relax CA constraints for client (the client equivalent of PR #1675) (#1768)

* relax CA constraints for client (the client equivalent of PR #1675)

* fixing incorrectly hard-coded output file path

roles/client/files/libstrongswan-relax-constraints.conf

@@ -0,0 +1,5 @@
+libstrongswan {
+  x509 {
+    enforce_critical = no
+  }
+}

roles/client/tasks/main.yml

@@ -53,6 +53,14 @@
   notify:
     - restart strongswan
 
+- name: Configure libstrongswan to relax CA constraints
+  copy:
+    src: libstrongswan-relax-constraints.conf
+    dest: "{{ configs_prefix }}/strongswan.d/relax-ca-constraints.conf"
+    owner: root
+    group: root
+    mode: 0644
+
 - name: Setup the certificates and keys
   template:
     src: "{{ item.src }}"