---

- import_tasks: all.yml

- include_tasks: "{{ansible_os_family|lower}}.yml"

- name: client certificates
  import_role:
    name: step_client
  vars:
    step_client_user: prometheus
    step_client_dir: '/etc/ssl/prometheus_client'
    step_services:
      - 'prometheus'
    step_extkey_usage: ["clientAuth"]
    step_cn: "prometheus.{{domain_name}}"
    dns_names: ['{{ansible_fqdn}}', 'prometheus.{{domain_name}}']
    step_client_renewtime: "{{'*/3 * * * *'|split(' ')}}"
  tags: step