Splitted file context regexp from puppetmaster datadirs to prevent restorecon run on every puppet run.

2012-10-30 12:22:09 +02:00 · 2012-10-30 12:22:09 +02:00 · 2c7af9cefd
commit 2c7af9cefd
parent cd0c426681
1 changed files with 10 additions and 2 deletions
--- a/puppet/manifests/init.pp
+++ b/puppet/manifests/init.pp
@ -303,7 +303,11 @@ class puppet::server::common inherits puppet::client {
            type   => $seltype_readonly,
            before => File[$puppet_datadir],
        }
-        selinux::manage_fcontext { "${puppet_datadir}/(bucket|reports|rrd)(/.*)?":
+        selinux::manage_fcontext { [
+          "${puppet_datadir}/bucket(/.*)?",
+          "${puppet_datadir}/reports(/.*)?",
+          "${puppet_datadir}/rrd(/.*)?",
+        ]:
            type   => $seltype_writable,
            before => File["/srv/puppet/reports"],
        }
@ -330,7 +334,11 @@ class puppet::server::common inherits puppet::client {
        type   => $seltype_readonly,
        before => File["/srv/puppet"],
    }
-    selinux::manage_fcontext { "/srv/puppet/(bucket|reports|rrd)(/.*)?":
+    selinux::manage_fcontext { [
+      "/srv/puppet/bucket(/.*)?",
+      "/srv/puppet/reports(/.*)?",
+      "/srv/puppet/rrd(/.*)?",
+    ]:
        type   => $seltype_writable,
        before => File["/srv/puppet/reports"],
    }