Various fixes.
This commit is contained in:
parent
a7dea7d87e
commit
d9d9f39f55
|
@ -38,7 +38,7 @@ keycloak_database_user: keycloak_u
|
||||||
keycloak_database_host: 'localhost'
|
keycloak_database_host: 'localhost'
|
||||||
keycloak_database_max_pool_size: '50'
|
keycloak_database_max_pool_size: '50'
|
||||||
keycloak_database_jboss_connection_checker: True
|
keycloak_database_jboss_connection_checker: True
|
||||||
|
keycloak_database_idle_timeouts_min: 1
|
||||||
keycloak_admin_user: kadmin
|
keycloak_admin_user: kadmin
|
||||||
#keycloak_admin_password: 'define it into a vault file'
|
#keycloak_admin_password: 'define it into a vault file'
|
||||||
|
|
||||||
|
|
|
@ -24,12 +24,18 @@ galaxy_info:
|
||||||
galaxy_tags:
|
galaxy_tags:
|
||||||
- users
|
- users
|
||||||
- oidc
|
- oidc
|
||||||
|
- oauth
|
||||||
|
- saml
|
||||||
|
|
||||||
dependencies:
|
dependencies:
|
||||||
- src: git+https://gitea-s2i2s.isti.cnr.it/ISTI-ansible-roles/ansible-role-openjdk.git
|
- src: git+https://gitea-s2i2s.isti.cnr.it/ISTI-ansible-roles/ansible-role-openjdk.git
|
||||||
version: master
|
version: master
|
||||||
name: openjdk
|
name: openjdk
|
||||||
state: latest
|
state: latest
|
||||||
|
- src: git+https://gitea-s2i2s.isti.cnr.it/ISTI-ansible-roles/ansible-role-nginx.git
|
||||||
|
version: master
|
||||||
|
name: nginx
|
||||||
|
state: latest
|
||||||
|
|
||||||
collections:
|
collections:
|
||||||
- wildfly.jcliff
|
- wildfly.jcliff
|
||||||
|
|
|
@ -31,9 +31,13 @@
|
||||||
- 'server.log'
|
- 'server.log'
|
||||||
- 'audit.log'
|
- 'audit.log'
|
||||||
|
|
||||||
- name: Fix the permissions of some keycloak directories
|
- name: Fix the permissions of the directories into keycloak must be able to write
|
||||||
file: dest={{ keycloak_install_dir }}/{{ keycloak_distribution }}/{{ keycloak_wildfly_mode }}/{{ item }} state=directory owner={{ keycloak_user }} group={{ keycloak_user }} mode='0750' recurse=yes
|
file: dest={{ keycloak_install_dir }}/{{ keycloak_distribution }}/{{ keycloak_wildfly_mode }}/{{ item }} state=directory owner={{ keycloak_user }} group={{ keycloak_user }} mode='0750' recurse=yes
|
||||||
with_items: '{{ keycloak_owned_directories }}'
|
with_items: '{{ keycloak_owned_directories }}'
|
||||||
|
|
||||||
|
- name: Fix the permissions of the keycloak data directorie if they are inside the distribution
|
||||||
|
file: dest={{ keycloak_install_dir }}/{{ keycloak_distribution }}/{{ keycloak_wildfly_mode }}/data/{{ item }} state=directory owner={{ keycloak_user }} group={{ keycloak_user }} mode='0750' recurse=yes
|
||||||
|
with_items: '{{ keycloak_data_subdirs }}'
|
||||||
when: keycloak_data_directory == keycloak_distribution_data_directory
|
when: keycloak_data_directory == keycloak_distribution_data_directory
|
||||||
|
|
||||||
- name: Remove the log directory inside the keycloak distribution
|
- name: Remove the log directory inside the keycloak distribution
|
||||||
|
|
|
@ -139,6 +139,9 @@
|
||||||
<pool>
|
<pool>
|
||||||
<max-pool-size>{{ keycloak_database_max_pool_size }}</max-pool-size>
|
<max-pool-size>{{ keycloak_database_max_pool_size }}</max-pool-size>
|
||||||
</pool>
|
</pool>
|
||||||
|
<timeout>
|
||||||
|
<idle-timeout-minutes>{{ keycloak_database_idle_timeouts_min }}</idle-timeout-minutes>
|
||||||
|
</timeout>
|
||||||
<validation>
|
<validation>
|
||||||
{% if keycloak_database_jboss_connection_checker %}
|
{% if keycloak_database_jboss_connection_checker %}
|
||||||
<valid-connection-checker class-name="org.jboss.jca.adapters.jdbc.extensions.postgres.PostgreSQLValidConnectionChecker"></valid-connection-checker>
|
<valid-connection-checker class-name="org.jboss.jca.adapters.jdbc.extensions.postgres.PostgreSQLValidConnectionChecker"></valid-connection-checker>
|
||||||
|
|
|
@ -137,6 +137,9 @@
|
||||||
<pool>
|
<pool>
|
||||||
<max-pool-size>{{ keycloak_database_max_pool_size }}</max-pool-size>
|
<max-pool-size>{{ keycloak_database_max_pool_size }}</max-pool-size>
|
||||||
</pool>
|
</pool>
|
||||||
|
<timeout>
|
||||||
|
<idle-timeout-minutes>{{ keycloak_database_idle_timeouts_min }}</idle-timeout-minutes>
|
||||||
|
</timeout>
|
||||||
<validation>
|
<validation>
|
||||||
{% if keycloak_database_jboss_connection_checker %}
|
{% if keycloak_database_jboss_connection_checker %}
|
||||||
<valid-connection-checker class-name="org.jboss.jca.adapters.jdbc.extensions.postgres.PostgreSQLValidConnectionChecker"></valid-connection-checker>
|
<valid-connection-checker class-name="org.jboss.jca.adapters.jdbc.extensions.postgres.PostgreSQLValidConnectionChecker"></valid-connection-checker>
|
||||||
|
|
|
@ -11,7 +11,6 @@ keycloak_download_url: 'https://downloads.jboss.org/keycloak/{{ keycloak_version
|
||||||
keycloak_runtime_home: '{{ keycloak_install_dir }}/{{ keycloak_distribution }}'
|
keycloak_runtime_home: '{{ keycloak_install_dir }}/{{ keycloak_distribution }}'
|
||||||
jboss_home: '{{ keycloak_runtime_home }}'
|
jboss_home: '{{ keycloak_runtime_home }}'
|
||||||
keycloak_owned_directories:
|
keycloak_owned_directories:
|
||||||
- data
|
|
||||||
- tmp
|
- tmp
|
||||||
- configuration
|
- configuration
|
||||||
- deployments
|
- deployments
|
||||||
|
|
Loading…
Reference in New Issue