22 lines
440 B
YAML
22 lines
440 B
YAML
# -*- coding: utf-8 -*-
|
|
# vim: ft=yaml
|
|
---
|
|
|
|
/etc/pki/private.key:
|
|
x509.private_key_managed:
|
|
- bits: 4096
|
|
- backup: True
|
|
- require:
|
|
- file: /etc/pki
|
|
|
|
/etc/pki/public.crt:
|
|
x509.certificate_managed:
|
|
- ca_server: tumor.chaos
|
|
- signing_policy: host
|
|
- public_key: /etc/pki/private.key
|
|
- CN: {{ grains['fqdn'] }}
|
|
- days_remaining: 30
|
|
- backup: True
|
|
- require:
|
|
- x509: /etc/pki/private.key
|