Execute check of error logfile permissions only when log_error is defined (#477)

Signed-off-by: 123quhiwiwk <70281681+123quhiwiwk@users.noreply.github.com>
2024-11-10 09:14:18 +00:00 · 2021-08-24 09:41:55 +02:00 · 2021-08-24 09:41:55 +02:00 · 4671a32062
commit 4671a32062
parent 78bab3f710
2 changed files with 7 additions and 0 deletions
--- a/roles/mysql_hardening/tasks/configure.yml
+++ b/roles/mysql_hardening/tasks/configure.yml
@ -23,6 +23,7 @@
    owner: '{{ mysql_hardening_user }}'
    group: '{{ mysql_hardening_group }}'
    mode: '0640'
+  when: mysql_settings.settings.log_error != ""

 - name: Check mysql configuration-directory exists and has right permissions
  file:
--- a/roles/mysql_hardening/tasks/main.yml
+++ b/roles/mysql_hardening/tasks/main.yml
@ -44,6 +44,12 @@
    login_unix_socket: "{{ login_unix_socket | default(omit) }}"
  register: mysql_version

+- name: Check MySQL/MariaDB settings
+  community.mysql.mysql_info:
+    filter: settings
+    login_unix_socket: "{{ login_unix_socket | default(omit) }}"
+  register: mysql_settings
+
 # see https://stackoverflow.com/a/59451077/2953919 for the
 # dict2items and vice versa magic
 - name: Drop the secure-auth parameter on MySQL >=8.0.3 (not mariadb)