-
Notifications
You must be signed in to change notification settings - Fork 1
/
init-oelabox-koji-keytabs.yml
47 lines (42 loc) · 1.14 KB
/
init-oelabox-koji-keytabs.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
---
- name: Create Koji keytabs
hosts: kojihub
become: yes
vars:
ipa_admin: admin
host: koji.oelabox.local
ipa_server: ipa.oelabox.local
ipa_owner: root
ipa_keytab_file_perms: '0644'
keytabs:
- keytab:
service: compile/koji.oelabox.local
path: /etc/kojid.keytab
- keytab:
service: HTTP/koji.oelabox.local
path: /etc/keytabs/koji-web.keytab
- keytab:
service: kojira/koji.oelabox.local
path: /etc/keytabs/kojira.keytab
- keytab:
service: koji-gc/koji.oelabox.local
path: /etc/keytabs/koji-gc.keytab
tasks:
- name: '/etc/keytabs'
ansible.builtin.file:
path: /etc/keytabs
state: directory
owner: root
group: root
mode: '0755'
- name: '/etc/keytabs/host.keytab'
ansible.builtin.file:
src: /etc/krb5.keytab
dest: /etc/keytabs/host.keytab
state: link
- name: Fetch Keytabs
include_tasks: tasks/oelabox-ipa/import-ipakeytab.yml
vars:
ipa_service: '{{ item.service }}'
ipa_keytab_fullpath: '{{ item.path }}'
loop: '{{ keytabs }}'