From: Kyr Shatskyy <kyrylo.shatskyy@gmail.com>
Date: Wed, 6 Mar 2019 18:25:52 +0000 (+0100)
Subject: nameserver: ensure named directories have right owner and permissions
X-Git-Url: http://git.apps.os.sepia.ceph.com/?a=commitdiff_plain;h=95f41c104d28f0ad49d7971eccd95796e848fc68;p=ceph-cm-ansible.git

nameserver: ensure named directories have right owner and permissions

Signed-off-by: Kyr Shatskyy <kyrylo.shatskyy@gmail.com>
---

diff --git a/roles/nameserver/tasks/config.yml b/roles/nameserver/tasks/config.yml
index c130539..bfbd2cb 100644
--- a/roles/nameserver/tasks/config.yml
+++ b/roles/nameserver/tasks/config.yml
@@ -3,6 +3,8 @@
   file:
     path: "{{ named_conf_data_dir }}"
     state: directory
+    owner: named
+    group: named
 
 - name: Create named.conf
   template:
diff --git a/roles/nameserver/tasks/main.yml b/roles/nameserver/tasks/main.yml
index c35dd0c..dbd83f3 100644
--- a/roles/nameserver/tasks/main.yml
+++ b/roles/nameserver/tasks/main.yml
@@ -19,9 +19,11 @@
     - always
 
 # DDNS updates fail to create or edit jnl files without this
-- name: Ensure permissions set for /var/named/zones
+- name: Ensure permissions set for "{{ named_conf_zones_path }}"
   file:
-    path: /var/named/zones
+    path: "{{ named_conf_zones_path }}"
+    mode: '0700'
+    state: directory
     owner: named
     group: named
   tags: