This commit is contained in:
Michael Grote 2024-11-09 21:02:55 +01:00
parent 99a33a345c
commit 6e59660016

View file

@ -1,14 +1,14 @@
--- ---
# https://galaxy.ansible.com/ui/repo/published/dubzland/minio/content/module/minio_policy/ ? # https://galaxy.ansible.com/ui/repo/published/dubzland/minio/content/module/minio_policy/ ?
- name: create needed dirs - name: "ensure needed dirs exist"
ansible.builtin.file: ansible.builtin.file:
path: "{{ minio_config_dir }}" path: "{{ minio_config_dir }}"
state: directory state: directory
owner: root owner: root
group: root group: root
mode: '0644' mode: '0644'
# pro bucket hjeeil ro + rw
- name: temaplet ro policy files - name: "prep: template policy files (ro)"
ansible.builtin.template: ansible.builtin.template:
dest: "{{ minio_config_dir }}/{{ item.bucket }}_ro" dest: "{{ minio_config_dir }}/{{ item.bucket }}_ro"
src: policy_ro.j2 src: policy_ro.j2
@ -17,7 +17,7 @@
mode: '0644' mode: '0644'
loop: "{{ minio_policies }}" loop: "{{ minio_policies }}"
- name: temaplet rw policy files - name: "prep: template policy files (rw)"
ansible.builtin.template: ansible.builtin.template:
dest: "{{ minio_config_dir }}/{{ item.bucket }}_rw" dest: "{{ minio_config_dir }}/{{ item.bucket }}_rw"
src: policy_rw.j2 src: policy_rw.j2
@ -26,13 +26,14 @@
mode: '0644' mode: '0644'
loop: "{{ minio_policies }}" loop: "{{ minio_policies }}"
- name: setup minio policies rw - name: "setup policies (ro)"
ansible.builtin.command: "{{ minio_client_bin }} --dp admin policy create {{ minio_root_alias }} {{ item.bucket }}_rw {{ minio_config_dir }}/{{ item.bucket }}_rw" ansible.builtin.command: "{{ minio_client_bin }} --dp admin policy create {{ minio_root_alias }} {{ item.bucket }}_ro {{ minio_config_dir }}/{{ item.bucket }}_ro"
loop: "{{ minio_policies }}" loop: "{{ minio_policies }}"
- name: setup minio policies ro - name: "setup policies (rw)"
ansible.builtin.command: "{{ minio_client_bin }} --dp admin policy create {{ minio_root_alias }} {{ item.bucket }}_ro {{ minio_config_dir }}/{{ item.bucket }}_ro" ansible.builtin.command: "{{ minio_client_bin }} --dp admin policy create {{ minio_root_alias }} {{ item.bucket }}_rw {{ minio_config_dir }}/{{ item.bucket }}_rw"
loop: "{{ minio_policies }}" loop: "{{ minio_policies }}"
# ensure absent files are removed # ensure absent files are removed
# deletata to localhost # deletata to localhost
# changed when überall