CORD-1007 Generate certs and keys on the corddev VM
Change-Id: I18e9662f3efc7bf249ed319b1f7f7086f9424270
diff --git a/deploy-xos-playbook.yml b/deploy-xos-playbook.yml
index 965b2e9..df4a125 100644
--- a/deploy-xos-playbook.yml
+++ b/deploy-xos-playbook.yml
@@ -13,8 +13,20 @@
# for docker, docker-compose
- include: devel-tools-playbook.yml
-# for generating SSL certs
-- include: pki-setup-playbook.yml
+# setup PKI when needed for development
+- name: Create Root CA, Intermediate CA, Server certs
+ hosts: localhost
+ connection: local
+ roles:
+ - { role: pki-root-ca, when: needs_pki_install is defined and needs_pki_install }
+ - { role: pki-intermediate-ca, when: needs_pki_install is defined and needs_pki_install }
+ - { role: pki-cert, when: needs_pki_install is defined and needs_pki_install }
+
+# install PKI when needed for development
+- name: Install CA certificates
+ hosts: head
+ roles:
+ - { role: pki-install, when: needs_pki_install is defined and needs_pki_install }
- name: Create CORD profile, create docker images, bootstrap XOS in docker
hosts: head
@@ -39,4 +51,3 @@
roles:
- xos-ready
- xos-config
-