noobient.selinux_cil

Synopsys

This role lets you install SELinux CIL policies.

Parameters

Name	Required	Example	Description
`module`	yes	`noobient-nginx`	Module filename in your `templates` directory without the `.j2` suffix.
`custom_src`	no	`my-module-template`	Use `<custom_src>.cil.j2` as the template file instead of the default `<module>.cil.j2`. Useful when creating multiple modules from the same template file.
`semodule_dir`	no	`/opt/selinux/modules`	Use custom directory for the installed SELinux modules instead of the default `/usr/local/etc/selinux/modules`.

Examples

- include_role:
    name: noobient.selinux_cil
  vars:
    module: noobient-nginx

noobient-nginx.j2:

; Allow httpd_t to serve requests at all
(allow httpd_t http_port_t (tcp_socket (name_connect)))
; Allow httpd_t to connect to MySQL
(allow httpd_t mysqld_port_t (tcp_socket (name_connect)))
; Allow httpd_t to proxy upstream servers
(allow httpd_t http_cache_port_t (tcp_socket (name_connect)))

Return Values

N/A

Support

Platform	Support	Status
Linter	✅
AlmaLinux 8	✅
AlmaLinux 9	✅
Fedora 40	✅
Fedora 41	✅
Ubuntu 20.04	❌	N/A
Ubuntu 22.04	❌	N/A
Ubuntu 24.04	❌	N/A

Name		Name	Last commit message	Last commit date
Latest commit History 15 Commits
.githooks		.githooks
.github/workflows		.github/workflows
meta		meta
tasks		tasks
templates		templates
tests		tests
vars		vars
.ansible-lint		.ansible-lint
.gitattributes		.gitattributes
.yamllint		.yamllint
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

noobient.selinux_cil

Synopsys

Parameters

Examples

Return Values

Support

About

Releases

Packages

Languages

License

noobient/ansible-galaxy-selinux_cil

Folders and files

Latest commit

History

Repository files navigation

noobient.selinux_cil

Synopsys

Parameters

Examples

Return Values

Support

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages