feat: reload hydra clients instead of restart cadoles-pod-hydra-v1 containers

handlers/main.yml

@@ -33,4 +33,8 @@
   service:
     name: cadoles-pod-shibboleth-sp-v3
     state: restarted
-  become: true
+  become: true
+
+- name: Reload hydra clients
+  ansible.builtin.include_tasks:
+    file: hydra-reload-clients.yml

tasks/hydra-reload-clients.yml

@@ -0,0 +1,11 @@
+---
+
+- name: Start cadoles-pod-hydra-v1
+  service:
+    name: cadoles-pod-hydra-v1
+    state: started
+  become: true
+
+- name: Reload hydra clients
+  command: podman exec -it cadoles-pod-hydra-v1 /bin/sh -c 'HYDRA_SERVE_ADMIN_SCHEME=http reload-hydra-clients'
+  become: true

tasks/main.yml

@@ -57,7 +57,7 @@
     dest: "/etc/hydra/clients.d/{{ item.client_id }}.json"
   with_items: "{{ hydra_clients }}"
   notify:
-    - Restart cadoles-pod-hydra-v1
+    - Reload hydra clients
   become: true
 
 - name: Configure cadoles-pod-hydra-v1

tasks/oidc-test.yml

@@ -11,9 +11,8 @@
       redirect_uris: ["{{ oidc_test_app_public_base_url }}/oauth2/callback"]
       post_logout_redirect_uris: ["{{ oidc_test_app_public_base_url }}"]
       logo_uri: https://www.cadoles.com/images/logo.svg
-
   notify:
-    - Restart cadoles-pod-hydra-v1
+    - Reload hydra clients
   become: true
 
 - name: Start oidc-test app