iklim.co/Environment_Infrastructure
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Environment_Infrastructure/ansible/roles/node_dirs/tasks/main.yml
Murat ÖZDEMİR 6f9d0d1588 feat(infra): Standardize StorageBox permissions and refactor DB stack name 
- Ensure consistent directory and file permissions on StorageBox mounts for improved container access across application and database services.
- Introduce application-specific `storagebox_uid`/`gid` variables for more granular ownership control.
- Enhance StorageBox mount reliability by adding systemd reload and remount handlers for configuration changes.
- Add root credentials to Patroni's etcd configuration for authenticated communication.
- Update all relevant documentation and deployment scripts to use the `iklimco` Docker stack name for database services.
- Re-encrypt production vault secrets to include the new etcd password.
2026-05-23 18:11:01 +03:00

40 lines
943 B
YAML
Raw Blame History

---
- name: Create base directory
ansible.builtin.file:
path: /opt/iklimco
state: directory
mode: '0755'
- name: Create app specific directories
ansible.builtin.file:
path: "{{ item }}"
state: directory
mode: '0755'
loop:
- /opt/iklimco/ssl
- /opt/iklimco/init
- /opt/iklimco/init/postgresql
- /opt/iklimco/init/mongodb
- /opt/iklimco/stacks
- /opt/iklimco/vault/data
when: inventory_hostname in groups['app']
- name: Set vault data directory ownership (vault container runs as uid 100)
ansible.builtin.file:
path: /opt/iklimco/vault/data
state: directory
owner: '100'
group: '100'
mode: '0750'
when: inventory_hostname in groups['app']
- name: Create db specific directories
ansible.builtin.file:
path: "{{ item }}"
state: directory
mode: '0755'
loop:
- /opt/iklimco/db
- /opt/iklimco/backup
when: inventory_hostname in groups['db']
Reference in New Issue View Git Blame Copy Permalink