ansible/xoxys.ldap_proxy
1
0
Fork 0
Code Issues Pull Requests Releases Activity

fix owner, group, mode of tls files

Browse Source
This commit is contained in:
Robert Kaussow 2018-12-01 02:26:49 +01:00
parent c9cb2387fa
commit 0a6ed78387
1 changed files with 8 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
tasks/tls.yml
View File

@ -10,7 +10,6 @@
serole: object_r serole: object_r
setype: slapd_cert_t setype: slapd_cert_t
seuser: system_u seuser: system_u
recurse: True
with_items: with_items:
- "{{ ldap_proxy_tls_cert_path | dirname }}" - "{{ ldap_proxy_tls_cert_path | dirname }}"
- "{{ ldap_proxy_tls_key_path | dirname }}" - "{{ ldap_proxy_tls_key_path | dirname }}"
@ -20,6 +19,8 @@
copy: copy:
src: "{{ item.src }}" src: "{{ item.src }}"
dest: "{{ item.dest }}" dest: "{{ item.dest }}"
owner: ldap
group: ldap
mode: "{{ item.mode }}" mode: "{{ item.mode }}"
selevel: s0 selevel: s0
serole: object_r serole: object_r
@ -27,8 +28,8 @@
seuser: system_u seuser: system_u
with_items: with_items:
- { src: "{{ ldap_proxy_tls_key_source }}", dest: '{{ ldap_proxy_tls_key_path }}', mode: '0600' } - { src: "{{ ldap_proxy_tls_key_source }}", dest: '{{ ldap_proxy_tls_key_path }}', mode: '0600' }
- { src: "{{ ldap_proxy_tls_cert_source }}", dest: '{{ ldap_proxy_tls_cert_path }}', mode: '0750' } - { src: "{{ ldap_proxy_tls_cert_source }}", dest: '{{ ldap_proxy_tls_cert_path }}', mode: '0640' }
- { src: "{{ ldap_proxy_tls_ca_source }}", dest: '{{ ldap_proxy_tls_ca_path }}', mode: '0750' } - { src: "{{ ldap_proxy_tls_ca_source }}", dest: '{{ ldap_proxy_tls_ca_path }}', mode: '0640' }
loop_control: loop_control:
label: "{{ item.dest }}" label: "{{ item.dest }}"
when: ldap_proxy_tls_source_use_files when: ldap_proxy_tls_source_use_files
@ -37,6 +38,8 @@
copy: copy:
content: "{{ item.src }}" content: "{{ item.src }}"
dest: "{{ item.dest }}" dest: "{{ item.dest }}"
owner: ldap
group: ldap
mode: "{{ item.mode }}" mode: "{{ item.mode }}"
selevel: s0 selevel: s0
serole: object_r serole: object_r
@ -44,8 +47,8 @@
seuser: system_u seuser: system_u
with_items: with_items:
- { src: "{{ ldap_proxy_tls_key_source }}", dest: '{{ ldap_proxy_tls_key_path }}', mode: '0600' } - { src: "{{ ldap_proxy_tls_key_source }}", dest: '{{ ldap_proxy_tls_key_path }}', mode: '0600' }
- { src: "{{ ldap_proxy_tls_cert_source }}", dest: '{{ ldap_proxy_tls_cert_path }}', mode: '0750' } - { src: "{{ ldap_proxy_tls_cert_source }}", dest: '{{ ldap_proxy_tls_cert_path }}', mode: '0640' }
- { src: "{{ ldap_proxy_tls_ca_source }}", dest: '{{ ldap_proxy_tls_ca_path }}', mode: '0750' } - { src: "{{ ldap_proxy_tls_ca_source }}", dest: '{{ ldap_proxy_tls_ca_path }}', mode: '0640' }
loop_control: loop_control:
label: "{{ item.dest }}" label: "{{ item.dest }}"
when: ldap_proxy_tls_source_use_content when: ldap_proxy_tls_source_use_content