From 4dedb4f2d0240ca2f78dc6469b26c64e619d6451 Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Tue, 28 May 2019 00:59:15 +0300
Subject: [PATCH] create fullchain of host certificate

---
 roles/pki/tasks/main.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/roles/pki/tasks/main.yml b/roles/pki/tasks/main.yml
index 96c60f0..0e2a31f 100644
--- a/roles/pki/tasks/main.yml
+++ b/roles/pki/tasks/main.yml
@@ -30,6 +30,13 @@
     owner: root
     group: "{{ ansible_wheel }}"
 
+- name: create full chain of host certficate and ca
+  shell: "cat {{ tls_certs }}/{{ inventory_hostname }}.crt \
+   {{ tls_certs }}/ca.crt > \
+   {{ tls_certs }}/{{ inventory_hostname }}-fullchain.crt"
+  args:
+    creates: "{{ tls_certs }}/{{ inventory_hostname }}-fullchain.crt"
+
 - name: copy host key
   copy:
     src: "/srv/ca/private/{{ inventory_hostname }}.key"