Closed qasims closed 9 years ago
brucellino
commented
9 years ago Hi @qasims sorry we seem to have missed this one. The error is due to a missing path, of course, but I need to check why that path is not created.
Also, it seems that the variables for your site are using the default ones. Can you remind me of your group_vars ?
qasims
commented
9 years ago @brucellino
Here are files Debian-servers.yml, identty-ll.yml, password-ssa.yml which are same as in your repo. Here is my changes in
identity-ssa-dip.yml
---
# institute metadata
site_name: SSA
host_institute:
name: SSA
url: http://www.ssa.se
# LDAP variables
server_country: SE
server_state:
server_location: Stockholm
server_organization: TTA
server_organization_unit: SSA
ldap_server: ldap.se.ampr.org
root_password_clear: ******
sgw_admin: qasim.sarfraz@gmail.com
# institute metadata
host_institute:
name: SSA
url: http://www.ssa.se
organisation:
name: SSA
logo: dit.jpg
mail_contact: qasim.sarfraz@gmail.com
# IDP variables. these are specifically related to the IdPOpen Web front end.
idp:
name: SSA IdP
admin_user: qasim
admin_email: qasim.sarfraz@gmail.com
metadata_url: https://{{ hostvars[groups['shibboleth-idps'][0]]['ansible_fqdn']}}/idp/shibboleth
mail_server:
header_logo: Logo.jpg
fmarco76
commented
9 years ago Hi @qasims, is the directory "/opt/shibboleth-idp/" created with an empty metadata folder or it does not exist at all?
qasims
commented
9 years ago Hi @fmarco76 all path as you mentioned above and under that path metadata.yml is created.
Here is the file data
---
# these variables should in included in the role vars
- name: Org stanza
lineinfile:
dest: "{{ shibboleth_install_path }}/metadata/idp-metadata.xml"
line: "{{ item }}"
insertafter: "</AttributeAuthorityDescriptor>"
state: present
with_items: metadata_lines
tags: metadata@brucellino @fmarco76 Guys any idea? I am behind in my IdP project.
brucellino
commented
9 years ago I've just taken a look at this; it seems that the xml file is not created. I fact, most of the files necessary are not installed - /opt/shibboleth-idp is there, but the directories are empty.
The reason is that the install script actually dies...
BUILD FAILED
/home/bruce/idp/shibboleth-identityprovider-2.4.1/src/installer/resources/build.xml:70: java.lang.IllegalStateException: No match foundThe line is
<regexSplit input="${idp.hostname}" regex="^.*\.(.*\..*$)" addproperty="idp.scope"/>
so, the hostname is not set probably.
brucellino
commented
9 years ago ok, this was due to the fact that the hostname of the machine was not set to the name in the inventory. Setting the hostname results in fixing the problem. I'm going to add this to a pre-task in the role.
How to create this idp-metadata.xml file? I saw file is not on the destination. Please below TASK: [shibboleth-idp | Org stanza]