moved listen to outside of block

2025-10-01 14:51:26 +02:00
parent 78f941015b
commit d75d7f6557
1 changed files with 22 additions and 0 deletions
--- a/main.yml
+++ b/main.yml
@@ -0,0 +1,22 @@
+---
+- name: update aide database
+  listen: "update aide db"
+  block: # This block is now a task within the handler
+    - name: system setup | aide | run aide --update to check for legitimate changes
+      tags: aide,hardening,system
+      command: aide --update
+      register: aide_update_result
+      changed_when: "'new database written to' in aide_update_result.stdout"
+      async: 1800 # Allow up to 30 minutes for update
+      poll: 15
+
+    - name: system setup | aide | activate updated database
+      tags: aide,hardening,system
+      copy:
+        src: /var/lib/aide/aide.db.new
+        dest: /var/lib/aide/aide.db
+        remote_src: true
+        owner: root
+        group: root
+        mode: '0600'
+      when: aide_update_result.changed