Compare commits

..

No commits in common. "19bc989486ab097a7400e2c1051e38f96d5ed687" and "2bbef92ed9a32bb7c7efeb5d26b0820d16c5e4b9" have entirely different histories.

1 changed files with 8 additions and 15 deletions

View File

@ -9,22 +9,15 @@
template: template:
src: hydra-client.json.j2 src: hydra-client.json.j2
dest: "/etc/hydra/clients.d/{{ item.client_id }}.json" dest: "/etc/hydra/clients.d/{{ item.client_id }}.json"
- name: Update client
command: >
podman exec -t cadoles-pod-hydra-v1 /bin/sh -c "hydra clients update '{{ client_id }}'
--endpoint http://127.0.0.1:4445
--name '{{ item.client_name | default(item.client_id) }}'
--secret '{{ item.client_secret | default(lookup('ansible.builtin.password', '/dev/null chars=ascii_lowercase,digits length=32 seed=inventory_hostname')) }}'
--grant-types '{{ ','.join(item.grant_types) if "grant_types" in item else "authorization_code, refresh_token" }}'
--post-logout-callbacks '{{ ','.join(item.post_logout_redirect_uris) if "post_logout_redirect_uris" in item else "" }}'
--callbacks '{{ ','.join(item.redirect_uris) }}'
--response-types '{{ ','.join(item.response_types) if "response_types" in item else "code" }}'
--logo-uri '{{ item.logo_uri if "logo_uri" in item else "" }}'
--scope '{{ ','.join(item.scope) if "scope" in item else "openid profile email webhook" }}'
--token-endpoint-auth-method '{{ item.token_endpoint_auth_method if "token_endpoint_auth_method" in item else "client_secret_post" }}'
"
with_items: "{{ hydra_clients }}" with_items: "{{ hydra_clients }}"
when: item.client_id == client_id when: item.client_id == client_id
become: true become: true
- name: Delete client
command: podman exec -t cadoles-pod-hydra-v1 /bin/sh -c "hydra clients delete {{ client_id }} --endpoint http://127.0.0.1:4445"
ignore_errors: true
become: true
- name: Import client
command: podman exec -t cadoles-pod-hydra-v1 /bin/sh -c "hydra clients import /etc/hydra/clients.d/{{ client_id }}.json --endpoint http://127.0.0.1:4445"
become: true