Merge pull request #3261 from mattymo/etcd_ssl_dir_perms

Ensure etcd file permissions are correct when using vault
This commit is contained in:
k8s-ci-robot 2018-09-12 01:10:26 -07:00 committed by GitHub
commit a801e02cea
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -65,3 +65,9 @@
with_items: "{{ etcd_node_certs_needed|d([]) }}" with_items: "{{ etcd_node_certs_needed|d([]) }}"
when: inventory_hostname in etcd_node_cert_hosts when: inventory_hostname in etcd_node_cert_hosts
notify: set etcd_secret_changed notify: set etcd_secret_changed
- name: gen_certs_vault | ensure file permissions
shell: >-
find {{etcd_cert_dir }} -type d -exec chmod 0755 {} \; &&
find {{etcd_cert_dir }} -type f -exec chmod 0640 {} \;
changed_when: false