mirror of
https://github.com/freeipa/ansible-freeipa.git
synced 2026-03-26 21:33:05 +00:00
Fix ansible-lint error 502 (unnamed-task) for example playbooks.
This patch adds 'name' to all example playbook tasks that did not have it, fixing ansible-lint's error 'unnamed-task'.
This commit is contained in:
Rafael Guterres Jeffman
@@ -10,5 +10,6 @@
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
register: serverconfig
|
||||
|
||||
- debug:
|
||||
- name: Display current configuration.
|
||||
debug:
|
||||
msg: "{{ serverconfig }}"
|
||||
|
||||
@@ -5,7 +5,7 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure DNS zone is present
|
||||
- ipadnsforwardzone:
|
||||
- name: Ensure DNS forward zone is absent
|
||||
ipadnsforwardzone:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
state: absent
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure DNS zone is present
|
||||
- ipadnsforwardzone:
|
||||
- name: Ensure DNS forward zone is present
|
||||
ipadnsforwardzone:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: example.com
|
||||
forwarders:
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure DNS zone is present
|
||||
- ipadnsforwardzone:
|
||||
- name: Ensure DNS forward zone is present with forward port
|
||||
ipadnsforwardzone:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: example.com
|
||||
forwarders:
|
||||
|
||||
@@ -1,12 +1,11 @@
|
||||
---
|
||||
- name: Test PTR Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure a PTR record is present
|
||||
- name: Ensure that 'host04' has A and AAAA records.
|
||||
- name: Ensure that 'host04' A and AAAA records are absent.
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
zone_name: ipatest.local
|
||||
|
||||
@@ -1,12 +1,11 @@
|
||||
---
|
||||
- name: Test PTR Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure a PTR record is present
|
||||
- name: Ensure that 'host04' has A and AAAA records.
|
||||
- name: Ensure that 'host04' A and AAAA records are present.
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
zone_name: ipatest.local
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test CNAME Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure that 'host04' has CNAME, with cname_hostname
|
||||
- ipadnsrecord:
|
||||
- name: Ensure that 'host04' has CNAME, with cname_hostname, is absent
|
||||
ipadnsrecord:
|
||||
zone_name: example.com
|
||||
name: host04
|
||||
cname_hostname: host04.example.com
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test CNAME Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure that 'host04' has CNAME, with cname_hostname
|
||||
- ipadnsrecord:
|
||||
- name: Ensure that 'host04' has CNAME, with cname_hostname, is present
|
||||
ipadnsrecord:
|
||||
zone_name: example.com
|
||||
name: host04
|
||||
cname_hostname: host04.example.com
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Ensure MX Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure an MX record is absent
|
||||
- ipadnsrecord:
|
||||
- name: Ensure an MX record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: '@'
|
||||
record_type: 'MX'
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test PTR Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure a PTR record is present
|
||||
- ipadnsrecord:
|
||||
- name: Ensure a PTR record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: 5
|
||||
record_type: 'PTR'
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test SRV Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure a SRV record is present
|
||||
- ipadnsrecord:
|
||||
- name: Ensure a SRV record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: _kerberos._udp.example.com
|
||||
record_type: 'SRV'
|
||||
|
||||
@@ -1,13 +1,13 @@
|
||||
---
|
||||
- name: Test SSHFP Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure a SSHFP record is present
|
||||
# SSHFP fingerprint generated with `ssh-keygen -r host04.testzone.local`
|
||||
- ipadnsrecord:
|
||||
- name: Ensure a SSHFP record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
zone_name: example.com
|
||||
name: host04
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test SSHFP Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure a SSHFP record is present
|
||||
- ipadnsrecord:
|
||||
- name: Ensure a TLSA record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
zone_name: example.com
|
||||
name: host04
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test TXT Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure a TXT record is absent
|
||||
- ipadnsrecord:
|
||||
- name: Ensure a TXT record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: _kerberos
|
||||
record_type: 'TXT'
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test URI Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure a URI record is absent
|
||||
- ipadnsrecord:
|
||||
- name: Ensure a URI record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: _ftp._tcp
|
||||
record_type: 'URI'
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test DNS Record is absent.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure that dns record is absent
|
||||
- ipadnsrecord:
|
||||
- name: Ensure that dns record is absent
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: host01
|
||||
zone_name: example.com
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test DNS Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure that dns record is present
|
||||
- ipadnsrecord:
|
||||
- name: Ensure that dns record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: host01
|
||||
zone_name: example.com
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test DNS Record is present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure that dns record is present
|
||||
- ipadnsrecord:
|
||||
- name: Ensure that dns record is present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: host01
|
||||
zone_name: example.com
|
||||
|
||||
@@ -1,12 +1,12 @@
|
||||
---
|
||||
- name: Test multiple DNS Records are present.
|
||||
- name: Playbook to manage DNS records.
|
||||
hosts: ipaserver
|
||||
become: true
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure that multiple dns records are present
|
||||
- ipadnsrecord:
|
||||
- name: Ensure that multiple dns records are present
|
||||
ipadnsrecord:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
records:
|
||||
- name: host01
|
||||
|
||||
@@ -4,7 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
- ipahost:
|
||||
- name: Ensure host member managedby_host 'server.example.com' is absent
|
||||
ipahost:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: host01.example.com
|
||||
managedby_host: server.example.com
|
||||
|
||||
@@ -4,7 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
- ipahost:
|
||||
- name: Ensure host member managedby_host 'server.example.com' is present
|
||||
ipahost:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: host01.example.com
|
||||
managedby_host: server.example.com
|
||||
|
||||
@@ -4,7 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
- ipahost:
|
||||
- name: Ensure host is present with managedby_host attribute.
|
||||
ipahost:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: host01.example.com
|
||||
managedby_host: server.example.com
|
||||
|
||||
@@ -4,7 +4,7 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
- name: Ensure hosts manadegby_host is absent.
|
||||
- name: Ensure hosts manadegby_host is present.
|
||||
ipahost:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
hosts:
|
||||
|
||||
@@ -4,7 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
- ipahost:
|
||||
- name: Ensure hosts are present with managedby_host attribute.
|
||||
ipahost:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
hosts:
|
||||
- name: host01.example.com
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure host-group databases is present
|
||||
- ipahostgroup:
|
||||
- name: Ensure host-group databases is absent
|
||||
ipahostgroup:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: databases
|
||||
state: absent
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure host-group databases is present
|
||||
- ipahostgroup:
|
||||
- name: Ensure host-group databases is present
|
||||
ipahostgroup:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: databases
|
||||
host:
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure hosts and hostgroups are present in existing databases hostgroup
|
||||
- ipahostgroup:
|
||||
- name: Ensure hosts and hostgroups are absent in existing databases hostgroup
|
||||
ipahostgroup:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: databases
|
||||
host:
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure hosts and hostgroups are present in existing databases hostgroup
|
||||
- ipahostgroup:
|
||||
- name: Ensure hosts and hostgroups are present in existing databases hostgroup
|
||||
ipahostgroup:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: databases
|
||||
host:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role is absent.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
state: absent
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role is present.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
description: A role in IPA.
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'group' is absent.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
group:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'group' is present.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
group:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'host' is absent.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
host:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'host' is present.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
host:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'hostgroup' is absent.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
hostgroup:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'hostgroup' is present.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
hostgroup:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'privilege' is absent.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
privilege:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'privilege' is present.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
privilege:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'service' is absent.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrole
|
||||
service:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'service' is present.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
service:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'user' is absent.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
user:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role member 'user' is present.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
user:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role members are absent.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
user:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Ensure role members are present.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
user:
|
||||
@@ -21,3 +22,4 @@
|
||||
- User Administrators
|
||||
service:
|
||||
- service01
|
||||
action: member
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- iparole:
|
||||
- name: Rename role.
|
||||
iparole:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: somerole
|
||||
rename: anotherrole
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure management host is absent.
|
||||
- ipaservice:
|
||||
- name: Ensure management host is absent.
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.example.com
|
||||
host: "{{ groups.ipaserver[0] }}"
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure management host is present.
|
||||
- ipaservice:
|
||||
- name: Ensure management host is present.
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.example.com
|
||||
host: "{{ groups.ipaserver[0] }}"
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure service is absent
|
||||
- ipaservice:
|
||||
- name: Ensure service is absent
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.example.com
|
||||
state: absent
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure service is disabled
|
||||
- ipaservice:
|
||||
- name: Ensure service is disabled
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.example.com
|
||||
state: disabled
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure service is present
|
||||
- ipaservice:
|
||||
- name: Ensure service is present
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.example.com
|
||||
certificate:
|
||||
|
||||
@@ -5,9 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure service is present
|
||||
- ipaservice:
|
||||
- name: Ensure service is present
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/ihavenodns.info
|
||||
force: yes
|
||||
# state: absent
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure service is present
|
||||
- ipaservice:
|
||||
- name: Ensure service is present
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.ansible.com
|
||||
skip_host_check: yes
|
||||
|
||||
@@ -5,7 +5,7 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure service is present
|
||||
- ipaservice:
|
||||
- name: Ensure service is present
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.example.com
|
||||
|
||||
@@ -5,11 +5,10 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure service certificate is absent
|
||||
- ipaservice:
|
||||
- name: Ensure service certificate is absent
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.example.com
|
||||
|
||||
certificate:
|
||||
- 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
|
||||
action: member
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure service certificate is present
|
||||
- ipaservice:
|
||||
- name: Ensure service certificate is present
|
||||
ipaservice:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: HTTP/www.example.com
|
||||
certificate:
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudo command is absent
|
||||
- ipasudocmd:
|
||||
- name: Ensure sudo command is absent
|
||||
ipasudocmd:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: /usr/bin/su
|
||||
state: absent
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudo command is present
|
||||
- ipasudocmd:
|
||||
- name: Ensure sudo command is present
|
||||
ipasudocmd:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: /usr/bin/su
|
||||
state: present
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudocmds are absent in sudocmdgroup
|
||||
- ipasudocmdgroup:
|
||||
- name: Ensure sudocmds are absent in sudocmdgroup
|
||||
ipasudocmdgroup:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: network
|
||||
sudocmd:
|
||||
|
||||
@@ -4,16 +4,16 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudo commands are present
|
||||
- ipasudocmd:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name:
|
||||
- /usr/sbin/ifconfig
|
||||
- /usr/sbin/iwlist
|
||||
state: present
|
||||
- name: Ensure sudo commands are present
|
||||
ipasudocmd:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name:
|
||||
- /usr/sbin/ifconfig
|
||||
- /usr/sbin/iwlist
|
||||
state: present
|
||||
|
||||
# Ensure sudo commands are present in existing sudocmdgroup
|
||||
- ipasudocmdgroup:
|
||||
- name: Ensure sudocmdgroup is present with sudo commands.
|
||||
ipasudocmdgroup:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: network
|
||||
sudocmd:
|
||||
|
||||
@@ -4,9 +4,9 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudocmdgroup is absent
|
||||
- ipasudocmdgroup:
|
||||
ipaadmin_password: pass1234
|
||||
name: network
|
||||
state: absent
|
||||
action: sudocmdgroup
|
||||
- name: Ensure sudocmdgroup is absent
|
||||
ipasudocmdgroup:
|
||||
ipaadmin_password: pass1234
|
||||
name: network
|
||||
state: absent
|
||||
action: sudocmdgroup
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudocmdgroup sudocmds are present
|
||||
- ipasudocmdgroup:
|
||||
- name: Ensure sudocmdgroup sudocmds are present
|
||||
ipasudocmdgroup:
|
||||
ipaadmin_password: pass1234
|
||||
name: network
|
||||
description: Group of important commands.
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure sudooption is absent in sudorule
|
||||
- ipasudorule:
|
||||
- name: Ensure sudooption '!root' is absent in sudorule
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
sudooption: "!root"
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure sudooption is present in sudorule
|
||||
- ipasudorule:
|
||||
- name: Ensure sudooption '!root' is present in sudorule
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
sudooption: "!root"
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure host server is absent in Sudo Rule
|
||||
- ipasudorule:
|
||||
- name: Ensure host 'server' is absent in sudorule
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
host: server
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure host server is present in Sudo Rule
|
||||
- ipasudorule:
|
||||
- name: Ensure host 'server' is present in sudorule
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
host: server
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure hostgroup cluster is absent in Sudo Rule
|
||||
- ipasudorule:
|
||||
- name: Ensure hostgroup 'cluster' is absent in sudorule
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
hostgroup: cluster
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure hostgrep cluster is present in Sudo Rule
|
||||
- ipasudorule:
|
||||
- name: Ensure hostgroup 'cluster' is present in sudorule
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
hostgroup: cluster
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudorule command is absent
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule command is absent
|
||||
ipasudorule:
|
||||
ipaadmin_password: pass1234
|
||||
name: testrule1
|
||||
state: absent
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudorule command is disabled
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule command is disabled
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
state: disabled
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudorule command is enabled
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule command is enabled
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
state: enabled
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure sudorule is present with the given order.
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule is present with the given order.
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
order: 2
|
||||
|
||||
@@ -4,8 +4,8 @@
|
||||
become: true
|
||||
|
||||
tasks:
|
||||
# Ensure sudorule command is present
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule command is present
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
description: A test sudo rule.
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure sudorule is present with the given order.
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule 'runasuser' member 'admin' is absent.
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
runasuser: admin
|
||||
|
||||
@@ -5,8 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
# Ensure sudorule is present with the given order.
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule 'runasuser' member 'admin' is present.
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
runasuser: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule members are absent.
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
allow_sudocmd:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipasudorule:
|
||||
- name: Ensure sudorule members are present.
|
||||
ipasudorule:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: testrule1
|
||||
allow_sudocmd:
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Archive data into asymmetric vault.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: asymvault
|
||||
username: user01
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Archieve data into symmetric vault.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: symvault
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure asymmetric vault is absent.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: asymvault
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure asymmetric vault is present.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: asymvault
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure service vault is absent.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: svcvault
|
||||
service: "HTTP/{{ groups.ipaserver[0] }}"
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure service vault is present.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: svcvault
|
||||
service: "HTTP/{{ groups.ipaserver[0] }}"
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure shared vault is absent.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: sharedvault
|
||||
shared: True
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure shared vault is present.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: sharedvault
|
||||
shared: True
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure vault is absent.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: stdvault
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure standard vault is present.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: stdvault
|
||||
vault_type: standard
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure symmetric vault is absent.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: symvault
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure symmetric vault is present.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: symvault
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure vault is present, with members.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: stdvault
|
||||
vault_type: standard
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure vault member "group" is absent.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: keychain
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure vault member "group" is present.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: keychain
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure vault member "user" is absent.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: keychain
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure vault member "user" is present.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: keychain
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure vault owners and ownergroups are absent.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: symvault
|
||||
username: admin
|
||||
|
||||
@@ -5,7 +5,8 @@
|
||||
gather_facts: false
|
||||
|
||||
tasks:
|
||||
- ipavault:
|
||||
- name: Ensure vault owners and ownergroups are present.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: symvault
|
||||
username: admin
|
||||
|
||||
@@ -14,5 +14,6 @@
|
||||
state: retrieved
|
||||
register: result
|
||||
no_log: true
|
||||
- debug:
|
||||
msg: "Data: {{ result.vault.data }}"
|
||||
- name: Display retrieved data.
|
||||
debug:
|
||||
msg: "Data: {{ result.vault.data }}"
|
||||
|
||||
@@ -14,5 +14,6 @@
|
||||
state: retrieved
|
||||
register: result
|
||||
no_log: true
|
||||
- debug:
|
||||
msg: "{{ result.vault.data }}"
|
||||
- name: Display retrieved data.
|
||||
debug:
|
||||
msg: "Data: {{ result.vault.data }}"
|
||||
|
||||
@@ -5,18 +5,21 @@
|
||||
gather_facts: True
|
||||
|
||||
tasks:
|
||||
- copy:
|
||||
- name: Copy file containing password to server.
|
||||
copy:
|
||||
src: "{{ playbook_dir }}/password.txt"
|
||||
dest: "{{ ansible_facts['env'].HOME }}/password.txt"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "{{ ansible_user }}"
|
||||
mode: 0600
|
||||
- ipavault:
|
||||
- name: Ensure symmetric vault exists with password from file.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: symvault
|
||||
username: admin
|
||||
vault_type: symmetric
|
||||
vault_password_file: "{{ ansible_facts['env'].HOME }}/password.txt"
|
||||
- file:
|
||||
- name: Remove file containing password from server.
|
||||
file:
|
||||
path: "{{ ansible_facts['env'].HOME }}/password.txt"
|
||||
state: absent
|
||||
|
||||
@@ -10,18 +10,21 @@
|
||||
gather_facts: True
|
||||
|
||||
tasks:
|
||||
- copy:
|
||||
- name: Copy public key file to server.
|
||||
copy:
|
||||
src: "{{ playbook_dir }}/public.pem"
|
||||
dest: "{{ ansible_facts['env'].HOME }}/public.pem"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "{{ ansible_user }}"
|
||||
mode: 0600
|
||||
- ipavault:
|
||||
- name: Ensure asymmetric vault exists with public key from file.
|
||||
ipavault:
|
||||
ipaadmin_password: SomeADMINpassword
|
||||
name: asymvault
|
||||
username: admin
|
||||
vault_type: asymmetric
|
||||
vault_public_key_file: "{{ ansible_facts['env'].HOME }}/public.pem"
|
||||
- file:
|
||||
- name: Remove public key file from server.
|
||||
file:
|
||||
path: "{{ ansible_facts['env'].HOME }}/public.pem"
|
||||
state: absent
|
||||
|
||||
Reference in New Issue
Block a user