Update Ipsilon configuration for OIDC

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
2016-10-31 14:27:11 +00:00 · 2016-10-31 14:27:11 +00:00 · e7c1a41072
commit e7c1a41072
parent ff7e54598d
1 changed files with 21 additions and 0 deletions
--- a/roles/ipsilon/tasks/main.yml
+++ b/roles/ipsilon/tasks/main.yml
@ -46,6 +46,17 @@
  notify:
  - restart apache

+- name: copy ipsilon OIDC client config
+  copy: src={{ private }}/files/ipsilon/openidc.{{env}}.static dest=/etc/ipsilon/openidc.static.cfg
+            owner=ipsilon group=ipsilon mode=0600
+  with_items:
+  - ipsilon
+  - configuration
+  tags:
+  - config
+  notify:
+  - restart apache
+
 - name: copy ipsilon httpd config
  copy: src=ipsilon-httpd.conf
        dest=/etc/httpd/conf.d/ipsilon.conf
@ -79,6 +90,16 @@
        owner=ipsilon group=ipsilon mode=0644
  when: env == "staging"

+- name: copy OIDC private key
+  copy: src={{ private }}/files/ipsilon/openidc.key dest=/etc/ipsilon/openidc.key
+        owner=ipsilon group=ipsilon mode=0600
+  when: env != "staging"
+
+- name: copy OIDC STG private key
+  copy: src={{ private }}/files/ipsilon/openidc.stg.key dest=/etc/ipsilon/openidc.stg.key
+        owner=ipsilon group=ipsilon mode=0600
+  when: env == "staging"
+
 - name: create SAML2 dir
  file: path=/etc/ipsilon/saml2 state=directory mode=0700
        owner=ipsilon group=ipsilon setype=httpd_var_lib_t