diff options
| author | Halfwalker <deano-gitea@areyes.com> | 2024-12-14 19:05:35 -0700 |
|---|---|---|
| committer | Nicholas Johnson <mail@nicholasjohnson.ch> | 2025-01-29 00:00:00 +0000 |
| commit | ba21e8690e3fbf6ec2cbd13e93792e2e33d9d2c3b05bf862014db41480e5cd8f (patch) | |
| tree | 7a37049c103d82b012d6a3d5e82e8d1f7f06c5035f00b14a112927c8a6bd4f3e /defaults | |
| parent | e857ecddd90424302c31d342aba276d5c8ca9dab85eaecc69af55dd0bf5ba2e1 (diff) | |
| download | ansible-role-google-authenticator-ba21e8690e3fbf6ec2cbd13e93792e2e33d9d2c3b05bf862014db41480e5cd8f.tar.gz ansible-role-google-authenticator-ba21e8690e3fbf6ec2cbd13e93792e2e33d9d2c3b05bf862014db41480e5cd8f.zip | |
Parameterize Label and Issuer for otpauth: url for QR code
Diffstat (limited to 'defaults')
| -rw-r--r-- | defaults/main.yml | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/defaults/main.yml b/defaults/main.yml index 7545e05..629fb98 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -5,9 +5,12 @@ username: "{{ vault_username | default(ansible_user_id) }}" # Use google authenticator config from vault if it's there # 1st line secret can be 16 or 26 chars +# NOTE: Be sure to use char encoding for spaces # vault_google_auth_config: # - name: host1.example.com # force_auth: false +# label: "Mailsys%20{{ inventory_hostname_short }}:{{ username }}" +# issuer: "Example%20Corp%20Mailsys" # secret: | # 6DRWZ2AWOAFAQMSI # "RATE_LIMIT 3 30 @@ -36,6 +39,11 @@ google_auth_config: "{{ vault_google_auth_config | default('NEW') }}" # Force use of token even with SSH key google_auth_force: false +# Default label and issuer if not defined in vault_google_auth_config for the host(s) +# NOTE: Be sure to use char encoding for spaces +google_auth_label: "Example%20{{ inventory_hostname_short }}:{{ username }}" +google_auth_issuer: "Example%20Inc." + google_auth_packages: - libpam-google-authenticator - python3-qrcode |