wallenstein/algo
1
0
Fork 0
mirror of https://github.com/trailofbits/algo.git synced 2025-06-07 15:43:54 +02:00
Code Issues Projects Releases Wiki Activity

fix revocation (#586)

Browse source
This commit is contained in:
Jack Ivanov 2017-06-06 12:42:23 +02:00 committed by GitHub
parent a8ebb16437
commit f0283856ad
1 changed files with 2 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
roles/vpn/tasks/openssl.yml
View file

@ -145,19 +145,14 @@
- name: Revoke non-existing users - name: Revoke non-existing users
shell: > shell: >
openssl ca
-config openssl.cnf
-passin pass:"{{ easyrsa_CA_password }}"
-revoke certs/{{ item }}.crt &&
openssl ca -gencrl openssl ca -gencrl
-config openssl.cnf -config openssl.cnf
-passin pass:"{{ easyrsa_CA_password }}" -passin pass:"{{ easyrsa_CA_password }}"
-revoke certs/{{ item }}.crt -revoke certs/{{ item }}.crt
-out crl/{{ item }}.crt && -out crl/{{ item }}.crt
touch crl/{{ item }}_revoked
args: args:
chdir: configs/{{ IP_subject_alt_name }}/pki/ chdir: configs/{{ IP_subject_alt_name }}/pki/
creates: crl/{{ item }}_revoked creates: crl/{{ item }}.crt
environment: environment:
subjectAltName: "DNS:{{ item }}" subjectAltName: "DNS:{{ item }}"
when: item not in users when: item not in users