Some checks failed
Code Quality & Security Scan / TFLint (push) Failing after 38s
Code Quality & Security Scan / Tfsec Security Scan (push) Has been skipped
Code Quality & Security Scan / Checkov Security Scan (push) Has been skipped
Code Quality & Security Scan / Terraform Validate (push) Has been skipped
Code Quality & Security Scan / SonarQube Trigger (push) Has been skipped
- Added all files from consul_template-legacy and consul_template-org roles - These roles are now regular directories instead of submodules
31 lines
793 B
Django/Jinja
31 lines
793 B
Django/Jinja
vault {
|
|
address = "{{ vault_address }}"
|
|
auth {
|
|
method "approle" {
|
|
config = {
|
|
role_id = "{{ vault_approle_role_id }}"
|
|
secret_id = "{{ vault_approle_secret_id }}"
|
|
}
|
|
}
|
|
}
|
|
renew_token = true
|
|
}
|
|
|
|
template {
|
|
source = "/etc/consul-template/certificate.ctmpl"
|
|
destination = "/etc/ssl/certs/{{ short_hostname }}.pem"
|
|
command = "systemctl reload nginx"
|
|
}
|
|
|
|
template {
|
|
source = "/etc/consul-template/private_key.ctmpl"
|
|
destination = "/etc/ssl/private/{{ short_hostname }}.key"
|
|
command = "chmod 600 /etc/ssl/private/{{ short_hostname }}.key"
|
|
}
|
|
|
|
template {
|
|
source = "/etc/consul-template/chain_pem.ctmpl"
|
|
destination = "/etc/ssl/private/le-chaincert.pem"
|
|
command = "chmod 600 /etc/ssl/private/le-chaincert.pem"
|
|
}
|