From 60674e517bb496efc27b9a373d9c7da7aaefe1c7 Mon Sep 17 00:00:00 2001
From: jurgenhaas <juergen@paragon-es.de>
Date: Wed, 16 May 2018 12:14:19 +0200
Subject: [PATCH] Do not follow symlinks for recursive directory actions

---
 tasks/proxypool.yml | 2 ++
 tasks/pullcerts.yml | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/tasks/proxypool.yml b/tasks/proxypool.yml
index f1904b8..e229868 100644
--- a/tasks/proxypool.yml
+++ b/tasks/proxypool.yml
@@ -8,6 +8,7 @@
       path: '/etc/letsencrypt'
       owner: '{{ ansible_env.SUDO_USER }}'
       recurse: yes
+      follow: no
     when: proxy_active|default(true)
 
   - name: "Pull Certs from active Proxy"
@@ -19,6 +20,7 @@
       path: '/etc/letsencrypt'
       owner: 'root'
       recurse: yes
+      follow: no
     when: proxy_active|default(true)
 
   tags: 'Certs'
diff --git a/tasks/pullcerts.yml b/tasks/pullcerts.yml
index 617606f..ca6727a 100644
--- a/tasks/pullcerts.yml
+++ b/tasks/pullcerts.yml
@@ -11,6 +11,7 @@
     path: '{{ item }}'
     owner: '{{ ansible_env.SUDO_USER }}'
     recurse: yes
+    follow: no
   with_items:
     - '/etc/letsencrypt'
     - '/etc/haproxy/certs'
@@ -30,6 +31,7 @@
     path: '{{ item }}'
     owner: 'root'
     recurse: yes
+    follow: no
   with_items:
     - '/etc/letsencrypt'
     - '/etc/haproxy/certs'
-- 
GitLab