From 4671dcc9292c2aa65e16afab323413efea5e68dc Mon Sep 17 00:00:00 2001
From: Scott Dodson <sdodson@redhat.com>
Date: Wed, 17 Jan 2018 17:23:12 -0500
Subject: Allow for firewalld on atomic host

Right now this is only available on fedora so guard it with
openshift_enable_unsupported_configurations
---
 roles/os_firewall/tasks/firewalld.yml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'roles')

diff --git a/roles/os_firewall/tasks/firewalld.yml b/roles/os_firewall/tasks/firewalld.yml
index 4eae31596..fa933da51 100644
--- a/roles/os_firewall/tasks/firewalld.yml
+++ b/roles/os_firewall/tasks/firewalld.yml
@@ -2,7 +2,9 @@
 - name: Fail - Firewalld is not supported on Atomic Host
   fail:
     msg: "Firewalld is not supported on Atomic Host"
-  when: r_os_firewall_is_atomic | bool
+  when:
+    - r_os_firewall_is_atomic | bool
+    - not openshift_enable_unsupported_configurations | default(false)
 
 - name: Install firewalld packages
   package:
@@ -10,6 +12,7 @@
     state: present
   register: result
   until: result is succeeded
+  when: not r_os_firewall_is_atomic | bool
 
 - name: Ensure iptables services are not enabled
   systemd:
-- 
cgit v1.2.3