gitea-admin
/
hetzner-ansible
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
prodnso
main
qa
feature/DEV-655
feature/SC-124
feature/SC-55
feature/DEV-470_2nd
feature/DEV-380_2nd
feature/DEV-380
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7e79a07635'
${ noResults }
hetzner-ansible/roles/keycloak/tasks/_delete_client.yml

66 lines
1.9 KiB
YAML
Raw Blame History

---
# Parameters:
# playbook inventory
# realm_name := name of the realm to delete the client from
# client_name := client name to delete
- name: "Authenticate with Keycloak server"
uri:
url: "{{ keycloak_server_url }}/auth/realms/master/protocol/openid-connect/token"
method: POST
body_format: form-urlencoded
body: 'username={{ keycloak_admin_username }}&password={{ keycloak_admin_password }}&client_id=admin-cli&grant_type=password'
retries: 5
delay: 5
register: keycloak_authentication
delegate_to: 127.0.0.1
become: false
- name: "Read clients from realm {{ realm_name }}"
uri:
url: "{{ keycloak_server_url }}/auth/admin/realms/{{ realm_name }}/clients"
method: GET
headers:
Authorization: "Bearer {{ keycloak_authentication.json.access_token }}"
status_code: [200]
register: realm_clients
delegate_to: 127.0.0.1
become: false
- name: "Save clients from realm as variable (fact)"
set_fact:
realm_clients_json: "{{ realm_clients.json }}"
delegate_to: 127.0.0.1
become: false
- name: "Saving client <{{ client_name }}> from realm <{{ realm_name }}>"
set_fact:
realm_client_id: "{{ realm_clients_json | json_query(jmesquery) | first | default('-') }}"
vars:
jmesquery: '[?clientId==`{{ client_name }}`].id'
delegate_to: 127.0.0.1
become: false
- name: "Printing client <{{ client_name }}> from realm <{{ realm_name }}>"
debug:
msg: "{{ realm_client_id }}"
delegate_to: 127.0.0.1
become: false
when:
- debug
- name: "Deleting client <{{ client_name }}> for realm <{{ realm_name }}>"
uri:
url: "{{ keycloak_server_url }}/auth/admin/realms/{{ realm_name }}/clients/{{ realm_client_id }}"
method: DELETE
body_format: json
headers:
Authorization: "Bearer {{ keycloak_authentication.json.access_token }} "
status_code: [204]
when:
realm_client_id != '-'
changed_when: True
delegate_to: 127.0.0.1
become: false
Reference in New Issue View Git Blame Copy Permalink