deac/ansible-role-ssh-cert
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

known_hosts: @cert-authority allowes domain itself, instead of only subdomains.

Browse source
This commit is contained in:
Denis Knauf 2022-02-28 18:11:11 +01:00
parent 333e24b61f
commit 46d6b2c72d
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
tasks/main.yml
View file

@ -74,7 +74,7 @@
hash_host: false hash_host: false
path: /etc/ssh/ssh_known_hosts path: /etc/ssh/ssh_known_hosts
name: '{{ssh_cert_known_domain}}' name: '{{ssh_cert_known_domain}}'
key: "@cert-authority *.{{ssh_cert_known_domain}} {{lookup('file', ssh_cert_host_capub_path)}}" key: "@cert-authority *.{{ssh_cert_known_domain}},{{ssh_cert_known_domain}} {{lookup('file', ssh_cert_host_capub_path)}}"
- name: install ssh-cert-renew - name: install ssh-cert-renew
copy: copy: