From 9aad3d1594c64e9941ca40b81d484b25863efce5 Mon Sep 17 00:00:00 2001 From: Ian Fijolek Date: Tue, 23 Aug 2022 10:31:03 -0700 Subject: [PATCH] Rename nomad anon policy file --- .../acls/{nomad-anon-bootstrap.hcl => nomad-anon-policy.hcl} | 2 +- nomad/acls/nomad_policies.tf | 4 ++-- nomad/setup-cluster.yml | 4 ++-- 3 files changed, 5 insertions(+), 5 deletions(-) rename nomad/acls/{nomad-anon-bootstrap.hcl => nomad-anon-policy.hcl} (87%) diff --git a/nomad/acls/nomad-anon-bootstrap.hcl b/nomad/acls/nomad-anon-policy.hcl similarity index 87% rename from nomad/acls/nomad-anon-bootstrap.hcl rename to nomad/acls/nomad-anon-policy.hcl index fcdc372..95c8584 100644 --- a/nomad/acls/nomad-anon-bootstrap.hcl +++ b/nomad/acls/nomad-anon-policy.hcl @@ -1,5 +1,5 @@ namespace "*" { - policy = "read" + policy = "read" } agent { diff --git a/nomad/acls/nomad_policies.tf b/nomad/acls/nomad_policies.tf index 863085c..bb8a303 100644 --- a/nomad/acls/nomad_policies.tf +++ b/nomad/acls/nomad_policies.tf @@ -1,7 +1,7 @@ resource "nomad_acl_policy" "anon_policy" { name = "anonymous" description = "Anon RO" - rules_hcl = file("${path.module}/nomad-anon-bootstrap.hcl") + rules_hcl = file("${path.module}/nomad-anon-policy.hcl") } resource "nomad_acl_policy" "admin" { @@ -13,6 +13,6 @@ resource "nomad_acl_policy" "admin" { # TODO: Limit this scope resource "nomad_acl_policy" "deploy" { name = "deploy" - description = "Admin RW" + description = "Write for job deployments" rules_hcl = file("${path.module}/nomad-deploy-policy.hcl") } diff --git a/nomad/setup-cluster.yml b/nomad/setup-cluster.yml index 249e26a..ddb00e9 100644 --- a/nomad/setup-cluster.yml +++ b/nomad/setup-cluster.yml @@ -412,7 +412,7 @@ - name: Copy policy copy: - src: ./acls/nomad-anon-bootstrap.hcl + src: ./acls/nomad-anon-policy.hcl dest: /tmp/anonymous.policy.hcl delegate_to: "{{ play_hosts[0] }}" register: anon_policy @@ -425,7 +425,7 @@ - acl - policy - apply - - -description="Anon RW" + - -description="Anon read only" - anonymous - /tmp/anonymous.policy.hcl environment: