Generate per-site SSL intermediate CA, fix cred/pki paths Change-Id: I0bda0791d82142acac8c6af0e152d8d0954ef719

commit: 44845c69e17400b051fd2a7cb41de0a4bdb050b6 [log] [tgz]
author: Zack Williams <zdw@cs.arizona.edu> Fri Apr 21 13:57:14 2017 -0700
committer: Zack Williams <zdw@cs.arizona.edu> Thu May 18 14:58:09 2017 -0700
tree: cc2fd12ab7738f56180c07b7d2d9a71f0db63fa3
parent: 4ef48392ffd9350ca407f047b63015d50401d351 [diff]
diff --git a/roles/pki-intermediate-ca/defaults/main.yml b/roles/pki-intermediate-ca/defaults/main.yml
index c8ec9c9..3a5b545 100644
--- a/roles/pki-intermediate-ca/defaults/main.yml
+++ b/roles/pki-intermediate-ca/defaults/main.yml

@@ -1,8 +1,13 @@
 ---
 # pki-intermediate-ca/defaults/main.yml
 
-pki_dir: "/opt/pki"
-credentials_dir: "/opt/credentials"
+pki_dir: "{{ playbook_dir }}/pki"
+credentials_dir: "{{ playbook_dir }}/credentials"
+
+# used to name the intermediate CA
+site_name: sitename
+site_humanname: "Site HumanName"
+site_suffix: sitename.test
 
 # crypto parameters
 ca_digest: "sha256"
@@ -13,4 +18,4 @@
 ca_im_phrase: "{{ lookup('password', credentials_dir ~ '/ca_im_phrase length=64') }}"
 
 # noninteractive csr subject
-ca_im_subj: "/C=US/ST=California/L=Menlo Park/O=ON.Lab/OU=Test Deployment/CN=CORD Test Deployment Intermediate CA"
+ca_im_subj: "/C=US/ST=California/L=Menlo Park/O=ON.Lab/OU=Test Deployment/CN={{ site_humanname }} Intermediate CA"
commit	44845c69e17400b051fd2a7cb41de0a4bdb050b6	[log] [tgz]
author	Zack Williams <zdw@cs.arizona.edu>	Fri Apr 21 13:57:14 2017 -0700
committer	Zack Williams <zdw@cs.arizona.edu>	Thu May 18 14:58:09 2017 -0700
tree	cc2fd12ab7738f56180c07b7d2d9a71f0db63fa3
parent	4ef48392ffd9350ca407f047b63015d50401d351 [diff]