roles: add easyrsa to build CA and client&server certificates

Author: cejkato2

ansible/list.yml

@@ -11,4 +11,5 @@
     - { role: nemea-status, tags: nemea-status }
     - { role: main-page, tags: main-page }
     - { role: warden-client, tags: warden-client }
+    - { role: easyrsa, tags: easyrsa }
     - { role: fail2ban, tags: fail2ban }

ansible/roles/easyrsa/tasks/install.yml

@@ -0,0 +1,13 @@
+- name: Download EasyRSA archive
+  get_url:
+    url: "{{ easyrsa_src.url }}"
+    dest: "{{ easyrsa_src.dest }}"
+
+- name: Extract EasyRSA
+  shell: |
+    mkdir -p "{{ easyrsa_src.creates }}"
+    tar -C "{{ easyrsa_src.creates }}" --strip-components=1 -xzf "{{ easyrsa_src.dest }}"
+    rm "{{ easyrsa_src.dest }}"
+  args:
+    creates: "{{ easyrsa_src.creates }}"
+

ansible/roles/easyrsa/tasks/main.yml

@@ -0,0 +1,4 @@
+- name: EasyRSA install
+  include: install.yml
+  tags: install
+

ansible/roles/easyrsa/vars/main.yml

@@ -0,0 +1,8 @@
+easyrsa_tmp: "/tmp"
+
+easyrsa_src: {
+  url: "https://github.com/OpenVPN/easy-rsa/releases/download/v3.0.6/EasyRSA-unix-v3.0.6.tgz",
+  dest: "{{ easyrsa_tmp }}/EasyRSA-unix-v3.0.6.tgz",
+  creates: "/opt/easyrsa"
+}
+