Updated user logic

2025-08-29 15:06:26 +02:00 · 2025-07-02 18:29:53 +02:00
parent 9cf18cae0e
commit 03db141316
42 changed files with 166 additions and 79 deletions
--- a/roles/docker-bluesky/meta/users.yml
+++ b/roles/docker-bluesky/meta/users.yml
@@ -0,0 +1,3 @@
+users:
+  administrator:
+    email:          "administrator@{{ primary_domain }}"
--- a/roles/docker-bluesky/vars/configuration.yml
+++ b/roles/docker-bluesky/vars/configuration.yml
@@ -1,6 +1,3 @@
-users:
-  administrator:
-    email:          "administrator@{{ primary_domain }}"
 images:
  pds:              "ghcr.io/bluesky-social/pds:latest"
 pds:
--- a/roles/docker-compose/vars/configuration.yml
+++ b/roles/docker-compose/vars/configuration.yml
--- a/roles/docker-espocrm/meta/users.yml
+++ b/roles/docker-espocrm/meta/users.yml
@@ -0,0 +1,6 @@
+users:
+  administrator:
+    username:         "administrator"
+  contact:
+    description:      "General contact account"
+    username:         "contact"
--- a/roles/docker-espocrm/vars/configuration.yml
+++ b/roles/docker-espocrm/vars/configuration.yml
@@ -1,11 +1,5 @@
 images:              
  espocrm:            "espocrm/espocrm:latest"
-users:
-  administrator:
-    username:         "administrator"
-  contact:
-    description:      "General contact account"
-    username:         "contact"
 features:
  matomo:             true
  css:                false
--- a/roles/docker-keycloak/meta/users.yml
+++ b/roles/docker-keycloak/meta/users.yml
@@ -0,0 +1,3 @@
+users:
+  administrator:
+    username:         "administrator"
--- a/roles/docker-keycloak/vars/configuration.yml
+++ b/roles/docker-keycloak/vars/configuration.yml
@@ -1,8 +1,5 @@
 images: 
  keycloak:           "quay.io/keycloak/keycloak:latest"
-users:
-  administrator:
-    username:         "administrator"
 import_realm:         True                                # If True realm will be imported. If false skip.
 credentials:
 features:
--- a/roles/docker-ldap/meta/users.yml
+++ b/roles/docker-ldap/meta/users.yml
@@ -0,0 +1,3 @@
+users:  
+  administrator:
+    username:     "administrator"
--- a/roles/docker-ldap/vars/configuration.yml
+++ b/roles/docker-ldap/vars/configuration.yml
@@ -6,9 +6,6 @@ network:
  public:         False                               # Set to true in inventory file if you want to expose the LDAP port to the internet
 hostname:         "ldap"                              # Hostname of the LDAP Server in the central_ldap network
 webinterface:     "lam"                               # The webinterface which should be used. Possible: lam and phpldapadmin
-users:  
-  administrator:
-    username:     "administrator"
 credentials:
 features:
  ldap:           true
--- a/roles/docker-listmonk/meta/users.yml
+++ b/roles/docker-listmonk/meta/users.yml
@@ -0,0 +1,7 @@
+users:
+  administrator:
+    username:               "administrator"
+  bounce:
+    username:               "bounce"
+  newsletter:
+    username:               "newsletter"
--- a/roles/docker-listmonk/vars/configuration.yml
+++ b/roles/docker-listmonk/vars/configuration.yml
@@ -1,12 +1,5 @@
 images:
  listmonk:                 "listmonk/listmonk:latest"
-users:
-  administrator:
-    username:               "administrator"
-  bounce:
-    username:               "bounce"
-  newsletter:
-    username:               "newsletter"
 public_api_activated:       False                                 # Security hole. Can be used for spaming
 version:                    "latest"                              # Docker Image version
 features:
--- a/roles/docker-mailu/meta/users.yml
+++ b/roles/docker-mailu/meta/users.yml
@@ -0,0 +1,3 @@
+users:
+  administrator:
+    email:                "administrator@{{ primary_domain }}"   # Administrator Email for DNS Records
--- a/roles/docker-mailu/vars/configuration.yml
+++ b/roles/docker-mailu/vars/configuration.yml
@@ -1,7 +1,4 @@
 version:                  "2024.06"                         # Docker Image Version
-users:
-  administrator:
-    email:                "administrator@{{ primary_domain }}"   # Administrator Email for DNS Records
 oidc:
  email_by_username:      true                              # If true, then the mail is set by the username. If wrong then the OIDC user email is used
  enable_user_creation:   true                              # Users will be created if not existing
--- a/roles/docker-matrix/meta/users.yml
+++ b/roles/docker-matrix/meta/users.yml
@@ -0,0 +1,3 @@
+users:
+  administrator:
+    username:         "administrator"
--- a/roles/docker-matrix/vars/configuration.yml
+++ b/roles/docker-matrix/vars/configuration.yml
@@ -1,9 +1,6 @@
 images:
  synapse:            "matrixdotorg/synapse:latest"
  element:            "vectorim/element-web:latest"
-users:
-  administrator:
-    username:         "administrator"
 playbook_tags:        "setup-all,start"                  # For the initial update use: install-all,ensure-matrix-users-created,start
 server_name:          "{{primary_domain}}"               # Adress for the account names etc.
 synapse:
--- a/roles/docker-moodle/meta/users.yml
+++ b/roles/docker-moodle/meta/users.yml
@@ -0,0 +1,3 @@
+users:
+  administrator:
+    username:         "administrator"
--- a/roles/docker-moodle/vars/configuration.yml
+++ b/roles/docker-moodle/vars/configuration.yml
@@ -1,7 +1,4 @@
 site_titel:           "Academy on {{primary_domain}}"
-users:
-  administrator:
-    username:         "administrator"
 version:              "4.5"                                 # Latest LTS - Necessary for OIDC
 features:
  matomo:             true
--- a/roles/docker-nextcloud/meta/users.yml
+++ b/roles/docker-nextcloud/meta/users.yml
@@ -0,0 +1,5 @@
+users:      
+  administrator:
+    username:                  "administrator"
+  no-reply:
+    username: "no-reply"
--- a/roles/docker-nextcloud/vars/configuration.yml
+++ b/roles/docker-nextcloud/vars/configuration.yml
@@ -27,11 +27,6 @@ features:
  ldap:                         true
  oidc:                         true
  central_database:             true
-users:      
-  administrator:
-    username:                  "administrator"
-  no-reply:
-    username: "no-reply"
 default_quota:                 '1000000000'                                     # Quota to assign if no quota is specified in the OIDC response (bytes)
 legacy_login_mask:   
  enabled:                      False                                           # If true, then legacy  login mask is shown. Otherwise just SSO
--- a/roles/docker-pgadmin/meta/users.yml
+++ b/roles/docker-pgadmin/meta/users.yml
@@ -0,0 +1,3 @@
+users:
+  administrator:
+    email:                "administrator@{{ primary_domain }}"
--- a/roles/docker-pgadmin/vars/configuration.yml
+++ b/roles/docker-pgadmin/vars/configuration.yml
@@ -1,9 +1,6 @@
 version:                  "latest"
 server_mode:              False                             # If true then the preconfigured database file is loaded. Recommended False. True is a security risk.
 master_password_required: True                              # Master password is required. Recommended True. False is a security risk.
-users:
-  administrator:
-    email:                "administrator@{{ primary_domain }}"
 oauth2_proxy:
  application:            "application"
  port:                   "80"
--- a/roles/docker-wordpress/meta/users.yml
+++ b/roles/docker-wordpress/meta/users.yml
@@ -0,0 +1,4 @@
+users:                                                            # Credentials
+  administrator:                                                  # Wordpress administrator
+    username:         "administrator"
+    email:            "administrator@{{ primary_domain }}"
--- a/roles/docker-wordpress/vars/configuration.yml
+++ b/roles/docker-wordpress/vars/configuration.yml
@@ -1,8 +1,4 @@
 title:                "Blog"                                      # Wordpress titel
-users:                                                            # Credentials
-  administrator:                                                  # Wordpress administrator
-    username:         "administrator"
-    email:            "administrator@{{ primary_domain }}"
 plugins:
  wp-discourse:
    enabled:          "{{ 'discourse' in group_names | lower }}"
--- a/roles/docker-yourls/meta/users.yml
+++ b/roles/docker-yourls/meta/users.yml
@@ -0,0 +1,3 @@
+users:
+  administrator:
+    username:         "administrator"
--- a/roles/docker-yourls/vars/configuration.yml
+++ b/roles/docker-yourls/vars/configuration.yml
@@ -1,6 +1,3 @@
-users:
-  administrator:
-    username:         "administrator"
 version:              "latest"
 oauth2_proxy:  
  application:        "application"
--- a/roles/nginx/vars/configuration.yml
+++ b/roles/nginx/vars/configuration.yml
@@ -1,7 +0,0 @@
-users:
-  sld:
-    description: "Auto Generated Account to reserve the SLD"
-    username: "{{ primary_domain.split('.')[0] }}"
-  tld:
-    description: "Auto Generated Account to reserve the TLD"
-    username: "{{ primary_domain.split('.')[1] }}"
--- a/roles/user-administrator/vars/configuration.yml
+++ b/roles/user-administrator/vars/configuration.yml
--- a/roles/user/vars/configuration.yml
+++ b/roles/user/vars/configuration.yml
@@ -1,5 +1,11 @@
 # Reserved usernames
 users:
+  sld:
+    description: "Auto Generated Account to reserve the SLD"
+    username: "{{ primary_domain.split('.')[0] }}"
+  tld:
+    description: "Auto Generated Account to reserve the TLD"
+    username: "{{ primary_domain.split('.')[1] }}"
  root:
    username: root
    uid: 0