mirror of
https://github.com/trailofbits/algo.git
synced 2025-07-25 06:53:00 +02:00
6facb6cb4f
* FreeBSD draft ifconfig fix Pre-tasks fixes fix hardcoded IP some refactoring disable system-based tags disable freebsd tags FreeBSD vpn role add defaults ssh role freebsd default fix dns_adblocking freebsd ubuntu dict fix * HardenedBSD update-users BSD * Rebuild the kernel docs changing
27 lines
1 KiB
YAML
27 lines
1 KiB
YAML
---
|
|
|
|
- name: Copy the keys to the strongswan directory
|
|
copy:
|
|
src: "{{ item.src }}"
|
|
dest: "{{ item.dest }}"
|
|
owner: "{{ item.owner }}"
|
|
group: "{{ item.group }}"
|
|
mode: "{{ item.mode }}"
|
|
with_items:
|
|
- src: "configs/{{ IP_subject_alt_name }}/pki/cacert.pem"
|
|
dest: "{{ config_prefix|default('/') }}etc/ipsec.d/cacerts/ca.crt"
|
|
owner: strongswan
|
|
group: "{{ root_group|default('root') }}"
|
|
mode: "0600"
|
|
- src: "configs/{{ IP_subject_alt_name }}/pki/certs/{{ IP_subject_alt_name }}.crt"
|
|
dest: "{{ config_prefix|default('/') }}etc/ipsec.d/certs/{{ IP_subject_alt_name }}.crt"
|
|
owner: strongswan
|
|
group: "{{ root_group|default('root') }}"
|
|
mode: "0600"
|
|
- src: "configs/{{ IP_subject_alt_name }}/pki/private/{{ IP_subject_alt_name }}.key"
|
|
dest: "{{ config_prefix|default('/') }}etc/ipsec.d/private/{{ IP_subject_alt_name }}.key"
|
|
owner: strongswan
|
|
group: "{{ root_group|default('root') }}"
|
|
mode: "0600"
|
|
notify:
|
|
- restart strongswan
|