Files
@ 956d7705c012
Branch filter:
Location: majic-ansible-roles/testsite/tls/gnutls_server_certificate.cfg.j2 - annotation
956d7705c012
926 B
text/plain
MAR-234: Use the pipreqcheck user when checking the Python version and prompt:
- Using the root account can result in incorrect permissions being set
on the Python cache (__pycache__) directories, which can further
cause permission issues for the pirpeqcheck user itself.
- The prompt also makes more sense to check in context of the virtual
environment user (since that's the one that will normally get used
with the virtual environment itself).
- Using the root account can result in incorrect permissions being set
on the Python cache (__pycache__) directories, which can further
cause permission issues for the pirpeqcheck user itself.
- The prompt also makes more sense to check in context of the virtual
environment user (since that's the one that will normally get used
with the virtual environment itself).
052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 70733167cdf8 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 70733167cdf8 2ded0cbae449 2ded0cbae449 2ded0cbae449 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 052eefc4fab0 884beb9a0e1d 884beb9a0e1d 884beb9a0e1d 884beb9a0e1d 884beb9a0e1d | # X.509 Certificate options
#
# DN options
# The organization of the subject.
organization = "Example Inc."
# The country of the subject. Two letter code.
country = SE
# The common name of the certificate owner.
cn = "Exampe Inc. {{ item.name }} Server"
# In how many days, counting from today, this certificate will expire.
expiration_days = 365
# X.509 v3 extensions
# A dnsname in case of a WWW server.
dns_name = "{{ item.hostname }}.{{ testsite_domain }}"
{% for dns_name in item.extra_dns_names | default([]) %}
dns_name = "{{ dns_name }}"
{% endfor %}
# Whether this certificate will be used for a TLS server
tls_www_server
# Whether this certificate will be used to sign data (needed
# in TLS DHE ciphersuites).
signing_key
# Whether this certificate will be used to encrypt data (needed
# in TLS RSA ciphersuites). Note that it is preferred to use different
# keys for encryption and signing.
encryption_key
|