From f0f21fc8aa3ee3e7f9aaa95a79898a36868a258f Mon Sep 17 00:00:00 2001
From: Rafael Guterres Jeffman <rjeffman@redhat.com>
Date: Thu, 24 Aug 2023 08:46:41 -0300
Subject: [PATCH] ipacert: Fix revocation example playbook on README

The revocation example playbook on README was wrong as it didn't have a
'reason' set, and the parameter must be used with 'state: revoked'.

This patch fixes the example and adds a new example using a reason
mnemonic instead of a reason number.
---
 README-cert.md | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/README-cert.md b/README-cert.md
index ad2ee75c..14db56eb 100644
--- a/README-cert.md
+++ b/README-cert.md
@@ -77,6 +77,23 @@ Example playbook to revoke an existing certificate:
     ipacert:
       ipaadmin_password: SomeADMINpassword
       serial_number: 123456789
+      reason: 5
+      state: revoked
+```
+
+When revoking a certificate a mnemonic can also be used to set the revocation reason:
+
+```yaml
+---
+- name: Revoke certificate
+  hosts: ipaserver
+
+  tasks:
+  - name Revoke a certificate
+    ipacert:
+      ipaadmin_password: SomeADMINpassword
+      serial_number: 123456789
+      reason: cessationOfOperation
       state: revoked
 ```
 
-- 
GitLab