ansible/group_vars/all/vars.yml

30 lines
1,007 B
YAML
Raw Normal View History

2018-12-23 12:20:19 +01:00
---
# LDAP binding
2019-01-03 14:51:11 +01:00
# You can hash LDAP passwords with `slappasswd` tool
2018-12-23 12:20:19 +01:00
ldap_base: 'dc=auro,dc=re'
2019-01-03 14:51:11 +01:00
ldap_master_ipv4: '10.128.0.11'
2019-01-03 16:43:50 +01:00
ldap_master_uri: "ldap://{{ ldap_master_ipv4 }}"
2019-01-03 14:51:11 +01:00
ldap_nslcd_bind_dn: "cn=nslcd,ou=service-users,{{ ldap_base }}"
ldap_nslcd_passwd: "{{ vault_ldap_nslcd_passwd }}"
2019-02-09 11:47:09 +01:00
ldap_codimd_bind_dn: "cn=codimd,ou=service-users,{{ ldap_base }}"
ldap_codimd_password: "{{ vault_ldap_codimd_password }}"
2019-01-03 16:43:50 +01:00
ldap_replica_password: "{{ vault_ldap_replica_password }}"
2019-01-03 14:51:11 +01:00
ldap_admin_hashed_passwd: "{{ vault_ldap_admin_hashed_passwd }}"
2018-12-23 12:20:19 +01:00
2019-02-09 08:29:50 +01:00
# Databases
postgresql_services_url: 'services-bdd.adm.auro.re'
postgresql_codimd_passwd: "{{ vault_postgresql_codimd_passwd }}"
2018-12-23 12:20:19 +01:00
# Scripts will tell users to go there to manage their account
intranet_url: 'https://re2o.auro.re/'
# Users in that group will be able to `sudo`
sudo_group: 'sudoldap'
# SSH keys for root account to use when LDAP is broken
ssh_pub_keys: "{{ vault_ssh_pub_keys }}"
2019-01-02 18:23:11 +01:00
# Monitoring
2019-01-02 18:35:36 +01:00
monitoring_mail: 'monitoring.aurore@lists.crans.org'
2019-01-02 18:23:11 +01:00