From fc6475b87276a9513ef0a82f9c299e02430cd05a Mon Sep 17 00:00:00 2001 From: "Joshua M. Boniface" Date: Mon, 24 Jun 2019 10:49:35 -0400 Subject: [PATCH] Don't try to set pool limits on libvirt key I figured a * wildcard would work, but no it doesn't. Libvirt needs the ability to talk to any pool arbitrarily since PVC can create and remove them at will. --- roles/pvc/tasks/libvirt/bootstrap.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/roles/pvc/tasks/libvirt/bootstrap.yml b/roles/pvc/tasks/libvirt/bootstrap.yml index d4fc49c..61bfc16 100644 --- a/roles/pvc/tasks/libvirt/bootstrap.yml +++ b/roles/pvc/tasks/libvirt/bootstrap.yml @@ -1,3 +1,3 @@ --- - name: create Libvirt keyring - command: ceph auth get-or-create client.libvirt mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool=*' + command: ceph auth get-or-create client.libvirt mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx'