Fix permissions for docker-compose.yml configs Set permissions to 600 for docker-compose.yml configs as they can have passwords for some services, like ldap. Change-Id: I500e53d58d8dec5cf171e7a8a1a09604d7c6e180 Related-bug: PROD-25377

commit: ac4c33af7bb69d7cfcbb13fca44d204079b8231a [log] [tgz]
author: Denis Egorenko <degorenko@mirantis.com> Fri Nov 30 15:58:38 2018 +0400
committer: Denis Egorenko <degorenko@mirantis.com> Fri Nov 30 16:01:22 2018 +0400
tree: fe1318999617ca35594fae321b349c3721ce0e22
parent: a6bc035092500d92dd956dbff1f17096d0ee4e1b [diff]
diff --git a/docker/client/compose.sls b/docker/client/compose.sls
index 11c0fdd..dd269e9 100644
--- a/docker/client/compose.sls
+++ b/docker/client/compose.sls

@@ -56,6 +56,7 @@
     - name: {{ client.compose.base }}/{{ app }}/docker-compose.yml
     - source: salt://docker/files/docker-compose.yml
     - template: jinja
+    - mode: 600
     - defaults:
         compose: {{ compose }}
         volume: {{ compose.volume|default({}) }}

diff --git a/docker/client/stack.sls b/docker/client/stack.sls
index 329fd97..b7bac65 100644
--- a/docker/client/stack.sls
+++ b/docker/client/stack.sls

@@ -16,6 +16,7 @@
     - name: {{ client.compose.base }}/{{ app }}/docker-compose.yml
     - source: salt://docker/files/docker-compose.yml
     - template: jinja
+    - mode: 600
     - defaults:
         compose: {{ compose }}
         volume: {{ compose.volume|default({}) }}
commit	ac4c33af7bb69d7cfcbb13fca44d204079b8231a	[log] [tgz]
author	Denis Egorenko <degorenko@mirantis.com>	Fri Nov 30 15:58:38 2018 +0400
committer	Denis Egorenko <degorenko@mirantis.com>	Fri Nov 30 16:01:22 2018 +0400
tree	fe1318999617ca35594fae321b349c3721ce0e22
parent	a6bc035092500d92dd956dbff1f17096d0ee4e1b [diff]