kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-09-12 05:17:38 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
e57f3bfdc1f04c5a0085860df26d7cd2d383dd8b
computer-playbook/roles/web-app-xwiki/config/main.yml
Kevin Veen-Birkenbach 6418a462ec XWiki: LDAP/OIDC admin mapping, config mounts, and REST installs 
- LDAP: move settings to xwiki.cfg; enable trylocal (1/0), group_mapping to XWiki.XWikiAdminGroup,
  and mode_group_sync=always.
- OIDC: add groups claim request (oidc.userinfoclaims), map provider group to XWiki.XWikiAdminGroup,
  and use space-separated scopes.
- Compose: mount xwiki.cfg and xwiki.properties into /usr/local/xwiki.
- Extensions: wait for REST readiness; pre-check OIDC/LDAP extensions (URL-encoded IDs);
  install via REST job only if missing.
- Vars: strict mappings to LDAP.* and OIDC.* (no defaults), add XWIKI_ADMIN_GROUP and derived DNs.
- Config: expose ldap.local_enabled; tidy meta tags; README grammar update.

Conversation: https://chatgpt.com/share/68c2b8ad-4814-800f-b377-065f967998db
2025-09-11 13:55:53 +02:00

34 lines
674 B
YAML
Raw Blame History

credentials: {}
docker:
services:
redis:
enabled: false
database:
enabled: true
xwiki:
image: xwiki
version: stable-mariadb-tomcat
name: xwiki
backup:
no_stop_required: true
volumes:
data: "xwiki_data"
features:
matomo: true
css: true
desktop: true
central_database: true
logout: true
oidc: true
server:
csp:
whitelist: {}
flags: {}
domains:
canonical:
- "x.wiki.{{ PRIMARY_DOMAIN }}"
rbac:
roles: {}
ldap:
local_enabled: true # Allows local login if LDAP is down
Reference in New Issue View Git Blame Copy Permalink