feat: add hydra-webauthn

tasks/hydra-webauthn.yml

@@ -0,0 +1,25 @@
+---
+
+- name: Install cadoles-pod-hydra-webauthn-v1 package
+  ansible.builtin.apt:
+    name:
+      - "cadoles-pod-hydra-webauthn-v1={{ cadoles_pod_hydra_webauthn_v1_package_version }}"
+    update_cache: yes
+    state: present
+  become: true
+
+- name: Create data directory
+  file:
+    path: /var/lib/cadoles-pod-webauthn-v1/data
+    state: directory
+
+- name: Configure cadoles-pod-hydra-webauthn-v1
+  template:
+    src: "{{ item.src }}"
+    dest: "{{ item.dest }}"
+  with_items:
+    - src:  cadoles-pod-hydra-webauthn-v1.conf.j2
+      dest: /etc/cadoles-pod-hydra-webauthn-v1.conf
+  notify:
+    - Restart cadoles-pod-hydra-webauthn-v1
+  become: true

tasks/main.yml

@@ -101,6 +101,10 @@
   ansible.builtin.include_tasks: hydra-ldap.yml
   when: enable_hydra_ldap
 
+- name: Configure WebAuthn authentification if enabled
+  ansible.builtin.include_tasks: hydra-webauthn.yml
+  when: enable_hydra_webauthn
+
 - name: Start OIDC Test app if enabled
   ansible.builtin.include_tasks: start-oidc-test.yml
   when: enable_oidc_test_app and not install_only

tasks/start-oidc-test.yml

@@ -7,6 +7,7 @@
   with_items:
     - client_id: "{{ oidc_test_app_client_id }}"
       client_secret: "{{ oidc_test_app_client_secret }}"
+      client_uri: "{{ oidc_test_app_public_base_url }}"
       client_name: "OIDC Test"
       redirect_uris: ["{{ oidc_test_app_public_base_url }}/oauth2/callback"]
       post_logout_redirect_uris: ["{{ oidc_test_app_public_base_url }}"]