Commits on Source (13)
-
Rafael Guterres Jeffman authored
Altough most of ansible-freeipa documentation and playbooks use 'ipaserver' as the group for the first server deployed for a realm, the ipareplica role only supported the use of groups["ipaservers"] as an alternative to set ipareplica_servers. Also supporting groups.ipaserver, as already supported by the ipaclient role, make ansible-freeipa playbooks more consistent and current documentation and examples easier to follow when deploying a cluster with a server and a replica.
f012da22 -
Thomas Woerner authored
The uri parameters auth_uri, dev_auth_uri, token_uri, userinfo_uri and keys_uri have not been validated before. Also the base_url was not normalized. The auth_uri, dev_auth_uri, token_uri and userinfo_uri need to be set for new entries, but might be empty or empty string for reset or updates. The ipaidpclientsecret needs to be decoded from binary string in find_idp result to not trigger no change ipd_mod calls. The code for validate_uri and base_url normalization has been copied from the ipaserver idp plugin. ansible_freeipa_module: urlparse from urllib.parse with a fallback to six.moves.urllib.parse is imported and also exported. urlparse is needed for validate_uri in ipaidp module. Resolves: RHEL-17954, RHEL-17955, RHEL-17957 and RHEL-17958
ff084fbd -
Thomas Woerner authoredde3c6c0a
-
Rafael Guterres Jeffman authored
When deploying an IPA client with ipaclient, if an error occured while getting an OTP, no error message is logged, as the task that logs the error is not excuted due to the previous taks failure. By adding a 'rescue' section to the code block and moving the error reporting to this new section, we ensure that the proper error messages will be reported.
22214daf -
Rafael Guterres Jeffman authored
By the first quarter of 2024, all collections must pass ansible-lint tests run with version 6.22.x. This PR ensure that all ansible-freeipa tests depending on ansible-lint use a valid version of it.
d2e0cad9 -
Thomas Woerner authored
Bump minimum ansible-lint version to 6.22
-
Rafael Guterres Jeffman authored
ipaidp: Fix validation and reset of parameters
-
Rafael Guterres Jeffman authored
After the change for a single job to run PR tests, and if there is any change to ansible_module_utils, all the playbook tests are executed, and the result is a failure due to timeout. This PR increases the timeout so that a PR with changes to ansible_module_utils can have the tests executed.
47940b48 -
Thomas Woerner authored
upstream ci: Increase timeout for PR tests
-
Thomas Woerner authored
ipareplica: Support inventory groups.ipaserver
-
Thomas Woerner authored
This reverts commit de3c6c0a.
102d6c5a -
Rafael Guterres Jeffman authored
Revert "[TEMP] Enable only idp, service and user module tests"
-
Thomas Woerner authored
ipaclient: Fix OTP error reporting