Do not manage /etc/ssl or /etc/pki directories or symlinks
For a metal deployment the keystone and horizon roles both try to do this and it should be done in one place. This is moved to the openstack_hosts role. Depends-On: https://review.opendev.org/757612 Change-Id: Iba607a89b104ef8a63c9f956e2cd60f6b7ca4466
This commit is contained in:
Jonathan Rosser
parent
89119bb5f8
commit
dd4fa70d11
@ -21,8 +21,6 @@
|
|||||||
group: "{{ item.group|default(keystone_system_group_name) }}"
|
group: "{{ item.group|default(keystone_system_group_name) }}"
|
||||||
mode: "{{ item.mode|default('0755') }}"
|
mode: "{{ item.mode|default('0755') }}"
|
||||||
with_items:
|
with_items:
|
||||||
- { path: "/etc/pki/tls/certs", owner: "root", group: "root" }
|
|
||||||
- { path: "/etc/pki/tls/private", owner: "root", group: "root" }
|
|
||||||
- { path: "/var/lock/keystone", mode: "2755" }
|
- { path: "/var/lock/keystone", mode: "2755" }
|
||||||
- { path: "/var/log/httpd", mode: "2755" }
|
- { path: "/var/log/httpd", mode: "2755" }
|
||||||
when:
|
when:
|
||||||
@ -34,8 +32,6 @@
|
|||||||
dest: "{{ item.dest }}"
|
dest: "{{ item.dest }}"
|
||||||
state: "link"
|
state: "link"
|
||||||
with_items:
|
with_items:
|
||||||
- { src: "/etc/pki/tls/certs", dest: "/etc/ssl/certs" }
|
|
||||||
- { src: "/etc/pki/tls/private", dest: "/etc/ssl/private" }
|
|
||||||
- { src: "/var/log/httpd", dest: "/var/log/apache2" }
|
- { src: "/var/log/httpd", dest: "/var/log/apache2" }
|
||||||
when:
|
when:
|
||||||
- ansible_pkg_mgr in ['yum', 'dnf']
|
- ansible_pkg_mgr in ['yum', 'dnf']
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user