Initial import; migrate some roles from irl.wip
This commit is contained in:
commit
2ba6c6691b
44 changed files with 1573 additions and 0 deletions
22
roles/podman_keycloak/templates/ldap.container
Normal file
22
roles/podman_keycloak/templates/ldap.container
Normal file
|
|
@ -0,0 +1,22 @@
|
|||
[Unit]
|
||||
PartOf=keycloak.target
|
||||
|
||||
[Container]
|
||||
ContainerName=ldap
|
||||
Environment=DS_DM_PASSWORD={{ podman_keycloak_ldap_directory_manager_password }}
|
||||
Image=quay.io/389ds/dirsrv:latest
|
||||
Network=ldap.network
|
||||
PublishPort=636:3636/tcp
|
||||
Volume=/home/{{ podman_keycloak_podman_rootless_user }}/ldap:/data:rw,Z
|
||||
Volume=/home/{{ podman_keycloak_podman_rootless_user }}/certbot/conf/live/{{ podman_keycloak_keycloak_hostname }}/privkey.pem:/data/tls/server.key:ro,z
|
||||
Volume=/home/{{ podman_keycloak_podman_rootless_user }}/certbot/conf/live/{{ podman_keycloak_keycloak_hostname }}/cert.pem:/data/tls/server.crt:ro,z
|
||||
Volume=/home/{{ podman_keycloak_podman_rootless_user }}/certbot/conf/live/{{ podman_keycloak_keycloak_hostname }}/chain.pem:/data/tls/ca/chain.crt:ro,z
|
||||
|
||||
[Service]
|
||||
Slice=keycloak.slice
|
||||
Restart=always
|
||||
# RuntimeMaxSec is used to restart the service periodically to pick up new Let's Encrypt certificates
|
||||
RuntimeMaxSec=604800
|
||||
|
||||
[Install]
|
||||
WantedBy=keycloak.target
|
||||
Loading…
Add table
Add a link
Reference in a new issue