From 5da1cb0b5ef2dff696899878877c62663f67137d Mon Sep 17 00:00:00 2001
From: wangwei <wangwei@navercorp.com>
Date: Tue, 15 May 2018 10:13:24 +0900
Subject: [PATCH] Fix the permissions of mgr and mds keyring

Change-Id: I6d1e6d7dc21eaf6051c89b467cd6d886d8e3c469
---
 ansible/roles/ceph/tasks/start_mdss.yml | 2 ++
 ansible/roles/ceph/tasks/start_mgrs.yml | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/ansible/roles/ceph/tasks/start_mdss.yml b/ansible/roles/ceph/tasks/start_mdss.yml
index 4727e0d8c6..5f9f08644a 100644
--- a/ansible/roles/ceph/tasks/start_mdss.yml
+++ b/ansible/roles/ceph/tasks/start_mdss.yml
@@ -28,9 +28,11 @@
   with_items: "{{ groups['ceph-mds'] }}"
 
 - name: Pushing ceph mds keyring to ceph-mds
+  become: true
   copy:
     content: "{{ item.stdout }}\n"
     dest: "{{ node_config_directory }}/ceph-mds/ceph.mds.{{ inventory_hostname }}.keyring"
+    mode: 0600
   when:
     - inventory_hostname == item.item
   with_items: "{{ ceph_mds_auth.results }}"
diff --git a/ansible/roles/ceph/tasks/start_mgrs.yml b/ansible/roles/ceph/tasks/start_mgrs.yml
index 721364d731..9c09542289 100644
--- a/ansible/roles/ceph/tasks/start_mgrs.yml
+++ b/ansible/roles/ceph/tasks/start_mgrs.yml
@@ -8,9 +8,11 @@
   with_items: "{{ groups['ceph-mgr'] }}"
 
 - name: Pushing ceph mgr keyring to ceph-mgr
+  become: true
   copy:
     content: "{{ item.stdout }}\n"
     dest: "{{ node_config_directory }}/ceph-mgr/ceph.mgr.{{ inventory_hostname }}.keyring"
+    mode: 0600
   when:
     - inventory_hostname == item.item
   with_items: "{{ ceph_mgr_keyring.results }}"