Skip to content

Commit

Permalink
Remove the consistency checks
Browse files Browse the repository at this point in the history 
They are often failing and don't add much value.

Signed-off-by: mprahl <mprahl@users.noreply.github.com>
  • Loading branch information
@mprahl
mprahl committed Jul 9, 2024
1 parent aaa643d commit d332ab3
Showing 1 changed file with 0 additions and 31 deletions.
31 changes: 0 additions & 31 deletions tasks/main.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -101,14 +101,6 @@
tags:
- openssl

- name: check consistency of private key
openssl_privatekey_info:
path: "{{ ler53_cert_dir }}/{{ ler53_key_file_name }}"
check_consistency: yes
register: result_privatekey
tags:
- openssl

- name: generate the CSR
openssl_csr:
path: "{{ ler53_cert_dir }}/{{ ler53_csr_file_name }}"
Expand All @@ -124,13 +116,6 @@
tags:
- openssl

- name: check consistency of the CSR key
openssl_csr_info:
path: "{{ ler53_cert_dir }}/{{ ler53_csr_file_name }}"
register: result_csr
tags:
- openssl

- name: generate the Let's Encrypt account key
openssl_privatekey:
path: "{{ ler53_account_key_dir }}/{{ ler53_account_key_file_name }}"
Expand All @@ -141,14 +126,6 @@
tags:
- openssl

- name: check consistency of the account key
openssl_privatekey_info:
path: "{{ ler53_account_key_dir }}/{{ ler53_account_key_file_name }}"
check_consistency: yes
register: result_accountkey
tags:
- openssl

- name: delete existing certificate
file:
path: "{{ ler53_cert_dir }}/{{ ler53_cert_file_name }}"
Expand Down Expand Up @@ -257,11 +234,3 @@
group: "{{ ler53_cert_files_group }}"
mode: "{{ ler53_cert_files_mode }}"
when: ler53_intermediate_download | bool

- name: verify the private keys and CSR
assert:
that:
- result_privatekey.key_is_consistent
- result_accountkey.key_is_consistent
- result_csr.signature_valid
msg: "The private keys and CSR are valid"

0 comments on commit d332ab3

Please sign in to comment.