From 4db4de52b03b46b6c1b063b130342bc376f5a661 Mon Sep 17 00:00:00 2001 From: Ken Dreyer Date: Tue, 21 Feb 2017 09:49:40 -0700 Subject: [PATCH] group_vars: rm Infernalis comment As of Infernalis, the Ceph daemons run as an unprivileged "ceph" UID, and this is by design. Commit f19b765f7995dab4aca46e1885320dc440485ead altered the default civetweb port from 80 to 8080 with a comment in the commit log about "until this gets solved" Remove the comment about permissions on Infernalis, because this is always going to be the case on the Ceph versions we support, and it is just confusing. If users want to expose civetweb to s3 clients using privileged TCP ports, they can redirect traffic with iptables, or use a reverse proxy application like HAproxy. --- group_vars/all.yml.sample | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/group_vars/all.yml.sample b/group_vars/all.yml.sample index 4e1ab81ca..c33c60869 100644 --- a/group_vars/all.yml.sample +++ b/group_vars/all.yml.sample @@ -293,7 +293,7 @@ dummy: # #radosgw_dns_name: your.subdomain.tld # subdomains used by radosgw. See http://ceph.com/docs/master/radosgw/config/#enabling-subdomain-s3-calls #radosgw_resolve_cname: false # enable for radosgw to resolve DNS CNAME based bucket names -#radosgw_civetweb_port: 8080 # on Infernalis we get: "set_ports_option: cannot bind to 80: 13 (Permission denied)" +#radosgw_civetweb_port: 8080 #radosgw_civetweb_bind_ip: "{{ ansible_default_ipv4.address }}" # when using ipv6 enclose with brackets: "[{{ ansible_default_ipv6.address }}]" #radosgw_civetweb_num_threads: 50 # For additional civetweb configuration options available such as SSL, logging,