From 8faeb7ff2101c6e509bdd7dd0bee58da0c7281b8 Mon Sep 17 00:00:00 2001
From: Alexis Pentori <alexis@status.im>
Date: Thu, 9 Jan 2025 15:35:38 +0100
Subject: [PATCH] all: adding vault certificates

Signed-off-by: Alexis Pentori <alexis@status.im>
---
 ansible/group_vars/all.yml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/ansible/group_vars/all.yml b/ansible/group_vars/all.yml
index 325600b..91b6134 100644
--- a/ansible/group_vars/all.yml
+++ b/ansible/group_vars/all.yml
@@ -20,3 +20,8 @@ bootstrap__docker_registries:
   - url:      'https://harbor.status.im'
     username: 'robot$wakuorg+infra-status'
     password: '{{ lookup("bitwarden", "harbor-robot", field="robot$wakuorg+infra-status") }}'
+
+# Vault certificate
+bootstrap__vault_ca_cert:           '{{ lookup(passwordstore, services/vault/certs/root-ca/cert returnall=true)}}'
+bootstrap__vault_client_cert:       '{{ lookup(passwordstore, services/vault/certs/client-host/cert returnall=true)}}'
+bootstrap__vault_client_key:        '{{ lookup(passwordstore, services/vault/certs/client-host/privkey returnall=true)}}'