Splitted file context regexp from puppetmaster datadirs to prevent restorecon run on every puppet run.
This commit is contained in:
parent
cd0c426681
commit
2c7af9cefd
1 changed files with 10 additions and 2 deletions
|
|
@ -303,7 +303,11 @@ class puppet::server::common inherits puppet::client {
|
||||||
type => $seltype_readonly,
|
type => $seltype_readonly,
|
||||||
before => File[$puppet_datadir],
|
before => File[$puppet_datadir],
|
||||||
}
|
}
|
||||||
selinux::manage_fcontext { "${puppet_datadir}/(bucket|reports|rrd)(/.*)?":
|
selinux::manage_fcontext { [
|
||||||
|
"${puppet_datadir}/bucket(/.*)?",
|
||||||
|
"${puppet_datadir}/reports(/.*)?",
|
||||||
|
"${puppet_datadir}/rrd(/.*)?",
|
||||||
|
]:
|
||||||
type => $seltype_writable,
|
type => $seltype_writable,
|
||||||
before => File["/srv/puppet/reports"],
|
before => File["/srv/puppet/reports"],
|
||||||
}
|
}
|
||||||
|
|
@ -330,7 +334,11 @@ class puppet::server::common inherits puppet::client {
|
||||||
type => $seltype_readonly,
|
type => $seltype_readonly,
|
||||||
before => File["/srv/puppet"],
|
before => File["/srv/puppet"],
|
||||||
}
|
}
|
||||||
selinux::manage_fcontext { "/srv/puppet/(bucket|reports|rrd)(/.*)?":
|
selinux::manage_fcontext { [
|
||||||
|
"/srv/puppet/bucket(/.*)?",
|
||||||
|
"/srv/puppet/reports(/.*)?",
|
||||||
|
"/srv/puppet/rrd(/.*)?",
|
||||||
|
]:
|
||||||
type => $seltype_writable,
|
type => $seltype_writable,
|
||||||
before => File["/srv/puppet/reports"],
|
before => File["/srv/puppet/reports"],
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue