{"id":466,"sha1":"65e9a60a495d7edbd72ecc55fa22a2d3f5f3f717","playbook":{"id":5,"items":{"plays":108,"tasks":618,"results":960,"hosts":9,"files":456,"records":0},"arguments":{"version":null,"verbosity":0,"private_key_file":null,"remote_user":null,"connection":"openstack.osa.ssh","timeout":null,"ssh_common_args":null,"sftp_extra_args":null,"scp_extra_args":null,"ssh_extra_args":null,"ask_pass":false,"connection_password_file":null,"force_handlers":true,"flush_cache":false,"become":false,"become_method":"sudo","become_user":null,"become_ask_pass":false,"become_password_file":null,"tags":["all"],"skip_tags":[],"check":false,"diff":false,"inventory":["/home/zuul/src/opendev.org/openstack/openstack-ansible/inventory/dynamic_inventory.py","/home/zuul/src/opendev.org/openstack/openstack-ansible/inventory/inventory.ini","/etc/openstack_deploy/inventory.ini"],"listhosts":false,"subset":null,"extra_vars":"Not saved by ARA as configured by 'ignored_arguments'","vault_ids":[],"ask_vault_pass":false,"vault_password_files":[],"forks":8,"module_path":null,"syntax":false,"listtasks":false,"listtags":false,"step":false,"start_at_task":null,"args":["setup-openstack.yml"]},"labels":[{"id":1,"name":"check:False"},{"id":2,"name":"tags:all"}],"started":"2025-12-15T10:19:13.597292Z","ended":"2025-12-15T10:42:26.420131Z","duration":"00:23:12.822839","name":null,"ansible_version":"2.18.6","client_version":"1.7.4","python_version":"3.12.3","server_version":"1.7.4","status":"completed","path":"/home/zuul/src/opendev.org/openstack/openstack-ansible/playbooks/setup-openstack.yml","controller":"aio1.openstack.local","user":"root"},"content":"---\n# Copyright 2015, Rackspace US, Inc.\n#\n# Licensed under the Apache License, Version 2.0 (the \"License\");\n# you may not use this file except in compliance with the License.\n# You may obtain a copy of the License at\n#\n#     http://www.apache.org/licenses/LICENSE-2.0\n#\n# Unless required by applicable law or agreed to in writing, software\n# distributed under the License is distributed on an \"AS IS\" BASIS,\n# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n# See the License for the specific language governing permissions and\n# limitations under the License.\n\n- name: Add LDAP domains\n  openstack.cloud.identity_domain:\n    cloud: default\n    state: present\n    name: \"{{ item.key }}\"\n    endpoint_type: admin\n    verify: \"{{ not keystone_service_adminuri_insecure }}\"\n  register: add_ldap_domain\n  until: add_ldap_domain is success\n  retries: 5\n  delay: 10\n  with_dict: \"{{ keystone_ldap }}\"\n  delegate_to: \"{{ keystone_service_setup_host }}\"\n  no_log: true\n  when:\n    - \"_keystone_is_last_play_host\"\n  vars:\n    ansible_python_interpreter: \"{{ keystone_service_setup_host_python_interpreter }}\"\n\n- name: Create Keystone LDAP domain configs\n  ansible.builtin.template:\n    src: keystone.domain.conf.j2\n    dest: \"{{ keystone_ldap_domain_config_dir }}/keystone.{{ item.key }}.conf\"\n    owner: \"root\"\n    group: \"{{ keystone_system_group_name }}\"\n    mode: \"0640\"\n  with_dict: \"{{ keystone_ldap }}\"\n  no_log: true\n  notify:\n    - Restart uWSGI\n\n# Bug 1547542 - Older versions of the keystone role would deploy a blank\n# keystone.Default.conf and this will cause errors when adding LDAP-backed\n# domains.\n- name: Remove Keystone Default domain configuration file if not needed\n  ansible.builtin.file:\n    path: \"{{ keystone_ldap_domain_config_dir }}/keystone.Default.conf\"\n    state: absent\n  when: keystone_ldap.Default is not defined\n  notify:\n    - Restart uWSGI\n","created":"2025-12-15T10:19:16.334998Z","updated":"2025-12-15T10:19:16.335035Z","path":"/home/zuul/src/opendev.org/openstack/openstack-ansible-os_keystone/tasks/keystone_ldap_setup.yml"}