cmueller/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
ansible/test/integration/targets/get_certificate/tasks/main.yml

43 lines
1.2 KiB
YAML
Raw Normal View History

get_certificate: add cryptography backend (#60599) * Add cryptography backend for get_certificate. * Add changelog. * Use short names (if possible). * Adjust version (to behave as pyOpenSSL). * Work around bugs (needed for cryptography 1.2.3). * Don't run cryptography backend tests for CentOS 6. * Bump cryptography requirement to 1.6 or newer. Otherwise, signature_algorithm_oid isn't there, either. * Simplify requirement text. * CentOS 6 has cryptography 1.9, so we still need to block. * Add auto-detect test. * Improve YAML.
2019-08-17 16:02:14 +02:00
---
Added get_certificate module (#41735) * Added get_certificate module. * Fixed test against bogus_ca.pem file
2018-12-07 14:27:16 +01:00
- block:
get_certificate: add cryptography backend (#60599) * Add cryptography backend for get_certificate. * Add changelog. * Use short names (if possible). * Adjust version (to behave as pyOpenSSL). * Work around bugs (needed for cryptography 1.2.3). * Don't run cryptography backend tests for CentOS 6. * Bump cryptography requirement to 1.6 or newer. Otherwise, signature_algorithm_oid isn't there, either. * Simplify requirement text. * CentOS 6 has cryptography 1.9, so we still need to block. * Add auto-detect test. * Improve YAML.
2019-08-17 16:02:14 +02:00
- name: Get servers certificate with backend auto-detection
get_certificate:
host: "{{ httpbin_host }}"
port: 443
when: |
pyopenssl_version.stdout is version('0.15', '>=') or
(cryptography_version.stdout is version('1.6', '>=') and (ansible_distribution != 'CentOS' or ansible_distribution_major_version|int > 6))
- block:
- include_tasks: ../tests/validate.yml
vars:
select_crypto_backend: pyopenssl
Added get_certificate module (#41735) * Added get_certificate module. * Fixed test against bogus_ca.pem file
2018-12-07 14:27:16 +01:00
when: pyopenssl_version.stdout is version('0.15', '>=')
get_certificate: add cryptography backend (#60599) * Add cryptography backend for get_certificate. * Add changelog. * Use short names (if possible). * Adjust version (to behave as pyOpenSSL). * Work around bugs (needed for cryptography 1.2.3). * Don't run cryptography backend tests for CentOS 6. * Bump cryptography requirement to 1.6 or newer. Otherwise, signature_algorithm_oid isn't there, either. * Simplify requirement text. * CentOS 6 has cryptography 1.9, so we still need to block. * Add auto-detect test. * Improve YAML.
2019-08-17 16:02:14 +02:00
- name: Remove output directory
file:
path: "{{ output_dir }}"
state: absent
- name: Re-create output directory
file:
path: "{{ output_dir }}"
state: directory
- block:
- include_tasks: ../tests/validate.yml
vars:
select_crypto_backend: cryptography
# The module doesn't work with CentOS 6. Since the pyOpenSSL installed there is too old,
# we never noticed before. This becomes a problem with the new cryptography backend,
# since there is a new enough cryptography version...
when: |
cryptography_version.stdout is version('1.6', '>=') and
(ansible_distribution != 'CentOS' or ansible_distribution_major_version|int > 6)
Reference in a new issue Copy permalink