search

Venafi / ansible-collection-venafi

Ansible collection for managing machine identities (certificates and keys) using Venafi
Apache License 2.0
13 stars 7 forks source link

Venafi Certificate PEM file is not copied unless certificate_pkcs12_format is explicitly set to false #27

Open AaronJaegerVA opened 2 years ago

AaronJaegerVA commented 2 years ago

PROBLEM SUMMARY Venafi Certificate PEM file is not copied unless certificate_pkcs12_format is explicitly set to false

STEPS TO REPRODUCE

  1. Do not set certificate_pkcs12_format to any value (expecting the default of 'false' to take effect)
  2. Run a playbook that calls the role to generate a certificate and key

EXPECTED RESULTS This task should fire:

https://github.com/Venafi/ansible-collection-venafi/blob/ea699f12e634e67f546a2501f746f994f767c280/roles/certificate/tasks/local-certificate.yml#L46-L51

ACTUAL RESULTS The task above is skipped.

ENVIRONMENT DETAILS We're using the latest version of the collection on top of Red Hat Ansible Tower which is using Ansible 2.9.x

COMMENTS/WORKAROUNDS If you explicitly set certificate_pkcs12_format: false things work fine.