From cd153a1fb38d8ab66c9651438685f37e0642959d Mon Sep 17 00:00:00 2001
From: chadswen <chadswen@gmail.com>
Date: Fri, 9 Mar 2018 00:11:10 -0600
Subject: [PATCH] Fix kubernetes cert permission sync

Add `state: directory` to `file` task so that `recurse: yes` will actually take effect and ensure
certs/keys have the right file mode and owner
---
 roles/kubernetes/secrets/tasks/gen_certs_script.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/kubernetes/secrets/tasks/gen_certs_script.yml b/roles/kubernetes/secrets/tasks/gen_certs_script.yml
index c1dfeb394..011575358 100644
--- a/roles/kubernetes/secrets/tasks/gen_certs_script.yml
+++ b/roles/kubernetes/secrets/tasks/gen_certs_script.yml
@@ -179,6 +179,7 @@
   file:
     path: "{{ kube_cert_dir }}"
     group: "{{ kube_cert_group }}"
+    state: directory
     owner: kube
     mode: "u=rwX,g-rwx,o-rwx"
     recurse: yes
-- 
GitLab