adding tasks for goweb-oidc

2023-04-05 14:57:15 +02:00 · 2023-04-05 14:57:15 +02:00 · 5187927b61
parent 7feec0969b
commit 5187927b61
3 changed files with 43 additions and 1 deletions
--- a/handlers/main.yml
+++ b/handlers/main.yml
@ -47,6 +47,12 @@
    state: restarted
  become: true

+- name: Restart cadoles-pod-goweb-oidc-v1
+  service:
+    name: cadoles-pod-goweb-oidc-v1
+    state: restarted
+  become: true
+
 - name: Reload hydra clients
  ansible.builtin.include_tasks:
-    file: hydra-reload-clients.yml
+    file: hydra-reload-clients.yml
--- a/tasks/goweb-oidc.yml
+++ b/tasks/goweb-oidc.yml
@ -0,0 +1,22 @@
+---
+
+- name: Install cadoles-pod-goweb-oidc-v1 package
+  ansible.builtin.apt:
+    name:
+      - "cadoles-pod-goweb-oidc-v1={{ cadoles_pod_goweb_oidc_v1_package_version }}"
+    update_cache: yes
+    state: present
+  become: true
+
+- name: Configure cadoles-pod-goweb-oidc-v1
+  template:
+    src: "{{ item.src }}"
+    dest: "{{ item.dest }}"
+    mode: "{{ item.mode }}"
+  with_items:
+    - src:  cadoles-pod-goweb-oidc-v1.conf.j2
+      dest: /etc/cadoles-pod-goweb-oidc-v1.conf
+      mode: u=rw,g=r,o=r
+  notify:
+    - Restart cadoles-pod-goweb-oidc-v1
+  become: true
--- a/templates/cadoles-pod-goweb-oidc-v1.conf.j2
+++ b/templates/cadoles-pod-goweb-oidc-v1.conf.j2
@ -0,0 +1,14 @@
+# {{ ansible_managed }}
+PODMAN_ARGS="\
+    --name 'cadoles-pod-goweb-oidc-demo-v1' \
+    --replace \
+    -p 80:3002 \
+    -e LOG_LEVEL=0 \
+    -e HTTP_ADDRESS=0.0.0.0:3002 \
+    -e OIDC_CLIENT_ID=mse-demo \
+    -e OIDC_CLIENT_SECRET=mse-demo \
+    -e OIDC_ISSUER_URL=https://msedev.crous-toulouse.fr/auth/ \
+    -e OIDC_REDIRECT_URL=https://auth.lescrous.fr/oauth2/callback \
+    -e OIDC_POST_LOGOUT_REDIRECT_URL=https://auth.lescrous.fr \
+    -e OIDC_ACR_VALUES= \
+"