Changeset 260f2ed1 in darkpeak-services


Ignore:
Timestamp:
Jul 14, 2018, 3:17:35 PM (19 months ago)
Author:
Caolan McMahon <caolan.mcmahon@…>
Branches:
ansible, keycloak, master, matrix, pleroma
Children:
cfcef399
Parents:
279eaf78
git-author:
Caolan McMahon <caolan.mcmahon@…> (07/14/18 15:05:44)
git-committer:
Caolan McMahon <caolan.mcmahon@…> (07/14/18 15:17:35)
Message:

Change domains in ipsilon metadata.xml to use domain template variable

Location:
roles/ipsilon
Files:
1 edited
1 moved

Legend:

Unmodified
Added
Removed
  • roles/ipsilon/tasks/main.yml

    r279eaf78 r260f2ed1  
    137137    creates: /etc/ipsilon/configuration.conf
    138138
    139 - name: Install SAML2 identity provider metadata
     139- name: Install SAML2 identity provider key
    140140  copy:
    141141    src: "{{ item.file }}"
     
    147147    - { file: idp.pem, mode: "0600" }
    148148    - { file: idp.key, mode: "0600" }
     149  notify:
     150    - reload apache2
     151
     152- name: Install SAML2 identity provider metadata
     153  template:
     154    src: "{{ item.file }}"
     155    dest: "/etc/ipsilon/saml2/{{ item.file }}"
     156    owner: ipsilon
     157    group: ipsilon
     158    mode: "{{ item.mode }}"
     159  with_items:
    149160    - { file: metadata.xml, mode: "0644" }
    150161  notify:
  • roles/ipsilon/templates/metadata.xml

    r279eaf78 r260f2ed1  
    11<?xml version='1.0' encoding='UTF-8'?>
    2 <md:EntityDescriptor xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" validUntil="2023-03-11T15:02:13.389384Z" entityID="https://idp.darkpeak.dev/saml2/metadata">
     2<md:EntityDescriptor xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" validUntil="2023-03-11T15:02:13.389384Z" entityID="https://{{ domain }}/saml2/metadata">
    33  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" WantAuthnRequestsSigned="true">
    44    <md:KeyDescriptor use="signing">
     
    5050      </ds:KeyInfo>
    5151    </md:KeyDescriptor>
    52     <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.darkpeak.dev/saml2/SSO/POST"/>
    53     <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.darkpeak.dev/saml2/SSO/Redirect"/>
    54     <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.darkpeak.dev/saml2/SSO/SOAP"/>
    55     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.darkpeak.dev/saml2/SLO/Redirect"/>
     52    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://{{ domain }}/saml2/SSO/POST"/>
     53    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://{{ domain }}/saml2/SSO/Redirect"/>
     54    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://{{ domain }}/saml2/SSO/SOAP"/>
     55    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://{{ domain }}/saml2/SLO/Redirect"/>
    5656    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
    5757    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
Note: See TracChangeset for help on using the changeset viewer.