diff options
| author | Elizabeth Hunt <me@liz.coffee> | 2025-04-05 16:16:49 -0700 |
|---|---|---|
| committer | Elizabeth Hunt <me@liz.coffee> | 2025-04-05 16:16:49 -0700 |
| commit | 5c341236ccc69cced155d84b3e227a5c7a1f34d1 (patch) | |
| tree | 58ca0111a474b66ecfb77a523697482c8523fd44 /group_vars | |
| parent | ce8931e6fe1fc1e9bd004f9357e15309d1265975 (diff) | |
| download | infra-5c341236ccc69cced155d84b3e227a5c7a1f34d1.tar.gz infra-5c341236ccc69cced155d84b3e227a5c7a1f34d1.zip | |
LDAP
Diffstat (limited to 'group_vars')
| -rw-r--r-- | group_vars/kanboard.yml | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/group_vars/kanboard.yml b/group_vars/kanboard.yml new file mode 100644 index 0000000..086d9ec --- /dev/null +++ b/group_vars/kanboard.yml @@ -0,0 +1,21 @@ +--- + +kanboard_base: "{{ swarm_base }}/kanboard" +kanboard_domain: "kanban.{{ domain }}" + +# https://docs.kanboard.org/v1/admin/ldap/ +base_dn: "{{ 'dc=' ~ idm_domain | regex_replace('\\.', ',dc=') }}" +kanboard_ldap_auth: "true" +kanboard_ldap_server: "ldaps://{{ idm_domain }}:3636" +kanboard_ldap_ssl_verify: "true" +kanboard_ldap_bind_type: "proxy" +kanboard_ldap_username: "dn=token" +kanboard_ldap_user_attribute_email: "emailprimary" +kanboard_ldap_user_creation: "true" +kanboard_ldap_user_base_dn: "{{ base_dn }}" +kanboard_ldap_user_filter: "(&(class=account)(name=%s))" +kanboard_ldap_group_provider: "true" +kanboard_ldap_group_base_dn: "{{ base_dn }}" +kanboard_ldap_group_filter: "(&(class=group)(name=%s))" +kanboard_ldap_group_admin_dn: "spn=kanban_admins@{{ idm_domain }},{{ base_dn }}" +kanboard_ldap_group_manager_dn: "spn=kanban_admins@{{ idm_domain }},{{ base_dn }}" |