@@ -7,7 +7,7 @@ Installs [gitolite][], creates a [dedicated user][] to run it (defaults to

 (explicit) [user created repos][] with [multiple `OWNERS`][] and `user/USER/*`

 [personal branches][] for `USERS`, allows users to run [`symbolic-ref`][] (e.g.

 to change `HEAD`, the default branch), and prepares for [integration with a

-webserver][].

+webserver][] (including acting as a [`git-http-backend`][] replacement).

 [`ansible-role-gitolite`]: https://git.rcrnstn.net/rcrnstn/ansible-role-gitolite

 [Ansible]: https://docs.ansible.com/ansible

@@ -21,6 +21,7 @@ webserver][].

 [personal branches]: https://gitolite.com/gitolite/user#personal-branches

 [`symbolic-ref`]: https://git-scm.com/docs/git-symbolic-ref

 [integration with a webserver]: https://gitolite.com/gitolite/gitweb-daemon.html

+[`git-http-backend`]: https://git-scm.com/docs/git-http-backend

 ## Try out

@@ -88,3 +88,24 @@

       loop:

         - "{{ gitolite_user_home }}/repositories"

         - "{{ gitolite_user_home }}/.gitolite"

+

+    - name: "Set SETGID on gitolite logs directory"

+      file:

+        path: "{{ gitolite_user_home }}/.gitolite/logs"

+        mode: 'g+s'

+        state: 'directory'

+

+    - name: "Allow group write access to existing gitolite logs"

+      file:

+        path: "{{ gitolite_user_home }}/.gitolite/logs"

+        mode: 'g+rwX'

+        recurse: yes

+        state: 'directory'

+

+    - name: "Allow group write access to future gitolite logs"

+      acl:

+        path: "{{ gitolite_user_home }}/.gitolite/logs"

+        etype: 'group'

+        permissions: 'rwX'

+        default: yes

+        state: 'present'