Make ci-launch directory readable by admin users
Commit 5ae5e6cc added puppetry for /root/ci-launch on the Puppet
master server, but set permissions on it too restrictive for users
launching new servers to be able to read the files within it.
* launch/README: Note that the user following these directions
should also be in the admin group.
* modules/openstack_project/manifests/puppetmaster.pp: Set group
ownership of /root/ci-launch to admin so members of that group will
be able to read the files within it.
Change-Id: I6c657eb4311b27ce329f249df3e60c2b902677ae
This commit is contained in:
Jeremy Stanley
parent
5a37204bc3
commit
059d1ad4e0
@ -2,10 +2,11 @@ Create Server
|
|||||||
=============
|
=============
|
||||||
|
|
||||||
Note that these instructions assume you're working from this
|
Note that these instructions assume you're working from this
|
||||||
directory on an updated local clone of the repository on the puppetmaster, and
|
directory on an updated local clone of the repository on the
|
||||||
that your account is a member of the puppet and salt groups for access
|
puppetmaster, and that your account is a member of the admin, puppet
|
||||||
to their respective keys::
|
and salt groups for access to their respective keys::
|
||||||
|
|
||||||
|
sudo adduser $(whoami) admin
|
||||||
sudo adduser $(whoami) puppet
|
sudo adduser $(whoami) puppet
|
||||||
sudo adduser $(whoami) salt
|
sudo adduser $(whoami) salt
|
||||||
|
|
||||||
|
|||||||
@ -46,7 +46,7 @@ class openstack_project::puppetmaster (
|
|||||||
file { '/root/ci-launch':
|
file { '/root/ci-launch':
|
||||||
ensure => directory,
|
ensure => directory,
|
||||||
owner => 'root',
|
owner => 'root',
|
||||||
group => 'root',
|
group => 'admin',
|
||||||
mode => '0750',
|
mode => '0750',
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user