Refactor and cleanup OIDC, desktop, and web-app roles

- Improved OIDC variable definitions (12_oidc.yml)
- Added account/security/profile URLs
- Restructured web-app-desktop tasks and JS handling
- Introduced oidc.js and iframe.js with runtime loader
- Fixed nginx.conf, LDAP, and healthcheck templates spacing
- Improved Lua injection for CSP and snippets
- Fixed typos (WordPress, receive, etc.)
- Added silent-check-sso nginx location

Conversation: https://chatgpt.com/share/68ae0060-4fac-800f-9f02-22592a4087d3
This commit is contained in:
2025-08-26 20:44:05 +02:00
parent ce033c370a
commit c182ecf516
33 changed files with 543 additions and 146 deletions

View File

@@ -0,0 +1,17 @@
- name: Deploy {{ js_file_name }}
template:
src: "javascript/{{ js_file_name }}.j2"
dest: "{{ DESKTOP_JS_SERVER_DIR }}/{{ js_file_name }}"
owner: "{{ NGINX.USER }}"
group: "{{ NGINX.USER }}"
mode: '0644'
- name: Get stat for {{ js_file_name }}
stat:
path: "{{ DESKTOP_JS_SERVER_DIR }}/{{ js_file_name }}"
register: javascript_file_stat
- name: Update javascript_file_version with highest mtime
set_fact:
javascript_file_version: >-
{{ [ (javascript_file_version | default(0) | int), (javascript_file_stat.stat.mtime | int) ] | max }}