batcave: allow sysadmin to read rbac-playbook config
This should allow folks in the sysadmin group to read (but not write) the rbac-playbook config. This should allow folks to more easily tell who is granted rights to run some playbook. Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This commit is contained in:
Kevin Fenzi
parent
a9df677cf3
commit
ec210427ec
1 changed files with 1 additions and 1 deletions
|
|
@ -430,7 +430,7 @@
|
|||
#
|
||||
|
||||
- name: install the ansible_utils/rbac config
|
||||
copy: src={{ private }}/files/rbac/rbac.yaml dest=/etc/ansible_utils/rbac.yaml mode=0500
|
||||
copy: src={{ private }}/files/rbac/rbac.yaml dest=/etc/ansible_utils/rbac.yaml mode=0540 group=sysadmin
|
||||
tags:
|
||||
- rbac
|
||||
- batcave
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue