From 22a2029cf9bdaab93d9960b261fd8a128a7b1133 Mon Sep 17 00:00:00 2001 From: Patrik Lundin Date: Tue, 8 Oct 2024 16:50:46 +0200 Subject: [PATCH] Enable ACME provisioner at init --- global/overlay/etc/puppet/modules/cdn/manifests/ca.pp | 3 --- .../etc/puppet/modules/cdn/templates/ca/docker-compose.yml.erb | 1 + 2 files changed, 1 insertion(+), 3 deletions(-) diff --git a/global/overlay/etc/puppet/modules/cdn/manifests/ca.pp b/global/overlay/etc/puppet/modules/cdn/manifests/ca.pp index 34f7396..1fb6c94 100644 --- a/global/overlay/etc/puppet/modules/cdn/manifests/ca.pp +++ b/global/overlay/etc/puppet/modules/cdn/manifests/ca.pp @@ -116,7 +116,4 @@ class cdn::ca( creates => '/root/.step/config/defaults.json', onlyif => 'test -f /opt/step-ca/data/certs/root_ca.crt' } - - # Enable acme - # step ca provisioner add acme --type ACME --admin-subject=step --admin-password-file=/opt/step-ca/init/secrets/provisioner-password } diff --git a/global/overlay/etc/puppet/modules/cdn/templates/ca/docker-compose.yml.erb b/global/overlay/etc/puppet/modules/cdn/templates/ca/docker-compose.yml.erb index 4cd8622..75245d5 100644 --- a/global/overlay/etc/puppet/modules/cdn/templates/ca/docker-compose.yml.erb +++ b/global/overlay/etc/puppet/modules/cdn/templates/ca/docker-compose.yml.erb @@ -11,3 +11,4 @@ services: - DOCKER_STEPCA_INIT_DNS_NAMES=localhost,<%= @networking['fqdn'] %> - DOCKER_STEPCA_INIT_REMOTE_MANAGEMENT=true - DOCKER_STEPCA_INIT_PASSWORD_FILE=/init-secrets/key-password + - DOCKER_STEPCA_INIT_ACME=true