ceph
/
ceph-ansible
mirror of https://github.com/ceph/ceph-ansible.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
ceph-ansible/roles
History
Benoît Knecht 0d76826bbb ceph-mon: Don't set monitor directory mode recursively 
After rolling updates performed with
`infrastructure-playbooks/rolling_updates.yml`, files located in
`/var/lib/ceph/mon/{{ cluster }}-{{ monitor_name }}` had mode 0755 (including
the keyring), making them world-readable.

This commit separates the task that configured permissions recursively on
`/var/lib/ceph/mon/{{ cluster }}-{{ monitor_name }}` into two separate tasks:

1. Set the ownership and mode of the directory itself;
2. Recursively set ownership in the directory, but don't modify the mode.

Signed-off-by: Benoît Knecht <bknecht@protonmail.ch>
 		2020-11-02 17:36:37 +01:00
..
ceph-client keyring: use ceph_key module for auth get command 2020-11-02 17:17:29 +01:00
ceph-common add missing boolean filter 2020-09-28 20:45:01 +02:00
ceph-config ceph-config: ceph.conf rendering refactor 2020-10-21 13:22:16 +02:00
ceph-container-common container: quote registry password 2020-09-18 11:14:00 -04:00
ceph-container-engine container: remove container_binding_name variable 2020-10-14 10:32:31 +02:00
ceph-crash keyring: use ceph_key module for auth get command 2020-11-02 17:17:29 +01:00
ceph-dashboard library: add radosgw_user module 2020-10-06 10:07:58 +02:00
ceph-defaults common: drop `fetch_directory` feature 2020-10-21 13:22:16 +02:00
ceph-facts common: drop `fetch_directory` feature 2020-10-21 13:22:16 +02:00
ceph-fetch-keys common: drop `fetch_directory` feature 2020-10-21 13:22:16 +02:00
ceph-grafana podman: force log driver to journald 2020-11-02 15:49:27 +01:00
ceph-handler ceph-handler: fix curl ipv6 command with rgw 2020-11-02 15:45:51 +01:00
ceph-infra defaults: change default grafana-server name 2020-09-29 07:42:26 +02:00
ceph-iscsi-gw keyring: use ceph_key module for auth get command 2020-11-02 17:17:29 +01:00
ceph-mds keyring: use ceph_key module for get-or-create cmd 2020-11-02 17:17:29 +01:00
ceph-mgr keyring: use ceph_key module for auth get command 2020-11-02 17:17:29 +01:00
ceph-mon ceph-mon: Don't set monitor directory mode recursively 2020-11-02 17:36:37 +01:00
ceph-nfs keyring: use ceph_key module for get-or-create cmd 2020-11-02 17:17:29 +01:00
ceph-node-exporter podman: force log driver to journald 2020-11-02 15:49:27 +01:00
ceph-osd keyring: use ceph_key module for auth get command 2020-11-02 17:17:29 +01:00
ceph-prometheus podman: force log driver to journald 2020-11-02 15:49:27 +01:00
ceph-rbd-mirror keyring: use ceph_key module for get-or-create cmd 2020-11-02 17:17:29 +01:00
ceph-rgw keyring: use ceph_key module for auth get command 2020-11-02 17:17:29 +01:00
ceph-rgw-loadbalancer Enable HAProxy backend checks for Ceph RGW 2020-08-27 10:57:46 -04:00
ceph-validate ceph_key: remove backward compatibility 2020-10-06 07:59:38 +02:00