Remove the web group permission stuff from deploy
I'm not doing this thoroughly enough for it to matter (e.g. the deployed rsynced versions aren't having the group permissions set). I think doing this *right* (to be extensible to additional users) is too much complexity to be worth it, and doing it halfway is more confusing than helpful. I did this because I was anticipating multi-users permissions to be a bit of an issue for like, granting the web server permission to access the source code. But it turns out, since we're running with pm2, it's all working just fine!
This commit is contained in:
parent
bd8ccf19d7
commit
e8ed459afd
1 changed files with 1 additions and 17 deletions
|
@ -4,27 +4,11 @@
|
||||||
vars:
|
vars:
|
||||||
email_address: "emi@matchu.dev" # TODO: Extract this to personal config?
|
email_address: "emi@matchu.dev" # TODO: Extract this to personal config?
|
||||||
tasks:
|
tasks:
|
||||||
- name: Create web user group
|
|
||||||
become: yes
|
|
||||||
group:
|
|
||||||
name: web
|
|
||||||
|
|
||||||
- name: Add current user to web group
|
|
||||||
become: yes
|
|
||||||
user:
|
|
||||||
name: "{{ ansible_user_id }}"
|
|
||||||
group: web
|
|
||||||
append: yes
|
|
||||||
|
|
||||||
- name: Create the app folder
|
- name: Create the app folder
|
||||||
become: yes
|
become: yes
|
||||||
file:
|
file:
|
||||||
path: /srv/impress-2020
|
path: /srv/impress-2020
|
||||||
state: directory
|
owner: "{{ ansible_user_id }}"
|
||||||
# Root and the `web` group may read/write this folder. Everyone else
|
|
||||||
# may only read it.
|
|
||||||
group: web
|
|
||||||
mode: "u=rwx,g=rwx,o=rx"
|
|
||||||
|
|
||||||
- name: Add Nodesource apt key
|
- name: Add Nodesource apt key
|
||||||
become: yes
|
become: yes
|
||||||
|
|
Loading…
Reference in a new issue