Set proper file permisions when a file is created with atomic_move

Fixes #7196
11 years ago · 9da06274a8
parent 9a6998aa17
commit 9da06274a8
1 changed files with 8 additions and 2 deletions
--- a/lib/ansible/module_utils/basic.py
+++ b/lib/ansible/module_utils/basic.py
@ -1020,7 +1020,13 @@ class AnsibleModule(object):
                self.cleanup(tmp_dest.name)
                self.fail_json(msg='Could not replace file: %s to %s: %s' % (src, dest, e))

-        if creating and os.getenv("SUDO_USER"):
+        if creating:
+            # make sure the file has the correct permissions
+            # based on the current value of umask
+            umask = os.umask(0)
+            os.umask(umask)
+            os.chmod(dest, 0666 ^ umask)
+            if os.getenv("SUDO_USER"):
                os.chown(dest, os.getuid(), os.getgid())

        if self.selinux_enabled():