forked from ISTI-ansible-roles/ansible-roles
68 lines
2.8 KiB
YAML
68 lines
2.8 KiB
YAML
---
|
|
- block:
|
|
- name: Create the common group used to setup acls
|
|
group: name={{ common_users_group }} state=present system=yes
|
|
when: additional_data_directories is defined
|
|
|
|
tags: [ 'users', 'users_acl' ]
|
|
|
|
- block:
|
|
- name: Add selected users to the commong group
|
|
user: name={{ item.login }} groups={{ common_users_group }} append=yes
|
|
with_items: '{{ users_system_users }}'
|
|
|
|
when: users_system_users is defined
|
|
tags: [ 'users', 'users_acl' ]
|
|
|
|
- block:
|
|
- name: Add additional users to the commong group
|
|
user: name={{ item.login }} groups={{ common_users_group }} append=yes
|
|
with_items: '{{ users_system_users_adjunct }}'
|
|
|
|
when: users_system_users_adjunct is defined
|
|
tags: [ 'users', 'users_acl' ]
|
|
|
|
- block:
|
|
- name: Create the users additional data dirs
|
|
file: name={{ item.name }} state=directory owner={{ item.owner }} group={{ item.group }} mode={{ item.perms }}
|
|
with_items: '{{ additional_data_directories }}'
|
|
when: item.create and not item.file
|
|
|
|
when: additional_data_directories is defined
|
|
tags: [ 'users', 'users_acl' ]
|
|
|
|
- block:
|
|
- name: Create more additional data dirs
|
|
file: name={{ item.name }} state=directory owner={{ item.owner }} group={{ item.group }} mode={{ item.perms }}
|
|
with_items: '{{ additional_data_directories_adjunct }}'
|
|
when: item.create and not item.file
|
|
|
|
when: additional_data_directories_adjunct is defined
|
|
tags: [ 'users', 'users_acl' ]
|
|
|
|
|
|
- block:
|
|
- name: Set the read/write/access permissions on the users additional data dirs
|
|
acl: name={{ item.name }} entity={{ common_users_group }} etype=group permissions={{ item.aclperms | default('rwX') }} state=present recursive=yes
|
|
with_items: '{{ additional_data_directories | default([]) }}'
|
|
|
|
- name: Set the default read/write/access permissions on the users additional data dirs
|
|
acl: name={{ item.name }} entity={{ common_users_group }} etype=group permissions={{ item.aclperms | default('rwX') }} state=present default=yes recursive=yes
|
|
with_items: '{{ additional_data_directories | default([]) }}'
|
|
|
|
when: additional_data_directories is defined
|
|
tags: [ 'users_acl' ]
|
|
|
|
- block:
|
|
- name: Set the read/write/access permissions on the additional data dirs
|
|
acl: name={{ item.name }} entity={{ common_users_group }} etype=group permissions={{ item.aclperms | default('rwX') }} state=present recursive=yes
|
|
with_items: '{{ additional_data_directories_adjunct }}'
|
|
|
|
- name: Set the default read/write/access permissions on the additional data dirs
|
|
acl: name={{ item.name }} entity={{ common_users_group }} etype=group permissions={{ item.aclperms | default('rwX') }} state=present default=yes recursive=yes
|
|
with_items: '{{ additional_data_directories_adjunct }}'
|
|
|
|
when: additional_data_directories_adjunct is defined
|
|
tags: [ 'users_acl' ]
|
|
|