Added subject to the TLS certificate signing request

vitabaks · Dec 24, 2024 · d30cd4f · d30cd4f
1 parent 7368911
commit d30cd4f
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/automation/roles/tls_certificate/generate/tasks/main.yml b/automation/roles/tls_certificate/generate/tasks/main.yml
@@ -80,14 +80,18 @@
     - name: "Create server CSR"
       community.crypto.openssl_csr_pipe:
         privatekey_path: "/etc/tls/server.key"
-        common_name: postgresql.cluster
+        common_name: "{{ patroni_cluster_name }}"
         key_usage:
           - digitalSignature
           - keyEncipherment
           - dataEncipherment
         extended_key_usage:
           - clientAuth
           - serverAuth
+        subject:
+          C: "AL"
+          O: "autobase"
+          CN: "{{ patroni_cluster_name }}"
         subject_alt_name: "{{ subject_alt_name }}"
       register: csr