Merge branch 'develop' of git.psu.edu:ais-swe/infrastructure into develop

base-boxes/base-oneforestAD-box/Vagrantfile

+Vagrant.require_version ">= 1.9.1"
+
+required_plugins = %w( winrm winrm-fs)
+
+required_plugins.each do |plugin|
+	system "vagrant plugin install #{plugin}" unless Vagrant.has_plugin? plugin
+end
+
+VAGRANTFILE_API_VERSION = "2"
+
+Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|
+  config.vm.provision "shell", inline: "echo Requirements: Ansible:WinRM openSSL"
+
+  config.vm.define "base-oneforestAD"
+
+  config.vm.communicator = :winrm
+  config.vm.boot_timeout = 1800
+
+  config.vm.box = "edu.psu/base-winsvr2012"
+  config.vm.box_url = "https://nexus.ci.psu.edu/repository/vagrant-boxes/base-winsvr2012.json"
+
+  config.winrm.username = "vagrant"
+  config.winrm.password = "P@ssw0rd"
+  config.winrm.port = 5985
+  config.winrm.timeout = 1800
+  config.winrm.retry_limit = 3
+
+  config.vm.network "forwarded_port", guest: 5985, host: 5985
+  config.vm.network "forwarded_port", guest: 5986, host: 5986
+
+  config.vm.network "private_network", ip: "192.168.33.11", virtualbox__intnet: "localDev"
+
+  config.ssh.insert_key = false
+
+  config.vm.provider :virtualbox do |vb|
+    vb.customize ["modifyvm", :id, "--natdnshostresolver1", "on"]
+  end
+
+  config.vm.provider :virtualbox do |vb|
+    vb.customize ["modifyvm", :id, "--memory", "1024"]
+  end
+
+  # Enable provisioning with Ansible 
+  config.vm.provision :ansible do |ansible|
+    ansible.playbook = "playbook.yml"
+    ansible.groups = {
+      "vagrant" => ["base-oneforestAD"],
+    }
+  end
+
+end

base-boxes/base-oneforestAD-box/ansible.cfg

+[defaults]
+
+roles_path = ../../roles

base-boxes/base-oneforestAD-box/ca.crt

+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

base-boxes/base-oneforestAD-box/ca.key

+-----BEGIN RSA PRIVATE KEY-----
+Proc-Type: 4,ENCRYPTED
+DEK-Info: DES-EDE3-CBC,0EDC6B6BB94DBC60
+
+Q+KQzw5IA/53UUOn0fVfhYykcNp9cFfzn+zYyKl/zX+V/DzllDa8VUX8RUWOeAQj
+2cvYoUBDn8qeBCDmxhZ1BxGcxzKBfa8zDaVR+AEJBYkuUgMj38qQcxselDu9mDU/
+yL6G9chOtT5WptfUYnl1WJcn9/+NC2s8jiSoAiiqgoxkZjQB5wLexwZt3bok/7Ry
+7SyIkZo/begrAXgwSotu4NNn/nXkVmIihr8R/rbwbOlrFeFo1Nt4fATbFIj0Pq+1
+OrWWe09XasW2Fut6Zu3Fj8VSsHaK5PF6DyIM7IbuV83G/KNrO0krJhOJfCREI+3B
+gWcivACRETxMNe0wl95DY3tO2s3spFlgxXBNzy8Vr46wxBVeHMy+Ybi+vGvTXwxY
+bd3ZwWR/QCVMhgFcdSxQX5HC3qHORgzfQ68adfNy8A/A+NQBhcGhEsvYbNZMLFfi
+7SqoLByGktJFnRaSBn5ksYr2O+/fwPWqOOAmv66gfFGQvlejNkqKr6QuWxZ5b/YG
+QJFFNG78FPiec6PgRZvnYfat6s5LhsKses/1z9qezFWFBj4QQNudvFz8eBA41sOY
+SoWQIwmIyfYzFOy34KBdpMA42chy/5VjoQJQDdChWIWeHsAsp06ZNCmv3F3gwJPz
+baUunY3TrPDToUu9hysGJ1MO9kpe3Fodrd1JLXAPGopN9ebKHhg3JiAaE9bAhMcj
+tPTOqUqwB2YYkGwHZYnAxs2GLe7T/G9/I9tZ2ky/UmEYdeYwkomLqWcV0qHjyB08
++w1tJl50oetsob3Oh7nBxgkHBszX6vsfrU3tDvs61A3sHbU+jljmTdLBDmzUi3ye
+CMPIoxWQRSJdsCttqHWR/EVTAU74JLPjG/bcSrF0VI4PyxFTHsf2rNjCOAJbCQ5s
+3EWxohex5zSbHGulnvf2GaGq5BKJs29pcr1eleZVDuiMJzAGk0kd9feMpekRrKL6
+8fQRs2gxLZu3B3II5WBsk0Mj5uF/gj6pqyVF8M2enKMttpPT7vmzoH2kPkzYVbUT
+o/hjfeI8p2ZtKi2MPVdOJwGd3NARtrm3lgmwcpiLV6Rxh+zlWrjPWTGGaTDf2PlI
+GUeuejnamiBtN9VHWDOSRVd5vC+wNTGiLGgJN3sl+WHqiHy7Y5p5qhQMLm5LFnWn
+IgOWOxZ6ZZy8GTxdl6iZfSAZX9suTd00794GNZA47Nt0euGKz1QrXlvgu93pJg3B
+hFlRbX18nUwBtTZOwr8a+Fz3Y1mir2hZi23gEA3NSuDDslBEoGx2km5QYYUS7Eu2
+zJ1jlL/1HJZE03Bc5GIOqS/045czbFhvLw83ax3DQi+TXQAEQe5/rA8oihMgSqXC
+Q90Aq11t2poxvu3s+0mei0ffe6XftZrUE/HkezJKywKCjFCOpSdswH4cwDimOEG/
+wGiDBjtrpEZh5VF0K9b8RYbHj/6ZfKOwlPHR7orsV0XF1j7oZyDnyvlZjWHFtujP
+iQv4Bnfw0afqCpJoqMMNnHnDZFNbY+FAR1pMDxL8Pf7izzN/nO1z31usEmDnHlMM
+ZpKhnx1AbayHe2P1vWYTMVW07ZzahjfbkKk3jBoL7de91ipXsjlQ9j+Ejun6JQNt
+w5osU8Eumb3SE8e0YknT0y6Q2f1/c4rTp9bnnoVRvlkyoCJkhTTvrIneEouPcufZ
+nedW/hShYj4S8y+tik7JtT4Wd/dj7iuusCVvVoSGZuEpPNUcfBl471bPmqOuECoU
+o9aOlDRLTRc5CqZ/sXtySjWiY/auP1W9LTFSOJRGKWBjyyE0gfZjOkF4EsQY8s7R
+6EgJrZIORXRKoKkdZmV/OngIhN73koXMorGIRX47XjbeCkMXmf5noWySCTltzU7a
+b8DCGt25eu8vf2vCANNUy8jAwcFfVsIVS/qUqyHWXnMpa3dsKUGwal1VX4G/dt0B
+VVtKKDnWnvNvWcKTlanaufobkTHLo0u9t/J8mm91WGaz3oOMhvtYx4ZQV7rjYvCd
+kMtNmTrx71kd3xBfViEwAufCBw+sGwl/4c2Y9Cn1U6mmGDGYLUOsJu2geivt3Okq
+0j9asIsNkhpfVd1EWI4X4c16Iscu5c80mJJP/sYSltbhxa7LEphiFiGmTVJ6TTx1
+MVD+Grk9iDKtpLSdnzNk9eaAZiMUfHNIGjl/56LdnsM4z4ZU99lz7zOIZnEJOdFS
+lpmBzzYdm9W4/HB6+AZeloxjnJkHs+u5TmCYDRSLC8o6OYOPkIPibw17LBlZJ57i
+CHNMoOTl74GCHXEx8UVPmcm7zNFaUdZPH9fCQrbZyJjjBjT4sbxamQfa8ElwKMmn
+oTCXeJ2K9l+Ma0W/Y3rVBXhIwvuX9/p0rCiKNOfl9C6fY1yREPcOwVk2tbcmrxx/
+HGI1vmFWhVXwCU3PwJZgCyMvHjsf1/SKXzJ/q6r2haX9cBBVgJP6f4GhYKWf2p3l
+rH58Al9kbDGV4bDetquGmrBqFLtDjElHalKaem9h5Yv6caIbC/c5e88PAXddMeRo
+O2s9F0XIQVTwQSRlBOvOsdCqszck1iOkmBf2oHt1xqoTZi4YI1jzRz9fo/z+Dd/d
+iUxKFr5MPZEjZqruX9B35KEUdtRp3dDYapjyvwm5wr49N1/4cLgCuqZv79iKatD8
+eRFzmS+cyOfbw1wcgPgvj5td2BhdPy1g917LUVtkZgJ9UkiKI9pXl3N6x1Bh0eAJ
+zFB6IKR6WKwMfNL7Efo+ZiICB2rfXzJ4+Ss+E6COxCn3XSJUZD0/GoiQhS7sX3Z4
+7fq/hkukYRzLfAkUmte468fX6J6YAncDFBu7PNUBAqE2IZmFuc1X5t2L+bmSa5rX
++HfOw3T64I6feEg2D/XOzRm0THUzwVD4Wnuq8MBGFHL1ES69KKkM/C15eGmSD2TO
+as0IwV4z4LjWwyC9/OvFjLNwd7J5zZxnoI9cU6SKqPPvwxN0DMFMsGceT0hEzZ18
++6zK2sAIx9tAGiWv4HAIGMqpk1u9+Bk78wdA68M/AGGmCpG1TW9t5UOsoeoXuJAv
+jFe6/gwCd2CL0OeVfeem/KU4CXjXpjTZKrVl7dyBHTaCeZ4Y/F2TRxN6HqcCLcsY
+TYoeStPLlVb5ayCvUrjozv9uj1mZ7X4ALPgDaLx6O9DKaJp/8Z+xTaGIIhWnfNMD
+-----END RSA PRIVATE KEY-----

base-boxes/base-oneforestAD-box/certRequest.inf

+;----------------- request.inf -----------------
+
+[Version]
+
+Signature=$Windows NT$
+
+[NewRequest]
+
+Subject = "CN=develop-dc-01.develop.local" ; replace with the FQDN of the DC
+KeySpec = 1
+KeyLength = 2048
+; Can be 1024, 2048, 4096, 8192, or 16384.
+; Larger key sizes are more secure, but have
+; a greater impact on performance.
+Exportable = TRUE
+MachineKeySet = TRUE
+SMIME = False
+PrivateKeyArchive = FALSE
+UserProtected = FALSE
+UseExistingKeySet = FALSE
+ProviderName = "Microsoft RSA SChannel Cryptographic Provider"
+ProviderType = 12
+RequestType = PKCS10
+KeyUsage = 0xa0
+
+[EnhancedKeyUsageExtension]
+
+OID=1.3.6.1.5.5.7.3.1
+
+;[Extensions]
+;OID=1.3.6.1.5.5.7.3.1
+
+;-----------------------------------------------

base-boxes/base-oneforestAD-box/develop_dc.crt

+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

base-boxes/base-oneforestAD-box/develop_dc.pem

+-----BEGIN NEW CERTIFICATE REQUEST-----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+-----END NEW CERTIFICATE REQUEST-----

base-boxes/base-oneforestAD-box/playbook.yml

+---
+# file: security-service-vagrant\playbook_ad.yml
+- hosts: vagrant
+  roles:
+    - { role: ActiveDirectory }
+    - { role: ONEForest }
+  vars:
+    ad_domain_name: develop.local
+    ad_safe_mode_password: FtPX38qhuaHTaTS4CkZ6Fpsgg5wL883N
+    local_dev_username: secSvc
+    local_dev_password: ONEforestIsAw3some!

base-boxes/base-wildfly-kerb-box/Vagrantfile

+Vagrant.require_version ">= 1.9.1"
+
+VAGRANTFILE_API_VERSION = "2"
+
+Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|
+  config.vm.provision "shell", inline: "echo This Will Provision machine --CentOS--"
+
+  config.vm.define "base-wildfly-kerb"
+
+  config.vm.box = "edu.psu/base-wildfly10"
+  config.vm.box_url = "https://nexus.ci.psu.edu/repository/vagrant-boxes/base-wildfly10.json"
+
+
+  config.vm.provider :virtualbox do |vb|
+    vb.customize ["modifyvm", :id, "--natdnshostresolver1", "on"]
+  end
+
+  config.vm.network "forwarded_port", guest: 5432, host: 5432
+  config.vm.network "forwarded_port", guest: 8080, host: 8080
+  config.vm.network "forwarded_port", guest: 8081, host: 8081
+  config.vm.network "forwarded_port", guest: 8787, host: 8787
+  config.vm.network "forwarded_port", guest: 9990, host: 9990
+  config.vm.network "forwarded_port", guest: 9999, host: 9999
+  config.vm.network "forwarded_port", guest: 9080, host: 9080
+
+  config.vm.network "private_network", ip: "192.168.33.10", virtualbox__intnet: "localDev"
+
+  config.ssh.insert_key = false
+
+  config.vm.provider :virtualbox do |vb|
+    vb.customize ["modifyvm", :id, "--natdnshostresolver1", "on"]
+  end
+
+  config.vm.provider :virtualbox do |vb|
+    vb.customize ["modifyvm", :id, "--memory", "1024"]
+  end
+
+  config.vm.provision :ansible do |ansible|
+    ansible.playbook = "playbook.yml"
+    ansible.groups = {
+      "vagrant" => ["base-wildfly-kerb"],
+    }
+
+  end
+
+
+end

base-boxes/base-wildfly-kerb-box/ansible.cfg

+[defaults]
+
+roles_path = ../../roles

base-boxes/base-wildfly-kerb-box/ca.crt

+-----BEGIN CERTIFICATE-----
+MIIF8TCCA9mgAwIBAgIJAMOGpuaZkxrLMA0GCSqGSIb3DQEBCwUAMIGOMQswCQYD
+VQQGEwJVUzEVMBMGA1UECAwMUGVubnN5bHZhbmlhMRgwFgYDVQQHDA9Vbml2ZXJz
+aXR5IFBhcmsxJjAkBgNVBAoMHVBlbm5zeWx2YW5pYSBTdGF0ZSBVbml2ZXJzaXR5
+MQswCQYDVQQLDAJJVDEZMBcGA1UEAwwQQ0EuZGV2ZWxvcC5sb2NhbDAeFw0xNzEx
+MDMxNzMzMzFaFw0yNzExMDExNzMzMzFaMIGOMQswCQYDVQQGEwJVUzEVMBMGA1UE
+CAwMUGVubnN5bHZhbmlhMRgwFgYDVQQHDA9Vbml2ZXJzaXR5IFBhcmsxJjAkBgNV
+BAoMHVBlbm5zeWx2YW5pYSBTdGF0ZSBVbml2ZXJzaXR5MQswCQYDVQQLDAJJVDEZ
+MBcGA1UEAwwQQ0EuZGV2ZWxvcC5sb2NhbDCCAiIwDQYJKoZIhvcNAQEBBQADggIP
+ADCCAgoCggIBAKyWWS3yTA/eErdIKltafUVCqXjfMZHdeFdUT95DIAr1tgpdSQHg
+ViCrpR4U4ZJgYOHMOUivFkGY63gQHnHo/kzDT55yyt18l1g/NhFxUY+QjTrArTVG
+Xi7JO2XDXV9W3YjuXC2d1o0Oi6xbJuypnHL3JuctCnJWH04B2Mi8NRonPsocoWgy
+s/cBPIz0AKHQW5eO2UhJbwrQOygoH1XIRkREiaiBmC0gTKBKunepe5c5W7QObjuO
+8lLTfB9MXTnV96K72J9vcPNRXB8268+6O+LtyfzE3jCOyNHzN4iAYmkZpuiNkfGW
+8HMEETzVc+a0YjUwlra3SHkvvBYy3Vymax/4mxGsme0d7JpeJpEXcVMjE0bFNDAp
+JCD48JNJcsgaIH2JfK6/+cs7CVUnNm0enXyltsSb3hS5xv9/lHGo23zMnzlte4b3
+atQCdZVlAEuaDXOlBPcar4l9W04CGsXc3TGMtOpX7SyPOuSSYGJAYY/0sh8Q1bFR
+OWZVZi6GQssux0DpPiUk/v/3A+vf0irGSkHjFoE1JMLAvPT8T/l0uXClLDAz4KTG
+92p+0J0Mow9d9yH/eP3jy9PixTpwg9vT1uS5afxKj98jiVED5Q/83ibQd5bD4ljj
+oCOPq9sEPG+HYp0F85wZrcdMeImUS8lZ5Wn/nDVVDEafFocgs9gGyw37AgMBAAGj
+UDBOMB0GA1UdDgQWBBR38FqAVXP8b4ZUz4F1M5RvD9tZ6TAfBgNVHSMEGDAWgBR3
+8FqAVXP8b4ZUz4F1M5RvD9tZ6TAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBCwUA
+A4ICAQByX1oNEvp2ioqXEfIZxUZD4pf5Qnd24MqcQnylhZg7Mg+/u6m6nXitl5Ay
+ygIvPUJg+SEsYF7HMdRTUIohzkjQGOqTnXRKhtKSCopuvr2mfuIFn1ogftrtaW9t
+5nUH5GMhkyyjU5GgB6UNz4S7ixjFl8g5RWOdrjfZJ6OfQmlRIhI0Od2MxufVa1ND
+EgEROqBZONa2RJwCe8TQ1w6E5kQgJTAMll4qWV5Mdmjlj0TnTGYMFwt5MqvWvwRR
+TOvhbH++ZeebGTORFL3sW50iKSphCH7H0ih2yDpvS7RivQeMtWluor/RxXz5nY2E
+95PtssryTplwZ6/fUF4hU1Ea5tKWHReANdX4MEy5tW/ooegZ5kMgeSTKuzTovcrB
+qb3hoVI/5pkzphJKEgWmlPqcL0uriRIWy5u4itRMionffve8gU51r5iTTt1TiPT9
+quQ+hQZgaqeTPxcI1Ov8V2U3CqenTuS/5T4RG5gPDjCQP6e1qBVgDr+phlBQJ5Oy
+SXGZJyfDiS50TAUpRLEvjIVfbHGdY4vFekvYi/srJq5Fxqbuok8XvqYzBZ/v5mu0
+C/aYvm7NpBktkChMRA/NsYlzZOWo8BsVvXSL5d1GL0pR7WulMsi2AFi4sxlvx6Wd
+F0PA/JMlWWtDHo2A7ubnSu5ZD/KJVrl4V3xCieDG9MoHv6wgPQ==
+-----END CERTIFICATE-----

base-boxes/base-wildfly-kerb-box/playbook.retry

+base-wildfly-kerb

base-boxes/base-wildfly-kerb-box/playbook.yml

+---
+# file: playbook.yml
+- hosts: vagrant
+  sudo: yes
+  roles:
+    - kerberos
+    - cactus_service
+
+  vars:
+    GMP: "gmp-4.3.2"
+    MPFR: "mpfr-2.4.2"
+    MPC: "mpc-0.8.1"
+    LIBELF: "libelf-0.8.13"
+    GCC: "gcc-4.9.2"
+    GMP_ARCHIVE: "{{ GMP }}.tar.bz2"
+    MPFR_ARCHIVE: "{{ MPFR }}.tar.bz2"
+    MPC_ARCHIVE: "{{ MPC }}.tar.gz"
+    LIBELF_ARCHIVE: "{{ LIBELF }}.tar.gz"
+    GCC_ARCHIVE: "{{ GCC }}.tar.bz2"
+
+  tasks:
+
+    - name: add AD DC to HOSTS file
+      lineinfile:
+         path: /etc/hosts
+         regexp: "^192.168.33.11 develop-dc-01.develop.local"
+         line: "192.168.33.11 develop-dc-01.develop.local"
+         owner: root
+         group: root
+         mode: 0644
+
+    - name: copy cert to CentOS
+      copy: src=ca.crt dest=/usr/share/ca.crt
+
+    - name: import AD DCs CA Cert for Trusted LDAPS communications
+      shell: "/usr/lib/jvm/java-1.8.0-openjdk-1.8.0.111-0.b15.el6_8.i386/jre/bin/keytool -import -alias CALocal -file /usr/share/ca.crt -keystore /etc/pki/java/cacerts -storepass changeit -noprompt"
+
+    - name: install necessary packages for kerblib
+      yum: name="{{ item }}"
+      with_items:
+        - boost
+        - boost-devel
+        - cmake
+        - gcc
+        - gcc-c++
+        - git
+        - krb5-devel
+        - m4
+        - make
+
+    - name: create repos directory
+      file: path="/opt/repos" state=directory owner=root group=root
+
+    - name: create kadminRest directories
+      file: path="/var/{{ item }}/kadminRest" state=directory owner=root group=root
+      with_items:
+        - run
+        - log
+
+    - name: download repos
+      get_url: url="{{ item.url }}/{{ item.archive }}" dest="/opt/repos/{{ item.archive }}" checksum="{{ item.sum }}"
+      with_items:
+        - { url: "ftp://gcc.gnu.org/pub/gcc/infrastructure", archive: "{{ GMP_ARCHIVE }}", sum: "sha256:936162c0312886c21581002b79932829aa048cfaf9937c6265aeaa14f1cd1775" }
+        - { url: "ftp://gcc.gnu.org/pub/gcc/infrastructure", archive: "{{ MPFR_ARCHIVE }}", sum: "sha256:c7e75a08a8d49d2082e4caee1591a05d11b9d5627514e678f02d66a124bcf2ba" }
+        - { url: "ftp://gcc.gnu.org/pub/gcc/infrastructure", archive: "{{ MPC_ARCHIVE }}", sum: "sha256:e664603757251fd8a352848276497a4c79b7f8b21fd8aedd5cc0598a38fee3e4" }
+        - { url: "http://www.mr511.de/software", archive: "{{ LIBELF_ARCHIVE }}", sum: "sha256:591a9b4ec81c1f2042a97aa60564e0cb79d041c52faa7416acb38bc95bd2c76d" }
+        - { url: "ftp://ftp.mirrorservice.org/sites/sourceware.org/pub/gcc/releases/gcc-4.9.2", archive: "{{ GCC_ARCHIVE }}", sum: "sha256:2020c98295856aa13fda0f2f3a4794490757fc24bcca918d52cc8b4917b972dd" }
+
+    - name: clone repos
+      git: repo="{{ item.url }}/{{ item.name }}.git" dest="/opt/repos/{{ item.name }}"
+      with_items:
+        - { url: "https://github.com/PennState", name: "kerblib" }
+        - { url: "https://github.com/PennState", name: "json" }
+        - { url: "https://github.com/PennState", name: "pistache" }
+        - { url: "https://git.psu.edu/ais-swe", name: "common-lib" }
+
+    - name: extract downloaded repos
+      unarchive: src="/opt/repos/{{ item }}" dest="/opt/repos/" remote_src=yes
+      with_items:
+        - "{{ GMP_ARCHIVE }}"
+        - "{{ MPFR_ARCHIVE }}"
+        - "{{ MPC_ARCHIVE }}"
+        - "{{ LIBELF_ARCHIVE }}"
+        - "{{ GCC_ARCHIVE }}"
+
+    - name: create json.hpp link
+      file: src="/opt/repos/json/src/json.hpp" dest="/usr/local/include/json.hpp" state=link
+
+    - name: build kadminRest (get up and stretch your legs, this will take a while)
+      shell: bash /vagrant/build-{{ item.build }} > /opt/repos/build-{{ item.build }}.log 2>&1 creates="{{ item.creates }}"
+      with_items:
+        - { build: "GMP", creates: "/usr/local/lib/libgmp.a" }
+        - { build: "MPFR", creates: "/usr/local/lib/libmpfr.a" }
+        - { build: "MPC", creates: "/usr/local/lib/libmpc.a" }
+        - { build: "Libelf", creates: "/usr/local/lib/libelf.a" }
+        - { build: "GCC", creates: "/usr/local/lib/gcc/" }
+        - { build: "Pistache", creates: "/usr/local/include/pistache/" }
+        - { build: "Common-lib", creates: "" }
+        - { build: "KadminRest", creates: "/opt/repos/kerblib/bin/kadminRest" }
+
+    - name: copy kadminRest init script
+      copy: src="kadminRest" dest="/etc/init.d/kadminRest" owner=root group=root mode=0755
+
+    - name: register kadminRest
+      command: chkconfig --level 2345 kadminRest on
+
+    - name: start kadminRest
+      service: name=kadminRest state=started

roles/cactus_service/tasks/main.yml

 ---
 # file: roles/cactus_service/tasks/main.yml
+#
 
 - name: download cactus service from nexus
-  maven_artifact: group_id="edu.psu.ses.libraries" artifact_id="cactus-web" version={{ cactus_srv_version }} extension="war" repository_url=https://nexus.ci.psu.edu/repository/public/ dest=/tmp/cactus-web.war
+  maven_artifact: group_id="edu/psu/ses/libraries/" artifact_id="cactus-web" version={{ cactus_srv_version }} extension="war" repository_url=https://nexus.ci.psu.edu/repository/releases/ dest=/tmp/cactus-web.war
 
 - name: copy the cacus jboss cli scripts to the remote host's deployment directory
   copy: src="{{ item }}" dest=/tmp