diff options
author | Toshio Kuratomi <a.badger@gmail.com> | 2017-03-07 10:22:24 -0800 |
---|---|---|
committer | GitHub <noreply@github.com> | 2017-03-07 10:22:24 -0800 |
commit | 1ea3313c907deda1102064081c3bd639176500df (patch) | |
tree | ab9671154bd75c7ff7d3f12e9106cc106f9b8a35 | |
parent | 71c7220e45ccc8e846aa9895ec93c80350b56a3a (diff) | |
download | ansible-1ea3313c907deda1102064081c3bd639176500df.tar.gz |
Document synchronize limitations around become and connections (#22373)
* Document synchronize limitations around become and connections
-rw-r--r-- | lib/ansible/modules/files/synchronize.py | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/lib/ansible/modules/files/synchronize.py b/lib/ansible/modules/files/synchronize.py index 7a8d1e1258..66f55ac156 100644 --- a/lib/ansible/modules/files/synchronize.py +++ b/lib/ansible/modules/files/synchronize.py @@ -175,6 +175,8 @@ notes: - "The user and permissions for the synchronize `src` are those of the user running the Ansible task on the local host (or the remote_user for a delegate_to host when delegate_to is used)." - The user and permissions for the synchronize `dest` are those of the `remote_user` on the destination host or the `become_user` if `become=yes` is active. - In 2.0.0.0 a bug in the synchronize module made become occur on the "local host". This was fixed in 2.0.1. + - Currently, synchronize is limited to elevating permissions via passwordless sudo. This is because rsync itself is connecting to the remote machine and rsync doesn't give us a way to pass sudo credentials in. + - Currently there are only a few connection types which support synchronize (ssh, paramiko, local, and docker) because a sync strategy has been determined for those connection types. Note that the connection for these must not need a password as rsync itself is making the connection and rsync does not provide us a way to pass a password to the connection. - Expect that dest=~/x will be ~<remote_user>/x even if using sudo. - Inspect the verbose output to validate the destination user/host/path are what was expected. |