From 18f2d4fd7879f12337fbfe2f1ac4adcc580a6135 Mon Sep 17 00:00:00 2001
From: Christian Elberfeld <elberfeld@web.de>
Date: Fri, 21 Jun 2024 12:42:00 +0200
Subject: [PATCH] adjust directory permissions

---
 intern/docker_grafana/tasks/main.yml     | 12 ++++++++++--
 remote/docker_prometheus/tasks/main.yml  | 10 +++++++++-
 testserver/docker_grafana/tasks/main.yml | 23 ++++++++++++++---------
 3 files changed, 33 insertions(+), 12 deletions(-)

diff --git a/intern/docker_grafana/tasks/main.yml b/intern/docker_grafana/tasks/main.yml
index 17beed73..cce05a90 100644
--- a/intern/docker_grafana/tasks/main.yml
+++ b/intern/docker_grafana/tasks/main.yml
@@ -5,19 +5,27 @@
     - { path: "{{ basedir }}/grafana_admin_pass", length: 12 }
     - { path: "/srv/mqtt/influxdb_token", length: -1 }
 
-- name: "create folder struct for {{ servicename }}"
+- name: "create folder struct for {{ servicename }} 1"
   file: 
     path: "{{ item }}"
     state: "directory"
   with_items:
     - "{{ basedir }}"
+
+- name: "create folder struct for {{ servicename }} 2"
+  file:
+    path: "{{ item }}"
+    state: "directory"
+    owner: 472
+    group: 0
+  with_items:
     - "{{ basedir }}/data/"   
     - "{{ basedir }}/provisioning/"
     - "{{ basedir }}/provisioning/dashboards/"
     - "{{ basedir }}/provisioning/dashboards/pixelflut/"
     - "{{ basedir }}/provisioning/datasources/"
 
-- name: create config filess
+- name: "create config files for {{ servicename }}"
   template: 
     src: "{{ item }}" 
     dest: "{{ basedir }}/{{ item }}"
diff --git a/remote/docker_prometheus/tasks/main.yml b/remote/docker_prometheus/tasks/main.yml
index ffe884ff..bf360c2c 100644
--- a/remote/docker_prometheus/tasks/main.yml
+++ b/remote/docker_prometheus/tasks/main.yml
@@ -1,11 +1,19 @@
 ---
 
-- name: "create folder struct for {{ servicename }}"
+- name: "create folder struct for {{ servicename }} 1"
   file: 
     path: "{{ basedir }}" 
     state: "directory"
   with_items:
     - "{{ basedir }}"
+
+- name: "create folder struct for {{ servicename }} 2"
+  file:
+    path: "{{ item }}"
+    state: "directory"
+    owner: 65534
+    group: 65534
+  with_items:
     - "{{ basedir }}/data"
 
 - name: "create config files for {{ servicename }}"
diff --git a/testserver/docker_grafana/tasks/main.yml b/testserver/docker_grafana/tasks/main.yml
index a80626fb..784c27c5 100644
--- a/testserver/docker_grafana/tasks/main.yml
+++ b/testserver/docker_grafana/tasks/main.yml
@@ -6,21 +6,26 @@
     - { path: "{{ basedir }}/secrets/oauth_client_secret", length: 32 }
 #    - { path: "/srv/mqtt/influxdb_token", length: -1 }
 
-- name: "create folder struct for {{ servicename }}"
-  ansible.builtin.file: 
+- name: "create folder struct for {{ servicename }} 1"
+  file: 
     path: "{{ item }}"
     state: "directory"
   with_items:
     - "{{ basedir }}"
-    - "{{ basedir }}/secrets/"
+    - "{{ basedir }}/secrets"
 
-- name: create folder data/ with permissions 777
-  ansible.builtin.file:
-    path: "{{ basedir }}/data/"
-    state: directory
-    mode: '777'
+- name: "create folder struct for {{ servicename }} 2"
+  file:
+    path: "{{ item }}"
+    state: "directory"
+    owner: 472
+    group: 0
+  with_items:
+    - "{{ basedir }}/data/"   
+    - "{{ basedir }}/provisioning/"
+    - "{{ basedir }}/provisioning/datasources/"
 
-- name: create config files
+- name: "create config files for {{ servicename }}"
   ansible.builtin.template: 
     src: "{{ item }}" 
     dest: "{{ basedir }}/{{ item }}"
-- 
GitLab