-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathpsjh-certkeys.yaml
112 lines (110 loc) · 4.16 KB
/
psjh-certkeys.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
name: psjh-certkeys
namespace: com.psjh.epic.stylebooks
version: "1.0"
description: "This StyleBook uploads certificates files to NetScaler and creates corresponding CertKeys - Customized for PSJH Epic StyleBooks."
private: true
schema-version: "1.0"
import-stylebooks:
-
namespace: netscaler.nitro.config
prefix: ns
version: "11.1"
-
namespace: com.psjh.epic.stylebooks
prefix: psjh-epic
version: "1.0"
parameters:
-
name: certificates
label: Certificate
description: List of certificates to be bound to this virtual load balanced application
type: psjh-epic::psjh-certificate[]
required: false
components:
-
name: pem-cert-files-comp
type: ns::systemfile
description: This list of components upload the PEM certificate files onto the NetScaler device.
repeat: $parameters.certificates
repeat-condition: $certificate.ssl-inform == "PEM"
repeat-item: certificate
properties:
filename: $certificate.cert-file.filename
filelocation: /nsconfig/ssl
filecontent: base64($certificate.cert-file.contents)
fileencoding: BASE64
-
name: der-cert-files-comp
type: ns::systemfile
description: This list of components upload the DER certificate files onto the NetScaler device.
repeat: $parameters.certificates
repeat-condition: $certificate.ssl-inform != "PEM"
repeat-item: certificate
properties:
filename: $certificate.cert-file.filename
filelocation: /nsconfig/ssl
filecontent: base64($certificate.cert-file.contents)
fileencoding: BASE64
-
name: pem-key-files-comp
type: ns::systemfile
description: This list of components upload the PEM key files onto the NetScaler device.
condition: $components.der-cert-files-comp or $components.pem-cert-files-comp
repeat: $parameters.certificates
repeat-condition: $certificate.key-file
repeat-item: certificate
properties:
filename: $certificate.key-file.filename
filelocation: /nsconfig/ssl
filecontent: base64($certificate.key-file.contents)
fileencoding: BASE64
-
name: der-key-files-comp
type: ns::systemfile
description: This list of components upload the DER key files onto the NetScaler device.
condition: $components.der-cert-files-comp or $components.pem-cert-files-comp
repeat: $parameters.certificates
repeat-condition: $certificate.ssl-inform != "PEM" and not $certificate.cert-advanced.is-ca-cert
repeat-item: certificate
properties:
filename: $certificate.key-file.filename
filelocation: /nsconfig/ssl
filecontent: base64($certificate.key-file.contents)
fileencoding: BASE64
-
name: certkeys-comp
type: ns::sslcertkey
description: This list of components create certkey entities on the NetScaler device.
condition: $components.der-cert-files-comp or $components.pem-cert-files-comp
repeat: $parameters.certificates
repeat-item: certificate
repeat-condition: not $certificate.cert-advanced.is-ca-cert
properties:
certkey: $certificate.cert-name
cert: $certificate.cert-file.filename
inform: $certificate.ssl-inform
key?: $certificate.key-file.filename
expirymonitor?: $certificate.cert-advanced.expiry-monitor
notificationperiod?: $certificate.cert-advanced.notification-period
passplain?: $certificate.cert-password
-
name: certkeys-ca-comp
type: ns::sslcertkey
description: This list of components create CA certkey entities on the NetScaler device.
condition: $components.der-cert-files-comp or $components.pem-cert-files-comp
repeat: $parameters.certificates
repeat-item: certificate
repeat-condition: $certificate.cert-advanced.is-ca-cert
properties:
certkey: $certificate.cert-name
cert: $certificate.cert-file.filename
inform: $certificate.ssl-inform
expirymonitor?: $certificate.cert-advanced.expiry-monitor
notificationperiod?: $certificate.cert-advanced.notification-period
passplain?: $certificate.cert-password
outputs:
-
name: certkeys
value: $components.certkeys-comp
- name: ca-certkeys
value: $components.certkeys-ca-comp