From de8d3117bbb8ac7421e9859ad1c09b23306886c6 Mon Sep 17 00:00:00 2001
From: do <do@maketank.net>
Date: Fri, 12 Feb 2021 12:11:40 +0100
Subject: [PATCH] chain certificates

---
 base/pki/host.sls | 10 ++++++++++
 base/pki/init.sls |  3 +++
 2 files changed, 13 insertions(+)

diff --git a/base/pki/host.sls b/base/pki/host.sls
index cb664d5..d88c50d 100644
--- a/base/pki/host.sls
+++ b/base/pki/host.sls
@@ -32,5 +32,15 @@
     - backup: False
     - require:
       - x509: /etc/pki/private.key
+
+/etc/pki/chain/{{ cn }}.pem:
+  file:
+    - append
+    - sources:
+      - /etc/pki/{{ cn }}.crt
+      - /etc/pki/private.key
+    - require:
+      - file: /etc/pki/chain
+    
 {% endfor %}
       
\ No newline at end of file
diff --git a/base/pki/init.sls b/base/pki/init.sls
index 3eb548c..51383dd 100644
--- a/base/pki/init.sls
+++ b/base/pki/init.sls
@@ -8,3 +8,6 @@ include:
 
 /etc/pki:
   file.directory
+
+/etc/pki/chain:
+  file.directory