run db secret sync under barbican username The patch make the change to run db sync under username barbican as since queens nss_db is created with the same owner which had been run before. Change-Id: Ifb7a82c5b95bfe4e4182947acda25f4f26524b71 Related-PROD: PROD-23538

commit: ce8e3ed1dbfc55fcf8b934bb989d9f30c154892d [log] [tgz]
author: Oleh Hryhorov <ohryhorov@mirantis.com> Mon Oct 01 18:41:02 2018 +0300
committer: Oleh Hryhorov <ohryhorov@mirantis.com> Tue Oct 02 09:50:43 2018 +0300
tree: a7e0886eab9fc82f17f017613b23d182a506bba8
parent: a62b1badaab4ce647153de8a99cd99d01aa42a02 [diff]
diff --git a/barbican/server.sls b/barbican/server.sls
index ddeca48..15062fd 100644
--- a/barbican/server.sls
+++ b/barbican/server.sls

@@ -37,6 +37,7 @@
 barbican_sync_secret_stores:
   cmd.run:
   - name: barbican-manage db sync_secret_stores
+  - runas: barbican
   {%- if grains.get('noservices') or server.version in ['ocata', 'pike'] %}
   - onlyif: /bin/false
   {%- endif %}
@@ -99,6 +100,8 @@
     - group: barbican
     - watch_in:
       - service: barbican_server_services
+    - require_in:
+      - cmd: barbican_sync_secret_stores
 
 {%- endif %}
commit	ce8e3ed1dbfc55fcf8b934bb989d9f30c154892d	[log] [tgz]
author	Oleh Hryhorov <ohryhorov@mirantis.com>	Mon Oct 01 18:41:02 2018 +0300
committer	Oleh Hryhorov <ohryhorov@mirantis.com>	Tue Oct 02 09:50:43 2018 +0300
tree	a7e0886eab9fc82f17f017613b23d182a506bba8
parent	a62b1badaab4ce647153de8a99cd99d01aa42a02 [diff]