From 8bd5a7f71093a8acc75459985ce8d3a68a9fea19 Mon Sep 17 00:00:00 2001
From: Lars Beckers <lars.beckers@rwth-aachen.de>
Date: Thu, 3 Aug 2017 18:35:14 +0200
Subject: [PATCH] debian-updates: fix file permissions

---
 debian-updates/tasks/main.yml | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/debian-updates/tasks/main.yml b/debian-updates/tasks/main.yml
index 56404a8..11294ce 100644
--- a/debian-updates/tasks/main.yml
+++ b/debian-updates/tasks/main.yml
@@ -18,6 +18,7 @@
   tags:
     - debian-updates
 
+# https://github.com/ansible/ansible/issues/27699
 - name: ensure fucking git module is able to clone
   command: mount -o remount,exec /tmp
   tags:
@@ -41,7 +42,7 @@
   copy:
     src: /opt/debian-updates/apticron.json.example
     dest: /opt/debian-updates/apticron.json
-    mode: 0644
+    mode: 0666 # mail is delivered by nobody
     owner: root
     group: root
     remote_src: True
@@ -49,6 +50,17 @@
   tags:
     - debian-updates
 
+- name: ensure the lock file exists
+  copy:
+    content: "" # no, the file module is not sufficient
+    dest: /opt/debian-updates/.json-sync.lock
+    owner: root
+    group: root
+    mode: 0666 # mail is delivered by nobody
+    force: False
+  tags:
+    - debian-updates
+
 - name: ensure our config is deployed
   template:
     src: config.py.j2
-- 
GitLab