}/cert.key'
subject_alt_name:
- DNS:daemon-tls.ansible.com
- DNS:daemon-tls.ansible.com
subject_alt_name_critical: true
- name: Create frontend certificate
community.crypto.x509_certificate: