From 6625e84863b9f5ab3ad2abeff578dd08e991ae7d Mon Sep 17 00:00:00 2001 From: Christian Berendt Date: Fri, 26 May 2017 17:40:09 +0200 Subject: [PATCH] Fix "key_repository is world readable: /etc/keystone/fernet-keys/" warning TrivialFix Change-Id: Ia54ee5cae2ffcdcca24cb162699e09b0808a1037 Depends-on: Ida2ed62eaba8908fb0bd50bb0be00fb5f9b1adc3 --- ansible/roles/keystone/templates/keystone.json.j2 | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/ansible/roles/keystone/templates/keystone.json.j2 b/ansible/roles/keystone/templates/keystone.json.j2 index df8d182887..0f871d16b6 100644 --- a/ansible/roles/keystone/templates/keystone.json.j2 +++ b/ansible/roles/keystone/templates/keystone.json.j2 @@ -45,6 +45,11 @@ { "path": "/var/log/kolla/keystone/keystone.log", "owner": "keystone:keystone" + }, + { + "path": "/etc/keystone/fernet-keys", + "owner": "keystone:keystone", + "perm": "0770" } ] }