diff options
| author | Michael Gugino <mgugino@redhat.com> | 2018-01-09 16:01:58 -0500 |
|---|---|---|
| committer | Michael Gugino <mgugino@redhat.com> | 2018-01-09 16:52:01 -0500 |
| commit | 4b06eaf83e137ddeba2ce498e141ad87413761c0 (patch) | |
| tree | f84e023eb5043bd10ff90c5e75888530c2ba120f /playbooks/common/openshift-cluster/upgrades/create_service_signer_cert.yml | |
| parent | 3b07acdcd41e215dedc4d4c7c7303b807e59333d (diff) | |
| download | openshift-4b06eaf83e137ddeba2ce498e141ad87413761c0.tar.gz openshift-4b06eaf83e137ddeba2ce498e141ad87413761c0.tar.bz2 openshift-4b06eaf83e137ddeba2ce498e141ad87413761c0.tar.xz openshift-4b06eaf83e137ddeba2ce498e141ad87413761c0.zip | |
Chmod temp dirs created on localhost
After remove become:no statements on local_action tasks,
we need to ensure that the proper file permssions are
applied to local temp directories.
This reason for this is that the 'fetch' module
does not use 'become' for the localhost, just the remote
host.
Additionally, users may not wish for the localhost to
become during a fetch. local_action will execute with
whatever permissions are specified in inventory or via
cli.
Diffstat (limited to 'playbooks/common/openshift-cluster/upgrades/create_service_signer_cert.yml')
| -rw-r--r-- | playbooks/common/openshift-cluster/upgrades/create_service_signer_cert.yml | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/playbooks/common/openshift-cluster/upgrades/create_service_signer_cert.yml b/playbooks/common/openshift-cluster/upgrades/create_service_signer_cert.yml index 00a731cb0..ef8233b67 100644 --- a/playbooks/common/openshift-cluster/upgrades/create_service_signer_cert.yml +++ b/playbooks/common/openshift-cluster/upgrades/create_service_signer_cert.yml @@ -10,6 +10,11 @@ changed_when: false when: not (hostvars[groups.oo_first_master.0].service_signer_cert_stat.stat.exists | bool) + - name: Chmod local temp directory + local_action: command chmod 777 "{{ local_cert_sync_tmpdir.stdout }}" + changed_when: false + when: not (hostvars[groups.oo_first_master.0].service_signer_cert_stat.stat.exists | bool) + - name: Create service signer certificate hosts: oo_first_master tasks: |