library/roles/dnet_user_services_perms: Add defaults where they were missing.

This commit is contained in:
Andrea Dell'Amico 2016-10-25 17:51:20 +02:00
parent 7a2e74177c
commit 4859f7a7a8
2 changed files with 5 additions and 7 deletions

View File

@ -2,7 +2,5 @@
# Ignore errors because it fails if the user is already present and used to run a service. # Ignore errors because it fails if the user is already present and used to run a service.
- name: Create users needed to operate services other than the dnet ones - name: Create users needed to operate services other than the dnet ones
user: name={{ item.user }} comment="{{ item.user }}" home={{ item.home }} createhome={{ item.createhome }} shell={{ item.shell }} user: name={{ item.user }} comment="{{ item.user }}" home={{ item.home }} createhome={{ item.createhome }} shell={{ item.shell }}
with_items: '{{ dnet_other_services_users }}' with_items: '{{ dnet_other_services_users | default([]) }}'
when: dnet_other_services_users is defined
ignore_errors: True
tags: [ 'users', 'dnet' ] tags: [ 'users', 'dnet' ]

View File

@ -1,25 +1,25 @@
--- ---
- name: Create the users dnet data dirs - name: Create the users dnet data dirs
file: name={{ item.name }} state=directory owner={{ item.owner }} group={{ item.group }} mode={{ item.perms }} file: name={{ item.name }} state=directory owner={{ item.owner }} group={{ item.group }} mode={{ item.perms }}
with_items: '{{ dnet_users_data_directories }}' with_items: '{{ dnet_users_data_directories | default([]) }}'
when: item.create and not item.file when: item.create and not item.file
tags: [ 'dnet', 'users', 'dnet_u_acl' ] tags: [ 'dnet', 'users', 'dnet_u_acl' ]
- name: Set the read/write/access permissions on the users dnet data dirs - name: Set the read/write/access permissions on the users dnet data dirs
acl: name={{ item.name }} entity={{ dnet_group }} etype=group permissions={{ item.aclperms | default ('rwx') }} state=present acl: name={{ item.name }} entity={{ dnet_group }} etype=group permissions={{ item.aclperms | default ('rwx') }} state=present
with_items: '{{ dnet_users_data_directories }}' with_items: '{{ dnet_users_data_directories | default([]) }}'
when: not item.file when: not item.file
tags: [ 'dnet', 'users', 'dnet_u_acl' ] tags: [ 'dnet', 'users', 'dnet_u_acl' ]
- name: Set the default read/write/access permissions on the users dnet data dirs - name: Set the default read/write/access permissions on the users dnet data dirs
acl: name={{ item.name }} entity={{ dnet_group }} etype=group permissions={{ item.aclperms | default ('rwx') }} state=present default=yes acl: name={{ item.name }} entity={{ dnet_group }} etype=group permissions={{ item.aclperms | default ('rwx') }} state=present default=yes
with_items: '{{ dnet_users_data_directories }}' with_items: '{{ dnet_users_data_directories | default([]) }}'
when: not item.file when: not item.file
tags: [ 'dnet', 'users', 'dnet_u_acl' ] tags: [ 'dnet', 'users', 'dnet_u_acl' ]
- name: Set the read/write permissions on pre-existing files inside the users dnet data dirs - name: Set the read/write permissions on pre-existing files inside the users dnet data dirs
acl: name={{ item.name }} entity={{ dnet_group }} etype=group permissions={{ item.aclperms | default ('rw') }} state=present acl: name={{ item.name }} entity={{ dnet_group }} etype=group permissions={{ item.aclperms | default ('rw') }} state=present
with_items: '{{ dnet_users_data_directories }}' with_items: '{{ dnet_users_data_directories | default([]) }}'
when: item.file when: item.file
tags: [ 'dnet', 'users', 'dnet_u_acl' ] tags: [ 'dnet', 'users', 'dnet_u_acl' ]