diff --git a/roles/configure_firewall/tasks/main.yml b/roles/configure_firewall/tasks/main.yml index 6ec0c29..4c84f88 100644 --- a/roles/configure_firewall/tasks/main.yml +++ b/roles/configure_firewall/tasks/main.yml @@ -16,11 +16,12 @@ ansible.builtin.template: src: nft.service.j2 dest: /etc/systemd/system/{{ sce_nft_table_filename }}.service + mode: "0644" notify: Reload systemd daemon # Must be placed here to ensure proper ordering of events - name: Flush handlers - meta: flush_handlers + ansible.builtin.meta: flush_handlers - name: Ensure nft SCE port mapping service is started and enabled ansible.builtin.systemd_service: diff --git a/roles/podman_certbot/handlers/main.yml b/roles/podman_certbot/handlers/main.yml index 1c9ae02..43db239 100644 --- a/roles/podman_certbot/handlers/main.yml +++ b/roles/podman_certbot/handlers/main.yml @@ -5,3 +5,4 @@ scope: user become_method: community.general.machinectl become_user: podman + become: true diff --git a/roles/podman_certbot/tasks/machinectl.yml b/roles/podman_certbot/tasks/machinectl.yml index 43a8e7e..7ef6a3e 100644 --- a/roles/podman_certbot/tasks/machinectl.yml +++ b/roles/podman_certbot/tasks/machinectl.yml @@ -38,7 +38,7 @@ # Must be placed here to ensure proper ordering of events - name: Flush handlers - meta: flush_handlers + ansible.builtin.meta: flush_handlers - name: Ensure certbot timer unit is enabled and started ansible.builtin.systemd_service: diff --git a/roles/podman_certbot/tasks/main.yml b/roles/podman_certbot/tasks/main.yml index 38be9dd..79b6264 100644 --- a/roles/podman_certbot/tasks/main.yml +++ b/roles/podman_certbot/tasks/main.yml @@ -3,3 +3,4 @@ ansible.builtin.import_tasks: machinectl.yml become_method: community.general.machinectl become_user: podman + become: true diff --git a/roles/podman_certbot_root_transfer/handlers/main.yml b/roles/podman_certbot_root_transfer/handlers/main.yml index 1c9ae02..43db239 100644 --- a/roles/podman_certbot_root_transfer/handlers/main.yml +++ b/roles/podman_certbot_root_transfer/handlers/main.yml @@ -5,3 +5,4 @@ scope: user become_method: community.general.machinectl become_user: podman + become: true diff --git a/roles/podman_certbot_root_transfer/tasks/main.yml b/roles/podman_certbot_root_transfer/tasks/main.yml index b78e981..dcbc29f 100644 --- a/roles/podman_certbot_root_transfer/tasks/main.yml +++ b/roles/podman_certbot_root_transfer/tasks/main.yml @@ -30,3 +30,4 @@ ansible.builtin.import_tasks: machinectl.yml become_method: community.general.machinectl become_user: podman + become: true