IBM-Security / isam-ansible-roles

DEPRECATED Ansible Custom Modules, Handlers and Tasks for ISAM. Requires "ibmsecurity" python package.
Apache License 2.0
24 stars 43 forks source link

OIDC-OAuth #85

Open daniew01 opened 6 years ago

daniew01 commented 6 years ago

I am busy configuring a complete project which will make use of OpenIDConnect-Oauth based on the OpenBanking Standard and wanted wanted to make used of execute_isamcfg role but I understand this has been depricated.

Are there any suggestions which role is replacing this? How do i know if there are any roles replacing older roles? Can anyone suggest the best roles to use to achive this config via ansible?

Regards

ram-ibm commented 6 years ago

I will add a new role to call the function - ibmsecurity.isam.web.reverse_proxy.oauth_configuration.config.

ram-ibm commented 6 years ago

New role pushed just now config_reverseproxy_oauth.

daniew01 commented 6 years ago

Thanx

Will test it in the week to come

Kind Regards

daniew01 commented 6 years ago

Hi Ram Just to confirm ... this role is similar as to when you select the "Oauth and OIDC Provider" under the Manage drop down?

If so my understanding is that the isamcfg command line configuration tools has run already and by selecting the above(running this new rle) the ACL / Object are created and configured for that reverse proxy junction.

What is the role(s) I would need to use to replace the isamcfg configuration tool ?

Kind Regards DJW

ram-ibm commented 6 years ago

isamcfg is the utility that creates /mga junction and sets up ACLs and WebSEAL config changes for you. There is a LMI option to execute that and you navigate to Secure Web Settings -> Reverse Proxy ->