roles/server/ldap-server/tasks/main.yml

   1 #####################################
   2 ### someone's ansible provisioner ###
   3 #####################################
   4 # Part of: https://git.somenet.org/root/pub/somesible.git
   5 # 2017-2025 by someone <someone@somenet.org>
   6 #
   7 ---
   8 - name: install openldap-server
   9   apt:
  10     pkg:
  11     - ldap-server
  12     state: present
  13     policy_rc_d: 101
  14   tags: "online"
  15   ignore_errors: "{{ignore_online_errors | bool}}"
  16
  17
  18 - name: copy slapd.conf
  19   copy:
  20     src: "{{item}}"
  21     dest: "/etc/ldap/slapd.conf"
  22     mode: 0640
  23     owner: "openldap"
  24     group: "openldap"
  25   with_first_found:
  26     - "{{lookup('env','PWD')}}/host_files/{{inventory_hostname}}/{{role_name}}/slapd.conf"
  27     - "{{lookup('env','PWD')}}/group_files/{{group_files_group}}/{{role_name}}/slapd.conf"
  28     - "{{lookup('env','PWD')}}/group_files/all/{{role_name}}/slapd.conf"
  29     - "default/slapd.conf"
  30   notify: restart slapd.service
  31
  32
  33 - name: symlink /etc/ldap/slapd.d to /dev/null
  34   file:
  35     path: "/etc/ldap/slapd.d"
  36     state: absent
  37
  38
  39 - name: enable and start slapd.service
  40   include_role: name="base/systemd/enable-and-start"
  41   vars:
  42     service_name: slapd.service