From 3bb3d926e10274b80335d3a3eb7551e053eb3fc0 Mon Sep 17 00:00:00 2001 From: Gabriel Augendre Date: Fri, 11 Oct 2024 19:10:10 +0200 Subject: [PATCH] fix permissions --- playbooks/apps/goatcounter.yaml | 6 ++---- playbooks/apps/lyon-transports.yaml | 2 +- roles/docker/tasks/main.yaml | 2 +- 3 files changed, 4 insertions(+), 6 deletions(-) diff --git a/playbooks/apps/goatcounter.yaml b/playbooks/apps/goatcounter.yaml index 0cd325d..45a9732 100644 --- a/playbooks/apps/goatcounter.yaml +++ b/playbooks/apps/goatcounter.yaml @@ -17,8 +17,6 @@ url: https://github.com/arp242/goatcounter/releases/download/{{ release.tag }}/goatcounter-{{ release.tag }}-linux-amd64.gz dest: "{{ dir }}/goatcounter-{{ release.tag }}.gz" mode: "0644" - owner: gaugendre - group: gaugendre - name: Uncompress ansible.builtin.command: gunzip {{ dir }}/goatcounter-{{ release.tag }}.gz args: @@ -26,7 +24,7 @@ - name: Make executable ansible.builtin.file: path: "{{ dir }}/goatcounter-{{ release.tag }}" - mode: "0775" + mode: "0755" - name: Symlink ansible.builtin.file: src: "{{ dir }}/goatcounter-{{ release.tag }}" @@ -37,7 +35,7 @@ ansible.builtin.template: src: templates/goatcounter.service.j2 dest: /etc/systemd/system/goatcounter.service - mode: "0644" + mode: "0600" owner: root group: root notify: diff --git a/playbooks/apps/lyon-transports.yaml b/playbooks/apps/lyon-transports.yaml index fbdb6fa..a190342 100644 --- a/playbooks/apps/lyon-transports.yaml +++ b/playbooks/apps/lyon-transports.yaml @@ -8,7 +8,7 @@ ansible.builtin.template: src: templates/lyon-transports.service.j2 dest: /etc/systemd/system/lyon-transports.service - mode: "0644" + mode: "0600" owner: root group: root notify: diff --git a/roles/docker/tasks/main.yaml b/roles/docker/tasks/main.yaml index 5a8e9d4..e6dd85c 100644 --- a/roles/docker/tasks/main.yaml +++ b/roles/docker/tasks/main.yaml @@ -8,7 +8,7 @@ ansible.builtin.copy: src: "{{ item }}" dest: "{{ docker_dir }}/" - mode: preserve + mode: "0600" with_fileglob: - files/{{ docker_app_name }}/* - files/{{ docker_app_name }}/.*