From c4bdd88e27f6dc3f4b1c97713c17fed8af44b749 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=A9r=C3=A9my=20Lecour?= <jeremy.lecour@gmail.com>
Date: Sat, 7 Oct 2017 21:48:00 +0200
Subject: [PATCH] evoadmin-web: stay privileged

Becoming an unprivilegied user is problemetic for Ansible.
We continue being root, but change the permissions on created files.
---
 webapps/evoadmin-web/tasks/user.yml | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/webapps/evoadmin-web/tasks/user.yml b/webapps/evoadmin-web/tasks/user.yml
index c5e5a35b..67c38e16 100644
--- a/webapps/evoadmin-web/tasks/user.yml
+++ b/webapps/evoadmin-web/tasks/user.yml
@@ -35,8 +35,6 @@
     dest: "{{ evoadmin_document_root}}"
     version: jessie
     update: no
-  # Warning: Need sudo!
-  become_user: "{{ evoadmin_username }}"
   when: ansible_distribution_release == "jessie"
 
 - name: "Clone evoadmin repository (Debian 9 or later)"
@@ -45,10 +43,14 @@
     dest: "{{ evoadmin_document_root}}"
     version: master
     update: yes
-  # Warning: Need sudo!
-  become_user: "{{ evoadmin_username }}"
   when: ansible_distribution_major_version | version_compare('9', '>=')
 
+- name: Change ownership on git repository
+  file:
+    dest: "{{ evoadmin_document_root}}"
+    owner: "{{ evoadmin_username }}"
+    recurse: yes
+
 - include: remount_usr_rw.yml
   when: evoadmin_scripts_dir | search ("/usr")