maxhoesel.smallstep.step_ca_bootstrap (0.24.5) — module

Install collection

Install with ansible-galaxy collection install maxhoesel.smallstep:==0.24.5

Add to requirements.yml

  collections:
    - name: maxhoesel.smallstep
      version: 0.24.5

Description

Downloads the root certificate from the given cert authority and sets up the local environment to use it. This allows running other C(step-cli ca) commands without having to specify I(ca_url) or I(ca_config) every time.

Requirements

• C(step-cli) must be installed on the remote host. You can set the executable name/path with I(step_cli_executable).

Usage examples

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

- name: Bootstrap using the CA url and a fingerprint
  maxhoesel.smallstep.step_ca_bootstrap:
    ca_url: https://ca.example.org
    fingerprint: d9d0978692f1c7cc791f5c343ce98771900721405e834cd27b9502cc719f5097

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

- name: Bootstrap and install the root certificate
  maxhoesel.smallstep.step_ca_bootstrap:
    ca_url: https://ca.example.org
    fingerprint: d9d0978692f1c7cc791f5c343ce98771900721405e834cd27b9502cc719f5097
    install: yes

Inputs

    
force:
    default: false
    description: Force the overwrite of files without asking.
    type: bool

ca_url:
    description: URI of the targeted Step Certificate Authority
    required: true
    type: str

install:
    default: false
    description: Install the root certificate into the system truststore. Make sure that
      the user has the required privileges.
    type: bool

fingerprint:
    description: The fingerprint of the targeted root certificate
    required: true
    type: str

redirect_url:
    description: Terminal OAuth redirect url.
    type: str

step_cli_executable:
    default: step-cli
    description: Name (or absolute path) of the C(step-cli) executable to use
    type: path