From 0a9ea2778c0f9586ceffe3a7ac582340a197a3bf Mon Sep 17 00:00:00 2001 From: nazunalika Date: Sat, 23 Jan 2021 19:45:58 -0700 Subject: [PATCH] need a rehash --- ansible/playbooks/tasks/gitlab-reconfigure.yml | 4 ++++ ansible/playbooks/vars/gitlab.yml | 2 +- 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/ansible/playbooks/tasks/gitlab-reconfigure.yml b/ansible/playbooks/tasks/gitlab-reconfigure.yml index c5a4a96..0ec0cf1 100644 --- a/ansible/playbooks/tasks/gitlab-reconfigure.yml +++ b/ansible/playbooks/tasks/gitlab-reconfigure.yml @@ -50,6 +50,10 @@ group: root state: link +- name: Symlink the hash + command: "openssl rehash /etc/gitlab/trusted-certs" + changed_when: "1 != 1" + - name: Turn on necessary SELinux booleans ansible.posix.seboolean: name: "{{ item }}" diff --git a/ansible/playbooks/vars/gitlab.yml b/ansible/playbooks/vars/gitlab.yml index dc6e7c1..443b1ae 100644 --- a/ansible/playbooks/vars/gitlab.yml +++ b/ansible/playbooks/vars/gitlab.yml @@ -29,7 +29,7 @@ gitlab_ldap_bind_dn: "{{ rocky_ldap_bind_dn }}" gitlab_ldap_password: "{{ rocky_ldap_bind_pw }}" gitlab_ldap_base: "{{ rocky_ldap_user_basedn }}" gitlab_ldap_group_dn: "{{ rocky_ldap_group_basedn }}" -gitlab_ldap_admin_group: "cn=gitadm,cn=groups,cn=accounts,dc=rockylinux,dc=org" +gitlab_ldap_admin_group: "gitadm" gitlab_ldap_user_filter: "(&(objectClass=posixAccount)(memberOf=cn=gitusers,cn=groups,cn=accounts,dc=rockylinux,dc=org))" gitlab_time_zone: "UTC"