iamthefij/orchestration-tests
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Rename nomad anon policy file

Browse Source
This commit is contained in:
IamTheFij 2022-08-23 10:31:03 -07:00
parent 39107538e9
commit 9aad3d1594
3 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
nomad/acls/nomad-anon-bootstrap.hcl → nomad/acls/nomad-anon-policy.hcl
View File

@ -1,5 +1,5 @@
namespace "*" { namespace "*" {
policy = "read" policy = "read"
} }
agent { agent {

4
nomad/acls/nomad_policies.tf
View File

@ -1,7 +1,7 @@
resource "nomad_acl_policy" "anon_policy" { resource "nomad_acl_policy" "anon_policy" {
name = "anonymous" name = "anonymous"
description = "Anon RO" description = "Anon RO"
rules_hcl = file("${path.module}/nomad-anon-bootstrap.hcl") rules_hcl = file("${path.module}/nomad-anon-policy.hcl")
} }
resource "nomad_acl_policy" "admin" { resource "nomad_acl_policy" "admin" {
@ -13,6 +13,6 @@ resource "nomad_acl_policy" "admin" {
# TODO: Limit this scope # TODO: Limit this scope
resource "nomad_acl_policy" "deploy" { resource "nomad_acl_policy" "deploy" {
name = "deploy" name = "deploy"
description = "Admin RW" description = "Write for job deployments"
rules_hcl = file("${path.module}/nomad-deploy-policy.hcl") rules_hcl = file("${path.module}/nomad-deploy-policy.hcl")
} }

4
nomad/setup-cluster.yml
View File

@ -412,7 +412,7 @@
- name: Copy policy - name: Copy policy
copy: copy:
src: ./acls/nomad-anon-bootstrap.hcl src: ./acls/nomad-anon-policy.hcl
dest: /tmp/anonymous.policy.hcl dest: /tmp/anonymous.policy.hcl
delegate_to: "{{ play_hosts[0] }}" delegate_to: "{{ play_hosts[0] }}"
register: anon_policy register: anon_policy
@ -425,7 +425,7 @@
- acl - acl
- policy - policy
- apply - apply
- -description="Anon RW" - -description="Anon read only"
- anonymous - anonymous
- /tmp/anonymous.policy.hcl - /tmp/anonymous.policy.hcl
environment: environment: