From 97ccfd2413e7c9de4fca15cf615045f497f51850 Mon Sep 17 00:00:00 2001
From: Alan Lam <alanhoanglam@gmail.com>
Date: Tue, 19 Nov 2019 09:46:46 -0800
Subject: [PATCH] remove host.crt/host.key before resigning in the vagrant test
 environment

---
 .../quickstart-vagrant/ansible/roles/nebula/tasks/main.yml  | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/examples/quickstart-vagrant/ansible/roles/nebula/tasks/main.yml b/examples/quickstart-vagrant/ansible/roles/nebula/tasks/main.yml
index b96e7c7..d6be5f1 100644
--- a/examples/quickstart-vagrant/ansible/roles/nebula/tasks/main.yml
+++ b/examples/quickstart-vagrant/ansible/roles/nebula/tasks/main.yml
@@ -22,6 +22,12 @@
     - vagrant-test-ca.key
     - vagrant-test-ca.crt
 
+- name: remove previously signed host certificate
+  file: dest=/etc/nebula/{{ item }} state=absent
+  with_items:
+    - host.crt
+    - host.key
+
 - name: sign using the root key
   command: nebula-cert sign -ca-crt /opt/vagrant-test-ca.crt -ca-key /opt/vagrant-test-ca.key -duration 4320h -groups vagrant -ip {{ hostvars[inventory_hostname][vagrant_ifce]['ipv4']['address'] | to_nebula_ip }}/9 -name {{ ansible_hostname }}.nebula -out-crt /etc/nebula/host.crt -out-key /etc/nebula/host.key