Groups against which hardening is run can be defined
with variable `security_host_group`. However, since container creation
is run after hardening, it is not possible to run role against containers
during their setup.
Simply changing the order allow deployer to run hardening against
containers as well.
Reviewed: https:/ /review. opendev. org/759907 /git.openstack. org/cgit/ openstack/ openstack- ansible/ commit/ ?id=857169a8a8f 9595db2006d1443 4e55ceef4188c9
Committed: https:/
Submitter: Zuul
Branch: master
commit 857169a8a8f9595 db2006d14434e55 ceef4188c9
Author: Dmitriy Rabotyagov <email address hidden>
Date: Tue Oct 27 19:03:16 2020 +0200
Run hardening after container deployment
Groups against which hardening is run can be defined host_group` . However, since container creation
with variable `security_
is run after hardening, it is not possible to run role against containers
during their setup.
Simply changing the order allow deployer to run hardening against
containers as well.
Change-Id: If7e59991c90fb2 821e8d66c76af42 dfc8b5ec8ad
Closes-Bug: #1901619