feat: add ability to provision entra login sources using blueprints

2026-01-14 15:35:18 +01:00 · 2026-01-14 15:35:18 +01:00 · 359622d17a
commit 359622d17a
parent 0106e8801f
4 changed files with 100 additions and 1 deletions
--- a/roles/authentik/tasks/main.yml
+++ b/roles/authentik/tasks/main.yml
@ -62,6 +62,21 @@
  loop: "{{ authentik_proxy_outposts }}"
  register: outpost_bp

+- name: Render Entra source blueprints
+  ansible.builtin.template:
+    src: blueprints/blueprint-source-entra.yaml.j2
+    dest: "{{ authentik_docker_volume_dir }}/blueprints/20-source-entra-{{ item.slug }}.yaml"
+    mode: "0644"
+  loop: "{{ authentik_entra_sources }}"
+  register: entra_bp
+
+- name: Render login stage sources blueprint
+  ansible.builtin.template:
+    src: blueprints/blueprint-login-sources.yaml.j2
+    dest: "{{ authentik_docker_volume_dir }}/blueprints/21-login-sources.yaml"
+    mode: "0644"
+  register: login_bp
+
 - name: Create docker-compose file for authentik
  template:
    src: docker-compose.yml.j2
@ -78,5 +93,7 @@
         (oidc_templates is defined and (oidc_templates.results | selectattr('changed') | list | length > 0))
         or (proxy_templates is defined and (proxy_templates.results | selectattr('changed') | list | length > 0))
         or (outpost_bp is defined and (outpost_bp.results | selectattr('changed') | list | length > 0))
+         or (entra_bp is defined and (entra_bp.results | selectattr('changed') | list | length > 0))
+         or (login_bp is defined and login_bp.changed)
        ) | ternary('always','auto')
      }}