providentia: Add upcoming environment vars

Related to access control changes

nova/core/galaxy.yml

@@ -1,6 +1,6 @@
 namespace: nova
 name: core
-version: 3.2.21
+version: 3.2.22
 readme: README.md
 authors:
   - https://github.com/novateams

nova/core/roles/providentia/defaults/main.yml

@@ -35,6 +35,9 @@ providentia_sentry_env: production # Sentry production value
 # app config (SSO)
 providentia_oidc_issuer: "http://{{ providentia_builtin_keycloak_fqdn }}/realms/Providentia" # The URL for OpenID Connect endpoint (.well-known should be under this)
 providentia_oidc_client_id: Providentia # The client ID for OpenID Connect
+providentia_resource_login: User # The role name, which allows _login_ access to Providentia
+providentia_resource_superadmin: Super_Admin # The role name, which allows full administrator access to Providentiua
+providentia_resource_env_creator: Environment_Creator # The role name, which allows creating new environments in Providentia
 providentia_oidc_client_secret: 00000000-0000-0000-0000-000000000000 # The client secret for OpenID Connect (depending on configuration)
 providentia_resource_prefix: Providentia_ # The prefix on authorization roles
 providentia_auth_mode: resource_access # One of `resource_access` or `scope`, specifying where in access token the authorization fields are located

nova/core/roles/providentia/templates/docker-compose.yml

@@ -27,6 +27,9 @@ services:
       - OIDC_CLIENT_ID={{ providentia_oidc_client_id }}
       - OIDC_CLIENT_SECRET={{ providentia_oidc_client_secret }}
       - OIDC_RESOURCE_PREFIX={{ providentia_resource_prefix }}
+      - OIDC_RESOURCE_LOGIN={{ providentia_resource_login }}
+      - OIDC_RESOURCE_SUPERADMIN={{ providentia_resource_superadmin }}
+      - OIDC_RESOURCE_ENV_CREATOR={{ providentia_resource_env_creator }}
       - BASE_URI=https://{{ providentia_app_fqdn }}
       - AUTH_MODE={{ providentia_auth_mode }}
       {% if providentia_sentry_dsn %}