(reposting this because of problems with the list server) Hi all, The company I work for just open-sourced these roles that were written for use with DebOps: - debops.simplesamlphp Manages SimpleSAMLphp as a SAML iDP. Installs simplesamlphp-module- webauthn by default, which adds WebAuthn 2FA. - debops.selfservicepassword Manages Self Service Password, a web interface for changing one's LDAP password. - debops.openvpn Manages OpenVPN server for client-server use. Authenticates clients against LDAP and integrates with YK-VAL to provide Yubikey TOTP 2FA. - debops.matomo Manages Matomo analytics platform. - debops.dhcpd Manages ISC DHCP server. Essentially a rewrite of the existing debops.dhcpd role with support for DHCPv6, but it's still missing some features. - debops.dnsui Manages Opera DNS UI, a web-based LDAP-authenticated DNS management system for use with PowerDNS authoritative nameserver. - debops.powerdns_auth Manages PowerDNS authoritative nameserver. We use all these roles in production. A lot of documentation is still missing, I hope to be able to add that soon so the roles can be integrated into DebOps mainline. The roles are licensed under GPL-3.0-or-later and can be found here: https://gitlab.com/ciphermail?filter=debops Suggestions for improvements are more than welcome. Imre

On Wed, 2020-06-17 at 11:10 +0200, Nicolas Quiniou-Briand wrote: Hi Nicolas, good to see that you're giving debops.simplesamlphp a try. It is my intention to create pull requests for all these roles ( https://gitlab.com/ciphermail?filter=debops) and get them integrated in DebOps mainline, so your feedback is greatly appreciated! Imre