mirror of
https://github.com/rocky-linux/infrastructure
synced 2024-11-28 16:06:28 +00:00
add support for member managers
This commit is contained in:
parent
80a4efd099
commit
8686535611
@ -20,17 +20,19 @@
|
|||||||
- ipaadmin_password | mandatory
|
- ipaadmin_password | mandatory
|
||||||
- ipa_group | mandatory
|
- ipa_group | mandatory
|
||||||
- ipa_description | mandatory
|
- ipa_description | mandatory
|
||||||
- ipa_posix | mandatory
|
- ipa_nonposix | mandatory
|
||||||
success_msg: "Required variables provided"
|
success_msg: "Required variables provided"
|
||||||
fail_msg: "We are missing group information or ipa admin password"
|
fail_msg: "We are missing group information or ipa admin password"
|
||||||
|
|
||||||
- name: "Creating Mandatory Groups"
|
- name: "Creating New Group"
|
||||||
freeipa.ansible_freeipa.ipagroup:
|
freeipa.ansible_freeipa.ipagroup:
|
||||||
ipaadmin_principal: "{{ ipa_admin }}"
|
ipaadmin_principal: "{{ ipa_admin }}"
|
||||||
ipaadmin_password: "{{ ipaadmin_password }}"
|
ipaadmin_password: "{{ ipaadmin_password }}"
|
||||||
name: "{{ ipa_group }}"
|
name: "{{ ipa_group }}"
|
||||||
description: "{{ ipa_description }}"
|
description: "{{ ipa_description }}"
|
||||||
nonposix: "{{ ipa_posix }}"
|
nonposix: "{{ ipa_nonposix }}"
|
||||||
|
membermanager_user: "{{ ipa_group_manager_user | default(omit) }}"
|
||||||
|
membermanager_group: "{{ ipa_group_manager_group | default(omit) }}"
|
||||||
tags:
|
tags:
|
||||||
- groups
|
- groups
|
||||||
|
|
||||||
|
@ -7,6 +7,8 @@
|
|||||||
description: "{{ item.description }}"
|
description: "{{ item.description }}"
|
||||||
nonposix: false
|
nonposix: false
|
||||||
user: "{{ item.user | default(none) }}"
|
user: "{{ item.user | default(none) }}"
|
||||||
|
membermanager_user: "{{ item.managers_users | default(omit) }}"
|
||||||
|
membermanager_group: "{{ item.managers_groups | default(omit) }}"
|
||||||
loop: "{{ ipagroups }}"
|
loop: "{{ ipagroups }}"
|
||||||
tags:
|
tags:
|
||||||
- groups
|
- groups
|
||||||
|
2
ansible/playbooks/vars/ipa/agreements.yml
Normal file
2
ansible/playbooks/vars/ipa/agreements.yml
Normal file
@ -0,0 +1,2 @@
|
|||||||
|
---
|
||||||
|
# Vars for Agreements for the Rocky Linux Project
|
@ -52,6 +52,13 @@ ipagroups:
|
|||||||
- tg
|
- tg
|
||||||
- hbjy
|
- hbjy
|
||||||
- rockyautomation
|
- rockyautomation
|
||||||
|
managers_users:
|
||||||
|
- label
|
||||||
|
- neil
|
||||||
|
- rlh
|
||||||
|
- rfelsburg
|
||||||
|
- tg
|
||||||
|
- hbjy
|
||||||
- group: services
|
- group: services
|
||||||
description: Rocky Linux Service Accounts
|
description: Rocky Linux Service Accounts
|
||||||
user:
|
user:
|
||||||
@ -65,9 +72,13 @@ ipagroups:
|
|||||||
description: Rocky Linux Identity Management
|
description: Rocky Linux Identity Management
|
||||||
user:
|
user:
|
||||||
- label
|
- label
|
||||||
|
managers_users:
|
||||||
|
- label
|
||||||
- group: releng
|
- group: releng
|
||||||
description: Rocky Linux Release Engineering
|
description: Rocky Linux Release Engineering
|
||||||
user:
|
user:
|
||||||
- label
|
- label
|
||||||
|
managers_users:
|
||||||
|
- label
|
||||||
- group: mq_pub_readonly
|
- group: mq_pub_readonly
|
||||||
description: RabbitMQ ReadOnly
|
description: RabbitMQ ReadOnly
|
||||||
|
Loading…
Reference in New Issue
Block a user