From 09e667a34dcd904f2a6bfd7a4716a85aaaec69b6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:00:34 +0200 Subject: [PATCH 01/12] [task-183] [mod] authelia-for-wiki_js --- roles/authelia-for-wiki_js/tasks/main.json | 10 ++++++++++ .../templates/authelia-client-conf.json.j2 | 2 +- 2 files changed, 11 insertions(+), 1 deletion(-) diff --git a/roles/authelia-for-wiki_js/tasks/main.json b/roles/authelia-for-wiki_js/tasks/main.json index 185f052..d39307f 100644 --- a/roles/authelia-for-wiki_js/tasks/main.json +++ b/roles/authelia-for-wiki_js/tasks/main.json @@ -1,4 +1,14 @@ [ + { + "name": "configuration | compute client secret hash", + "become" true, + "ansible.builtin.command": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_wiki_js_client_secret}}" + }, + "set_fact": { + "temp_authelia_for_wiki_js_client_secret_hashed": "{{ command_output.stdout }}" + } + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-wiki_js/templates/authelia-client-conf.json.j2 b/roles/authelia-for-wiki_js/templates/authelia-client-conf.json.j2 index 8537aea..bdc2046 100644 --- a/roles/authelia-for-wiki_js/templates/authelia-client-conf.json.j2 +++ b/roles/authelia-for-wiki_js/templates/authelia-client-conf.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_wiki_js_client_id}}", - "client_secret": "{{var_authelia_for_wiki_js_client_secret}}", + "client_secret": "{{temp_authelia_for_wiki_js_client_secret_hashed}}", "client_name": "Wiki.js", "public": false, "authorization_policy": "one_factor", From 13561a20190c0a2fedae8b9f70568df8eea1289b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:07:49 +0200 Subject: [PATCH 02/12] [task-183] [mod] authelia-for-wiki_js --- roles/authelia-for-wiki_js/tasks/main.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/roles/authelia-for-wiki_js/tasks/main.json b/roles/authelia-for-wiki_js/tasks/main.json index d39307f..54e3961 100644 --- a/roles/authelia-for-wiki_js/tasks/main.json +++ b/roles/authelia-for-wiki_js/tasks/main.json @@ -1,7 +1,7 @@ [ { "name": "configuration | compute client secret hash", - "become" true, + "become": true, "ansible.builtin.command": { "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_wiki_js_client_secret}}" }, From 05d1c0a8c1141bc1f8116b64f5ca1d4d226d4f3e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:10:47 +0200 Subject: [PATCH 03/12] [task-183] [mod] authelia-for-wiki_js --- roles/authelia-for-wiki_js/tasks/main.json | 4 +--- .../templates/authelia-client-conf.json.j2 | 2 +- 2 files changed, 2 insertions(+), 4 deletions(-) diff --git a/roles/authelia-for-wiki_js/tasks/main.json b/roles/authelia-for-wiki_js/tasks/main.json index 54e3961..2fe07d8 100644 --- a/roles/authelia-for-wiki_js/tasks/main.json +++ b/roles/authelia-for-wiki_js/tasks/main.json @@ -5,9 +5,7 @@ "ansible.builtin.command": { "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_wiki_js_client_secret}}" }, - "set_fact": { - "temp_authelia_for_wiki_js_client_secret_hashed": "{{ command_output.stdout }}" - } + "register": "temp_authelia_for_wiki_js_client_secret_hashed" }, { "name": "configuration | emplace", diff --git a/roles/authelia-for-wiki_js/templates/authelia-client-conf.json.j2 b/roles/authelia-for-wiki_js/templates/authelia-client-conf.json.j2 index bdc2046..1117cb2 100644 --- a/roles/authelia-for-wiki_js/templates/authelia-client-conf.json.j2 +++ b/roles/authelia-for-wiki_js/templates/authelia-client-conf.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_wiki_js_client_id}}", - "client_secret": "{{temp_authelia_for_wiki_js_client_secret_hashed}}", + "client_secret": "{{temp_authelia_for_wiki_js_client_secret_hashed.stdout}}", "client_name": "Wiki.js", "public": false, "authorization_policy": "one_factor", From 27ac5d717374cf906f45f289caccb42b65cdf11f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:13:25 +0200 Subject: [PATCH 04/12] [task-183] [mod] authelia-for-wiki_js --- roles/authelia-for-wiki_js/tasks/main.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/roles/authelia-for-wiki_js/tasks/main.json b/roles/authelia-for-wiki_js/tasks/main.json index 2fe07d8..918444a 100644 --- a/roles/authelia-for-wiki_js/tasks/main.json +++ b/roles/authelia-for-wiki_js/tasks/main.json @@ -2,8 +2,8 @@ { "name": "configuration | compute client secret hash", "become": true, - "ansible.builtin.command": { - "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_wiki_js_client_secret}}" + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_wiki_js_client_secret}} | cut --delimiter=' ' --fields='2-'" }, "register": "temp_authelia_for_wiki_js_client_secret_hashed" }, From ff436ae67cc429b90f90f4b007d49d736e9eb2bb Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:20:55 +0200 Subject: [PATCH 05/12] [task-183] [mod] authelia-for-dokuwiki --- roles/authelia-for-dokuwiki/tasks/main.json | 8 ++++++++ .../templates/authelia-client-conf.json.j2 | 2 +- 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/roles/authelia-for-dokuwiki/tasks/main.json b/roles/authelia-for-dokuwiki/tasks/main.json index 9bcb960..335283e 100644 --- a/roles/authelia-for-dokuwiki/tasks/main.json +++ b/roles/authelia-for-dokuwiki/tasks/main.json @@ -1,4 +1,12 @@ [ + { + "name": "configuration | compute client secret hash", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_dokuwiki_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_dokuwiki_client_secret_hashed" + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-dokuwiki/templates/authelia-client-conf.json.j2 b/roles/authelia-for-dokuwiki/templates/authelia-client-conf.json.j2 index 2605a0f..447272c 100644 --- a/roles/authelia-for-dokuwiki/templates/authelia-client-conf.json.j2 +++ b/roles/authelia-for-dokuwiki/templates/authelia-client-conf.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_dokuwiki_client_id}}", - "client_secret": "{{var_authelia_for_dokuwiki_client_secret}}", + "client_secret": "{{temp_authelia_for_dokuwiki_client_secret_hashed.stdout}}", "client_name": "DokuWiki", "public": false, "authorization_policy": "one_factor", From a9e1070d463a05f0ee85c8bf71e75ef77c187a1a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:23:40 +0200 Subject: [PATCH 06/12] [task-183] [mod] authelia-for-forgejo --- roles/authelia-for-forgejo/tasks/main.json | 8 ++++++++ .../templates/authelia-client-conf.json.j2 | 2 +- 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/roles/authelia-for-forgejo/tasks/main.json b/roles/authelia-for-forgejo/tasks/main.json index a0aa05d..0bea790 100644 --- a/roles/authelia-for-forgejo/tasks/main.json +++ b/roles/authelia-for-forgejo/tasks/main.json @@ -1,4 +1,12 @@ [ + { + "name": "configuration | compute client secret hash", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_forgejo_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_forgejo_client_secret_hashed" + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-forgejo/templates/authelia-client-conf.json.j2 b/roles/authelia-for-forgejo/templates/authelia-client-conf.json.j2 index 3f0e1c7..40260c5 100644 --- a/roles/authelia-for-forgejo/templates/authelia-client-conf.json.j2 +++ b/roles/authelia-for-forgejo/templates/authelia-client-conf.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_forgejo_client_id}}", - "client_secret": "{{var_authelia_for_forgejo_client_secret}}", + "client_secret": "{{temp_authelia_for_forgejo_client_secret_hashed.stdout}}", "client_name": "Forgejo", "public": false, "authorization_policy": "one_factor", From 40fbc3d001546efdee5ba75901f7ac87b7298763 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:23:55 +0200 Subject: [PATCH 07/12] [task-183] [mod] authelia-for-gitlab --- roles/authelia-for-gitlab/tasks/main.json | 8 ++++++++ .../templates/authelia-client-conf.json.j2 | 2 +- 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/roles/authelia-for-gitlab/tasks/main.json b/roles/authelia-for-gitlab/tasks/main.json index 5790e65..e9d3220 100644 --- a/roles/authelia-for-gitlab/tasks/main.json +++ b/roles/authelia-for-gitlab/tasks/main.json @@ -1,4 +1,12 @@ [ + { + "name": "configuration | compute client secret hash", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_gitlab_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_gitlab_client_secret_hashed" + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-gitlab/templates/authelia-client-conf.json.j2 b/roles/authelia-for-gitlab/templates/authelia-client-conf.json.j2 index b5333c1..0b8c7dd 100644 --- a/roles/authelia-for-gitlab/templates/authelia-client-conf.json.j2 +++ b/roles/authelia-for-gitlab/templates/authelia-client-conf.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_gitlab_client_id}}", - "client_secret": "{{var_authelia_for_gitlab_client_secret}}", + "client_secret": "{{temp_authelia_for_gitlab_client_secret_hashed.stdout}}", "client_name": "GitLab", "public": false, "authorization_policy": "one_factor", From c54ef3281cb84e40042a2ce3f304778e223792e6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:25:00 +0200 Subject: [PATCH 08/12] [task-183] [mod] authelia-for-hedgedoc --- roles/authelia-for-hedgedoc/tasks/main.json | 8 ++++++++ .../templates/authelia-client-conf.json.j2 | 2 +- 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/roles/authelia-for-hedgedoc/tasks/main.json b/roles/authelia-for-hedgedoc/tasks/main.json index 23c6dab..d229a17 100644 --- a/roles/authelia-for-hedgedoc/tasks/main.json +++ b/roles/authelia-for-hedgedoc/tasks/main.json @@ -1,4 +1,12 @@ [ + { + "name": "configuration | compute client secret hash", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_hedgedoc_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_hedgedoc_client_secret_hashed" + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-hedgedoc/templates/authelia-client-conf.json.j2 b/roles/authelia-for-hedgedoc/templates/authelia-client-conf.json.j2 index f0c6af8..6fdd227 100644 --- a/roles/authelia-for-hedgedoc/templates/authelia-client-conf.json.j2 +++ b/roles/authelia-for-hedgedoc/templates/authelia-client-conf.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_hedgedoc_client_id}}", - "client_secret": "{{var_authelia_for_hedgedoc_client_secret}}", + "client_secret": "{{temp_authelia_for_hedgedoc_client_secret_hashed.stdout}}", "client_name": "Hedgedoc", "public": false, "authorization_policy": "one_factor", From 50b5dd63e25e983d325299668f4ed5394c76dd63 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:31:15 +0200 Subject: [PATCH 09/12] [task-183] [mod] authelia-for-owncloud --- roles/authelia-for-owncloud/tasks/main.json | 24 +++++++++++++++++++ .../authelia-client-conf-android.json.j2 | 2 +- .../authelia-client-conf-ios.json.j2 | 2 +- 3 files changed, 26 insertions(+), 2 deletions(-) diff --git a/roles/authelia-for-owncloud/tasks/main.json b/roles/authelia-for-owncloud/tasks/main.json index 1272bc8..7ddcc45 100644 --- a/roles/authelia-for-owncloud/tasks/main.json +++ b/roles/authelia-for-owncloud/tasks/main.json @@ -1,4 +1,28 @@ [ + { + "name": "configuration | compute client secret hash | web", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_owncloud_web_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_owncloud_web_client_secret_hashed" + }, + { + "name": "configuration | compute client secret hash | android", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_owncloud_android_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_owncloud_android_client_secret_hashed" + }, + { + "name": "configuration | compute client secret hash | ios", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_owncloud_ios_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_owncloud_ios_client_secret_hashed" + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-owncloud/templates/authelia-client-conf-android.json.j2 b/roles/authelia-for-owncloud/templates/authelia-client-conf-android.json.j2 index fab1372..a843b9f 100644 --- a/roles/authelia-for-owncloud/templates/authelia-client-conf-android.json.j2 +++ b/roles/authelia-for-owncloud/templates/authelia-client-conf-android.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_owncloud_android_client_id}}", - "client_secret": "{{var_authelia_for_owncloud_android_client_secret}}", + "client_secret": "{{temp_authelia_for_owncloud_android_client_secret_hashed.stdout}}", "client_name": "ownCloud | Android Client", "authorization_policy": "one_factor", "scopes": [ diff --git a/roles/authelia-for-owncloud/templates/authelia-client-conf-ios.json.j2 b/roles/authelia-for-owncloud/templates/authelia-client-conf-ios.json.j2 index ce465a9..5396bd5 100644 --- a/roles/authelia-for-owncloud/templates/authelia-client-conf-ios.json.j2 +++ b/roles/authelia-for-owncloud/templates/authelia-client-conf-ios.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_owncloud_ios_client_id}}", - "client_secret": "{{var_authelia_for_owncloud_ios_client_secret}}", + "client_secret": "{{temp_authelia_for_owncloud_ios_client_secret_hashed.stdout}}", "client_name": "ownCloud | iOS Client", "authorization_policy": "one_factor", "scopes": [ From 0eaf14609c54b457ed4e1e9c6c4602daf15bd03c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:32:43 +0200 Subject: [PATCH 10/12] [task-183] [mod] authelia-for-synapse --- roles/authelia-for-synapse/tasks/main.json | 8 ++++++++ .../templates/authelia-client-conf.json.j2 | 2 +- 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/roles/authelia-for-synapse/tasks/main.json b/roles/authelia-for-synapse/tasks/main.json index 25aa632..dd134d1 100644 --- a/roles/authelia-for-synapse/tasks/main.json +++ b/roles/authelia-for-synapse/tasks/main.json @@ -1,4 +1,12 @@ [ + { + "name": "configuration | compute client secret hash", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_synapse_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_synapse_client_secret_hashed" + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-synapse/templates/authelia-client-conf.json.j2 b/roles/authelia-for-synapse/templates/authelia-client-conf.json.j2 index 3f91cdf..245e75a 100644 --- a/roles/authelia-for-synapse/templates/authelia-client-conf.json.j2 +++ b/roles/authelia-for-synapse/templates/authelia-client-conf.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_synapse_client_id}}", - "client_secret": "{{var_authelia_for_synapse_client_secret}}", + "client_secret": "{{temp_authelia_for_synapse_client_secret_hashed.stdout}}", "client_name": "Synapse", "public": false, "authorization_policy": "one_factor", From d690a6454ad4c6ac4878a6865af9119339cae449 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 10:33:41 +0200 Subject: [PATCH 11/12] [task-183] [mod] authelia-for-vikunja --- roles/authelia-for-vikunja/tasks/main.json | 8 ++++++++ .../templates/authelia-client-conf.json.j2 | 2 +- 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/roles/authelia-for-vikunja/tasks/main.json b/roles/authelia-for-vikunja/tasks/main.json index 3067d3d..7759d34 100644 --- a/roles/authelia-for-vikunja/tasks/main.json +++ b/roles/authelia-for-vikunja/tasks/main.json @@ -1,4 +1,12 @@ [ + { + "name": "configuration | compute client secret hash", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_vikunja_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_vikunja_client_secret_hashed" + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-vikunja/templates/authelia-client-conf.json.j2 b/roles/authelia-for-vikunja/templates/authelia-client-conf.json.j2 index a288ae0..2db8bae 100644 --- a/roles/authelia-for-vikunja/templates/authelia-client-conf.json.j2 +++ b/roles/authelia-for-vikunja/templates/authelia-client-conf.json.j2 @@ -1,6 +1,6 @@ { "client_id": "{{var_authelia_for_vikunja_client_id}}", - "client_secret": "{{var_authelia_for_vikunja_client_secret}}", + "client_secret": "{{temp_authelia_for_vikunja_client_secret_hashed.stdout}}", "client_name": "Vikunja", "public": false, "authorization_policy": "one_factor", From f2766fcf43837ff5e103c3ebec05d16e7a290d68 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christian=20Fra=C3=9F?= Date: Sat, 26 Oct 2024 11:54:25 +0200 Subject: [PATCH 12/12] [task-183] [mod] authelia-for-owncloud --- roles/authelia-for-owncloud/defaults/main.json | 4 +++- roles/authelia-for-owncloud/tasks/main.json | 8 ++++++++ .../templates/authelia-client-conf-desktop.json.j2 | 4 ++-- roles/authelia-for-owncloud/vardef.json | 10 +++++++++- 4 files changed, 22 insertions(+), 4 deletions(-) diff --git a/roles/authelia-for-owncloud/defaults/main.json b/roles/authelia-for-owncloud/defaults/main.json index b12d86f..4daa968 100644 --- a/roles/authelia-for-owncloud/defaults/main.json +++ b/roles/authelia-for-owncloud/defaults/main.json @@ -4,5 +4,7 @@ "var_authelia_for_owncloud_android_client_id": "owncloud_android", "var_authelia_for_owncloud_android_client_secret": "REPLACE_ME", "var_authelia_for_owncloud_ios_client_id": "owncloud_ios", - "var_authelia_for_owncloud_ios_client_secret": "REPLACE_ME" + "var_authelia_for_owncloud_ios_client_secret": "REPLACE_ME", + "var_authelia_for_owncloud_desktop_client_id": "xdXOt13JKxym1B1QcEncf2XDkLAexMBFwiT9j6EfhhHFJhs2KM9jbjTmf8JBXE69", + "var_authelia_for_owncloud_desktop_client_secret": "UBntmLjC2yYCeHwsyj73Uwo9TAaecAetRwMw0xYcvNL9yRdLSUi0hUAHfvCHFeFh" } diff --git a/roles/authelia-for-owncloud/tasks/main.json b/roles/authelia-for-owncloud/tasks/main.json index 7ddcc45..99c0626 100644 --- a/roles/authelia-for-owncloud/tasks/main.json +++ b/roles/authelia-for-owncloud/tasks/main.json @@ -23,6 +23,14 @@ }, "register": "temp_authelia_for_owncloud_ios_client_secret_hashed" }, + { + "name": "configuration | compute client secret hash | desktop", + "become": true, + "ansible.builtin.shell": { + "cmd": "authelia crypto hash generate bcrypt --password {{var_authelia_for_owncloud_desktop_client_secret}} | cut --delimiter=' ' --fields='2-'" + }, + "register": "temp_authelia_for_owncloud_desktop_client_secret_hashed" + }, { "name": "configuration | emplace", "become": true, diff --git a/roles/authelia-for-owncloud/templates/authelia-client-conf-desktop.json.j2 b/roles/authelia-for-owncloud/templates/authelia-client-conf-desktop.json.j2 index 61b3e43..7558a71 100644 --- a/roles/authelia-for-owncloud/templates/authelia-client-conf-desktop.json.j2 +++ b/roles/authelia-for-owncloud/templates/authelia-client-conf-desktop.json.j2 @@ -1,6 +1,6 @@ { - "client_id": "xdXOt13JKxym1B1QcEncf2XDkLAexMBFwiT9j6EfhhHFJhs2KM9jbjTmf8JBXE69", - "client_secret": "UBntmLjC2yYCeHwsyj73Uwo9TAaecAetRwMw0xYcvNL9yRdLSUi0hUAHfvCHFeFh", + "client_id": "{{var_authelia_for_owncloud_desktop_client_id}}", + "client_secret": "{{temp_authelia_for_owncloud_desktop_client_secret_hashed.stdout}}", "client_name": "ownCloud | Desktop Client", "authorization_policy": "one_factor", "scopes": [ diff --git a/roles/authelia-for-owncloud/vardef.json b/roles/authelia-for-owncloud/vardef.json index 8bf599d..531604d 100644 --- a/roles/authelia-for-owncloud/vardef.json +++ b/roles/authelia-for-owncloud/vardef.json @@ -13,13 +13,21 @@ }, "android_client_secret": { "type": "string", - "mandatory": false + "mandatory": true }, "ios_client_id": { "type": "string", "mandatory": false }, "ios_client_secret": { + "type": "string", + "mandatory": true + }, + "dektop_client_id": { + "type": "string", + "mandatory": false + }, + "desktop_client_secret": { "type": "string", "mandatory": false }