Update for automated response around poorly behaving archlinux-keyring weekly timer; rename Sora role to Password
This commit is contained in:
35
roles/Password/tasks/daemon.yml
Normal file
35
roles/Password/tasks/daemon.yml
Normal file
@@ -0,0 +1,35 @@
|
||||
---
|
||||
- name: Create the base config
|
||||
become: yes
|
||||
template:
|
||||
src: slapd.ldif
|
||||
dest: /etc/openldap/slapd.ldif
|
||||
owner: ldap
|
||||
group: ldap
|
||||
mode: 0640
|
||||
|
||||
- name: Create the directories
|
||||
file:
|
||||
path: "{{ item }}"
|
||||
owner: ldap
|
||||
group: ldap
|
||||
mode: 0700
|
||||
loop:
|
||||
- /var/lib/openldap/openldap-data/
|
||||
- /etc/openldap
|
||||
- /etc/openldap/users.d
|
||||
- /etc/openldap/groups.d
|
||||
- /etc/openldap/slapd.d
|
||||
|
||||
- name: Initialize the instance
|
||||
become: yes
|
||||
command:
|
||||
cmd: slapadd -n 0 -F /etc/openldap/slapd.d/ -l /etc/openldap/config.ldif && chown -R ldap: /etc/openldap
|
||||
creates: /etc/openldap/slapd.d/cn=config
|
||||
|
||||
- name: Ensure the service
|
||||
become: yes
|
||||
service:
|
||||
name: slapd
|
||||
state: restarted
|
||||
enabled: yes
|
||||
17
roles/Password/tasks/login.yml
Normal file
17
roles/Password/tasks/login.yml
Normal file
@@ -0,0 +1,17 @@
|
||||
---
|
||||
|
||||
- name: Set login config
|
||||
become: yes
|
||||
template:
|
||||
src: nslcd.conf.j2
|
||||
dest: /etc/nslcd.conf
|
||||
owner: nslcd
|
||||
group: nslcd
|
||||
mode: 0600
|
||||
|
||||
- name: Ensure login service
|
||||
become: yes
|
||||
service:
|
||||
name: nslcd
|
||||
state: restarted
|
||||
enabled: yes
|
||||
13
roles/Password/tasks/main.yml
Normal file
13
roles/Password/tasks/main.yml
Normal file
@@ -0,0 +1,13 @@
|
||||
---
|
||||
- name: Sora packages
|
||||
become: yes
|
||||
package:
|
||||
name:
|
||||
- openldap
|
||||
- Password-Scripts
|
||||
|
||||
- include_tasks: daemon.yml
|
||||
|
||||
- include_tasks: login.yml
|
||||
|
||||
- include_tasks: web.yml
|
||||
24
roles/Password/tasks/web.yml
Normal file
24
roles/Password/tasks/web.yml
Normal file
@@ -0,0 +1,24 @@
|
||||
---
|
||||
|
||||
- name: Clone the web portal
|
||||
become: yes
|
||||
git:
|
||||
repo: https://github.com/ltb-project/self-service-password
|
||||
dest: /usr/share/webapps/self-service-password
|
||||
|
||||
- name: Ensure web portal ownership
|
||||
file:
|
||||
state: directory
|
||||
owner: http
|
||||
group: http
|
||||
path: /usr/share/webapps/self-service-password
|
||||
recurse: true
|
||||
|
||||
- name: Web portal config
|
||||
become: yes
|
||||
template:
|
||||
src: config.inc.php.j2
|
||||
dest: /usr/share/webapps/self-service-password/conf/config.inc.php
|
||||
owner: http
|
||||
group: http
|
||||
mode: 0600
|
||||
Reference in New Issue
Block a user