ldap-server: Autodetect ldap data directory

2021-09-19 19:19:41 +00:00 · 2021-09-19 19:19:41 +00:00 · 68d903e31c
commit 68d903e31c
parent 64e2b45d6f
3 changed files with 10 additions and 4 deletions
--- a/host_vars/ldap01.home.foo.sh.yml
+++ b/host_vars/ldap01.home.foo.sh.yml
@ -7,5 +7,4 @@ network_interfaces:
 datadisks:
  - 10
 ldap_datadir: /export/ldap
 ldap_master: true
--- a/roles/ldap-server/defaults/main.yml
+++ b/roles/ldap-server/defaults/main.yml
@ -1,4 +1,5 @@
 ---
 ldap_server_cert: "{% if ldap_master is defined %}ldap01.foo.sh{% else %}\
 ldap.foo.sh{% endif %}"
-ldap_datadir: /srv/ldap
+ldap_datadir: "{% if ansible_local['export'] %}/export/ldap{% else %}/srv/ldap{% endif %}"
 ldap_backupdir: "{% if ansible_local['export'] %}/export/backup{% else %}/srv/backup{% endif %}"
--- a/roles/ldap-server/tasks/main.yml
+++ b/roles/ldap-server/tasks/main.yml
@ -12,6 +12,7 @@
  sefcontext:
    path: "{{ ldap_datadir }}(/.*)?"
    setype: slapd_db_t
 - name: create ldap data directory
  file:
    path: "{{ ldap_datadir }}"
@ -21,6 +22,7 @@
    group: ldap
    seuser: _default
    setype: _default
 - name: link ldap data directory
  file:
    path: /srv/ldap
@ -34,17 +36,18 @@
 - import_role:
    name: sftpuser
  vars:
-    chroot: /export/backup
+    chroot: /srv/backup
    user: backup
    publickeys: "{{ backup_publickeys }}"
 - name: create backup directory
  file:
-    path: /export/backup
+    path: "{{ ldap_backupdir }}"
    state: directory
    mode: 0750
    owner: root
    group: backup
 - name: link backup directory
  file:
    path: /srv/backup
@ -53,6 +56,8 @@
    owner: root
    group: "{{ ansible_wheel }}"
    follow: false
  when: ldap_backupdir != "/srv/backup"
 - name: copy backup script
  copy:
    dest: /usr/local/sbin/ldap-backup
@ -60,6 +65,7 @@
    mode: 0755
    owner: root
    group: "{{ ansible_wheel }}"
 - name: create backup cron job
  cron:
    name: ldap-backup