From 7eac30127ade098fbdae3d635e2daebf06395457 Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 10:20:21 +0200 Subject: [PATCH 01/10] ipamodule_base_docs: Documentation: Fix default for delete_continue The default setting for delete_continue was True instead of true for delete_continue in the DOCUMENTATION section. --- plugins/doc_fragments/ipamodule_base_docs.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/plugins/doc_fragments/ipamodule_base_docs.py b/plugins/doc_fragments/ipamodule_base_docs.py index 97aaffddb5..59d95ca49f 100644 --- a/plugins/doc_fragments/ipamodule_base_docs.py +++ b/plugins/doc_fragments/ipamodule_base_docs.py @@ -56,5 +56,5 @@ class ModuleDocFragment(object): # pylint: disable=R0205,R0903 Continuous mode. Don't stop on errors. Valid only if `state` is `absent`. aliases: ["continue"] type: bool - default: True + default: true """ From 96209f6945c53b23047d18efd6b93f94395d35de Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 10:23:21 +0200 Subject: [PATCH 02/10] inventory/freeipa: Documentation: Fix version_added and drop plugin_type In the freeipa inventoty plugin, fix version to 1.13.0 and drop unknown tag plugin_type. --- plugins/inventory/freeipa.py | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/plugins/inventory/freeipa.py b/plugins/inventory/freeipa.py index f17421be55..8cb2ec5b4d 100644 --- a/plugins/inventory/freeipa.py +++ b/plugins/inventory/freeipa.py @@ -32,8 +32,7 @@ DOCUMENTATION = """ --- name: freeipa -plugin_type: inventory -version_added: "1.13" +version_added: "1.13.0" short_description: Compiles a dynamic inventory from IPA domain description: | Compiles a dynamic inventory from IPA domain, filters servers by role(s). From 43217b9e705a2c7c8e1e00cb219c2fcfa727a356 Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 10:25:11 +0200 Subject: [PATCH 03/10] cert: Fix short_description tag, add chain option, remove authors Several fixes for the DOCUMENTATION section: The short_description tag was 'short description', the chain option was missing and the unknown authers tag has been removed. --- plugins/modules/ipacert.py | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/plugins/modules/ipacert.py b/plugins/modules/ipacert.py index c88d4d1e47..6c9b760d4a 100644 --- a/plugins/modules/ipacert.py +++ b/plugins/modules/ipacert.py @@ -34,7 +34,7 @@ DOCUMENTATION = """ --- module: ipacert -short description: Manage FreeIPA certificates +short_description: Manage FreeIPA certificates description: Manage FreeIPA certificates extends_documentation_fragment: - ipamodule_base_docs @@ -67,6 +67,10 @@ description: Name of the issuing certificate authority. type: str required: false + chain: + description: Include certificate chain in output. + type: bool + required: false serial_number: description: | Certificate serial number. Cannot be used with `state: requested`. @@ -102,7 +106,6 @@ required: true type: str author: -authors: - Sam Morris (@yrro) - Rafael Guterres Jeffman (@rjeffman) """ From 74028bd36c9cf4f42308b3bf102412c218d950a9 Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 10:29:06 +0200 Subject: [PATCH 04/10] idoverrideuser: Docs: Fix sshpubkey element type, nomembers type The element type for sshpubkey was using 'element' instead of 'elements' also the type for nomembers was wrong in the DOCUMENTATION section. --- plugins/modules/ipaidoverrideuser.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/plugins/modules/ipaidoverrideuser.py b/plugins/modules/ipaidoverrideuser.py index 49412ebd90..9bae4c9312 100644 --- a/plugins/modules/ipaidoverrideuser.py +++ b/plugins/modules/ipaidoverrideuser.py @@ -87,7 +87,7 @@ sshpubkey: description: List of SSH public keys type: list - element: str + elements: str required: False aliases: ["ipasshpubkey"] certificate: @@ -113,7 +113,7 @@ description: | Suppress processing of membership attributes. Valid only if `state` is `absent`. - type: str + type: bool required: False aliases: ["no_members"] action: From 76251ead2ce325396f1a7837850235c7df2a5f53 Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 10:33:04 +0200 Subject: [PATCH 05/10] idp: Drop no_log from docs section, allow to log token_uri and keys_uri The no_log tag is only allowed in the argument_spec, but not in the DOCUMENTATION section. Set no_log=False for token_uri and keys_uri=keys_uri in the argument_spec to enforce logging. --- plugins/modules/ipaidp.py | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/plugins/modules/ipaidp.py b/plugins/modules/ipaidp.py index 8c0aea6b61..b30d60aabf 100644 --- a/plugins/modules/ipaidp.py +++ b/plugins/modules/ipaidp.py @@ -82,7 +82,6 @@ description: OAuth 2.0 client secret required: false type: str - no_log: true aliases: ["ipaidpclientsecret"] scope: description: OAuth 2.0 scope. Multiple scopes separated by space @@ -362,11 +361,11 @@ def main(): dev_auth_uri=dict(required=False, type="str", default=None, aliases=["ipaidpdevauthendpoint"]), token_uri=dict(required=False, type="str", default=None, - aliases=["ipaidptokenendpoint"]), + aliases=["ipaidptokenendpoint"], no_log=False), userinfo_uri=dict(required=False, type="str", default=None, aliases=["ipaidpuserinfoendpoint"]), keys_uri=dict(required=False, type="str", default=None, - aliases=["ipaidpkeysendpoint"]), + aliases=["ipaidpkeysendpoint"], no_log=False), issuer_url=dict(required=False, type="str", default=None, aliases=["ipaidpissuerurl"]), client_id=dict(required=False, type="str", default=None, From 14be339af0bf994a7e4c925775822a438ea47405 Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 10:39:04 +0200 Subject: [PATCH 06/10] service: Docs: Fix required for name, add delete_continue to services DOCUMENTATOIN section: Fix required for name, add missing delete_continue to services option. --- plugins/modules/ipaservice.py | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/plugins/modules/ipaservice.py b/plugins/modules/ipaservice.py index a9bcb2d9a5..1e270b5efa 100644 --- a/plugins/modules/ipaservice.py +++ b/plugins/modules/ipaservice.py @@ -44,7 +44,7 @@ description: The service to manage type: list elements: str - required: true + required: false aliases: ["service"] services: description: The list of service dicts. @@ -167,6 +167,13 @@ type: list elements: str aliases: ["ipaallowedtoperform_read_keys_hostgroup"] + delete_continue: + description: + Continuous mode. Don't stop on errors. + Valid only if `state` is `absent`. + required: false + type: bool + aliases: ["continue"] certificate: description: Base-64 encoded service certificate. required: false From 67df9e83c743e19b47e1273357e2c2a117980b5c Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 11:15:49 +0200 Subject: [PATCH 07/10] ipaclient_setup_nss: Documentation: Add default for selinux_works The default value for selinux_works was missing in the DOCUMENTATION section. --- roles/ipaclient/library/ipaclient_setup_nss.py | 1 + 1 file changed, 1 insertion(+) diff --git a/roles/ipaclient/library/ipaclient_setup_nss.py b/roles/ipaclient/library/ipaclient_setup_nss.py index 0bee3b5f89..052ac4506e 100644 --- a/roles/ipaclient/library/ipaclient_setup_nss.py +++ b/roles/ipaclient/library/ipaclient_setup_nss.py @@ -156,6 +156,7 @@ description: True if selinux status check passed required: false type: bool + default: false krb_name: description: The krb5 config file name type: str From 6b3fb78db6d1d71ed06819a2646a69c95ea89418 Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 11:17:52 +0200 Subject: [PATCH 08/10] ipareplica_prepare: Documentation: Fixed name of ipa_client_installed The ipa_client_installed option was named as client_configured in the DOCUMENTATION section. --- roles/ipareplica/library/ipareplica_prepare.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/roles/ipareplica/library/ipareplica_prepare.py b/roles/ipareplica/library/ipareplica_prepare.py index d4464a9389..3445b46ced 100644 --- a/roles/ipareplica/library/ipareplica_prepare.py +++ b/roles/ipareplica/library/ipareplica_prepare.py @@ -250,7 +250,7 @@ type: bool default: no required: no - client_configured: + ipa_client_installed: description: Was client configured already type: bool required: yes From 7b6bc32fa0d89fbaf4c666b2b16fa86246fc616c Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 11:31:13 +0200 Subject: [PATCH 09/10] tests/utils.py: Fix missing whitespace around arithmetic operator (E226) --- tests/utils.py | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/tests/utils.py b/tests/utils.py index 9e3d5e83be..666af7edb7 100644 --- a/tests/utils.py +++ b/tests/utils.py @@ -306,14 +306,14 @@ def check_details(self, expected_output, cmd, extra_cmds=None): if res.rc != 0: for output in expected_output: assert self.__is_text_on_data(output, res.stderr), ( - f"\n{'='*40}\nExpected: {output}\n{'='*40}\n" - + f"Output:\n{res.stderr}{'='*40}\n" + f"\n{'=' * 40}\nExpected: {output}\n{'=' * 40}\n" + + f"Output:\n{res.stderr}{'=' * 40}\n" ) else: for output in expected_output: assert self.__is_text_on_data(output, res.stdout), ( - f"\n{'='*40}\nExpected: {output}\n{'='*40}\n" - + f"Output:\n{res.stdout}{'='*40}\n" + f"\n{'=' * 40}\nExpected: {output}\n{'=' * 40}\n" + + f"Output:\n{res.stdout}{'=' * 40}\n" ) kdestroy(self.master) @@ -325,8 +325,8 @@ def check_notexists(self, members, cmd, extra_cmds=None): res = self.master.run(cmd) for member in members: assert not self.__is_text_on_data(member, res.stdout), ( - f"\n{'='*40}\nExpected: {member}\n{'='*40}\n" - + f"Output:\n{res.stdout}{'='*40}\n" + f"\n{'=' * 40}\nExpected: {member}\n{'=' * 40}\n" + + f"Output:\n{res.stdout}{'=' * 40}\n" ) kdestroy(self.master) From cd16490531b4dc69f2166acaf60e8a13ff45bc2b Mon Sep 17 00:00:00 2001 From: Thomas Woerner Date: Mon, 1 Jul 2024 11:33:28 +0200 Subject: [PATCH 10/10] Role modules: Docs: Fix default value for string list parameters Fix default values for string list parameters where default is missing in the DOCUMENTATION section, but is defined in argument_specs. --- roles/ipareplica/library/ipareplica_create_ipa_conf.py | 3 +++ roles/ipareplica/library/ipareplica_install_ca_certs.py | 4 ++++ roles/ipareplica/library/ipareplica_prepare.py | 7 +++++++ roles/ipareplica/library/ipareplica_setup_ca.py | 1 + roles/ipareplica/library/ipareplica_setup_dns.py | 1 + roles/ipareplica/library/ipareplica_setup_ds.py | 4 ++++ roles/ipareplica/library/ipareplica_setup_kra.py | 3 +++ roles/ipareplica/library/ipareplica_test.py | 8 ++++++++ roles/ipaserver/library/ipaserver_prepare.py | 5 +++++ roles/ipaserver/library/ipaserver_set_ds_password.py | 2 ++ roles/ipaserver/library/ipaserver_setup_ca.py | 2 ++ roles/ipaserver/library/ipaserver_setup_dns.py | 1 + roles/ipaserver/library/ipaserver_setup_ds.py | 2 ++ roles/ipaserver/library/ipaserver_setup_http.py | 5 +++++ roles/ipaserver/library/ipaserver_setup_krb.py | 3 +++ roles/ipaserver/library/ipaserver_test.py | 3 +++ .../library/ipasmartcard_client_validate_ca_certs.py | 1 + .../library/ipasmartcard_server_validate_ca_certs.py | 1 + 18 files changed, 56 insertions(+) diff --git a/roles/ipareplica/library/ipareplica_create_ipa_conf.py b/roles/ipareplica/library/ipareplica_create_ipa_conf.py index 582a4124bf..84ba55562c 100644 --- a/roles/ipareplica/library/ipareplica_create_ipa_conf.py +++ b/roles/ipareplica/library/ipareplica_create_ipa_conf.py @@ -51,6 +51,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str @@ -70,6 +71,7 @@ type: list elements: str required: no + default: [] no_host_dns: description: Do not use DNS for hostname lookup during installation type: bool @@ -97,6 +99,7 @@ type: list elements: str required: no + default: [] force_join: description: Force client enrollment even if already enrolled type: bool diff --git a/roles/ipareplica/library/ipareplica_install_ca_certs.py b/roles/ipareplica/library/ipareplica_install_ca_certs.py index db0fb54ad7..8aba576a45 100644 --- a/roles/ipareplica/library/ipareplica_install_ca_certs.py +++ b/roles/ipareplica/library/ipareplica_install_ca_certs.py @@ -51,6 +51,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str @@ -70,6 +71,7 @@ type: list elements: str required: no + default: [] no_host_dns: description: Do not use DNS for hostname lookup during installation type: bool @@ -97,6 +99,7 @@ type: list elements: str required: no + default: [] force_join: description: Force client enrollment even if already enrolled type: bool @@ -156,6 +159,7 @@ type: list elements: str required: no + default: [] author: - Thomas Woerner (@t-woerner) ''' diff --git a/roles/ipareplica/library/ipareplica_prepare.py b/roles/ipareplica/library/ipareplica_prepare.py index 3445b46ced..ab772f7300 100644 --- a/roles/ipareplica/library/ipareplica_prepare.py +++ b/roles/ipareplica/library/ipareplica_prepare.py @@ -53,6 +53,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str @@ -77,6 +78,7 @@ type: list elements: str required: no + default: [] no_host_dns: description: Do not use DNS for hostname lookup during installation type: bool @@ -104,6 +106,7 @@ type: list elements: str required: no + default: [] dirsrv_cert_name: description: Name of the Directory Server SSL certificate to install type: str @@ -118,6 +121,7 @@ type: list elements: str required: no + default: [] http_cert_name: description: Name of the Apache Server SSL certificate to install type: str @@ -132,6 +136,7 @@ type: list elements: str required: no + default: [] pkinit_cert_name: description: Name of the Kerberos KDC SSL certificate to install type: str @@ -182,6 +187,7 @@ type: list elements: str required: no + default: [] no_reverse: description: Do not create new reverse DNS zone type: bool @@ -197,6 +203,7 @@ type: list elements: str required: no + default: [] no_forwarders: description: Do not add any DNS forwarders, use root servers instead type: bool diff --git a/roles/ipareplica/library/ipareplica_setup_ca.py b/roles/ipareplica/library/ipareplica_setup_ca.py index cbecd797c6..3323daa74b 100644 --- a/roles/ipareplica/library/ipareplica_setup_ca.py +++ b/roles/ipareplica/library/ipareplica_setup_ca.py @@ -127,6 +127,7 @@ type: list elements: str required: no + default: [] author: - Thomas Woerner (@t-woerner) ''' diff --git a/roles/ipareplica/library/ipareplica_setup_dns.py b/roles/ipareplica/library/ipareplica_setup_dns.py index 7dadafca8f..d8c643e5ad 100644 --- a/roles/ipareplica/library/ipareplica_setup_dns.py +++ b/roles/ipareplica/library/ipareplica_setup_dns.py @@ -61,6 +61,7 @@ type: list elements: str required: no + default: [] forward_policy: description: DNS forwarding policy for global forwarders type: str diff --git a/roles/ipareplica/library/ipareplica_setup_ds.py b/roles/ipareplica/library/ipareplica_setup_ds.py index 67e73a7eb0..64f5a61b7b 100644 --- a/roles/ipareplica/library/ipareplica_setup_ds.py +++ b/roles/ipareplica/library/ipareplica_setup_ds.py @@ -51,6 +51,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str @@ -70,6 +71,7 @@ type: list elements: str required: no + default: [] no_host_dns: description: Do not use DNS for hostname lookup during installation type: bool @@ -108,6 +110,7 @@ type: list elements: str required: no + default: [] force_join: description: Force client enrollment even if already enrolled type: bool @@ -176,6 +179,7 @@ type: list elements: str required: no + default: [] author: - Thomas Woerner (@t-woerner) ''' diff --git a/roles/ipareplica/library/ipareplica_setup_kra.py b/roles/ipareplica/library/ipareplica_setup_kra.py index 92fdfec58d..866b4bc658 100644 --- a/roles/ipareplica/library/ipareplica_setup_kra.py +++ b/roles/ipareplica/library/ipareplica_setup_kra.py @@ -51,6 +51,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str @@ -70,6 +71,7 @@ type: list elements: str required: no + default: [] no_host_dns: description: Do not use DNS for hostname lookup during installation type: bool @@ -101,6 +103,7 @@ type: list elements: str required: no + default: [] force_join: description: Force client enrollment even if already enrolled type: bool diff --git a/roles/ipareplica/library/ipareplica_test.py b/roles/ipareplica/library/ipareplica_test.py index fabb52aa37..a29368e7cb 100644 --- a/roles/ipareplica/library/ipareplica_test.py +++ b/roles/ipareplica/library/ipareplica_test.py @@ -42,6 +42,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str @@ -51,6 +52,7 @@ type: list elements: str required: no + default: [] realm: description: Kerberos realm name of the IPA deployment type: str @@ -66,6 +68,7 @@ type: list elements: str required: no + default: [] hidden_replica: description: Install a hidden replica type: bool @@ -112,18 +115,21 @@ type: list elements: str required: no + default: [] http_cert_files: description: File containing the Apache Server SSL certificate and private key type: list elements: str required: no + default: [] pkinit_cert_files: description: File containing the Kerberos KDC SSL certificate and private key type: list elements: str required: no + default: [] no_ntp: description: Do not configure ntp type: bool @@ -134,6 +140,7 @@ type: list elements: str required: no + default: [] ntp_pool: description: ntp server pool to use type: str @@ -153,6 +160,7 @@ type: list elements: str required: no + default: [] no_forwarders: description: Do not add any DNS forwarders, use root servers instead type: bool diff --git a/roles/ipaserver/library/ipaserver_prepare.py b/roles/ipaserver/library/ipaserver_prepare.py index 24eccf2389..1276729fe1 100644 --- a/roles/ipaserver/library/ipaserver_prepare.py +++ b/roles/ipaserver/library/ipaserver_prepare.py @@ -55,6 +55,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str @@ -74,6 +75,7 @@ type: list elements: str required: no + default: [] no_host_dns: description: Do not use DNS for hostname lookup during installation type: bool @@ -114,6 +116,7 @@ type: list elements: str required: no + default: [] subject_base: description: The certificate subject base (default O=). @@ -134,6 +137,7 @@ type: list elements: str required: no + default: [] no_reverse: description: Do not create new reverse DNS zone type: bool @@ -149,6 +153,7 @@ type: list elements: str required: no + default: [] no_forwarders: description: Do not add any DNS forwarders, use root servers instead type: bool diff --git a/roles/ipaserver/library/ipaserver_set_ds_password.py b/roles/ipaserver/library/ipaserver_set_ds_password.py index 2dd9a78397..b23c777ec0 100644 --- a/roles/ipaserver/library/ipaserver_set_ds_password.py +++ b/roles/ipaserver/library/ipaserver_set_ds_password.py @@ -96,6 +96,7 @@ type: list elements: str required: no + default: [] subject_base: description: The certificate subject base (default O=). @@ -113,6 +114,7 @@ type: list elements: str required: no + default: [] domainlevel: description: The domain level type: int diff --git a/roles/ipaserver/library/ipaserver_setup_ca.py b/roles/ipaserver/library/ipaserver_setup_ca.py index 1a453e49ad..b71cd6185d 100644 --- a/roles/ipaserver/library/ipaserver_setup_ca.py +++ b/roles/ipaserver/library/ipaserver_setup_ca.py @@ -54,6 +54,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str @@ -182,6 +183,7 @@ type: list elements: str required: no + default: [] no_reverse: description: Do not create new reverse DNS zone type: bool diff --git a/roles/ipaserver/library/ipaserver_setup_dns.py b/roles/ipaserver/library/ipaserver_setup_dns.py index cf31eda93a..b06246c482 100644 --- a/roles/ipaserver/library/ipaserver_setup_dns.py +++ b/roles/ipaserver/library/ipaserver_setup_dns.py @@ -42,6 +42,7 @@ type: list elements: str required: no + default: [] domain: description: Primary DNS domain of the IPA deployment type: str diff --git a/roles/ipaserver/library/ipaserver_setup_ds.py b/roles/ipaserver/library/ipaserver_setup_ds.py index 4479daaaf8..f97770f381 100644 --- a/roles/ipaserver/library/ipaserver_setup_ds.py +++ b/roles/ipaserver/library/ipaserver_setup_ds.py @@ -87,6 +87,7 @@ type: list elements: str required: no + default: [] _dirsrv_pkcs12_info: description: The installer _dirsrv_pkcs12_info setting type: list @@ -99,6 +100,7 @@ type: list elements: str required: no + default: [] subject_base: description: The certificate subject base (default O=). diff --git a/roles/ipaserver/library/ipaserver_setup_http.py b/roles/ipaserver/library/ipaserver_setup_http.py index cd6478eeb8..3aa4b21b63 100644 --- a/roles/ipaserver/library/ipaserver_setup_http.py +++ b/roles/ipaserver/library/ipaserver_setup_http.py @@ -66,17 +66,20 @@ type: list elements: str required: no + default: [] reverse_zones: description: The reverse DNS zones to use type: list elements: str required: no + default: [] http_cert_files: description: File containing the Apache Server SSL certificate and private key type: list elements: str required: no + default: [] setup_adtrust: description: Configure AD trust capability type: bool @@ -124,6 +127,7 @@ type: list elements: str required: no + default: [] subject_base: description: The certificate subject base (default O=). @@ -166,6 +170,7 @@ type: list elements: str required: no + default: [] no_reverse: description: Do not create new reverse DNS zone type: bool diff --git a/roles/ipaserver/library/ipaserver_setup_krb.py b/roles/ipaserver/library/ipaserver_setup_krb.py index df37ed31a5..9a66107ae8 100644 --- a/roles/ipaserver/library/ipaserver_setup_krb.py +++ b/roles/ipaserver/library/ipaserver_setup_krb.py @@ -66,11 +66,13 @@ type: list elements: str required: no + default: [] reverse_zones: description: The reverse DNS zones to use type: list elements: str required: no + default: [] setup_adtrust: description: Configure AD trust capability type: bool @@ -113,6 +115,7 @@ type: list elements: str required: no + default: [] subject_base: description: The certificate subject base (default O=). diff --git a/roles/ipaserver/library/ipaserver_test.py b/roles/ipaserver/library/ipaserver_test.py index bf8d3b4c70..06df1b7052 100644 --- a/roles/ipaserver/library/ipaserver_test.py +++ b/roles/ipaserver/library/ipaserver_test.py @@ -73,6 +73,7 @@ type: list elements: str required: no + default: [] no_host_dns: description: Do not use DNS for hostname lookup during installation type: bool @@ -223,6 +224,7 @@ type: list elements: str required: no + default: [] no_reverse: description: Do not create new reverse DNS zone type: bool @@ -242,6 +244,7 @@ type: list elements: str required: no + default: [] no_forwarders: description: Do not add any DNS forwarders, use root servers instead type: bool diff --git a/roles/ipasmartcard_client/library/ipasmartcard_client_validate_ca_certs.py b/roles/ipasmartcard_client/library/ipasmartcard_client_validate_ca_certs.py index 0501d38896..3765e334c1 100644 --- a/roles/ipasmartcard_client/library/ipasmartcard_client_validate_ca_certs.py +++ b/roles/ipasmartcard_client/library/ipasmartcard_client_validate_ca_certs.py @@ -44,6 +44,7 @@ type: list elements: str required: no + default: [] author: - Thomas Woerner (@t-woerner) ''' diff --git a/roles/ipasmartcard_server/library/ipasmartcard_server_validate_ca_certs.py b/roles/ipasmartcard_server/library/ipasmartcard_server_validate_ca_certs.py index b776e58479..af67ec3c4f 100644 --- a/roles/ipasmartcard_server/library/ipasmartcard_server_validate_ca_certs.py +++ b/roles/ipasmartcard_server/library/ipasmartcard_server_validate_ca_certs.py @@ -44,6 +44,7 @@ type: list elements: str required: no + default: [] author: - Thomas Woerner (@t-woerner) '''