diff options
| author |  Jonas Gunz <himself@jonasgunz.de>
| 2021-10-09 19:04:39 +0200 |
|---|---|---|
| committer | Jonas Gunz <himself@jonasgunz.de>
| 2021-10-09 19:04:39 +0200 |
| commit | e920a10a5c15b53683ee5caff122ec9378032cd5 (patch) | |
| tree | c51dd14cfad71c8c543c8ab2f43b54c227507ef9 /roles/gitea/tasks/ldap.yml | |
| parent | e11720ab7511e32c8e9e62b94f6578703eac6c42 (diff) | |
| download | ansible_collection-e920a10a5c15b53683ee5caff122ec9378032cd5.tar.gz | |
gitea: WIP
Diffstat (limited to 'roles/gitea/tasks/ldap.yml')
| -rw-r--r-- | roles/gitea/tasks/ldap.yml | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/roles/gitea/tasks/ldap.yml b/roles/gitea/tasks/ldap.yml new file mode 100644 index 0000000..75a561f --- /dev/null +++ b/roles/gitea/tasks/ldap.yml @@ -0,0 +1,28 @@ +--- +- name: Check if LDAP is installed + command: gitea --config /etc/gitea/app.ini --work-path /var/lib/gitea admin auth list + become_user: git + become: yes + register: check_ldap + +- name: Configure LDAP Login provider + command: + cmd: >- + gitea --config /etc/gitea/app.ini --work-path /var/lib/gitea admin auth add-ldap + --name ldap-prod + --security-protocol "{{ gitea.ldap.security }}" + --host "{{ gitea.ldap.host }}" + --port "{{ gitea.ldap.port }}" + --bind-dn "{{ gitea.ldap.base_dn }}" + --bind-password "{{ gitea.ldap.bind_pw }}" + --user-search-base "{{ gitea.ldap.user_search_base }}" + --user-filter "{{ gitea.ldap.user_filter }}" + --admin-filter "{{ gitea.ldap.admin_filter }}" + --username-attribute "{{ gitea.ldap.username_attribute }}" + --firstname-attribute "{{ gitea.ldap.firstname_attribute }}" + --surname-attribute "{{ gitea.ldap.surname_attribute }}" + --email-attribute "{{ gitea.ldap.email_attribute }}" + --synchronize-users + become_user: git + become: yes + when: not check_ldap.stdout | regex_search("ldap-prod") |