From 76c979151ee2c969205106ca8b4fe29b66b74724 Mon Sep 17 00:00:00 2001
From: Andrea Dell'Amico <andrea.dellamico@isti.cnr.it>
Date: Fri, 19 Jun 2020 19:42:03 +0200
Subject: [PATCH] keycloak must be able to write inside the configuration
 directory.

---
 tasks/main.yml | 2 +-
 vars/main.yml  | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/tasks/main.yml b/tasks/main.yml
index 216875f..a656b00 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -16,7 +16,7 @@
     file: dest={{ keycloak_log_directory }} state=directory owner={{ keycloak_user }} group={{ keycloak_user }} mode='0755'
 
   - name: Fix the permissions of some keycloak directories
-    file: dest={{ keycloak_install_dir }}/{{ keycloak_distribution }}/{{ keycloak_wildfly_mode }}/{{ item }} state=directory owner={{ keycloak_user }} group={{ keycloak_user }} mode='0755' recurse=yes
+    file: dest={{ keycloak_install_dir }}/{{ keycloak_distribution }}/{{ keycloak_wildfly_mode }}/{{ item }} state=directory owner={{ keycloak_user }} group={{ keycloak_user }} mode='0750' recurse=yes
     with_items: '{{ keycloak_owned_directories }}'
 
   - name: Remove the log directory inside the keycloak distribution
diff --git a/vars/main.yml b/vars/main.yml
index fc71b3e..5756265 100644
--- a/vars/main.yml
+++ b/vars/main.yml
@@ -12,3 +12,4 @@ keycloak_runtime_home: '{{ keycloak_install_dir }}/{{ keycloak_distribution }}'
 keycloak_owned_directories:
   - data
   - tmp
+  - configuration