polcies
This commit is contained in:
parent
99a33a345c
commit
6e59660016
1 changed files with 9 additions and 8 deletions
|
@ -1,14 +1,14 @@
|
||||||
---
|
---
|
||||||
# https://galaxy.ansible.com/ui/repo/published/dubzland/minio/content/module/minio_policy/ ?
|
# https://galaxy.ansible.com/ui/repo/published/dubzland/minio/content/module/minio_policy/ ?
|
||||||
- name: create needed dirs
|
- name: "ensure needed dirs exist"
|
||||||
ansible.builtin.file:
|
ansible.builtin.file:
|
||||||
path: "{{ minio_config_dir }}"
|
path: "{{ minio_config_dir }}"
|
||||||
state: directory
|
state: directory
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
mode: '0644'
|
mode: '0644'
|
||||||
# pro bucket hjeeil ro + rw
|
|
||||||
- name: temaplet ro policy files
|
- name: "prep: template policy files (ro)"
|
||||||
ansible.builtin.template:
|
ansible.builtin.template:
|
||||||
dest: "{{ minio_config_dir }}/{{ item.bucket }}_ro"
|
dest: "{{ minio_config_dir }}/{{ item.bucket }}_ro"
|
||||||
src: policy_ro.j2
|
src: policy_ro.j2
|
||||||
|
@ -17,7 +17,7 @@
|
||||||
mode: '0644'
|
mode: '0644'
|
||||||
loop: "{{ minio_policies }}"
|
loop: "{{ minio_policies }}"
|
||||||
|
|
||||||
- name: temaplet rw policy files
|
- name: "prep: template policy files (rw)"
|
||||||
ansible.builtin.template:
|
ansible.builtin.template:
|
||||||
dest: "{{ minio_config_dir }}/{{ item.bucket }}_rw"
|
dest: "{{ minio_config_dir }}/{{ item.bucket }}_rw"
|
||||||
src: policy_rw.j2
|
src: policy_rw.j2
|
||||||
|
@ -26,13 +26,14 @@
|
||||||
mode: '0644'
|
mode: '0644'
|
||||||
loop: "{{ minio_policies }}"
|
loop: "{{ minio_policies }}"
|
||||||
|
|
||||||
- name: setup minio policies rw
|
- name: "setup policies (ro)"
|
||||||
ansible.builtin.command: "{{ minio_client_bin }} --dp admin policy create {{ minio_root_alias }} {{ item.bucket }}_rw {{ minio_config_dir }}/{{ item.bucket }}_rw"
|
ansible.builtin.command: "{{ minio_client_bin }} --dp admin policy create {{ minio_root_alias }} {{ item.bucket }}_ro {{ minio_config_dir }}/{{ item.bucket }}_ro"
|
||||||
loop: "{{ minio_policies }}"
|
loop: "{{ minio_policies }}"
|
||||||
|
|
||||||
- name: setup minio policies ro
|
- name: "setup policies (rw)"
|
||||||
ansible.builtin.command: "{{ minio_client_bin }} --dp admin policy create {{ minio_root_alias }} {{ item.bucket }}_ro {{ minio_config_dir }}/{{ item.bucket }}_ro"
|
ansible.builtin.command: "{{ minio_client_bin }} --dp admin policy create {{ minio_root_alias }} {{ item.bucket }}_rw {{ minio_config_dir }}/{{ item.bucket }}_rw"
|
||||||
loop: "{{ minio_policies }}"
|
loop: "{{ minio_policies }}"
|
||||||
|
|
||||||
# ensure absent files are removed
|
# ensure absent files are removed
|
||||||
# deletata to localhost
|
# deletata to localhost
|
||||||
|
# changed when überall
|
||||||
|
|
Loading…
Reference in a new issue