From 1893bac187acb4c68bc0aad11ae5b229a1deecbc Mon Sep 17 00:00:00 2001
From: Ryan Lerch <rlerch@redhat.com>
Date: Mon, 5 Jul 2021 18:32:07 +1000
Subject: [PATCH] value02: set up keytab correctly

Signed-off-by: Ryan Lerch <rlerch@redhat.com>
---
 playbooks/groups/value.yml          | 2 ++
 roles/supybot/files/ursabot.service | 1 +
 2 files changed, 3 insertions(+)

diff --git a/playbooks/groups/value.yml b/playbooks/groups/value.yml
index 41db7cc560..9feee31c2a 100644
--- a/playbooks/groups/value.yml
+++ b/playbooks/groups/value.yml
@@ -19,6 +19,8 @@
       when: env != "staging" }
   - ipa/client
   - { role: keytab/service, 
+      owner_user: daemon,
+      owner_group: daemon,
       service: ursabot, 
       when: inventory_hostname.startswith('value02.stg') }
   - collectd/base
diff --git a/roles/supybot/files/ursabot.service b/roles/supybot/files/ursabot.service
index 894aa67a28..6cb982985c 100644
--- a/roles/supybot/files/ursabot.service
+++ b/roles/supybot/files/ursabot.service
@@ -4,6 +4,7 @@ After=network.target
 
 [Service]
 Environment=FEDORA_MESSAGING_CONF=/etc/fedora-messaging/fedora.stg.toml
+Environment=KRB5_CLIENT_KTNAME=/etc/krb5.ursabot_value02.stg.iad2.fedoraproject.org.keytab
 Type=simple
 User=daemon
 Group=daemon