From a9b388bd73e9239ff7800fd87f442e90595eeda5 Mon Sep 17 00:00:00 2001
From: Adar Nimrod <nimrod@shore.co.il>
Date: Sun, 11 Jul 2021 18:21:51 +0300
Subject: [PATCH] Moved the userns and subuid tasks to the correct file.

---
 roles/debian_server/tasks/docker.yml  | 20 --------------------
 roles/debian_server/tasks/toolbox.yml | 20 ++++++++++++++++++++
 2 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/roles/debian_server/tasks/docker.yml b/roles/debian_server/tasks/docker.yml
index 166eccd..b3476f6 100644
--- a/roles/debian_server/tasks/docker.yml
+++ b/roles/debian_server/tasks/docker.yml
@@ -53,23 +53,3 @@
     direction: in
     interface: docker0
     rule: allow
-
-- name: Set UID/GID mapping range
-  loop:
-    - /etc/subgid
-    - /etc/subuid
-  copy:
-    content: |
-      nimrod:100000:65536
-    dest: |-
-      {{ item }}
-    group: root
-    mode: 0o0644
-    owner: root
-
-- name: Allow unprivileged user namespaces
-  when: ansible_facts.distribution_major_version|int < 11
-  ansible.posix.sysctl:
-    name: kernel/unprivileged_userns_clone
-    state: present
-    value: "1"
diff --git a/roles/debian_server/tasks/toolbox.yml b/roles/debian_server/tasks/toolbox.yml
index ccf999e..e7b7193 100644
--- a/roles/debian_server/tasks/toolbox.yml
+++ b/roles/debian_server/tasks/toolbox.yml
@@ -1,4 +1,24 @@
 ---
+- name: Set UID/GID mapping range
+  loop:
+    - /etc/subgid
+    - /etc/subuid
+  copy:
+    content: |
+      nimrod:100000:65536
+    dest: |-
+      {{ item }}
+    group: root
+    mode: 0o0644
+    owner: root
+
+- name: Allow unprivileged user namespaces
+  when: ansible_facts.distribution_major_version|int < 11
+  ansible.posix.sysctl:
+    name: kernel/unprivileged_userns_clone
+    state: present
+    value: "1"
+
 - name: Install Podman from the Kubic repository
   # yamllint disable-line rule:line-length
   when: ansible_facts.distribution_release is in ["buster", "bionic", "focal", "hera", "odin"]
-- 
GitLab