postgresql: Fixed SELinux contexts from server data directory.
This commit is contained in:
parent
8334e3d2b9
commit
6d29f08950
1 changed files with 11 additions and 0 deletions
|
|
@ -50,6 +50,7 @@ class postgresql::server($datadir="/srv/pgsql") {
|
||||||
mode => "0700",
|
mode => "0700",
|
||||||
owner => "postgres",
|
owner => "postgres",
|
||||||
group => "postgres",
|
group => "postgres",
|
||||||
|
seltype => "postgresql_db_t",
|
||||||
require => Package["postgresql"],
|
require => Package["postgresql"],
|
||||||
}
|
}
|
||||||
file { "/srv/pgsql":
|
file { "/srv/pgsql":
|
||||||
|
|
@ -57,17 +58,27 @@ class postgresql::server($datadir="/srv/pgsql") {
|
||||||
target => $datadir,
|
target => $datadir,
|
||||||
owner => "root",
|
owner => "root",
|
||||||
group => "root",
|
group => "root",
|
||||||
|
seltype => "postgresql_db_t",
|
||||||
require => File[$datadir],
|
require => File[$datadir],
|
||||||
}
|
}
|
||||||
|
selinux::manage_fcontext { "${datadir}(/.*)?":
|
||||||
|
type => "postgresql_db_t",
|
||||||
|
before => File[$datadir],
|
||||||
|
}
|
||||||
} else {
|
} else {
|
||||||
file { "/srv/pgsql":
|
file { "/srv/pgsql":
|
||||||
ensure => directory,
|
ensure => directory,
|
||||||
mode => "0700",
|
mode => "0700",
|
||||||
owner => "postgres",
|
owner => "postgres",
|
||||||
group => "postgres",
|
group => "postgres",
|
||||||
|
seltype => "postgresql_db_t",
|
||||||
require => Package["postgresql"],
|
require => Package["postgresql"],
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
selinux::manage_fcontext { "/srv/pgsql(/.*)?":
|
||||||
|
type => "postgresql_db_t",
|
||||||
|
before => File["/srv/pgsql"],
|
||||||
|
}
|
||||||
|
|
||||||
package { "postgresql-server":
|
package { "postgresql-server":
|
||||||
ensure => installed,
|
ensure => installed,
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue