---

# creates realm/clients on shared keycloak service
#   - connect-realm: configuration to use with connect/wordpress

# Parameters:
#   playbook inventory
#     stage := the type of the stage (e.g. dev, int, qa, prod)
#     tenant_id := (unique key for the tenant, e.g. customer)
#     cluster_name := (business name for the cluster, e.g. product, department )
#     cluster_size := (WIP node count for the cluster)
#     cluster_services_str := (services to setup, e.g. 'connect,wordpress')
#   playbook roles (keycloak / oidc)
#     current_realm_name :=
#     current_realm_display_name :=
#   smardigo message callback
#     scope_id := (scope id of the management process)
#     process_instance_id := (process instance id of the management process)
#     smardigo_management_action := (smardigo management action anme of the management process)

#############################################################
#   Creating inventory dynamically for given parameters
#############################################################

- hosts: localhost
  gather_facts: false
  connection: local

  pre_tasks:
    - name: "Check if ansible version is at least 2.10.x"
      assert:
        that:
          - ansible_version.major >= 2
          - ansible_version.minor >= 10
        msg: "The ansible version has to be at least ({{ ansible_version.full }})"
    - set_fact:
        cluster_services: "{{ cluster_services_str | split(',') }}"

  tasks:
    - name: Add hosts
      add_host:
        name: "{{ stage }}-{{ tenant_id }}-{{ cluster_name }}-{{ '%02d' | format(item|int) }}"
        groups: "{{ ['stage_' + stage ] + cluster_services }}"
      with_sequence: start=1 end={{ cluster_size | default(1) }}
      changed_when: False

#############################################################
# Setup realms for created inventory
#############################################################

- hosts: "stage_{{ stage }}"
  serial: "{{ serial_number | default(1) }}"
  gather_facts: false

  collections:
    - hetzner.hcloud
    - community.general

  pre_tasks:
    - name: "Import autodiscover pre-tasks"
      include_tasks: tasks/autodiscover_pre_tasks.yml

  tasks:
    - name: "Delete client in realm <{{ current_realm_name }}>"
      include_role:
        name: keycloak
        tasks_from: _delete_client
      vars:
        realm_name: "{{ current_realm_name }}"
        client_name: "{{ cluster_name }}"

#############################################################
# Sending smardigo management message to process
#############################################################

- hosts: "stage_{{ stage }}"
  serial: "{{ serial_number | default(1) }}"
  gather_facts: false
  connection: local
  run_once: true
  vars:
    connect_jwt_username: "{{ management_admin_username }}"

  tasks:
    - name: "Sending smardigo management message to <{{ smardigo_management_url }}>"
      include_tasks: tasks/smardigo_management_message.yml