jonathan/infra
1
0
Fork 0
Code Actions Activity

old schoolg

Browse Source
This commit is contained in:
Jonathan DeMasi
2026-01-24 19:46:05 -07:00
parent ecb66510d4
commit 0deeeb93a1
1 changed files with 18 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
ansible/roles/openldap_server/tasks/schemas.yaml
View File

@@ -24,14 +24,30 @@
args: args:
creates: /etc/openldap/schema/.nis_loaded creates: /etc/openldap/schema/.nis_loaded
- name: Copy sudo schema into place
copy:
src: files/sudo.ldif
dest: /etc/openldap/schema/sudo.ldif
owner: ldap
group: ldap
mode: '0600'
- name: Copy openssh schema into place
copy:
src: files/openssh.ldif
dest: /etc/openldap/schema/openssh.ldif
owner: ldap
group: ldap
mode: '0600'
- name: Ensure custom LDAP schemas (sudo + openssh) are loaded - name: Ensure custom LDAP schemas (sudo + openssh) are loaded
ansible.builtin.command: > ansible.builtin.command: >
ldapadd -Y EXTERNAL -H ldapi:/// -f {{ item.file }} ldapadd -Y EXTERNAL -H ldapi:/// -f {{ item.file }}
args: args:
creates: "/etc/openldap/schema/.{{ item.name }}_loaded" creates: "/etc/openldap/schema/.{{ item.name }}_loaded"
loop: loop:
- { name: "sudo", file: "{{ playbook_dir }}/roles/openldap_server/tasks/files/sudo.ldif" } - { name: "sudo", file: "/etc/openldap/schema/sudo.ldif" }
- { name: "openssh", file: "{{ playbook_dir }}/roles/openldap_server/tasks/files/openssh.ldif" } - { name: "openssh", file: "/etc/openldap/schema/openssh.ldif" }
loop_control: loop_control:
label: "{{ item.name }}" label: "{{ item.name }}"