lint: ansible-lint suggested updates

2025-11-01 15:07:36 +00:00 · 2025-11-01 15:07:36 +00:00 · 1d5d39d1c2
commit 1d5d39d1c2
parent 2ba6c6691b
20 changed files with 140 additions and 56 deletions
--- a/roles/podman_keycloak/defaults/main.yml
+++ b/roles/podman_keycloak/defaults/main.yml
@ -14,4 +14,4 @@ podman_keycloak_podman_rootless_user: keycloak
 podman_keycloak_postgres_keycloak_database: keycloak
 # podman_keycloak_postgres_keycloak_password:
 podman_keycloak_postgres_keycloak_username: keycloak
-podman_keycloak_keycloak_additional_volumes: []
+podman_keycloak_keycloak_additional_volumes: []
--- a/roles/podman_keycloak/tasks/ldap.yml
+++ b/roles/podman_keycloak/tasks/ldap.yml
@ -1,9 +1,9 @@
 ---
- name: wait 30 seconds for ldap server to start
+- name: Podman Keycloak | AUDIT | Wait 30 seconds for ldap server to start
  ansible.builtin.pause:
    seconds: 30

- name: create ldap suffix
+- name: Podman Keycloak | PATCH | Create ldap suffix
  containers.podman.podman_container_exec:
    name: ldap
    argv:
@ -25,13 +25,13 @@
  tags:
    - ldap

- name: create suffix result (only when changed)
-  debug:
+- name: Podman Keycloak | AUDIT | Create suffix result (only when changed)
+  ansible.builtin.debug:
    msg: "Suffix was created"
  when: not podman_keycloak_create_suffix.failed
  changed_when: not podman_keycloak_create_suffix.failed

- name: ldap organisational units
+- name: Podman Keycloak | PATCH | Create OUs
  community.general.ldap_entry:
    dn: "ou={{ item }},{{ podman_keycloak_ldap_database_suffix_dn }}"
    objectClass:
@ -46,10 +46,10 @@
    - People
    - Groups
  environment:
-    - LDAPTLS_REQCERT: "{% if podman_keycloak_certbot_testing %}never{% else %}always{% endif %}"
+    LDAPTLS_REQCERT: "{% if podman_keycloak_certbot_testing %}never{% else %}always{% endif %}"
  tags: ldap

- name: enable memberOf plugin
+- name: Podman Keycloak | PATCH | Enable memberOf plugin
  containers.podman.podman_container_exec:
    name: ldap
    argv:
@ -65,7 +65,7 @@
  tags:
    - ldap

- name: disable anonymous bind
+- name: Podman Keycloak | PATCH | Disable anonymous bind
  containers.podman.podman_container_exec:
    name: ldap
    argv:
@ -81,7 +81,7 @@
  tags:
    - ldap

- name: ldap read-only administrator
+- name: Podman Keycloak | PATCH | Create a read-only administrator
  community.general.ldap_entry:
    dn: "uid=admin,ou=Administrators,{{ podman_keycloak_ldap_database_suffix_dn }}"
    objectClass:
@ -98,10 +98,10 @@
    bind_pw: "{{ podman_keycloak_ldap_directory_manager_password }}"
  delegate_to: localhost
  environment:
-    - LDAPTLS_REQCERT: "{% if podman_keycloak_certbot_testing %}never{% else %}always{% endif %}"
+    LDAPTLS_REQCERT: "{% if podman_keycloak_certbot_testing %}never{% else %}always{% endif %}"
  tags: ldap

- name: ldap access control information
+- name: Podman Keycloak | PATCH | Apply LDAP permissions
  community.general.ldap_attrs:
    dn: "{{ podman_keycloak_ldap_database_suffix_dn }}"
    attributes:
@ -111,5 +111,5 @@
    bind_pw: "{{ podman_keycloak_ldap_directory_manager_password }}"
  delegate_to: localhost
  environment:
-    - LDAPTLS_REQCERT: "{% if podman_keycloak_certbot_testing %}never{% else %}always{% endif %}"
+    LDAPTLS_REQCERT: "{% if podman_keycloak_certbot_testing %}never{% else %}always{% endif %}"
  tags: ldap
--- a/roles/podman_keycloak/tasks/main.yml
+++ b/roles/podman_keycloak/tasks/main.yml
@ -157,4 +157,4 @@
    scope: user
    daemon_reload: true
  become: true
-  become_user: "{{ podman_keycloak_podman_rootless_user }}"
+  become_user: "{{ podman_keycloak_podman_rootless_user }}"