From 2ce4e1ce5aa97d524486c738a03ac1ea6ed4aa2c Mon Sep 17 00:00:00 2001 From: L3D Date: Mon, 14 Nov 2022 12:37:00 +0100 Subject: [PATCH] Cleanup file permissions --- tasks/configure.yml | 2 +- tasks/filepermissions.yml | 27 +++++++++++++++++++++++++++ tasks/main.yml | 3 +++ 3 files changed, 31 insertions(+), 1 deletion(-) create mode 100644 tasks/filepermissions.yml diff --git a/tasks/configure.yml b/tasks/configure.yml index 5eed4d6..78d5b06 100644 --- a/tasks/configure.yml +++ b/tasks/configure.yml @@ -21,7 +21,7 @@ with_items: - "{{ etebase__global_static_root }}" -- name: "Create mediac data directorys" +- name: "Create media data directorys" become: true ansible.builtin.file: path: "{{ item }}" diff --git a/tasks/filepermissions.yml b/tasks/filepermissions.yml new file mode 100644 index 0000000..440aaac --- /dev/null +++ b/tasks/filepermissions.yml @@ -0,0 +1,27 @@ +--- +- name: "Make sure static data is set properly" + become: true + ansible.builtin.file: + path: "{{ item }}" + state: directory + group: "{{ etebase__group }}" + owner: "{{ etebase__user }}" + recurse: true + mode: 'u=rwX,g=rX,o=rX' + with_items: + - "{{ etebase__global_static_root }}" + +- name: "Set and cleanup file permissions again" + become: true + ansible.builtin.file: + path: "{{ item }}" + state: directory + group: "{{ etebase__group }}" + owner: "{{ etebase__user }}" + recurse: true + mode: 'u=rwX,g=rX,o=' + with_items: + - "{{ etebase__global_media_root }}" + - "{{ etebase__secrets_dir }}" + - "{{ etebase__venv }}" + - "{{ etebase__user_home }}/etebase_{{ etebase_version_target }}" diff --git a/tasks/main.yml b/tasks/main.yml index ad5628d..d343fce 100644 --- a/tasks/main.yml +++ b/tasks/main.yml @@ -24,3 +24,6 @@ - name: Setup Systemd Service ansible.builtin.include_tasks: systemd.yml when: etebase__systemd_setup | bool + +- name: Cleanup file permissions + ansible.builtin.include_tasks: filepermissions.yml