WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-06-14 22:36:09 +08:00
Code Issues Packages Projects Releases Wiki Activity

beaker/server: copy idp-metadata.xml from its canonical location

Browse Source 
Puiterwijk explains that we want to have a single location for storing
idp-metadata.xml, instead of copying it around into each role, so that
there is only one place to update it when keys need to be rolled over.
This commit is contained in:
Dan Callaghan
2016-04-14 17:26:40 +10:00
parent 4a921a129e
commit a2db32b857
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
roles/beaker/server/tasks/main.yml
View File

@@ -28,13 +28,20 @@
tags:
- beaker-server
- name: copy SAML identity provider metadata
copy: >
src="{{ private }}/files/saml2/idp-{{env}}.xml"
dest="/etc/httpd/saml2/{{ beaker_server_cname }}/idp-metadata.xml"
owner="apache" group="apache" mode=0600
tags:
- beaker-server
- name: copy SAML files
copy: >
src="{{ item }}" dest="/etc/httpd/{{ item }}"
owner="apache" group="apache" mode=0644
with_items:
- "saml2/{{ beaker_server_cname }}/metadata.xml"
- "saml2/{{ beaker_server_cname }}/idp-metadata.xml"
- "saml2/{{ beaker_server_cname }}/certificate.pem"
tags:
- beaker-server