Install and configure selinux and its required libraries on your system.
| Travis | GitHub | Quality | Downloads | Version |
|---|---|---|---|---|
 |
 |
 |
 |
 |
This example is taken from molecule/resources/converge.yml and is tested on each push, pull request and release.
---
- name: Converge
hosts: all
become: yes
gather_facts: yes
roles:
- role: robertdebock.selinux
selinux_booleans:
- name: http_can_network_connect
- name: abrt_anon_write
state: no
persistent: noThe machine needs to be prepared in CI this is done using molecule/resources/prepare.yml:
---
- name: Prepare
hosts: all
gather_facts: no
become: yes
roles:
- role: robertdebock.bootstrapAlso see a full explanation and example on how to use these roles.
These variables are set in defaults/main.yml:
---
# defaults file for selinux
# The state, either disabled, permissive or enforcing.
selinux_state: enforcing
# The policy, default: see vars/main.yml.
# The policy differs per distribution, mostly because Debian and Ubuntu use 'default' and other distributions use 'targeted'.
selinux_policy: "{{ _selinux_policy[ansible_os_family] | default(_selinux_policy['default']) }}"
# Should the machine be rebooted after changes?
selinux_reboot: yes
# You can enable (or disable) booleans by specifying them in this list.
# selinux_booleans:
# - name: http_can_network_connect
# - name: abrt_anon_write
# state: no
# persistent: no- Access to a repository containing packages, likely on the internet.
- A recent version of Ansible. (Tests run on the current, previous and next release of Ansible.)
| Requirement | Travis | GitHub |
|---|---|---|
| robertdebock.bootstrap |  |
 |
This role is a part of many compatible roles. Have a look at the documentation of these roles for further information.
Here is an overview of related roles:
This role has been tested on these container images:
| container | tags |
|---|---|
| alpine | all |
| amazon | all |
| el | 7, 8 |
| debian | buster, bullseye |
| fedora | all |
| opensuse | all |
| ubuntu | focal, bionic, xenial |
The minimum version of Ansible required is 2.9, tests have been done to:
- The previous version.
- The current version.
- The development version.
Some variarations of the build matrix do not work. These are the variations and reasons why the build won't work:
| variation | reason |
|---|---|
| Archlinux & Ansible 2.7 | New-style module did not handle its own exit |
| amazonlinux | Dependency (reboot) does not work on amazonlinux. |
Unit tests are done on every commit, pull request, release and periodically.
If you find issues, please register them in GitHub
Testing is done using Tox and Molecule:
Tox tests multiple ansible versions. Molecule tests multiple distributions.
To test using the defaults (any installed ansible version, namespace: robertdebock, image: fedora, tag: latest):
molecule test
# Or select a specific image:
image=ubuntu molecule test
# Or select a specific image and a specific tag:
image="debian" tag="stable" tox
Or you can test multiple versions of Ansible, and select images:
Tox allows multiple versions of Ansible to be tested. To run the default (namespace: robertdebock, image: fedora, tag: latest) tests:
tox
# To run CentOS (namespace: `robertdebock`, tag: `latest`)
image="centos" tox
# Or customize more:
image="debian" tag="stable" tox
Apache-2.0
Please consider sponsoring me.