Add read and execute perms to httpboot and tftpboot folder

These directories need to be reachable by different users or groups. Also, after image creation finishes, add read perms to all content in httpboot folder. Change-Id: Ic7809c6646f020f27d22517171eab9299b07f6fe
2016-09-21 12:33:45 +02:00 · 2016-09-21 12:33:45 +02:00 · cba9638272
commit cba9638272
parent ba9d981e4d
2 changed files with 8 additions and 1 deletions
--- a/playbooks/roles/bifrost-create-dib-image/tasks/main.yml
+++ b/playbooks/roles/bifrost-create-dib-image/tasks/main.yml
@ -123,3 +123,10 @@
  command: ramdisk-image-create {{dib_arglist}}
  environment: "{{ dib_env_vars }}"
  when: build_ramdisk | bool == true and test_image_present.stat.exists == false and test_image_dib_present.stat.exists == false and test_image_initramfs_present.stat.exists == false
+- name: "Update permission of generated image"
+  file:
+    path: "{{ http_boot_folder }}"
+    mode: u=rwX,g=rX,o=rX
+    recurse: yes
+    state: directory
+  when: http_boot_folder is defined and http_boot_folder != ''
--- a/playbooks/roles/bifrost-ironic-install/tasks/create_tftpboot.yml
+++ b/playbooks/roles/bifrost-ironic-install/tasks/create_tftpboot.yml
@ -14,7 +14,7 @@
 # limitations under the License.
 ---
 - name: "Set up PXE and iPXE folders"
-  file: name={{item}} owner=ironic group=ironic state=directory
+  file: name={{item}} owner=ironic group=ironic state=directory mode=0755
  with_items:
    - /tftpboot
    - /tftpboot/pxelinux.cfg