When the systems default UMASK is set to 027 in /etc/login.defs the installation of plugins will be unaccessible by the grafana user.
Since all files are owned by root:root and the umask of the folders ist 0750 the plugin isn't availble in grafana. Maybe it would be useful to set/execute umask 022; before executing the grafana-cli plugin install command.
ISSUE TYPE
Bug Report
COMPONENT NAME
community.grafana.grafana_plugin
ANSIBLE VERSION
not relevant
COLLECTION VERSION
v1.8.0
STEPS TO REPRODUCE
# Part of your os / hardinging procecure, not part grafana/appllication playbook)
- ansible.builtin.lineinfile:
dest: /etc/login.defs
line: UMASK 027
regexp: ^UMASK.*
# Part of your grafana/app installation playbook
- community.grafana.grafana_plugin:
name: grafana-image-renderer
EXPECTED RESULTS
Folder and files should be 0755 or 0644 and not unaccessible
SUMMARY
When the systems default
UMASK
is set to027
in/etc/login.defs
the installation of plugins will be unaccessible by the grafana user.Since all files are owned by root:root and the umask of the folders ist
0750
the plugin isn't availble in grafana. Maybe it would be useful to set/executeumask 022;
before executing the grafana-cli plugin install command.ISSUE TYPE
COMPONENT NAME
community.grafana.grafana_plugin
ANSIBLE VERSION
not relevant
COLLECTION VERSION
v1.8.0
STEPS TO REPRODUCE
EXPECTED RESULTS
Folder and files should be
0755
or0644
and not unaccessibleACTUAL RESULTS