From 1fc3884b886508d9c1dd4b6298c61755a165b08b Mon Sep 17 00:00:00 2001
From: root <root@srv2.soctools.grena.ge>
Date: Mon, 7 Nov 2022 14:25:12 +0400
Subject: [PATCH] fix Keycloak auth issue in Opensearch

---
 roles/opensearches/tasks/init.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/roles/opensearches/tasks/init.yml b/roles/opensearches/tasks/init.yml
index 8b438a4..0337287 100644
--- a/roles/opensearches/tasks/init.yml
+++ b/roles/opensearches/tasks/init.yml
@@ -21,6 +21,10 @@
     - "{{playbook_dir}}/secrets/CA/cacerts.jks"
     - "{{playbook_dir}}/secrets/CA/private/{{soctools_users[0].CN}}.p12"
 
+- name: import soctools ca crt yo java truststore
+  remote_user: opensearch
+  shell: /opt/opensearch/jdk/bin/keytool -import -noprompt -storepass changeit -trustcacerts -alias soctools -file /etc/pki/ca-trust/source/anchors/ca.crt -keystore /opt/opensearch/jdk/lib/security/cacerts
+
 - name: Configure opensearch properties
   remote_user: opensearch
   template:
-- 
GitLab