Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Ansible permission issue

Tags:

python

ansible

ansible-playbook

I have a simple ansible task that creates a file:

- name: create fake file 
  file:
    name: /opt/refdata/PROD02/roman.delete
    state: touch

I generated the public/private keys and added public one to authorized_keys2 for the user I am running as on the target host.

When I try to run it I get the following error: 

failed: [experiment01] => {"failed": true, "parsed": false}
Traceback (most recent call last):
  File "/home/acplus_uat01/.ansible/tmp/ansible-tmp-1441921944.69-3869708445827/file", line 1999, in <module>
    main()
  File "/home/acplus_uat01/.ansible/tmp/ansible-tmp-1441921944.69-3869708445827/file", line 372, in main
    open(path, 'w').close()
IOError: [Errno 2] No such file or directory: '/opt/refdata/PROD02/roman.delete'

So, to see if I have issues with ssh or python I tried this - I created a python file with one line: 

open('/opt/refdata/PROD02/roman.delete', 'w').close()

and ran this from the same place and the same user as I run ansible: 

cat test2.py | ssh -i ~/.ssh/myPrivateKey -q target_user@targethost python -

and it created the file.

So, my question is - where is the problem, why can't it create a file?

the way I run the playbook is this: 

ansible-playbook -i inventory/prod/ acc.yml -v --vault-password-file=~/.ansible-vault-pw --private-key ~/.ssh/myPrivateKey

I also tried to create a file in /tmp/ and ansible worked.

Edit: So, another update - I made the directory I am writing the file into world writable ( 777 ) and it created the file. So, the question is - what is different in Ansible that

 cat test2.py | ssh -i ~/.ssh/myPrivateKey -q target_user@targethost python -

works and doing essentially the same thing through Ansible doesn't.

like image 649
Roman Goyenko Avatar asked Sep 10 '15 22:09

Roman Goyenko

1 Answers

If /opt/refdata/PROD02/ doesn't exist you should create directory first 

file:
  name: /opt/refdata/PROD02
  state: directory
  recurse: yes
  mode: 0755

Ansible documentation says:

recurse - Set the specified file attributes (applies only to state=directory)

So Ansible cannot create file and all the directories in it's path at one command.

Then with second command you should create the file itself.

name: create fake file 
  file:
    name: /opt/refdata/PROD02/roman.delete
    state: touch
like image 171
Nick Roz Avatar answered Oct 28 '22 14:10

Nick Roz
Sign in to Comment

Related questions

scikit-learn kmeans custom distance [duplicate]
Is parsing a json naively into a Python class or struct secure?
Django manytomany field, how to get check for 80% subset/ match?
Python whats the most efficient way to wait for input
Merging DataFrames on multiple conditions - not specifically on equal values
Axis argument to .loc() to interpret the passed slicers on a axis=1
Increasing efficiency of barycentric coordinate calculation in python
How to force Python dictionary to shrink?
NumPy: Why the need to explicitly copy a value?
Full-matrix approach to backpropagation in Artificial Neural Network
Horizontally scaling Scrapyd
Efficient 2d cumsum
ImportError: cannot import name ellipkm1
aiohttp-form-based authentication
Formatting multiple worksheets using xlsxwriter
Do case-insensitive ordering with django-filter
Make List of Unique Objects in Python
Encoding characters with ISO 8859-1 in Python
How do I compile a Fortran library for use with Python? (f2py may not be an option)
Finding word on page(s) in document

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!