various: Fix issues related to vault reloads

the-maldridge · the-maldridge · commit 77e83e2f70b3 · 2021-09-22T22:36:07.000-05:00
diff --git a/ansible/roles/vault/tasks/main.yml b/ansible/roles/vault/tasks/main.yml
@@ -4,11 +4,19 @@
     pkg: vault
     state: present
 
+- name: Enforce ownership on /etc/vault
+  file:
+    path: /etc/vault
+    state: directory
+    owner: _vault
+    group: _vault
+    mode: 0750
+
 - name: Install Storage config
   template:
     src: 25-storage.hcl.j2
     dest: /etc/vault/25-storage.hcl
-    owner: root
+    owner: _vault
     group: _vault
     mode: 0640
   notify:
@@ -18,7 +26,7 @@
   copy:
     src: 30-listeners.hcl
     dest: /etc/vault/30-listeners.hcl
-    owner: root
+    owner: _vault
     group: _vault
     mode: 0640
   notify:
diff --git a/terraform/hashistack/.terraform.lock.hcl b/terraform/hashistack/.terraform.lock.hcl
diff --git a/terraform/hashistack/base.tf b/terraform/hashistack/base.tf
@@ -8,7 +8,7 @@ module "consul_base" {
 
 module "vault_base" {
   source  = "resinstack/base/vault"
-  version = "0.1.1"
+  version = "0.1.2"
 }
 
 module "nomad_base" {
diff --git a/terraform/hashistack/providers.tf b/terraform/hashistack/providers.tf
@@ -1,2 +1,3 @@
 provider "consul" {}
 provider "vault" {}
+provider "nomad" {}
diff --git a/terraform/hashistack/versions.tf b/terraform/hashistack/versions.tf
@@ -6,7 +6,11 @@ terraform {
     }
     vault = {
       source  = "hashicorp/vault"
-      version = "~> 2.14.0"
+      version = "~> 2.23.0"
+    }
+    nomad = {
+      source  = "hashicorp/nomad"
+      version = "~> 1.4.15"
     }
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@ module "consul_base" {`
`8`	`8`
`9`	`9`	`module "vault_base" {`
`10`	`10`	`source = "resinstack/base/vault"`
`11`		`- version = "0.1.1"`
	`11`	`+ version = "0.1.2"`
`12`	`12`	`}`
`13`	`13`
`14`	`14`	`module "nomad_base" {`