Don't fail if `grafana_cap_net_bind_service` is not set for ports lower than 1024

Question

Don't fail if `grafana_cap_net_bind_service` is not set for ports lower than 1024

hasufell opened this issue 3 years ago · comments

- name: Fail if grafana_port is lower than 1024 and grafana_cap_net_bind_service is not true
  fail:
    msg: Trying to use a port lower than 1024 without setting grafana_cap_net_bind_service.
  when:
    - grafana_port | int <= 1024
    - not grafana_cap_net_bind_service

This is overly restrictive. On my machine, setting this capability results in a crash. So instead I'm using

    - name: Allow binding to port 80
      command: /sbin/sysctl -w net.ipv4.ip_unprivileged_port_start=0
      become: yes

And that works fine. Except the playbook now fails, unless I remove the check.

Ben Kochie · Answer 1 · Wed May 31 2023 12:24:08 GMT+0800 (China Standard Time)

This role has been deprecated in favor of a the grafana-ansible-collection collection.