From 45557e0bc156fed5eea29212166d6d2d1c8fbfbc Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Fri, 31 Jan 2025 19:11:09 +0000
Subject: [PATCH] dhcpd: Add support for reading host data from LDAP

---
 roles/dhcpd/tasks/main.yml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/roles/dhcpd/tasks/main.yml b/roles/dhcpd/tasks/main.yml
index 8722f27..134b4ed 100644
--- a/roles/dhcpd/tasks/main.yml
+++ b/roles/dhcpd/tasks/main.yml
@@ -7,6 +7,24 @@
     name: "{{ dhcpd_package }}"
     state: installed
 
+- name: Get host data from LDAP
+  community.general.ldap_search:
+    attrs:
+      - cn
+      - ipHostNumber
+      - macAddress
+    client_cert: >-
+      {{ hostvars[ansible_server]['tls_certs'] + '/' + ansible_server }}.crt
+    client_key: >-
+      {{ hostvars[ansible_server]['tls_private'] + '/' + ansible_server }}.key
+    dn: "{{ dhcpd_ldap_basedn | default(ldap_basedn) }}"
+    filter: "{{ dhcpd_ldap_filter }}"
+    scope: subordinate
+    server_uri: "ldaps://{{ ldap_server[0] }}"
+  delegate_to: localhost
+  register: ldap_hosts
+  when: dhcpd_ldap_filter is defined
+
 - name: Create config
   ansible.builtin.template:
     dest: "{{ dhcpd_config }}"