forked from StackStorm/ansible-st2
-
Notifications
You must be signed in to change notification settings - Fork 0
/
main.yml
41 lines (32 loc) · 1.36 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
---
# EWC PackageCloud repository to install: enterprise, enterprise-unstable, staging-enterprise, staging-enterprise-unstable.
ewc_repo: "enterprise"
# `present` to install available package, `latest` to get automatic updates, or pin it to numeric version like `2.2.0`.
ewc_version: latest
# used only if 'ewc_version' is numeric
ewc_revision: 1
# EWC license to install EWC enterprise bits
ewc_license: null
# Specify roles and assignments for EWC RBAC.
# Roles are pushed as YML files to /opt/stackstorm/rbac/roles
# Assignments are pushed as YML files to /opt/stackstorm/rbac/assignments/
# The schema for roles and assignments follow the exact schema definition
# define in https://ewc-docs.extremenetworks.com/rbac.html#defining-roles-and-permission-grants
# and https://ewc-docs.extremenetworks.com/rbac.html#defining-user-role-assignments.
ewc_rbac_default_roles: []
ewc_rbac_default_assignments:
- name: "{{ st2_system_user }}"
roles:
- admin
- name: "{{ st2_auth_username }}"
roles:
- system_admin
ewc_rbac:
roles: "{{ ewc_rbac_default_roles }}"
assignments: "{{ ewc_rbac_default_assignments }}"
# By specifying a valid configuration for LDAP,
# (See https://ewc-docs.extremenetworks.com/authentication.html#ldap )
# LDAP auth backend is setup for st2 and EWC.
# Note that you just need to provide the backend_kwargs.
ewc_ldap:
backend_kwargs: {}