From 857169a8a8f9595db2006d14434e55ceef4188c9 Mon Sep 17 00:00:00 2001 From: Dmitriy Rabotyagov Date: Tue, 27 Oct 2020 19:03:16 +0200 Subject: [PATCH] Run hardening after container deployment Groups against which hardening is run can be defined with variable `security_host_group`. However, since container creation is run after hardening, it is not possible to run role against containers during their setup. Simply changing the order allow deployer to run hardening against containers as well. Change-Id: If7e59991c90fb2821e8d66c76af42dfc8b5ec8ad Closes-Bug: #1901619 --- playbooks/setup-hosts.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/playbooks/setup-hosts.yml b/playbooks/setup-hosts.yml index 0544f57105..86bc9b4662 100644 --- a/playbooks/setup-hosts.yml +++ b/playbooks/setup-hosts.yml @@ -14,5 +14,5 @@ # limitations under the License. - import_playbook: openstack-hosts-setup.yml -- import_playbook: security-hardening.yml - import_playbook: containers-deploy.yml +- import_playbook: security-hardening.yml