ansible-collections/middleware_automation.keycloak
1
0
Fork 0
mirror of https://github.com/ansible-middleware/keycloak.git synced 2025-04-06 10:50:31 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Unrelax configuration file permissions

Browse source
This commit is contained in:
Guido Grazioli 2024-04-17 10:46:23 +02:00
parent 4ba9014edb
commit 1229a0b023
4 changed files with 10 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
roles/keycloak_quarkus/tasks/install.yml
View file

@ -31,7 +31,7 @@
state: directory state: directory
owner: "{{ keycloak.service_user }}" owner: "{{ keycloak.service_user }}"
group: "{{ keycloak.service_group }}" group: "{{ keycloak.service_group }}"
mode: 0750 mode: '0750'
## check remote archive ## check remote archive
- name: Set download archive path - name: Set download archive path
@ -56,7 +56,7 @@
ansible.builtin.get_url: # noqa risky-file-permissions delegated, uses controller host user ansible.builtin.get_url: # noqa risky-file-permissions delegated, uses controller host user
url: "{{ keycloak_quarkus_download_url }}" url: "{{ keycloak_quarkus_download_url }}"
dest: "{{ local_path.stat.path }}/{{ keycloak.bundle }}" dest: "{{ local_path.stat.path }}/{{ keycloak.bundle }}"
mode: 0640 mode: '0640'
delegate_to: localhost delegate_to: localhost
become: false become: false
run_once: true run_once: true
@ -118,7 +118,7 @@
dest: "{{ archive }}" dest: "{{ archive }}"
owner: "{{ keycloak.service_user }}" owner: "{{ keycloak.service_user }}"
group: "{{ keycloak.service_group }}" group: "{{ keycloak.service_group }}"
mode: 0640 mode: '0640'
register: new_version_downloaded register: new_version_downloaded
when: when:
- not archive_path.stat.exists - not archive_path.stat.exists

2
roles/keycloak_quarkus/tasks/jdbc_driver.yml
View file

@ -6,7 +6,7 @@
dest: "{{ keycloak.home }}/providers" dest: "{{ keycloak.home }}/providers"
owner: "{{ keycloak.service_user }}" owner: "{{ keycloak.service_user }}"
group: "{{ keycloak.service_group }}" group: "{{ keycloak.service_group }}"
mode: 0640 mode: '0640'
become: true become: true
notify: notify:
- restart keycloak - restart keycloak

8
roles/keycloak_quarkus/tasks/main.yml
View file

@ -27,7 +27,7 @@
dest: "{{ keycloak.home }}/conf/keycloak.conf" dest: "{{ keycloak.home }}/conf/keycloak.conf"
owner: "{{ keycloak.service_user }}" owner: "{{ keycloak.service_user }}"
group: "{{ keycloak.service_group }}" group: "{{ keycloak.service_group }}"
mode: 0644 mode: '0640'
become: true become: true
notify: notify:
- rebuild keycloak config - rebuild keycloak config
@ -39,7 +39,7 @@
dest: "{{ keycloak.home }}/conf/quarkus.properties" dest: "{{ keycloak.home }}/conf/quarkus.properties"
owner: "{{ keycloak.service_user }}" owner: "{{ keycloak.service_user }}"
group: "{{ keycloak.service_group }}" group: "{{ keycloak.service_group }}"
mode: 0644 mode: '0640'
become: true become: true
notify: notify:
- restart keycloak - restart keycloak
@ -64,7 +64,7 @@
dest: "{{ keycloak.home }}/conf/cache-ispn.xml" dest: "{{ keycloak.home }}/conf/cache-ispn.xml"
owner: "{{ keycloak.service_user }}" owner: "{{ keycloak.service_user }}"
group: "{{ keycloak.service_group }}" group: "{{ keycloak.service_group }}"
mode: 0644 mode: '0640'
become: true become: true
notify: notify:
- rebuild keycloak config - rebuild keycloak config
@ -76,7 +76,7 @@
path: "{{ keycloak.log.file | dirname }}" path: "{{ keycloak.log.file | dirname }}"
owner: "{{ keycloak.service_user }}" owner: "{{ keycloak.service_user }}"
group: "{{ keycloak.service_group }}" group: "{{ keycloak.service_group }}"
mode: 0775 mode: '0775'
become: true become: true
- name: Flush pending handlers - name: Flush pending handlers

4
roles/keycloak_quarkus/tasks/systemd.yml
View file

@ -6,7 +6,7 @@
dest: "{{ keycloak_quarkus_sysconf_file }}" dest: "{{ keycloak_quarkus_sysconf_file }}"
owner: root owner: root
group: root group: root
mode: 0644 mode: '0640'
vars: vars:
keycloak_pkg_java_home: "{{ keycloak_quarkus_pkg_java_home }}" keycloak_pkg_java_home: "{{ keycloak_quarkus_pkg_java_home }}"
notify: notify:
@ -18,7 +18,7 @@
dest: /etc/systemd/system/keycloak.service dest: /etc/systemd/system/keycloak.service
owner: root owner: root
group: root group: root
mode: 0644 mode: '0644'
become: true become: true
register: systemdunit register: systemdunit
notify: notify: