OpenSSL (Private Keys, CSR, Certificates) management - Request for feedbacks

Hello the Ansible Community,

After looking into ansible-modules-core[1] and ansible-modules-extras[2],
I’ve seen no current modules for managing OpenSSL private keys, certificate
signing requests and certificates.

Hence I have been working on three new modules that I have submitted for review:

  • openssl_privatekey[3]
  • openssl_csr[4]
  • openssl_cert[5]

All three modules interact with openssl through pyOpenSSL python module.

openssl_privatekey

Sounds like a good tool that I could start using.

My use case is for self signed certificate. State check could be something like
key_size = (need to generate new key when key is not this size)
key fingerprint

Sometimes I find myself using things like easy-rsa to manage keys for things like openvpn. Doing this though ansible would also be desirable.

Thanks