{"id":16421829,"url":"https://github.com/peppelinux/ansible-rt4-shibsp","last_synced_at":"2026-04-25T08:34:53.558Z","repository":{"id":143289793,"uuid":"124933017","full_name":"peppelinux/Ansible-RT4-ShibSP","owner":"peppelinux","description":"RequestTracker 4 setup with SAML2 authentication on a Shibboleth SP","archived":false,"fork":false,"pushed_at":"2018-03-26T13:22:08.000Z","size":28,"stargazers_count":2,"open_issues_count":0,"forks_count":1,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-02-24T17:50:15.725Z","etag":null,"topics":["ansible","request-tracker","rt4","shibboleth-sp"],"latest_commit_sha":null,"homepage":"","language":"Perl","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/peppelinux.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-03-12T18:25:33.000Z","updated_at":"2023-12-02T13:21:14.000Z","dependencies_parsed_at":"2023-05-11T04:15:07.933Z","dependency_job_id":null,"html_url":"https://github.com/peppelinux/Ansible-RT4-ShibSP","commit_stats":{"total_commits":7,"total_committers":1,"mean_commits":7.0,"dds":0.0,"last_synced_commit":"429a700501bef3a25dc3bd44ea24660f5cdce105"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/peppelinux/Ansible-RT4-ShibSP","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/peppelinux%2FAnsible-RT4-ShibSP","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/peppelinux%2FAnsible-RT4-ShibSP/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/peppelinux%2FAnsible-RT4-ShibSP/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/peppelinux%2FAnsible-RT4-ShibSP/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/peppelinux","download_url":"https://codeload.github.com/peppelinux/Ansible-RT4-ShibSP/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/peppelinux%2FAnsible-RT4-ShibSP/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":263415758,"owners_count":23463104,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible","request-tracker","rt4","shibboleth-sp"],"created_at":"2024-10-11T07:34:55.605Z","updated_at":"2026-04-25T08:34:53.524Z","avatar_url":"https://github.com/peppelinux.png","language":"Perl","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Ansible-RT4-ShibSP\n\naccording to\n    - https://rt-wiki.bestpractical.com/wiki/ManualInstallation\n\nConfiguration\n-------------\n\nIn rt_vars.yml you'll need to configure your own values.\nRemeber to:\n\n- choose an appropriate fqdn and use it in make_ca.sh if you need a private CA for testing purpose.\n- this playbook, by default, will purge mysql and apache2 installations, but you can configure purge: false to avoid this.\n\n````\n  vars:\n    # If True it will uninstall and purge existing applications and configurations\n    # DO NOT DO THAT in production environment\n    purge: true\n````\n\nRequirements\n------------\n````    \naptitude install python3-pip python-dev libffi-dev libssl-dev libxml2-dev libxslt1-dev libjpeg-dev zlib1g-dev\npip3 install ansible\n````\n\nFor a private CA for a testing purpose you can use make_ca.sh script\n\n````\n# Specify your preferred values in make_ca.sh script and then run it\nbash make_ca.sh\n````\n\nFor shibboleth integration it need a preexistent SP local setup.\nUse this playbook for testing purpose if useful:\n\nhttps://github.com/peppelinux/Ansible-Shibboleth-IDP-SP-Debian9\n\nStatus\n------\n\n1. Request tracker setup with MariaDB completed\n2. Shib-SP Base setup done, it needs major integrations in official production environment\n\nUsage\n-----\nRemember to customize your setup by editing variable in rt_vars.yml and playbook.yml, also remeber to create your own selfsigned certs if you do not have some of authoritative\n````\nansible-playbook -i \"localhost,\" -c local playbook.yml [-vvv]\n````\n\nInstalling RT4 by hands (if you want this)\n------------------------------------------\n````\n# as root user\n# dependencies Debian9\napt install perl-doc libgdchart-gd2-xpm build-essential libfribidi0 libfsplib0 libgc1c2 libgd3 libgsasl7 libgts-0.7-5 libgts-bin libgvc6 libgvpr2 libkyotocabinet16v5 liblua5.1-0 liblzo2-2 libmailutils5 libossp-uuid16 libpathplan4 libpq5 libtre5 libwebp6 libxdot4 links lynx lynx-common lynx-cur mailutils swaks fonts-noto gsfonts graphviz-doc fonts-dustin libgd-tools uuid tre-agrep xml-twig-tools mailutils-mh mailutils-doc fcgiwrap fonts-noto-mono graphviz guile-2.0-libs libann0 libapache2-mod-fcgid libcdt5 libcgraph6 libfribidi0 libfsplib0 libgc1c2 libgd3 libgsasl7 libgts-0.7-5 libgts-bin libgvc6 libgvpr2 libkyotocabinet16v5 liblua5.1-0 liblzo2-2 libmailutils5 libossp-uuid16 libpathplan4 libpq5 libtre5 libwebp6 libxdot4\nlibapache2-mod-perl2\n\n# example about playbook's variables extraction\nexport DB_NAME=$(cat rt_vars.yml | grep db_name | awk -F':' {'print $2'})\nexport DB_PASS=$(cat rt_vars.yml | grep db_passwd | awk -F':' {'print $2'})\nexport DB_USER=$(cat rt_vars.yml | grep db_user | awk -F':' {'print $2'})\nexport WEB_USER=www-data\n\n# attachment-store=\"disk\" 'cause of gdrive fuse approach\n./configure --enable-graphviz --enable-gd --enable-gpg --enable-smime --enable-externalauth \\\n            --with-db-database=$DB_NAME --with-db-rt-user=$DB_USER --with-db-rt-pass=$DB_PASS \\\n            --with-web-user=$WEB_USER --with-web-group=$WEB_USER \\\n            --with-attachment-store=disk\n\n# check dependencies\nmake testdeps\n\n# perl dependencies\n# this should be managed in ansible playbook!\nmake fixdeps\n# or \n# apt install libalgorithm-c3-perl libanyevent-cachedns-perl libanyevent-http-perl libanyevent-perl libapache-logformat-compiler-perl libapache-session-perl libapache2-mod-perl2 libapache2-reload-perl libasync-interrupt-perl libb-hooks-endofscope-perl libboolean-perl libbsd-resource-perl libbusiness-hours-perl libbytes-random-secure-perl libcache-cache-perl libcache-simple-timedexpiry-perl libcarp-clan-perl libcgi-compile-perl libcgi-emulate-psgi-perl libcgi-psgi-perl libclass-accessor-chained-perl libclass-accessor-lite-perl libclass-adapter-perl libclass-c3-perl libclass-c3-xs-perl libclass-container-perl libclass-data-inheritable-perl libclass-factory-util-perl libclass-inspector-perl libclass-load-perl libclass-load-xs-perl libclass-method-modifiers-perl libclass-methodmaker-perl libclass-mix-perl libclass-returnvalue-perl libclass-singleton-perl libclass-tiny-perl libclass-xsaccessor-perl libclone-perl libcommon-sense-perl libconstant-defer-perl libconvert-asn1-perl libconvert-binhex-perl libconvert-color-perl libcookie-baker-perl libcpanel-json-xs-perl libcrypt-eksblowfish-perl libcrypt-random-seed-perl libcrypt-ssleay-perl libcrypt-x509-perl libcss-minifier-xs-perl libcss-squish-perl libdata-guid-perl libdata-ical-perl libdata-optlist-perl libdata-page-pageset-perl libdata-page-perl libdata-perl-perl libdata-stream-bulk-perl libdate-extract-perl libdate-manip-perl libdatetime-event-ical-perl libdatetime-event-recurrence-perl libdatetime-format-builder-perl libdatetime-format-flexible-perl libdatetime-format-http-perl libdatetime-format-ical-perl libdatetime-format-iso8601-perl libdatetime-format-mail-perl libdatetime-format-natural-perl libdatetime-format-strptime-perl libdatetime-format-w3cdtf-perl libdatetime-locale-perl libdatetime-perl libdatetime-set-perl libdatetime-timezone-perl libdatetimex-easy-perl libdbd-pg-perl libdbd-sqlite3-perl libdbix-dbschema-perl libdbix-searchbuilder-perl libdevel-caller-perl libdevel-globaldestruction-perl libdevel-lexalias-perl libdevel-overloadinfo-perl libdevel-partialdump-perl libdevel-stacktrace-ashtml-perl libdevel-stacktrace-perl libdevel-symdump-perl libdigest-hmac-perl libdigest-md5-file-perl libdist-checkconflicts-perl libemail-address-list-perl libemail-address-perl libemail-date-format-perl libev-perl libeval-closure-perl libexception-class-perl libexporter-lite-perl libexporter-tiny-perl libfcgi-procmanager-perl libfile-dropbox-perl libfile-find-rule-perl libfile-pushd-perl libfile-sharedir-perl libfile-which-perl libfilesys-notify-simple-perl libfreezethaw-perl libfurl-perl libgd-graph-perl libgd-perl libgd-text-perl libgnupg-interface-perl libgraphviz-perl libgssapi-perl libguard-perl libhash-multivalue-perl libhtml-formatexternal-perl libhtml-formattext-withlinks-andtables-perl libhtml-formattext-withlinks-perl libhtml-mason-perl libhtml-mason-psgihandler-perl libhtml-quoted-perl libhtml-rewriteattributes-perl libhtml-scrubber-perl libhttp-cookiejar-perl libhttp-entity-parser-perl libhttp-headers-fast-perl libhttp-multipartparser-perl libhttp-parser-xs-perl libimport-into-perl libio-interactive-perl libio-pty-perl libipc-run-perl libipc-run3-perl libipc-shareable-perl libipc-sharelite-perl libipc-signal-perl libjavascript-minifier-xs-perl libjson-maybexs-perl libjson-perl libjson-xs-perl liblist-moreutils-perl liblist-utilsby-perl liblocale-maketext-fuzzy-perl liblocale-maketext-lexicon-perl liblog-any-perl liblog-dispatch-perl liblog-log4perl-perl liblwp-useragent-determined-perl libmail-sendmail-perl libmath-random-isaac-perl libmath-random-isaac-xs-perl libmime-lite-perl libmime-tools-perl libmime-types-perl libmodule-implementation-perl libmodule-pluggable-perl libmodule-refresh-perl libmodule-runtime-conflicts-perl libmodule-runtime-perl libmodule-versions-report-perl libmoo-perl libmoose-perl libmoosex-strictconstructor-perl libmoosex-types-datetime-morecoercions-perl libmoosex-types-datetime-perl libmoosex-types-perl libmoox-handlesvia-perl libmoox-late-perl libmro-compat-perl libnamespace-autoclean-perl libnamespace-clean-perl libnet-amazon-s3-perl libnet-cidr-perl libnet-dns-lite-perl libnet-idn-encode-perl libnet-ip-perl libnet-ldap-perl libnumber-compare-perl libossp-uuid-perl libpackage-deprecationmanager-perl libpackage-stash-perl libpackage-stash-xs-perl libpadwalker-perl libparallel-prefork-perl libparams-classify-perl libparams-util-perl libparams-validate-perl libparams-validationcompiler-perl libparse-recdescent-perl libpath-class-perl libperlio-eol-perl libplack-perl libposix-strftime-compiler-perl libproc-wait3-perl libregexp-common-net-cidr-perl libregexp-common-perl libregexp-ipv6-perl librole-basic-perl librole-tiny-perl libscalar-list-utils-perl libscope-guard-perl libscope-upper-perl libserver-starter-perl libset-infinite-perl libset-intspan-perl libsignal-mask-perl libsms-send-perl libspecio-perl libstream-buffered-perl libstrictures-perl libstring-approx-perl libstring-shellquote-perl libsub-exporter-formethods-perl libsub-exporter-perl libsub-exporter-progressive-perl libsub-identify-perl libsub-install-perl libsub-uplevel-perl libsymbol-global-name-perl libsys-hostname-long-perl libterm-encoding-perl libterm-progressbar-perl libterm-progressbar-quiet-perl libterm-progressbar-simple-perl libterm-readline-perl-perl libtest-exception-perl libtest-fatal-perl libtest-mockobject-perl libtest-sharedfork-perl libtest-tcp-perl libtext-autoformat-perl libtext-glob-perl libtext-password-pronounceable-perl libtext-quoted-perl libtext-reform-perl libtext-template-perl libtext-vfile-asdata-perl libtext-wikiformat-perl libtext-wrapper-perl libthread-sigmask-perl libtie-ixhash-perl libtime-duration-parse-perl libtime-duration-perl libtime-parsedate-perl libtree-simple-perl libtry-tiny-perl libtype-tiny-perl libtype-tiny-xs-perl libtypes-serialiser-perl libuniversal-can-perl libuniversal-isa-perl libuniversal-require-perl libvariable-magic-perl libvm-ec2-perl libvm-ec2-security-credentialcache-perl libwant-perl libwww-form-urlencoded-perl libwww-form-urlencoded-xs-perl libxml-libxml-perl libxml-namespacesupport-perl libxml-parser-perl libxml-rss-perl libxml-sax-base-perl libxml-sax-expat-perl libxml-sax-perl libxml-simple-perl libxml-twig-perl libxml-xpath-perl libxml-xpathengine-perl spf-tools-perl libevent-perl libio-async-perl libpoe-perl libtask-weaken-perl libdate-calc-perl libchi-perl libhtml-mason-perl-doc libtemplate-perl libyaml-perl libppi-perl libdbd-csv-perl liblog-dispatch-filerotate-perl librrds-perl libxml-dom-perl libmojolicious-perl libtext-soundex-perl perl libbareword-filehandles-perl libindirect-perl libmultidimensional-perl libunicode-map8-perl libunicode-string-perl libalgorithm-c3-perl libanyevent-cachedns-perl libanyevent-http-perl libanyevent-perl libapache-logformat-compiler-perl libapache-session-perl libapache2-mod-perl2 libapache2-reload-perl libasync-interrupt-perl libb-hooks-endofscope-perl libboolean-perl libbsd-resource-perl libbusiness-hours-perl libbytes-random-secure-perl libcache-cache-perl libcache-simple-timedexpiry-perl libcarp-clan-perl libcgi-compile-perl libcgi-emulate-psgi-perl libcgi-psgi-perl libclass-accessor-chained-perl libclass-accessor-lite-perl libclass-adapter-perl libclass-c3-perl libclass-c3-xs-perl libclass-container-perl libclass-data-inheritable-perl libclass-factory-util-perl libclass-inspector-perl libclass-load-perl libclass-load-xs-perl libclass-method-modifiers-perl libclass-methodmaker-perl libclass-mix-perl libclass-returnvalue-perl libclass-singleton-perl libclass-tiny-perl libclass-xsaccessor-perl libclone-perl libcommon-sense-perl libconstant-defer-perl libconvert-asn1-perl libconvert-binhex-perl libconvert-color-perl libcookie-baker-perl libcpanel-json-xs-perl libcrypt-eksblowfish-perl libcrypt-random-seed-perl libcrypt-ssleay-perl libcrypt-x509-perl libcss-minifier-xs-perl libcss-squish-perl libdata-guid-perl libdata-ical-perl libdata-optlist-perl libdata-page-pageset-perl libdata-page-perl libdata-perl-perl libdata-stream-bulk-perl libdate-extract-perl libdate-manip-perl libdatetime-event-ical-perl libdatetime-event-recurrence-perl libdatetime-format-builder-perl libdatetime-format-flexible-perl libdatetime-format-http-perl libdatetime-format-ical-perl libdatetime-format-iso8601-perl libdatetime-format-mail-perl libdatetime-format-natural-perl libdatetime-format-strptime-perl libdatetime-format-w3cdtf-perl libdatetime-locale-perl libdatetime-perl libdatetime-set-perl libdatetime-timezone-perl libdatetimex-easy-perl libdbd-pg-perl libdbd-sqlite3-perl libdbix-dbschema-perl libdbix-searchbuilder-perl libdevel-caller-perl libdevel-globaldestruction-perl libdevel-lexalias-perl libdevel-overloadinfo-perl libdevel-partialdump-perl libdevel-stacktrace-ashtml-perl libdevel-stacktrace-perl libdevel-symdump-perl libdigest-hmac-perl libdigest-md5-file-perl libdist-checkconflicts-perl libemail-address-list-perl libemail-address-perl libemail-date-format-perl libev-perl libeval-closure-perl libexception-class-perl libexporter-lite-perl libexporter-tiny-perl libfcgi-procmanager-perl libfile-dropbox-perl libfile-find-rule-perl libfile-pushd-perl libfile-sharedir-perl libfile-which-perl libfilesys-notify-simple-perl libfreezethaw-perl libfurl-perl libgd-graph-perl libgd-perl libgd-text-perl libgnupg-interface-perl libgraphviz-perl libgssapi-perl libguard-perl libhash-multivalue-perl libhtml-formatexternal-perl libhtml-formattext-withlinks-andtables-perl libhtml-formattext-withlinks-perl libhtml-mason-perl libhtml-mason-psgihandler-perl libhtml-quoted-perl libhtml-rewriteattributes-perl libhtml-scrubber-perl libhttp-cookiejar-perl libhttp-entity-parser-perl libhttp-headers-fast-perl libhttp-multipartparser-perl libhttp-parser-xs-perl libimport-into-perl libio-interactive-perl libio-pty-perl libipc-run-perl libipc-run3-perl libipc-shareable-perl libipc-sharelite-perl libipc-signal-perl libjavascript-minifier-xs-perl libjson-maybexs-perl libjson-perl libjson-xs-perl liblist-moreutils-perl liblist-utilsby-perl liblocale-maketext-fuzzy-perl liblocale-maketext-lexicon-perl liblog-any-perl liblog-dispatch-perl liblog-log4perl-perl liblwp-useragent-determined-perl libmail-sendmail-perl libmath-random-isaac-perl libmath-random-isaac-xs-perl libmime-lite-perl libmime-tools-perl libmime-types-perl libmodule-implementation-perl libmodule-pluggable-perl libmodule-refresh-perl libmodule-runtime-conflicts-perl libmodule-runtime-perl libmodule-versions-report-perl libmoo-perl libmoose-perl libmoosex-strictconstructor-perl libmoosex-types-datetime-morecoercions-perl libmoosex-types-datetime-perl libmoosex-types-perl libmoox-handlesvia-perl libmoox-late-perl libmro-compat-perl libnamespace-autoclean-perl libnamespace-clean-perl libnet-amazon-s3-perl libnet-cidr-perl libnet-dns-lite-perl libnet-idn-encode-perl libnet-ip-perl libnet-ldap-perl libnumber-compare-perl libossp-uuid-perl libpackage-deprecationmanager-perl libpackage-stash-perl libpackage-stash-xs-perl libpadwalker-perl libparallel-prefork-perl libparams-classify-perl libparams-util-perl libparams-validate-perl libparams-validationcompiler-perl libparse-recdescent-perl libpath-class-perl libperlio-eol-perl libplack-perl libposix-strftime-compiler-perl libproc-wait3-perl libregexp-common-net-cidr-perl libregexp-common-perl libregexp-ipv6-perl librole-basic-perl librole-tiny-perl libscalar-list-utils-perl libscope-guard-perl libscope-upper-perl libserver-starter-perl libset-infinite-perl libset-intspan-perl libsignal-mask-perl libsms-send-perl libspecio-perl libstream-buffered-perl libstrictures-perl libstring-approx-perl libstring-shellquote-perl libsub-exporter-formethods-perl libsub-exporter-perl libsub-exporter-progressive-perl libsub-identify-perl libsub-install-perl libsub-uplevel-perl libsymbol-global-name-perl libsys-hostname-long-perl libterm-encoding-perl libterm-progressbar-perl libterm-progressbar-quiet-perl libterm-progressbar-simple-perl libterm-readline-perl-perl libtest-exception-perl libtest-fatal-perl libtest-mockobject-perl libtest-sharedfork-perl libtest-tcp-perl libtext-autoformat-perl libtext-glob-perl libtext-password-pronounceable-perl libtext-quoted-perl libtext-reform-perl libtext-template-perl libtext-vfile-asdata-perl libtext-wikiformat-perl libtext-wrapper-perl libthread-sigmask-perl libtie-ixhash-perl libtime-duration-parse-perl libtime-duration-perl libtime-parsedate-perl libtree-simple-perl libtry-tiny-perl libtype-tiny-perl libtype-tiny-xs-perl libtypes-serialiser-perl libuniversal-can-perl libuniversal-isa-perl libuniversal-require-perl libvariable-magic-perl libvm-ec2-perl libvm-ec2-security-credentialcache-perl libwant-perl libwww-form-urlencoded-perl libwww-form-urlencoded-xs-perl libxml-libxml-perl libxml-namespacesupport-perl libxml-parser-perl libxml-rss-perl libxml-sax-base-perl libxml-sax-expat-perl libxml-sax-perl libxml-simple-perl libxml-twig-perl libxml-xpath-perl libxml-xpathengine-perl libscalar-util-numeric-perl\n\n# Debian9 missing dependencies on official debian repository\n# libmozilla-ca-perl\n# perl -MCPAN -e 'install Mozilla::CA'\n\n# install jinja2 CLI for ansible vars reuse :)\npip3 install shinto-cli\n\n# install it in /opt/rt4 or whatever\nmake install\n\n# create db and ACL using shinto-cli\nj2 roles/rt4/templates/db.sql rt_vars.yml \u003e /tmp/db.sql\nmysql -u root \u003c /tmp/db.sql\n\n# You must now configure RT by editing /opt/rt4/etc/RT_SiteConfig.pm.\n# then\nmake initialize-database\n\n# or\n# run standalone webserver\n# /opt/rt4/sbin/rt-server --port 8081\n\n````\n\nSystem check's\n--------------\n\n````\n# view all CNA installed modules\ncpan -l\n````\n\nResources\n---------\n\n- https://docs.bestpractical.com/rt/4.4.2/README.html\n- https://docs.bestpractical.com/rt/4.2.2/web_deployment.html#mod_fcgid\n- https://www.nsrc.org/workshops/templates-old/brian/foo/exercises-rt-lab1.md.html\n- http://www.sgsosu.net/nmetro/docs.html\n\nShibboleth's\n- http://archiv.cesnet.cz/doc/techzpravy/2010/request-tracker-shibboleth/\n- http://search.cpan.org/~bps/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm\n- https://stackoverflow.com/questions/45620314/shibboleth-on-request-tracker-4-4-x\n- https://github.com/bestpractical/rt/pull/208/\n\nTrouble shooting\n----------------\n\n- https://rt-wiki.bestpractical.com/wiki/RecoverRootPassword\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpeppelinux%2Fansible-rt4-shibsp","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpeppelinux%2Fansible-rt4-shibsp","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpeppelinux%2Fansible-rt4-shibsp/lists"}