Use ansible_user_dir in customize_home role #1760
Conversation
wbclark
force-pushed
the
ansible_user_home
branch
from
3884f7c
to
46b916a
Compare
wbclark
force-pushed
the
ansible_user_home
branch
from
46b916a
to
afec60f
Compare
wbclark
changed the title
| @@ -1,11 +1,11 @@ | |||
| - name: Check that the .env exists | |||
| stat: | |||
| path: /home/vagrant/foreman/.env | |||
| path: "/home/{{ ansible_user }}/foreman/.env" | |||
There was a problem hiding this comment.
How about
| path: "/home/{{ ansible_user }}/foreman/.env" | |
| path: "{{ ansible_user_dir }}/foreman/.env" |
(from https://github.com/ansible/ansible/blob/stable-2.16/lib/ansible/module_utils/facts/system/user.py)
This should be present in any run that has facts enabled, but has the benefit of not guessing the home dir as /home/$USERNAME but actually looking it up from the user database.
There was a problem hiding this comment.
Thanks, I'll give it a test
There was a problem hiding this comment.
This only works if I manually add ansible_user_dir to the variables for the ansible provisioner in the box yaml config... otherwise (I guess because become: true in playbooks/katello_devel.yml) it still tries to use /root
I also realized that I was already overriding the value for ansible_user in my box, so that is likely the only reason my other approach was working (and I must have encountered something like this before already)
There was a problem hiding this comment.
I suppose I could just add a role variable here with a default value that works for most setups to avoid this annoying behavior with become
There was a problem hiding this comment.
ah, yeah… become certainly kills that.
role variable sounds good to me then!
There was a problem hiding this comment.
Another idea, can we force become: false when running this role?
There was a problem hiding this comment.
Another idea, can we force
become: falsewhen running this role?
See the thread above this one that I marked as "resolved" :(
but with
become: falseit fails due to permission denied.
There was a problem hiding this comment.
Another idea, can we force
become: falsewhen running this role?
although I was using become: false for just the one task and not the whole role, and the user should have permission to modify the contents of their own home directory....
There was a problem hiding this comment.
OK, the issue appears to be that we have become: true in playbooks/katello_devel.yml and specifying the become behavior at the more granular level of roles or tasks was not changing the value of variables like ansible_user_dir that get determined statically.
The good news is that it looks like become works for role dependencies in meta/main.yml, so I can remove it from playbooks/katello_devel.yml and add it back as needed per role dependency in roles/katello_devel/meta/main.yml
wbclark
force-pushed
the
ansible_user_home
branch
from
afec60f
to
0c865ba
Compare
I haven't gotten back implementing the role variable yet either. I was out sick, but will get to that today |
Forcing become: true on the entire role was breaking the behavior of the customize_home role dependency
This was only working when run under the vagrant user
wbclark
force-pushed
the
ansible_user_home
branch
from
0c865ba
to
9822b1f
Compare
wbclark
changed the title
These were no longer used as we don't need EL7 devel envs. Of these roles, the postgresql_scl and nodejs_scl roles are not used elsewhere in the project, and are dropped entirely. The ruby_scl role remains as it is still used in hammer and dynflow devel envs.
wbclark
force-pushed
the
ansible_user_home
branch
from
a889dfc
to
5a753c6
Compare
I pushed a change that removes the SCL roles from katello_devel Two of these were now also unused in other roles and playbooks, so I removed those roles entirely. |
Eh, so I checked /roles and /playbooks but these were in fact still used in the katello_devel pipeline. I've updated that to use the centos8-stream box as a base now, and removed the SCL roles there as well. |
| foreman_installer_scenario: katello-devel | ||
| foreman_installer_additional_packages: | ||
| - foreman-installer-katello | ||
| foreman_installer_disable_system_checks: true | ||
| foreman_installer_options_internal_use_only: | ||
| - "{{ '--katello-devel-scl-ruby=' + ruby_scl_version if ansible_distribution_major_version == '7' else '' }}" |
There was a problem hiding this comment.
(this was already removed in puppet-katello_devel)
|
Also, if you prefer the removal of unused SCL roles and change to centos8-stream in katello-katello devel pipelines in separate PRs, let me know and I'll make the change |
|
@ekohl would you be willing to remove the out of date "changes requested" flag please? |
|
What sorcery is that! Didn't realize it was possible. Also, I cannot merge in this repository -- would you please, @evgeni ? |
|
I think this sorcery is limited to people with commit rights ;-) (done) |
|
TYVM! |
This was only working when run under the vagrant user