From d8e9b5353f868ab754a4726ffae8a5ac72573dc7 Mon Sep 17 00:00:00 2001
From: "Joshua M. Boniface" <joshua@boniface.me>
Date: Fri, 1 Sep 2023 15:42:20 -0400
Subject: [PATCH] Don't try to set pool limits on libvirt key

I figured a * wildcard would work, but no it doesn't. Libvirt needs
the ability to talk to any pool arbitrarily since PVC can create and
remove them at will.
---
 roles/pvc/tasks/libvirt/bootstrap.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/roles/pvc/tasks/libvirt/bootstrap.yml b/roles/pvc/tasks/libvirt/bootstrap.yml
index d4fc49c..61bfc16 100644
--- a/roles/pvc/tasks/libvirt/bootstrap.yml
+++ b/roles/pvc/tasks/libvirt/bootstrap.yml
@@ -1,3 +1,3 @@
 ---
 - name: create Libvirt keyring
-  command: ceph auth get-or-create client.libvirt mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool=*'
+  command: ceph auth get-or-create client.libvirt mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx'