From e7c1a410721623e605a6fa3b22bc03e521e62101 Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <puiterwijk@redhat.com>
Date: Mon, 31 Oct 2016 14:27:11 +0000
Subject: [PATCH] Update Ipsilon configuration for OIDC

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
---
 roles/ipsilon/tasks/main.yml | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/roles/ipsilon/tasks/main.yml b/roles/ipsilon/tasks/main.yml
index 5b0c092b16..85d890f6f0 100644
--- a/roles/ipsilon/tasks/main.yml
+++ b/roles/ipsilon/tasks/main.yml
@@ -46,6 +46,17 @@
   notify:
   - restart apache
 
+- name: copy ipsilon OIDC client config
+  copy: src={{ private }}/files/ipsilon/openidc.{{env}}.static dest=/etc/ipsilon/openidc.static.cfg
+            owner=ipsilon group=ipsilon mode=0600
+  with_items:
+  - ipsilon
+  - configuration
+  tags:
+  - config
+  notify:
+  - restart apache
+
 - name: copy ipsilon httpd config
   copy: src=ipsilon-httpd.conf
         dest=/etc/httpd/conf.d/ipsilon.conf
@@ -79,6 +90,16 @@
         owner=ipsilon group=ipsilon mode=0644
   when: env == "staging"
 
+- name: copy OIDC private key
+  copy: src={{ private }}/files/ipsilon/openidc.key dest=/etc/ipsilon/openidc.key
+        owner=ipsilon group=ipsilon mode=0600
+  when: env != "staging"
+
+- name: copy OIDC STG private key
+  copy: src={{ private }}/files/ipsilon/openidc.stg.key dest=/etc/ipsilon/openidc.stg.key
+        owner=ipsilon group=ipsilon mode=0600
+  when: env == "staging"
+
 - name: create SAML2 dir
   file: path=/etc/ipsilon/saml2 state=directory mode=0700
         owner=ipsilon group=ipsilon setype=httpd_var_lib_t