From 75c814b0500d70488e89306413217de29cf4be3e Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <puiterwijk@redhat.com>
Date: Fri, 9 Dec 2016 06:08:22 +0000
Subject: [PATCH] Pkgs needs a custom keytab

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
---
 playbooks/groups/pkgs.yml | 20 ++++++++------------
 1 file changed, 8 insertions(+), 12 deletions(-)

diff --git a/playbooks/groups/pkgs.yml b/playbooks/groups/pkgs.yml
index 331fa9d83c..0b559cb818 100644
--- a/playbooks/groups/pkgs.yml
+++ b/playbooks/groups/pkgs.yml
@@ -10,6 +10,14 @@
   - "/srv/private/ansible/vars.yml"
   - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
 
+  pre_tasks:
+  - name: Copy keytab
+    copy: src={{private}}/files/keytabs/{{env}}/pkgs
+          dest=/etc/httpd.keytab
+          user=httpd group=httpd mode=0600
+    tags:
+    - krb5
+
   roles:
   - base
   - rkhunter
@@ -18,18 +26,6 @@
   - collectd/base
   - sudo
   - apache
-  - role: keytab/service
-    owner_user: apache
-    owner_group: apache
-    service: HTTP
-    host: "{{inventory_hostname}}"
-    when: env == "staging"
-  - role: keytab/service
-    owner_user: apache
-    owner_group: apache
-    service: HTTP
-    host: "pkgs.fedoraproject.org"
-    when: env == "production"
   - gitolite/base
   - cgit/base
   - cgit/clean_lock_cron