postgresql: Fixed SELinux contexts from server data directory.

2013-05-12 11:37:31 +03:00 · 2013-05-12 11:37:31 +03:00 · 6d29f08950
commit 6d29f08950
parent 8334e3d2b9
1 changed files with 11 additions and 0 deletions
--- a/postgresql/manifests/init.pp
+++ b/postgresql/manifests/init.pp
@ -50,6 +50,7 @@ class postgresql::server($datadir="/srv/pgsql") {
            mode    => "0700",
            owner   => "postgres",
            group   => "postgres",
+            seltype => "postgresql_db_t",
            require => Package["postgresql"],
        }
        file { "/srv/pgsql":
@ -57,17 +58,27 @@ class postgresql::server($datadir="/srv/pgsql") {
            target  => $datadir,
            owner   => "root",
            group   => "root",
+            seltype => "postgresql_db_t",
            require => File[$datadir],
        }
+        selinux::manage_fcontext { "${datadir}(/.*)?":
+            type   => "postgresql_db_t",
+            before => File[$datadir],
+        }
    } else {
        file { "/srv/pgsql":
            ensure  => directory,
            mode    => "0700",
            owner   => "postgres",
            group   => "postgres",
+            seltype => "postgresql_db_t",
            require => Package["postgresql"],
        }
    }
+    selinux::manage_fcontext { "/srv/pgsql(/.*)?":
+        type   => "postgresql_db_t",
+        before => File["/srv/pgsql"],
+    }

    package { "postgresql-server":
        ensure => installed,