damex.incus.incus_certificates role – Ensure Incus certificates.

Note

This role is part of the damex.incus collection (version 1.11.7).

It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it use: ansible-galaxy collection install damex.incus.

To use it in a playbook, specify: damex.incus.incus_certificates.

Entry point main – Ensure Incus certificates.

Synopsis

  • Ensure Incus certificates.

Parameters

Parameter

Comments

incus_certificates

list / elements=dictionary

Certificates to ensure.

certificate

string

PEM-encoded certificate content.

name

string / required

Certificate name.

projects

list / elements=string

Accessible project names.

restricted

boolean

Certificate restriction.

Choices:

  • false

  • true

state

string

Certificate desired state.

Choices:

  • "present"

  • "absent"

type

string

Certificate type.

Choices:

  • "client"

  • "metrics"

incus_certificates_client_cert

string

Client certificate content for API authentication.

incus_certificates_client_cert_path

path

TLS client certificate path for API authentication.

incus_certificates_client_key

string

Client key content for API authentication.

incus_certificates_client_key_path

path

TLS client key path for API authentication.

incus_certificates_server_cert

string

Server certificate content for API verification.

incus_certificates_server_cert_path

path

TLS server certificate path for API verification.

incus_certificates_socket_path

path

Incus Unix socket path.

incus_certificates_state

string

Certificates desired state.

Choices:

  • "present"

  • "absent"

incus_certificates_token

string

Incus API authentication token.

incus_certificates_url

string

Incus server API URL.

incus_certificates_validate_certs

boolean

TLS certificate validation.

Choices:

  • false

  • true

Examples

- name: Ensure incus certificates
  hosts: incus
  tasks:
    - name: Ensure incus certificates
      ansible.builtin.import_role:
        name: damex.incus.incus_certificates
      vars:
        incus_certificates:
          - name: monitoring
            certificate: "{{ lookup('file', 'certs/monitoring.crt') }}"
            type: client
          - name: backup
            certificate: "{{ lookup('file', 'certs/backup.crt') }}"
            type: client