archive
/
ansible
mirror of https://github.com/ansible/ansible.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge pull request #2633 from andmarios/devel

Browse Source 
fix: don't set scopes' account to service account used for gce instance creation
reviewable/pr18780/r1
Brian Coca 9 years ago
parent 1873afc29d d3ef2ef11f
commit 59f3b82898
1 changed files with 2 additions and 5 deletions
Show Stats Download Patch File Download Diff File

7
cloud/google/gce.py
Unescape Escape View File

@ -64,7 +64,7 @@ options:
default: null
choices: [
"bigquery", "cloud-platform", "compute-ro", "compute-rw",
"computeaccounts-ro", "computeaccounts-rw", "datastore", "logging-write",
"useraccounts-ro", "useraccounts-rw", "datastore", "logging-write",
"monitoring", "sql", "sql-admin", "storage-full", "storage-ro",
"storage-rw", "taskqueue", "userinfo-email"
]
@ -386,10 +386,7 @@ def create_instances(module, gce, instance_names):
bad_perms.append(perm)
if len(bad_perms) > 0:
module.fail_json(msg='bad permissions: %s' % str(bad_perms))
if service_account_email:
ex_sa_perms.append({'email': service_account_email})
else:
ex_sa_perms.append({'email': "default"})
ex_sa_perms.append({'email': "default"})
ex_sa_perms[0]['scopes'] = service_account_permissions
# These variables all have default values but check just in case

Write Preview
Loading…
Cancel
Save