diff options
author | Felix Fontein <felix@fontein.de> | 2020-05-05 21:42:46 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2020-05-05 14:42:46 -0500 |
commit | c49f2218dee95c0d57468ba0fbf3c2e0dd0b86ca (patch) | |
tree | 707118a3710244570345fe03ff9b37563ba888a3 /docs | |
parent | d6dc085b067ca23555cd306adaddcfe04acfb57d (diff) | |
download | ansible-c49f2218dee95c0d57468ba0fbf3c2e0dd0b86ca.tar.gz |
Mention acme_certificate behavior changes in porting guide caused by a bugfix and previously incorrect examples. (#69167)
Diffstat (limited to 'docs')
-rw-r--r-- | docs/docsite/rst/porting_guides/porting_guide_2.9.rst | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/docs/docsite/rst/porting_guides/porting_guide_2.9.rst b/docs/docsite/rst/porting_guides/porting_guide_2.9.rst index 423823f253..09b0c20a91 100644 --- a/docs/docsite/rst/porting_guides/porting_guide_2.9.rst +++ b/docs/docsite/rst/porting_guides/porting_guide_2.9.rst @@ -707,6 +707,7 @@ Noteworthy module changes * :ref:`openssl_certificate <openssl_certificate_module>`'s ``ownca`` provider creates authority key identifiers if not explicitly disabled with ``ownca_create_authority_key_identifier: no``. This is only the case for the ``cryptography`` backend, which is selected by default if the ``cryptography`` library is available. * :ref:`openssl_certificate <openssl_certificate_module>`'s ``ownca`` and ``selfsigned`` providers create subject key identifiers if not explicitly disabled with ``ownca_create_subject_key_identifier: never_create`` resp. ``selfsigned_create_subject_key_identifier: never_create``. If a subject key identifier is provided by the CSR, it is taken; if not, it is created from the public key. This is only the case for the ``cryptography`` backend, which is selected by default if the ``cryptography`` library is available. * :ref:`openssh_keypair <openssh_keypair_module>` now applies the same file permissions and ownership to both public and private keys (both get the same ``mode``, ``owner``, ``group``, etc.). If you need to change permissions / ownership on one key, use the :ref:`file <file_module>` to modify it after it is created. +* :ref:`acme_certificate <acme_certificate_module>` only returns challenges that need to be satisfied in ``challenge_data`` and ``challenge_data_dns`` (since Ansible 2.8.5). Depending on how you process challenges, you need to adjust your challenge satisfying tasks to either use ``when:`` to only process domain names which appear in ``challenge_data``, or by looping over the ``challenge_data`` dictionary itself. See the updated examples in the module documentation. Plugins |