This role manages ca-certificates on Debian / RedHat family OS, it uses the OS native certificate management tool to do this. The OS tools usually manage OpenJDK cacerts file too if the appropriate package is installed
ca_certificates_handler: command to run if changed (differs depending upon OS)
ca_certificates_local_dir: the directory to copy CA Certificates to, set in vars
ca_certificates_trusted: List of name/pem certificate pairs to copy to ca_certificates_local_dir
Including an example of how to use your role (for instance, with variables passed in as parameters) is always nice for users too:
- hosts: servers
roles:
- { ca_certificates }
GPLv3
https://github.com/bdellegrazie/ansible-role-ca-certificates
Thank you!
Sean O'Keeffe Add ability to fetch CA cert #4
Emii Khaos Fix update handler name to match the one defined in default vars #1