banananetwork
/
ansible
1
0
Fork 0
Code Issues Pull Requests Releases Activity

dns/master: Fix permissions for dns env dir

Browse Source
dehydrated
Felix Stupp 4 years ago
parent bf00dcb6dd
commit f8c01d46f6
Signed by: zocker
GPG Key ID: 93E1BD26F6B02FB7
1 changed files with 13 additions and 8 deletions
Show Stats Download Patch File Download Diff File

21
roles/dns/master/tasks/main.yml
Unescape Escape View File

@ -9,7 +9,7 @@
mode: "u=rw,g=r,o=" mode: "u=rw,g=r,o="
delegate_to: localhost delegate_to: localhost
- name: Create zone directory writeable - name: Create zone directory writeable for bind
file: file:
path: "{{ domain_directory }}" path: "{{ domain_directory }}"
state: directory state: directory
@ -17,16 +17,21 @@
group: "{{ dns_user }}" group: "{{ dns_user }}"
mode: u=rwx,g=rwx,o= mode: u=rwx,g=rwx,o=
- name: Create other zone directories readable - name: Create key directory readable for bind
file: file:
path: "{{ item }}" path: "{{ keys_directory }}"
state: directory state: directory
owner: root owner: root
group: "{{ dns_user }}" group: "{{ dns_user }}"
mode: u=rwx,g=rx,o= mode: u=rwx,g=rx,o=
loop:
- "{{ keys_directory }}" - name: Create domain environment directory
- "{{ domain_environment_directory }}" file:
path: "{{ domain_environment_directory }}"
state: directory
owner: root
group: root
mode: u=rwx,g=rx,o=
- name: Determine if keys are generated already - name: Determine if keys are generated already
find: find:
@ -43,8 +48,8 @@
src: zone.db src: zone.db
dest: "{{ domain_environment_directory }}/0_main.db" dest: "{{ domain_environment_directory }}/0_main.db"
owner: root owner: root
group: "{{ dns_user }}" group: root
mode: "u=rw,g=r,o=r" mode: u=rw,g=r,o=
validate: "named-checkzone {{ domain }} %s" validate: "named-checkzone {{ domain }} %s"
notify: rebuild dns zones notify: rebuild dns zones

Write Preview
Loading…
Cancel
Save