---

# setup ca directory

- name: directory
  file:
    path: "{{ certificate_authority_directory }}"
    #mode: 0700
    state: directory

- name: subdirectories
  file:
    path: "{{ certificate_authority_directory }}/{{ item }}"
    #mode: 0700
    state: directory
  with_items:
    - certs
    - crl
    - csr
    - newcerts

- name: private directory
  file:
    path: "{{ certificate_authority_directory }}/private"
    mode: 0700
    state: directory

- name: index
  copy:
    content: ""
    dest: "{{ certificate_authority_directory }}/index"
    force: no

- name: index config
  template:
    src: index.attr.j2
    dest: "{{ certificate_authority_directory }}/index.attr"

- name: serial
  copy:
    content: "00\n"
    dest: "{{ certificate_authority_directory }}/serial"
    force: no

- name: openssl config
  template:
    src: openssl.cnf.j2
    dest: "{{ certificate_authority_directory }}/openssl.cnf"