File tree Expand file tree Collapse file tree 1 file changed +17
-0
lines changed
ansible/roles/freeipa/tasks Expand file tree Collapse file tree 1 file changed +17
-0
lines changed Original file line number Diff line number Diff line change 11
11
that : _freeipa_validate_hostname.stdout | split('.') | length >= 3
12
12
fail_msg : " freeipa_server hostname '{{ _freeipa_validate_hostname.stdout }}' is not fully-qualified (a.b.c)"
13
13
14
+ - name : Check for virtual servers in httpd configuration of freeipa_server
15
+ # e.g. fatimage with OOD config; community.general.ipa_host fails with "401 Unauthorized: No session cookie found"
16
+ # https://lists.fedoraproject.org/archives/list/[email protected] /message/7RH7XDFR35KDPYJ7AQCQI2H2EOWIZCWA/
17
+ find :
18
+ path : /etc/httpd/conf.d/
19
+ contains : ' <VirtualHost'
20
+ read_whole_file : false
21
+ pattern : ' *.conf'
22
+ register : _find_httpd_conf
23
+
24
+ - name : Assert no other name-based virtual servers on freeipa_server
25
+ assert :
26
+ that : item.path == '/etc/httpd/conf.d/ssl.conf' # this one is OK
27
+ fail_msg : " freeipa_server host must not have other virtual servers defined: see {{ item.path }}"
28
+ loop : " {{ _find_httpd_conf.files }}"
29
+
14
30
- name : Install freeipa server packages
15
31
dnf :
16
32
name : ' @idm:DL1/dns'
34
50
--no-ntp
35
51
--unattended
36
52
--no-ui-redirect
53
+ # TODO: add no_log here as password exposed
37
54
38
55
register : _ipa_server_install
39
56
changed_when : _ipa_server_install.rc == 0
You can’t perform that action at this time.
0 commit comments