733122f0df
This change proposes calling a handler each time a certificate is created/updated. The handler name is based on the name of the certificate given in the letsencrypt_certs variable, as described in the role documentation. Because Ansible considers calling a handler with no listeners an error this means each letsencrypt user will need to provide a handler. One simple option illustrated here is just to produce a stamp file. This can facilitate cross-playbook and even cross-orchestration-tool communication. For example, puppet or other ansible playbooks can detect this stamp file and schedule their reloads, etc. then remove the stamp file. It is conceivable more complex listeners could be setup via other roles, etc. should the need arise. A test is added to make sure the stamp file is created for the letsencrypt test hosts, which are always generating a new certificate in the gate test. Change-Id: I4e0609c4751643d6e0c8d9eaa38f184e0ce5452e |
||
|---|---|---|
| .. | ||
| adns1.opendev.org.yaml | ||
| bridge.openstack.org.yaml | ||
| graphite01.opendev.org.yaml | ||
| insecure-ci-registry01.opendev.org.yaml | ||
| lists.katacontainers.io.yaml | ||
| lists.openstack.org.yaml | ||
| ns1.opendev.org.yaml | ||
| ns2.opendev.org.yaml | ||