generate self signed certificate

group_vars/all/generate_self_signed_certificate.yml

@@ -0,0 +1,3 @@
+---
+country_name: FR
+organization_name: Pains-Perdus

hosts

@@ -27,6 +27,7 @@ all:
     keycloak_host:
       hosts:
         vb2:
+          server_hostname: 10.0.2.9
     gitea_host:
       hosts:
         vb1:

keycloak.yml

@@ -4,4 +4,5 @@
 - hosts: keycloak_host
   roles:
     - install_docker
+    - generate_self_signed_certificate
     - install_keycloak

roles/generate_self_signed_certificate/tasks/main.yml

@@ -0,0 +1,27 @@
+---
+- name: Ensure the cert directory exists
+  file:
+    path: /var/certificates
+    state: directory
+
+- name: Generate an OpenSSL private key
+  openssl_privatekey:
+    path: "/var/certificates/{{ server_hostname }}_privkey.pem"
+    size: 4096
+    type: RSA
+
+- name: Generate an OpenSSL Certificate Signing Request with Subject information
+  openssl_csr:
+    path: "/var/certificates/{{ server_hostname }}.csr"
+    privatekey_path: "/var/certificates/{{ server_hostname }}_privkey.pem"
+    country_name: "{{ country_name }}"
+    organization_name: "{{ organization_name }}"
+    email_address: "{{ vault_email }}"
+    common_name: "{{ server_hostname }}"
+
+- name: Generate a Self Signed OpenSSL certificate
+  openssl_certificate:
+    path: "/var/certificates/{{ server_hostname }}_cert.pem"
+    privatekey_path: "/var/certificates/{{ server_hostname }}_privkey.pem"
+    csr_path: "/var/certificates/{{ server_hostname }}.csr"
+    provider: selfsigned