ldap-server: Autodetect ldap data directory

host_vars/ldap01.home.foo.sh.yml

@@ -7,5 +7,4 @@ network_interfaces:
 datadisks:
   - 10
 
-ldap_datadir: /export/ldap
 ldap_master: true

roles/ldap-server/defaults/main.yml

@@ -1,4 +1,5 @@
 ---
 ldap_server_cert: "{% if ldap_master is defined %}ldap01.foo.sh{% else %}\
  ldap.foo.sh{% endif %}"
-ldap_datadir: /srv/ldap
+ldap_datadir: "{% if ansible_local['export'] %}/export/ldap{% else %}/srv/ldap{% endif %}"
+ldap_backupdir: "{% if ansible_local['export'] %}/export/backup{% else %}/srv/backup{% endif %}"

roles/ldap-server/tasks/main.yml

@@ -12,6 +12,7 @@
   sefcontext:
     path: "{{ ldap_datadir }}(/.*)?"
     setype: slapd_db_t
+
 - name: create ldap data directory
   file:
     path: "{{ ldap_datadir }}"
@@ -21,6 +22,7 @@
     group: ldap
     seuser: _default
     setype: _default
+
 - name: link ldap data directory
   file:
     path: /srv/ldap
@@ -34,17 +36,18 @@
 - import_role:
     name: sftpuser
   vars:
-    chroot: /export/backup
+    chroot: /srv/backup
     user: backup
     publickeys: "{{ backup_publickeys }}"
 
 - name: create backup directory
   file:
-    path: /export/backup
+    path: "{{ ldap_backupdir }}"
     state: directory
     mode: 0750
     owner: root
     group: backup
+
 - name: link backup directory
   file:
     path: /srv/backup
@@ -53,6 +56,8 @@
     owner: root
     group: "{{ ansible_wheel }}"
     follow: false
+  when: ldap_backupdir != "/srv/backup"
+
 - name: copy backup script
   copy:
     dest: /usr/local/sbin/ldap-backup
@@ -60,6 +65,7 @@
     mode: 0755
     owner: root
     group: "{{ ansible_wheel }}"
+
 - name: create backup cron job
   cron:
     name: ldap-backup