From 2dc2799883749c5b89092401e272006441514f6d Mon Sep 17 00:00:00 2001
From: Thomas Woerner <twoerner@redhat.com>
Date: Tue, 4 Jun 2019 11:45:04 +0200
Subject: [PATCH] ipareplica: Use result from ipareplica_test for freeipa-trust
 enablement

The result from ipareplica_test should be used to enable freeipa-trust
in the firewall.
---
 roles/ipareplica/tasks/install.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/roles/ipareplica/tasks/install.yml b/roles/ipareplica/tasks/install.yml
index a2a0621a..56215a11 100644
--- a/roles/ipareplica/tasks/install.yml
+++ b/roles/ipareplica/tasks/install.yml
@@ -97,7 +97,7 @@
       --permanent
       --add-service=freeipa-ldap
       --add-service=freeipa-ldaps
-      {{ "--add-service=freeipa-trust" if ipaserver_setup_adtrust | bool
+      {{ "--add-service=freeipa-trust" if result_ipareplica_test.setup_adtrust
          else "" }}
       {{ "--add-service=dns" if ipareplica_setup_dns | bool else "" }}
       {{ "--add-service=ntp" if not ipaclient_no_ntp | bool else "" }}
@@ -108,7 +108,7 @@
       firewall-cmd
       --add-service=freeipa-ldap
       --add-service=freeipa-ldaps
-      {{ "--add-service=freeipa-trust" if ipaserver_setup_adtrust | bool
+      {{ "--add-service=freeipa-trust" if result_ipareplica_test.setup_adtrust
          else "" }}
       {{ "--add-service=dns" if ipareplica_setup_dns | bool else "" }}
       {{ "--add-service=ntp" if not ipaclient_no_ntp | bool else "" }}
-- 
GitLab