Skip to content
Snippets Groups Projects
Unverified Commit dbe02d39 authored by Hannes Körber's avatar Hannes Körber Committed by GitHub
Browse files

etcd: Fix permissions of /etc/ssl/etcd/ssl (#6908)

parent e022e2e1
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
roles/etcd/defaults/main.yml
+ 1
0
View file @ dbe02d39
......@@ -14,6 +14,7 @@ etcd_backup_retention_count: -1
etcd_config_dir: /etc/ssl/etcd
etcd_cert_dir: "{{ etcd_config_dir }}/ssl"
etcd_cert_dir_mode: "0700"
etcd_cert_group: root
# Note: This does not set up DNS entries. It simply adds the following DNS
# entries to the certificate
......
roles/etcd/tasks/gen_certs_script.yml
+ 2
2
View file @ dbe02d39
......@@ -5,7 +5,7 @@
group: "{{ etcd_cert_group }}"
state: directory
owner: kube
mode: 0700
mode: "{{ etcd_cert_dir_mode }}"
recurse: yes
- name: "Gen_certs | create etcd script dir (on {{ groups['etcd'][0] }})"
......@@ -157,5 +157,5 @@
group: "{{ etcd_cert_group }}"
state: directory
owner: kube
mode: 0640
mode: "{{ etcd_cert_dir_mode }}"
recurse: yes
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment