ssl / tsl and storage of document

tasks/chill/main.yml

@@ -54,5 +54,15 @@
     - lexik_jwt_authentication.yaml
     - messenger.yaml
     - monolog.yaml
+    - chill_doc_store.yaml
+    - framework.yaml
   loop_control:
     loop_var: file
+
+- name: Create directory for storing data
+  ansible.builtin.file:
+    path: "{{ doc_storage_dir }}/{{ item['chill_environment'] }}"
+    owner: "82"
+    group: "82"
+    mode: '0766'
+    state: directory

tasks/chill/self_signed.yml

@@ -0,0 +1,18 @@
+
+- name: Create directory for storing certificates
+  ansible.builtin.file:
+    path: "/var/traefik/certs/chill/{{ item['chill_environment'] }}"
+    state: directory
+    owner: "{{ as_user }}"
+    mode: '0400'
+
+- name: Create private key
+  community.crypto.openssl_privatekey:
+    path: "/var/traefik/certs/chill/{{ item['chill_environment'] }}/key.pem"
+
+- name: Create self signed certificate
+  community.crypto.x509_certificate:
+    privatekey_path: "/var/traefik/certs/chill/{{ item['chill_environment'] }}/key.pem"
+    path: "/var/traefik/certs/chill/{{ item['chill_environment'] }}/cert.pem"
+    provider: selfsigned
+

tasks/traefik.yml

@@ -13,3 +13,10 @@
     owner: "{{ as_user }}"
   notify:
     - Restart traefik
+
+- name: Create directory for storing certificates
+  ansible.builtin.file:
+    path: "/var/traefik/certs"
+    state: directory
+    owner: "{{ as_user }}"
+    mode: '0400'