Browse Source

docker: contents_pillar, restart for pki changes

master
Sean Johnson 3 years ago
parent
commit
db0b30e254
WARNING! Although there is a key with this ID in the database it does not verify this commit! This commit is SUSPICIOUS.
GPG Key ID: 9FA15B87469EA850
  1. 18
      app/docker/tls.sls

18
app/docker/tls.sls

@ -26,7 +26,6 @@
- user: root
- group: docker
- mode: 0660
- onlyif: "test ! -f {{ cert_file }}"
{% if cert_data is not none %} - contents_pillar: "docker:tls:cert"
{% endif %}
@ -35,8 +34,7 @@
- user: root
- group: docker
- mode: 0660
- onlyif: "test ! -f {{ key_file }}"
{% if key_data is not none %} - content_pillar: "docker:tls:key"
{% if key_data is not none %} - contents_pillar: "docker:tls:key"
{% endif %}
{{ ca_file }}:
@ -44,6 +42,14 @@
- user: root
- group: docker
- mode: 0660
- onlyif: "test ! -f {{ ca_file }}"
{% if ca_data is not none %} - content_pillar: "docker:tls:ca"
{% endif %}
{% if ca_data is not none %} - contents_pillar: "docker:tls:ca"
{% endif %}
restart docker for tls certificates:
service.running:
- name: docker
- full_restart: true
- watch:
- file: {{ ca_file }}
- file: {{ cert_file }}
- file: {{ key_file }}
Loading…
Cancel
Save