Kevin Veen-Birkenbach
4fa1c6cfbd
Highlights
- Quote all file modes as strings ("0755"/"0770") across multiple roles to avoid YAML octal quirks and improve portability.
- Keycloak: introduce actions.{import_realm,update_ldap_bind} feature flags and wire them via vars/config.
- Implement idempotent LDAP bind updater (tasks/03_update-ldap-bind.yml):
* kcadm login with no_log protection,
* fetch LDAP UserStorage component by name,
* compare current bindDn/bindCredential and update only when changed.
- Keycloak realm import template: keep providerId="ldap" and set name from keycloak_ldap_component_name.
- Centralize Keycloak readiness check in tasks/main.yml; remove duplicate waits from 02_update_client_redirects.yml and 04_ssh_public_key.yml.
- 01_import.yml: fix typo (keycloak), quote modes, tidy spacing, and replace Jinja-in-Jinja fileglob with concatenation.
- 02_update_client_redirects.yml: correct assert fail_msg filename; keep login-first flow.
- Minor template/vars tidy-ups (spacing, comments, consistent variable usage).
Files touched (excerpt)
- roles/*/*: replace 0755/0770 → "0755"/"0770"
- roles/web-app-keycloak/config/main.yml: add actions map
- roles/web-app-keycloak/vars/main.yml: unify Keycloak vars and feature flags
- roles/web-app-keycloak/tasks/{01_import,02_update_client_redirects,03_update-ldap-bind,04_ssh_public_key,main}.yml
- roles/web-app-keycloak/templates/{docker-compose.yml.j2,import/realm.json.j2}
https://chatgpt.com/share/689bda16-b138-800f-8258-e13f6d7d8239
OpenProject
Description
Transform your project management with OpenProject, a vibrant and collaborative tool that brings clarity and energy to your planning, tracking, and team communication. Experience streamlined workflows and an innovative platform that propels your projects forward.
Overview
Designed for simplicity, this role automates everything needed to run OpenProject in a containerized environment. It configures essential services such as the application itself, a PostgreSQL database, reverse proxy, and optional LDAP integration for identity management.
Purpose
The purpose of this role is to reduce the complexity of setting up OpenProject with modern production‐ready defaults. By combining Docker Compose and Ansible automation, it enables a hands‐off setup for both small teams and larger internal infrastructures.
Features
-
Work Package Management:
Create, assign, track, and prioritize tasks and issues with customizable workflows that keep your project organized and on schedule. -
Gantt Charts & Timelines:
Visualize project schedules and dependencies using intuitive Gantt charts and timeline views, enabling effective planning and resource allocation. -
Agile Boards & Scrum/Kanban Integration:
Manage agile projects using Scrum or Kanban boards, track progress through sprints, and maintain a clear overview of work in progress. -
Time Tracking & Cost Management:
Record time spent on tasks to monitor productivity and generate detailed cost reports to manage budgets effectively. -
Collaboration & Document Management:
Facilitate team collaboration with built-in discussion forums, document sharing, and version control, ensuring all project documentation remains up to date. -
Robust Reporting & Dashboards:
Gain insights through comprehensive reporting features and customizable dashboards that help monitor project performance and key metrics. -
Custom Plugins & Extensibility:
Extend functionality with a wide variety of plugins and integrations, or create your own to tailor OpenProject to your unique workflow. -
Role-Based Access Control & Security:
Manage user permissions precisely to ensure that sensitive information and critical functions remain secure.
Developer Notes
See the Development.md file for how to inspect and modify live settings inside the container, including full LDAP and SMTP configuration via the Rails console.
Credits 📝
Developed and maintained by Kevin Veen-Birkenbach
Learn more at www.veen.world
Part of the Infinito.Nexus Project
License: Infinito.Nexus NonCommercial License (CNCL)