mirror of
https://github.com/trailofbits/algo.git
synced 2025-06-05 22:54:01 +02:00
fix revocation (#586)
This commit is contained in:
Jack Ivanov
GitHub
parent
a8ebb16437
commit
f0283856ad
1 changed files with 2 additions and 7 deletions
|
|
@ -145,19 +145,14 @@
|
|||
|
||||
- name: Revoke non-existing users
|
||||
shell: >
|
||||
openssl ca
|
||||
-config openssl.cnf
|
||||
-passin pass:"{{ easyrsa_CA_password }}"
|
||||
-revoke certs/{{ item }}.crt &&
|
||||
openssl ca -gencrl
|
||||
-config openssl.cnf
|
||||
-passin pass:"{{ easyrsa_CA_password }}"
|
||||
-revoke certs/{{ item }}.crt
|
||||
-out crl/{{ item }}.crt &&
|
||||
touch crl/{{ item }}_revoked
|
||||
-out crl/{{ item }}.crt
|
||||
args:
|
||||
chdir: configs/{{ IP_subject_alt_name }}/pki/
|
||||
creates: crl/{{ item }}_revoked
|
||||
creates: crl/{{ item }}.crt
|
||||
environment:
|
||||
subjectAltName: "DNS:{{ item }}"
|
||||
when: item not in users
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue