blob: 199764d555cf5457e3f6f0de6990fed7ac942f7e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
---
- name: add pkgs for bkernel boxes
yum: state=latest pkg={{ item }}
with_items:
- pesign
- ccid
- pcsc-lite
- pcsc-lite-libs
- opensc
- nss-tools
- name: enable pcscd
service: name=pcscd state=started enabled=true
- name: setup opensc in pcscd
shell: modutil -dbdir /etc/pki/pesign -list | grep -q Fedora || modutil -force -dbdir /etc/pki/pesign -add opensc -libfile /usr/lib64/pkcs11/opensc-pkcs11.so
always_run: yes
changed_when: "1 != 1"
- name: enable pesign
service: name=pesign state=started enabled=true
- name: /var/run/pesign perms
file: state=directory path=/var/run/pesign owner=pesign group=pesign mode=0770
- name: when you awake you will remember nothing
copy: src=history_off.sh dest=/etc/profile.d/history_off.sh mode=0644
- name: mock site-defaults.cfg
copy: src=bkernel-site-defaults.cfg dest=/etc/mock/site-defaults.cfg mode=0644 owner=root group=mock
- name: make sure our bkernel boxes have static ip
template: src=bkernel-eth0-network dest=/etc/sysconfig/network-scripts/ifcfg-eth0
- name: set pesign facls to allow mockbuild user to use the socket directory
acl: name=/var/run/pesign entity=kojibuilder etype=user permissions='rx' state=present
- name: set pesign facls to allow mockbuild user to use the socket.
acl: name=/var/run/pesign/socket entity=kojibuilder etype=user permissions='rw' state=present
|
