Make project and private data directories 0o700#16119
Open
Kriskras99 wants to merge 1 commit intoansible:develfrom
Open
Make project and private data directories 0o700#16119Kriskras99 wants to merge 1 commit intoansible:develfrom
Kriskras99 wants to merge 1 commit intoansible:develfrom
Conversation
Member
|
Hello @Kriskras99, thank you for the PR. Is there a specific issue you mean to address with this PR? |
Python's `os.mkdir` creates directories with 0o777 by default. When the project directory is created on the fly by AWX this results in the following warning: ``` [WARNING] Ansible is being run in a world writable directory (/...), ignoring it as an ansible.cfg source. For more information see ... ``` This makes the project and private data directories only readable by the user that AWX is running as. Signed-off-by: Kriskras99 <github@kriskras99.nl>
Kriskras99
force-pushed
the
mkdirs_mode
branch
from
e43dd52 to
96570d3
Compare
|
Author
|
Hello @jessicamack, every AWX job we run throws the following warning: As mentioned in the PR description, this is caused by AWX setting incorrect directory permissions when copying the repository to the worker. It prevents us from configuring settings in ansible.cfg in our repo. Some of these settings can still be set in |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
SUMMARY
Python's
os.mkdircreates directories with 0o777 by default. When the project directory is created on the fly by AWX this results in the following warning:This makes the project and private data directories only readable by the user that AWX is running as.
ISSUE TYPE
COMPONENT NAME