From cc0f507a2c54f1c3e44cf4a166ac558a6ecdccf6 Mon Sep 17 00:00:00 2001 From: Kevin Fenzi Date: Tue, 30 Nov 2021 07:34:16 -0800 Subject: [PATCH] ipsilon: run the saml2 script as ipsilon user Right now it runs as root which means ipsilon can't read it. Signed-off-by: Kevin Fenzi --- roles/ipsilon/tasks/main.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/roles/ipsilon/tasks/main.yml b/roles/ipsilon/tasks/main.yml index 37a5a0e2db..4919486140 100644 --- a/roles/ipsilon/tasks/main.yml +++ b/roles/ipsilon/tasks/main.yml @@ -173,6 +173,8 @@ - ipsilon - name: generate the saml2 metadata + become_user: ipsilon + become: yes command: cmd: /usr/local/bin/prepare-saml2-metadata creates: /etc/ipsilon/root/saml2/metadata.xml