summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--ansible/roles/k8s-persistent-volume/defaults/main.yml2
-rw-r--r--ansible/roles/k8s-persistent-volume/tasks/main.yml8
2 files changed, 10 insertions, 0 deletions
diff --git a/ansible/roles/k8s-persistent-volume/defaults/main.yml b/ansible/roles/k8s-persistent-volume/defaults/main.yml
index 5260db11..d1a2b69c 100644
--- a/ansible/roles/k8s-persistent-volume/defaults/main.yml
+++ b/ansible/roles/k8s-persistent-volume/defaults/main.yml
@@ -3,3 +3,5 @@ k8s_volumes:
- name: kube-prometheus
capacity: "6Gi"
path_prefix: "{{ nfs_mount_path }}"
+ owner: 1000 # derived from prometheus.prometheusSpec.securityContext.runAsUser
+ group: 2000 # derived from prometheus.prometheusSpec.securityContext.fsGroup
diff --git a/ansible/roles/k8s-persistent-volume/tasks/main.yml b/ansible/roles/k8s-persistent-volume/tasks/main.yml
index 94f4e0b3..8428857f 100644
--- a/ansible/roles/k8s-persistent-volume/tasks/main.yml
+++ b/ansible/roles/k8s-persistent-volume/tasks/main.yml
@@ -9,3 +9,11 @@
wait: True
template: pv.yaml.j2
loop: "{{ k8s_volumes }}"
+
+- name: Create host paths for PVs and set their permissions
+ file:
+ path: "{{ item.path_prefix }}/{{ item.name }}"
+ state: directory
+ owner: "{{ item.owner | default(0) }}"
+ group: "{{ item.group | default(0) }}"
+ loop: "{{ k8s_volumes }}"