Skip to content

Commit

Permalink
adjust parameters
Browse files Browse the repository at this point in the history
  • Loading branch information
Harry Kodden committed Apr 16, 2024
1 parent d53f099 commit 5f9ba30
Showing 1 changed file with 5 additions and 2 deletions.
7 changes: 5 additions & 2 deletions ansible/vars/default.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,15 +4,18 @@ log_level: ERROR

sram_urn_prefix: "urn:mace:surf.nl:sram:group"

ADMIN_GROUP: {{ lookup("ansible.builtin.env", "ADMIN_GROUP", default="<undefined>") }}
USERS_GROUP: {{ lookup("ansible.builtin.env", "USERS_GROUP", default="*") }}

SRAM_URL: '{{ lookup("ansible.builtin.env", "SRAM_URL", default="https://sram.surf.nl") }}'

SRAM_OIDC_BASE_URL: '{{ lookup("ansible.builtin.env", "SRAM_OIDC_BASE_URL", default="https://proxy.sram.surf.nl") }}'
SRAM_OIDC_CLIENT_ID: '{{ lookup("ansible.builtin.env", "SRAM_OIDC_CLIENT_ID", default="<undefined>") }}'
SRAM_OIDC_CLIENT_SECRET: '{{ lookup("ansible.builtin.env", "SRAM_OIDC_CLIENT_SECRET", default="<undefined>") }}'

SRAM_ADMIN_ACCESS_GROUP: '{{ sram_urn_prefix }}:{{ lookup("ansible.builtin.env", "SRAM_ADMIN_ACCESS_GROUP", default="<undefined>") }}'
SRAM_SERVICE_BEARER_TOKEN: '{{ lookup("ansible.builtin.env", "SRAM_SERVICE_BEARER_TOKEN", default="<undefined>") }}'

PROXY_ADMIN_PASSWORD: '{{ lookup("ansible.builtin.env", "PROXY_ADMIN_PASSWORD", default="admin") }}'

PAM_VALIDATE_USERS_ENTITLEMENT: '{{ sram_urn_prefix }}:{{ lookup("ansible.builtin.env", "PAM_VALIDATE_USERS_ENTITLEMENT", default="*") }}'
SRAM_ADMIN_ACCESS_GROUP: '{{ sram_urn_prefix }}:{{ ADMIN_GROUP }}'
PAM_VALIDATE_USERS_ENTITLEMENT: '{{ sram_urn_prefix }}:{{ USERS_GROUP }}'

0 comments on commit 5f9ba30

Please sign in to comment.