Merge pull request #95 from AaltoScienceIT/chroot

Make role work with chroot connections on EL 7.
2024-09-20 07:21:31 +02:00 · 2018-09-22 19:14:28 +01:00 · 2018-09-22 19:14:28 +01:00 · 6f43191418
commit 6f43191418
parent 5d6262a474 d438f096a7
2 changed files with 16 additions and 2 deletions
--- a/handlers/main.yml
+++ b/handlers/main.yml
@ -3,5 +3,8 @@
  service:
    name: "{{ sshd_service }}"
    state: reloaded
-  when: "sshd_allow_reload and ansible_virtualization_type|default(None) != 'docker'"
+  when:
+    - sshd_allow_reload
+    - ansible_virtualization_type|default(None) != 'docker'
+    - ansible_connection != 'chroot'
  listen: reload_sshd
--- a/tasks/install.yml
+++ b/tasks/install.yml
@ -41,7 +41,18 @@
    name: "{{ sshd_service }}"
    enabled: true
    state: started
-  when: "sshd_manage_service and ansible_virtualization_type|default(None) != 'docker'"
+  when:
+    - sshd_manage_service
+    - ansible_virtualization_type|default(None) != 'docker'
+    - ansible_connection != 'chroot'
+
+# Due to ansible bug 21026, cannot use service module on RHEL 7
+- name: Enable service in chroot
+  command: systemctl enable {{ sshd_service }}
+  when:
+    - ansible_connection == 'chroot'
+    - ansible_os_family == 'RedHat'
+    - ansible_distribution_major_version|int >= 7

 - name: Register that this role has run
  set_fact: sshd_has_run=true