ansible-role-sso/tasks/hydra-saml.yml

61 lines
1.7 KiB
YAML

---
- name: Install cadoles-pod-hydra-remote-user-v1 package
ansible.builtin.apt:
name:
- cadoles-pod-shibboleth-sp-v3
- cadoles-pod-hydra-remote-user-v1
update_cache: yes
state: latest
become: true
- name: Configure cadoles-pod-hydra-remote-user-v1
template:
src: "{{ item.src }}"
dest: "{{ item.dest }}"
with_items:
- src: cadoles-pod-hydra-remote-user-v1.conf.j2
dest: /etc/cadoles-pod-hydra-remote-user-v1.conf
- src: hydra-remote-user.yml.j2
dest: /etc/hydra-remote-user/conf.d/remote-user.yml
notify:
- Restart cadoles-pod-hydra-remote-user-v1
become: true
- name: Configure cadoles-pod-hydra-remote-user-v1 (2)
ansible.builtin.copy:
src: hydra-remote-user-v1-apache.conf
dest: /etc/hydra-remote-user/apache.conf
notify:
- Restart cadoles-pod-hydra-remote-user-v1
become: true
- name: Create cadoles-pod-shibboleth-sp-v3 expected directories
file:
name: "{{ item }}"
state: directory
with_items:
- /etc/shibboleth
- /etc/shibboleth/credentials
become: true
- name: Configure cadoles-pod-shibboleth-sp-v3
ansible.builtin.template:
src: "{{ item.src }}"
dest: "{{ item.dest }}"
with_items:
- src: cadoles-pod-shibboleth-sp-v3.conf.j2
dest: /etc/cadoles-pod-shibboleth-sp-v3.conf
- src: shibboleth-attribute-map.inc.xml.j2
dest: /etc/shibboleth/attribute-map.inc.xml
notify:
- Restart cadoles-pod-shibboleth-sp-v3
become: true
- name: Configure cadoles-pod-shibboleth-sp-v3 (2)
ansible.builtin.copy:
src: shibboleth2.xml.gotmpl
dest: /etc/shibboleth/shibboleth2.xml.gotmpl
notify:
- Restart cadoles-pod-shibboleth-sp-v3
become: true