Commit 850e56f2 authored by naji's avatar naji
Browse files

Generate pastis certificate

parent ac13f17e
# Archive Search internal calls VITAM
- hosts: hosts_vitamui_pastis_internal
gather_facts: no
any_errors_fatal: true
roles:
- vitamui
vars:
app_default_root_path: "/vitamui"
vitamui_struct: "{{ vitamui.pastis_internal }}"
vitamui_certificate_type: "server"
password_keystore: "{{ keystores_server_pastis_internal }}"
password_truststore: "{{ truststores_server }}"
vitam_cert: "{{ vitam_certs.vitamui }}"
consul_tags: "pastis-internal, api, internal"
# Archive Search external calls archive internal
- hosts: hosts_vitamui_pastis_external
gather_facts: no
any_errors_fatal: true
roles:
- vitamui
vars:
app_default_root_path: "/vitamui"
vitamui_struct: "{{ vitamui.pastis_external }}"
vitamui_certificate_type: "external"
password_keystore: "{{ keystores_server_pastis_external }}"
password_truststore: "{{ truststores_client_external }}"
consul_tags: "pastis-external, api, external"
# UI archive search calls archive external
- hosts: hosts_ui_pastis
gather_facts: no
any_errors_fatal: true
roles:
- vitamui
vars:
app_default_root_path: "/vitamui"
vitamui_struct: "{{ vitamui.pastis }}"
vitamui_certificate_type: "server"
password_keystore: "{{ keystores_server_ui_pastis }}"
password_truststore: "{{ truststores_server }}"
consul_tags: "ui-pastis, ui"
......@@ -2,9 +2,11 @@
keystores_server_cas_server: changeme
keystores_server_iam_external: changeme
keystores_server_referential_external: changeme
keystores_server_pastis_external: changeme
keystores_server_ingest_internal: changeme
keystores_server_iam_internal: changeme
keystores_server_referential_internal: changeme
keystores_server_pastis_internal: changeme
keystores_server_ingest_external: changeme
keystores_server_reverse: changeme
keystores_server_security_internal: changeme
......@@ -12,6 +14,7 @@ keystores_server_ui_identity: changeme
keystores_server_ui_identity_admin: changeme
keystores_server_ui_portal: changeme
keystores_server_ui_referential: changeme
keystores_server_ui_pastis: changeme
keystores_server_ui_ingest: changeme
keystores_client_external_customer_x: changeme
truststores_client_external: changeme
......
......@@ -27,12 +27,14 @@ function generateCerts {
generateHostCertAndStorePassphrase referential-internal hosts_vitamui_referential_internal
generateHostCertAndStorePassphrase ingest-internal hosts_vitamui_ingest_internal
generateHostCertAndStorePassphrase archive-search-internal hosts_vitamui_archive_search_internal
generateHostCertAndStorePassphrase pastis-internal hosts_vitamui_pastis_internal
#Zone externe
generateHostCertAndStorePassphrase iam-external hosts_vitamui_iam_external
generateHostCertAndStorePassphrase referential-external hosts_vitamui_referential_external
generateHostCertAndStorePassphrase cas-server hosts_cas_server
generateHostCertAndStorePassphrase ingest-external hosts_vitamui_ingest_external
generateHostCertAndStorePassphrase archive-search-external hosts_vitamui_archive_search_external
generateHostCertAndStorePassphrase pastis-external hosts_vitamui_pastis_external
#Zone UI
generateHostCertAndStorePassphrase ui-portal hosts_ui_portal
generateHostCertAndStorePassphrase ui-identity hosts_ui_identity
......@@ -40,6 +42,7 @@ function generateCerts {
generateHostCertAndStorePassphrase ui-referential hosts_ui_referential
generateHostCertAndStorePassphrase ui-ingest hosts_ui_ingest
generateHostCertAndStorePassphrase ui-archive-search hosts_ui_archive_search
generateHostCertAndStorePassphrase ui-pastis hosts_ui_pastis
#Reverse
generateHostCertAndStorePassphrase reverse hosts_vitamui_reverseproxy
......
......@@ -33,12 +33,14 @@ function generateCerts {
generateHostCertAndStorePassphrase referential-internal hosts_vitamui_referential_internal
generateHostCertAndStorePassphrase ingest-internal hosts_vitamui_ingest_internal
generateHostCertAndStorePassphrase archive-search-internal hosts_vitamui_archive_search_internal
generateHostCertAndStorePassphrase pastis-internal hosts_vitamui_pastis_internal
#Zone externe
generateHostCertAndStorePassphrase iam-external hosts_vitamui_iam_external
generateHostCertAndStorePassphrase cas-server hosts_cas_server
generateHostCertAndStorePassphrase referential-external hosts_vitamui_referential_external
generateHostCertAndStorePassphrase ingest-external hosts_vitamui_ingest_external
generateHostCertAndStorePassphrase archive-search-external hosts_vitamui_archive_search_external
generateHostCertAndStorePassphrase pastis-external hosts_vitamui_pastis_external
#Zone UI
generateHostCertAndStorePassphrase ui-portal hosts_ui_portal
generateHostCertAndStorePassphrase ui-identity hosts_ui_identity
......@@ -46,6 +48,7 @@ function generateCerts {
generateHostCertAndStorePassphrase ui-referential hosts_ui_referential
generateHostCertAndStorePassphrase ui-ingest hosts_ui_ingest
generateHostCertAndStorePassphrase ui-archive-search hosts_ui_archive_search
generateHostCertAndStorePassphrase ui-pastis hosts_ui_pastis
#Reverse
generateHostCertAndStorePassphrase reverse hosts_vitamui_reverseproxy
......
---
- hosts: localhost
connection: local
become: false
roles:
- bootstrap_ansible
- hosts: hosts_vitamui
roles:
- checks
- normalize
- users
# TODO VITAM : decide if pastis should be always installed, if not adapt mongo database script verisonning for additional modules
#
#- import_playbook: stop_vitamui.yml
#
#- import_playbook: mongo_update_scripts.yml
#
#- import_playbook: start_vitamui.yml
- import_playbook: app_pastis.yml
- import_playbook: reverse_proxy.yml
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment