Puppet Class: selinux
- Inherits:
- selinux::params
- Defined in:
- manifests/init.pp
Overview
Class: selinux
This class manages SELinux on RHEL based systems.
36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 |
# File 'manifests/init.pp', line 36
class selinux (
Optional[Enum['enforcing', 'permissive', 'disabled']] $mode = $::selinux::params::mode,
Optional[Enum['targeted', 'minimum', 'mls']] $type = $::selinux::params::type,
Stdlib::Absolutepath $refpolicy_makefile = $::selinux::params::refpolicy_makefile,
Boolean $manage_package = $::selinux::params::manage_package,
String $package_name = $::selinux::params::package_name,
String $refpolicy_package_name = $::selinux::params::refpolicy_package_name,
Stdlib::Absolutepath $module_build_root = $::selinux::params::module_build_root,
Enum['refpolicy', 'simple'] $default_builder = 'simple',
### START Hiera Lookups ###
$boolean = undef,
$fcontext = undef,
$module = undef,
$permissive = undef,
$port = undef,
### END Hiera Lookups ###
) inherits selinux::params {
class { '::selinux::package':
manage_package => $manage_package,
package_name => $package_name,
}
class { '::selinux::config': }
if $boolean {
create_resources ( 'selinux::boolean', hiera_hash('selinux::boolean', $boolean) )
}
if $fcontext {
create_resources ( 'selinux::fcontext', hiera_hash('selinux::fcontext', $fcontext) )
}
if $module {
create_resources ( 'selinux::module', hiera_hash('selinux::module', $module) )
}
if $permissive {
create_resources ( 'selinux::permissive', hiera_hash('selinux::permissive', $permissive) )
}
if $port {
create_resources ( 'selinux::port', hiera_hash('selinux::port', $port) )
}
# Ordering
anchor { 'selinux::start': }
-> Class['selinux::package']
-> Class['selinux::config']
-> anchor { 'selinux::module pre': }
-> anchor { 'selinux::module post': }
-> anchor { 'selinux::end': }
}
|