23 lines
552 B
Puppet
23 lines
552 B
Puppet
# profiles::selinux::nginx
|
|
# selinux settings for nginx
|
|
class profiles::selinux::nginx (
|
|
Boolean $persistent = true,
|
|
Boolean $httpd_can_network_connect = true,
|
|
String $selinux_mode = 'enforcing',
|
|
){
|
|
# include packages that are required
|
|
include profiles::packages::selinux
|
|
|
|
# setenforce
|
|
class { 'profiles::selinux::setenforce':
|
|
mode => $selinux_mode,
|
|
}
|
|
|
|
# make sure we can connect to network resources
|
|
selboolean { 'httpd_can_network_connect':
|
|
persistent => $persistent,
|
|
value => $httpd_can_network_connect,
|
|
}
|
|
}
|
|
|