File tree Expand file tree Collapse file tree 1 file changed +14
-11
lines changed
ansible/roles/freeipa/tasks Expand file tree Collapse file tree 1 file changed +14
-11
lines changed Original file line number Diff line number Diff line change 3232
3333name : Disable redirects to hard-coded domain
3434 # see https://pagure.io/freeipa/issue/7479
35- replace : path=/etc/httpd/conf.d/ipa-rewrite.conf regexp='{{ item.regexp }}' replace='{{ item.replace }}'
36- with_items :
35+ replace :
36+ path : /etc/httpd/conf.d/ipa-rewrite.conf
37+ regexp : ' {{ item.regexp }}'
38+ replace : ' {{ item.replace }}'
39+ loop :
3740 # RewriteRule ^/$ https://${FQDN}/ipa/ui [L,NC,R=301] - irrelevant if using --no-ui-redirect
3841 - regexp : ' ^(RewriteRule \^/\$) (https://.*)(/ipa/ui.*)$'
3942 replace : ' \1 \3'
4750 replace : ' #\1'
4851 register : _replace_freeipa_rewrites
4952
50- - name : Deactivate HTTP RefererError
51- replace :
52- path : ' /usr/lib/python3.6/site-packages/ipaserver/rpcserver.py '
53- regexp : ' {{ item }} '
54- replace : ' \1pass # \2 '
55- with_items :
56- - " ^([ ]*)(return self.marshal \\ (result, RefererError \\ (referer) "
57- register : _replace_rpcserver_referrer
53+ - name : Get freeipa server facts
54+ setup :
55+
56+ - name : Fix HTTP_REFERER
57+ ansible.builtin.lineinfile :
58+ path : /etc/httpd/conf.d/ipa-rewrite.conf
59+ line : " RequestHeader set Referer https://{{ ansible_nodename }}/ipa/ui "
60+ register : _http_referer
5861
5962- name : Reload apache configuration
6063 service :
6164 name : httpd
6265 state : reloaded
63- when : _replace_freeipa_rewrites.changed or _replace_rpcserver_referrer .changed
66+ when : _replace_freeipa_rewrites.changed or _http_referer .changed
You can’t perform that action at this time.
0 commit comments