df86b9ec3d
* Removed required_together, updated tests Since required_together: privatekey_path -> friendly_name, is not always required it has been removed. Updated openssl_pkcs12 integration tests to be in line with other openssl_* modules, and added a test for export with no privatekey_path. * linter fixes * Removed cryptography from tests * Added changelog fragment * Removed non-necessary select_crypto_backend
32 lines
1.1 KiB
YAML
32 lines
1.1 KiB
YAML
- name: 'Install pexpect'
|
|
pip:
|
|
name: 'pexpect'
|
|
state: 'present'
|
|
|
|
- name: 'Validate PKCS#12'
|
|
command: "openssl pkcs12 -info -in {{ output_dir }}/ansible.p12 -nodes -passin pass:''"
|
|
register: p12
|
|
|
|
- name: 'Validate PKCS#12 with no private key'
|
|
command: "openssl pkcs12 -info -in {{ output_dir }}/ansible_no_pkey.p12 -nodes -passin pass:''"
|
|
register: p12_validate_no_pkey
|
|
|
|
- name: 'Validate PKCS#12 (assert)'
|
|
assert:
|
|
that:
|
|
- p12.stdout_lines[2].split(':')[-1].strip() == 'abracadabra'
|
|
- p12_standard.mode == '0400'
|
|
- p12_no_pkey.changed
|
|
- p12_validate_no_pkey.stdout_lines[-1] == '-----END CERTIFICATE-----'
|
|
- p12_force.changed
|
|
- p12_force_and_mode.mode == '0644' and p12_force_and_mode.changed
|
|
|
|
- name:
|
|
assert:
|
|
that:
|
|
- passphrase_error_1 is failed
|
|
- "'assphrase' in passphrase_error_1.msg or 'assword' in passphrase_error_1.msg"
|
|
- passphrase_error_2 is failed
|
|
- "'assphrase' in passphrase_error_1.msg or 'assword' in passphrase_error_2.msg"
|
|
- passphrase_error_3 is failed
|
|
- "'assphrase' in passphrase_error_1.msg or 'assword' in passphrase_error_3.msg"
|