updated acme state

2022-10-23 16:39:33 +02:00 · 2022-10-23 16:39:33 +02:00 · 5685a34fe3
commit 5685a34fe3
parent 57b7bc9b32
2 changed files with 4 additions and 2 deletions
--- a/states/_states/pki.py
+++ b/states/_states/pki.py
@ -25,6 +25,7 @@ def fetched(name=None,
    currentcert = __salt__['pki.get_file_content'](checkfile=certfile)
    currentkey = __salt__['pki.get_file_content'](checkfile=keyfile)
    currentfullcert = __salt__['pki.get_file_content'](checkfile=fullcertfile)
    newcert, newkey = __salt__['pki.get_pki_cert'](url=url,
                                                   username=username,
@ -32,8 +33,8 @@ def fetched(name=None,
                                                   domains=domain_concat)
    newfullcert = f"{newcert}\n\n{newkey}"
-    if all([newcert,newkey]):
+    if all([newcert,newkey,newfullcert]):
-        if currentcert != newcert or currentkey != newkey:
+        if currentcert != newcert or currentkey != newkey != currentfullcert != newfullcert:
            wcert = __salt__['pki.write_file_content'](newcert, certfile)
            wkey = __salt__['pki.write_file_content'](newkey, keyfile)
            wfullcert = __salt__['pki.write_file_content'](newfullcert, fullcertfile)
--- a/states/acme/defaults.yaml
+++ b/states/acme/defaults.yaml
@ -5,6 +5,7 @@ acme:
    - "/etc/acme/dh/"
    - "/etc/acme/keys/"
    - "/etc/acme/certs/"
    - "/etc/acme/fullchains/"
  dh:
    path: "/etc/acme/dh/dh.pem"
    keysize: 2048