From 7c30f3912439da1dc88b001f9d213267aa057905 Mon Sep 17 00:00:00 2001
From: Roberto <roberto.cirillo@isti.cnr.it>
Date: Thu, 20 Sep 2018 11:18:38 +0200
Subject: [PATCH] add mongodb_ssl_letsencrypt_ca_dir variable

---
 mongodb-org/defaults/main.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/mongodb-org/defaults/main.yml b/mongodb-org/defaults/main.yml
index 3bca898..6308f8a 100644
--- a/mongodb-org/defaults/main.yml
+++ b/mongodb-org/defaults/main.yml
@@ -51,12 +51,13 @@ mongodb_storage_engine: wiredTiger
 mongodb_ssl_enabled: False
 mongodb_ssl_letsencrypt_managed: True
 mongodb_ssl_letsencrypt_ca_url: 'https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem.txt'
+mongodb_ssl_letsencrypt_ca_dir: /etc/pki/mongodb
 mongodb_ssl_letsencrypt_ca_filename: lets-encrypt-x3-cross-signed.pem
 # Options: disabled, requireSSL, allowSSL, preferSSL
 mongodb_ssl_mode: requireSSL
 mongodb_ssl_cert_dir: /etc/pki/mongodb
 mongodb_ssl_certkey_file: '{{ mongodb_ssl_cert_dir }}/mongodb.pem'
-mongodb_ssl_CA_file: '{{ mongodb_ssl_letsencrypt_ca_filename }}'
+mongodb_ssl_CA_file: '{{ mongodb_ssl_letsencrypt_ca_dir }}/{{ mongodb_ssl_letsencrypt_ca_filename }}'
 mongodb_ssl_allowConnectionsWithoutCertificates: 'true'
 mongodb_ssl_disabled_protocols: 'TLS1_0,TLS1_1'