broker: add missing become: on task demanding root priv

rpelisse · rpelisse · commit b692b44f91e9 · 2024-02-21T11:19:58.000+01:00
diff --git a/roles/amq_streams_broker/defaults/main.yml b/roles/amq_streams_broker/defaults/main.yml
@@ -100,6 +100,7 @@ amq_streams_broker_tls_truststore_password: PLEASE_CHANGEME_IAMNOTGOOD_FOR_PRODU
 # Truststore for Clients
 amq_streams_broker_tls_truststore_client_dir: /tmp
 amq_streams_broker_tls_truststore_client: client.truststore.jks
+amq_streams_broker_tls_truststore_client_require_priv_escalation: yes
 amq_streams_broker_tls_truststore_client_location: /opt
 amq_streams_broker_tls_truststore_client_password: PLEASE_CHANGEME_IAMNOTGOOD_FOR_PRODUCTION
 amq_streams_broker_admin_cli_log4j_opts: "  "
diff --git a/roles/amq_streams_broker/tasks/cli/bootstrap.yml b/roles/amq_streams_broker/tasks/cli/bootstrap.yml
@@ -24,6 +24,7 @@
     - not bootstrap_server_port is defined
 
 - name: "Copy Client Truststore with certificates"
+  become: "{{ amq_streams_broker_tls_truststore_client_require_priv_escalation }}"
   ansible.builtin.copy:
     src: "{{ amq_streams_broker_tls_truststore_client_dir }}/{{ amq_streams_broker_tls_truststore_client }}"
     dest: "{{ amq_streams_broker_tls_truststore_client_location }}/{{ amq_streams_broker_tls_truststore_client }}"
