Merge pull request #41 from roumano/TOTP_Configuration

Add TOTP Configuration
mrlesmithjr · Jan 11, 2024 · 5b0b025 · 5b0b025
2 parents 5c9500e + 7d04781
commit 5b0b025
Show file tree

Hide file tree

Showing 3 changed files with 24 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -17,6 +17,14 @@ For any required Ansible roles, review:
 
 [defaults/main.yml](defaults/main.yml)
 
+### TOTP Configuration
+
+To enable Two factor authentification, create a variable `guacamole_totp`:
+```
+guacamole_totp:
+  issuer: 'guacamole.exemple.com'
+  period: 60
+```
 ## Dependencies
 
 ## Example Playbook

diff --git a/tasks/main.yml b/tasks/main.yml
@@ -29,4 +29,4 @@
 
 - name: Manage Guacamole TOTP configurations
   ansible.builtin.include_tasks: totp.yml
-  when: guacamole_totp | default(false) | bool
+  when: guacamole_totp is defined
diff --git a/templates/etc/guacamole/guacamole.properties.j2 b/templates/etc/guacamole/guacamole.properties.j2
@@ -105,3 +105,18 @@ ldap-max-referral-hops: {{ guacamole_ldap['max_referral_hops'] }}
 ldap-operation-timeout: {{ guacamole_ldap['operation_timeout'] }}
 {% endif %}
 {% endif %}
+{# TOTP Configuration #}
+{% if guacamole_totp is defined %}
+{% if guacamole_totp['issuer'] is defined %}
+totp-issuer: {{ guacamole_totp['issuer'] }}
+{% endif %}
+{% if guacamole_totp['digits'] is defined %}
+totp-digits: {{ guacamole_totp['digits'] }}
+{% endif %}
+{% if guacamole_totp['period'] is defined %}
+totp-period: {{ guacamole_totp['period'] }}
+{% endif %}
+{% if guacamole_totp['mode'] is defined %}
+totp-mode: {{ guacamole_totp['mode'] }}
+{% endif %}
+{% endif %}