From e78a79ab68e8da774aaa414d30dfc0cffb269ab8 Mon Sep 17 00:00:00 2001
From: Robert Kaussow <mail@geeklabor.de>
Date: Tue, 20 Nov 2018 23:37:37 +0100
Subject: [PATCH] fix privilege escalation

---
 tasks/filesystem.yml   | 2 ++
 tasks/users_groups.yml | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/tasks/filesystem.yml b/tasks/filesystem.yml
index d190214..0c0ae2e 100644
--- a/tasks/filesystem.yml
+++ b/tasks/filesystem.yml
@@ -8,3 +8,5 @@
     state: "{{ item.state | default('query') }}"
     recursive: "{{ item.recursive | default('no') }}"
   with_items: "{{ ucs_filesystem_acl | default([]) }}"
+  become: True
+  become_user: root
diff --git a/tasks/users_groups.yml b/tasks/users_groups.yml
index 97b0a1e..3453ef7 100644
--- a/tasks/users_groups.yml
+++ b/tasks/users_groups.yml
@@ -7,3 +7,5 @@
     ou: "{{ item.ou | default(omit) }}"
     state: "{{ item.state | default('present') }}"
   with_items: "{{ ucs_system_groups | default([]) }}"
+  become: True
+  become_user: root