diff --git a/roles/web_server/tasks/main.yml b/roles/web_server/tasks/main.yml
index 46f3ff46d3ec9e277b38a68e91a4eb70aada8ec9..5231de98a857f8f8c810a65b7cde8a08adfd63cc 100644
--- a/roles/web_server/tasks/main.yml
+++ b/roles/web_server/tasks/main.yml
@@ -17,7 +17,7 @@
   copy:
     dest: "/etc/ssl/private/{{ ansible_fqdn }}_https.key"
     content: "{{ default_https_tls_key }}"
-    mode: 0640
+    mode: "0640"
     owner: root
     group: root
   notify:
@@ -27,7 +27,7 @@
   copy:
     dest: "/etc/ssl/certs/{{ ansible_fqdn }}_https.pem"
     content: "{{ default_https_tls_certificate }}"
-    mode: 0644
+    mode: "0644"
     owner: root
     group: root
   notify:
@@ -37,7 +37,7 @@
   openssl_dhparam:
     owner: root
     group: root
-    mode: 0640
+    mode: "0640"
     path: "/etc/ssl/private/{{ ansible_fqdn }}_https.dh.pem"
     size: 2048
   notify:
@@ -49,7 +49,7 @@
     dest: "/etc/check_certificate/{{ ansible_fqdn }}_https.conf"
     owner: root
     group: root
-    mode: 0644
+    mode: "0644"
 
 - name: Remove TLS protocol configuration from the main configuration file
   lineinfile:
@@ -66,7 +66,7 @@
     src: "tls.conf.j2"
     owner: "root"
     group: "root"
-    mode: 0644
+    mode: "0644"
   notify:
     - Restart nginx
 
@@ -76,7 +76,7 @@
     dest: "/usr/local/bin/nginx_verify_site.sh"
     owner: root
     group: root
-    mode: 0755
+    mode: "0755"
 
 - name: Deploy default vhost configuration
   template:
@@ -84,7 +84,7 @@
     dest: "/etc/nginx/sites-available/default"
     owner: root
     group: root
-    mode: 0640
+    mode: "0640"
     validate: "/usr/local/bin/nginx_verify_site.sh -n default %s"
   notify:
     - Restart nginx
@@ -103,7 +103,7 @@
     dest: "/etc/ferm/conf.d/30-web.conf"
     owner: root
     group: root
-    mode: 0640
+    mode: "0640"
   notify:
     - Restart ferm
 
@@ -121,7 +121,7 @@
     state: directory
     owner: root
     group: www-data
-    mode: 0750
+    mode: "0750"
 
 - name: Deploy the default index.html
   template:
@@ -129,7 +129,7 @@
     dest: /var/www/default/index.html
     owner: root
     group: www-data
-    mode: 0640
+    mode: "0640"
 
 - name: Enable nginx service
   service:
@@ -156,7 +156,7 @@
     state: directory
     owner: root
     group: www-data
-    mode: 0750
+    mode: "0750"
   with_items:
     - wsgi
     - php
@@ -167,7 +167,7 @@
     dest: "/etc/tmpfiles.d/{{ item.tmpfiles_d }}"
     owner: root
     group: root
-    mode: 0644
+    mode: "0644"
   with_items:
     - socket_dir: wsgi
       tmpfiles_d: "wsgi.conf"
@@ -180,7 +180,7 @@
     state: directory
     owner: root
     group: root
-    mode: 0755
+    mode: "0755"
 
 - name: Configure PHP-FPM service to run with umask 0007
   copy:
@@ -188,7 +188,7 @@
     dest: "/etc/systemd/system/{{ php_fpm_service_name }}.service.d/umask.conf"
     owner: root
     group: root
-    mode: 0644
+    mode: "0644"
   notify:
     - Reload systemd
     - Restart PHP-FPM
@@ -210,7 +210,7 @@
     dest: "{{ item }}/30-timezone.ini"
     owner: root
     group: root
-    mode: 0644
+    mode: "0644"
   with_items:
     - "{{ php_base_config_dir }}/cli/conf.d/"
     - "{{ php_base_config_dir }}/fpm/conf.d/"