From 123727acf051a0935ea4dd60c9aa106d4188e0f1 Mon Sep 17 00:00:00 2001
From: Andrea Dell'Amico <andrea.dellamico@isti.cnr.it>
Date: Mon, 12 Jul 2021 13:50:59 +0200
Subject: [PATCH] OIDC env variables.

---
 defaults/main.yml                         | 17 +++++++++++++++--
 templates/open-asfa-docker-compose.yml.j2 |  5 +++++
 2 files changed, 20 insertions(+), 2 deletions(-)

diff --git a/defaults/main.yml b/defaults/main.yml
index 210a9b5..c19bc49 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -30,5 +30,18 @@ open_asfa_pgadmin_email: 'noreply@example.com'
 #open_asfa_pgadmin_default_pwd: 'Use a vault'
 open_asfa_pgadmin_inactivity_timeout: '1200'
 
-open_asfa_psql_db_data: 
-  - { db_host: '{{ open_asfa_db_host }}', pgsql_version: '{{ open_asfa_db_pg_version }}', name: '{{ open_asfa_db_name }}', encoding: 'UTF8', user: '{{ open_asfa_db_user }}', roles: 'CREATEDB,NOSUPERUSER', pwd: '{{ open_asfa_db_pwd }}', allowed_hosts: '{{ open_asfa_db_allowed_hosts }}' }
+open_asfa_keylocak_auth_url: http://localhost:8080/auth/
+open_asfa_keycloak_client_secret: 'use a vault'
+open_asfa_keycloak_realm: 'realm'
+open_asfa_keycloak_client_name: 'asfa_client_name'
+open_asfa_keycloak_client_id: 'asfa_client_id'
+
+open_asfa_psql_db_data:
+  - db_host: '{{ open_asfa_db_host }}'
+    pgsql_version: '{{ open_asfa_db_pg_version }}'
+    name: '{{ open_asfa_db_name }}'
+    encoding: 'UTF8'
+    user: '{{ open_asfa_db_user }}'
+    roles: 'CREATEDB,NOSUPERUSER'
+    pwd: '{{ open_asfa_db_pwd }}'
+    allowed_hosts: '{{ open_asfa_db_allowed_hosts }}'
diff --git a/templates/open-asfa-docker-compose.yml.j2 b/templates/open-asfa-docker-compose.yml.j2
index 47bd8f2..8297d04 100644
--- a/templates/open-asfa-docker-compose.yml.j2
+++ b/templates/open-asfa-docker-compose.yml.j2
@@ -23,6 +23,11 @@ services:
       SCHEMA: {{ open_asfa_db_name }}
       DB_USER: {{ open_asfa_db_user }}
       DB_PASSWORD: {{ open_asfa_db_pwd }}
+      AUTH_URL: {{ open_asfa_keylocak_auth_url }}
+      SECRET: {{ open_asfa_keycloak_client_secret }}
+      REALM: {{ open_asfa_keycloak_realm }}
+      CLIENT: {{ open_asfa_keycloak_client_name }}
+      CLIENT_ID: {{ open_asfa_keycloak_client_id }}
     deploy:
       mode: replicated
       replicas: 1