Draft ipsilon installation

author alex <alex@pdp7.net>

Sat, 11 Mar 2023 10:22:05 +0000 (11:22 +0100)

committer alex <alex@pdp7.net>

Sat, 11 Mar 2023 10:22:26 +0000 (11:22 +0100)
author alex <alex@pdp7.net>
Sat, 11 Mar 2023 10:22:05 +0000 (11:22 +0100)
committer alex <alex@pdp7.net>
Sat, 11 Mar 2023 10:22:26 +0000 (11:22 +0100)
diff --git a/personal_infra/playbooks/roles/deploy_ipsilon/tasks/main.yml b/personal_infra/playbooks/roles/deploy_ipsilon/tasks/main.yml

new file mode 100644 (file)

index 0000000..1ac50a1
--- /dev/null
+++ b/personal_infra/playbooks/roles/deploy_ipsilon/tasks/main.yml
@@ -0,0 +1,5 @@
+---
+- name: install ipsilon (if this task fails, run kinit as root)
+  command: ipsilon-server-install --hostname {{ ipsilon.hostname }} --ipa yes --openidc yes --admin-user {{ ipsilon.admin_user }}
+  args:
+    creates: /etc/ipsilon/idp
diff --git a/personal_infra/playbooks/site.yaml b/personal_infra/playbooks/site.yaml

index 63af423b036b5fa5c06952838b43d537ddcb2db5..ddeced0e5fd92bc1ba2cfdef5807e666c9dcec67 100644 (file)
--- a/personal_infra/playbooks/site.yaml
+++ b/personal_infra/playbooks/site.yaml
@@ -36,3 +36,9 @@
    gather_facts: false
    roles:
      - talos
+
+- name: deploy ipsilon
+  hosts: ipsilon
+  tags: ipsilon
+  roles:
+    - deploy_ipsilon
diff --git a/personal_infra/puppet/modules/ipsilon/manifests/init.pp b/personal_infra/puppet/modules/ipsilon/manifests/init.pp

new file mode 100644 (file)

index 0000000..f4de956
--- /dev/null
+++ b/personal_infra/puppet/modules/ipsilon/manifests/init.pp
@@ -0,0 +1,18 @@
+class ipsilon {
+  package {'ipsilon-tools-ipa':
+    source => 'https://kojipkgs.fedoraproject.org//packages/ipsilon/3.0.4/5.el8/noarch/ipsilon-tools-ipa-3.0.4-5.el8.noarch.rpm',
+  }
+
+  package {'ipsilon-openidc':
+    source => 'https://kojipkgs.fedoraproject.org//packages/ipsilon/3.0.4/5.el8/noarch/ipsilon-openidc-3.0.4-5.el8.noarch.rpm',
+  }
+
+  package {'ipsilon-authpam':
+    source => 'https://kojipkgs.fedoraproject.org//packages/ipsilon/3.0.4/5.el8/noarch/ipsilon-authpam-3.0.4-5.el8.noarch.rpm',
+  }
+
+  service {'httpd':
+    ensure => running,
+    enable => true,
+  }
+}
diff --git a/personal_infra/puppet/site/ipsilon-test.h1.int.pdp7.net.pp b/personal_infra/puppet/site/ipsilon-test.h1.int.pdp7.net.pp

index d304c56753ffdd64b49fca13cc4b69fbc41be840..6c03966796e1190218cf4c48c21ee0e89c917639 100644 (file)
--- a/personal_infra/puppet/site/ipsilon-test.h1.int.pdp7.net.pp
+++ b/personal_infra/puppet/site/ipsilon-test.h1.int.pdp7.net.pp
@@ -1,2 +1,3 @@
  node 'ipsilon-test.h1.int.pdp7.net' {
+  class {'ipsilon':}
  }
author	alex <alex@pdp7.net>
	Sat, 11 Mar 2023 10:22:05 +0000 (11:22 +0100)
committer	alex <alex@pdp7.net>
	Sat, 11 Mar 2023 10:22:26 +0000 (11:22 +0100)
personal_infra/playbooks/roles/deploy_ipsilon/tasks/main.yml	[new file with mode: 0644]	patch \| blob
personal_infra/playbooks/site.yaml		patch \| blob \| history
personal_infra/puppet/modules/ipsilon/manifests/init.pp	[new file with mode: 0644]	patch \| blob
personal_infra/puppet/site/ipsilon-test.h1.int.pdp7.net.pp		patch \| blob \| history