ansible-collection-smallstep icon indicating copy to clipboard operation
ansible-collection-smallstep copied to clipboard

Published 20 hours ago verified publisher icon maxhoesel-ansible

Must be name 'acme' (lowercase)

Open strarsis opened this issue 4 years ago • 2 comments
trafficstars

The provisioner name for ACME must be in lowercase acme, otherwise step CA will not find the provisioner (certbot uses the lowercase variant).

    - name: Add ACME provisioner
      maxhoesel.smallstep.step_ca_provisioner:
        name: acme
        type: ACME
      become: yes
      become_user: "{{ step_ca_user }}"

Currently this is not the case in the prepare.yml file: https://github.com/maxhoesel/ansible-collection-smallstep/blob/4e4e0a375db8fe76aebdf8210546a4001873a6b2/roles/step_acme_cert/molecule/default/prepare.yml#L24-L29

It may also be a good idea to add this to the README as an example for adding the ACME provisioner.

strarsis avatar Aug 28 '21 14:08 strarsis

To be clear, this is an issue with certbot specifically, right? I just tested an uppercase provisioner with step-cli and had no issues whatsoever. The molecule test you linked is working as well., Could you perhaps provide a log or an existing issue that references this issue in certbot?

If that's the case, then I don't think this is an issue with this collection specifically, but rather a problem with certbot. I'd be okay with adding a note the the step_ca_provisioner module, but I'd like to have some issue/note that I can reference.

maxhoesel avatar Aug 28 '21 14:08 maxhoesel

Follow up: https://github.com/smallstep/certificates/issues/684

strarsis avatar Jan 11 '22 14:01 strarsis