Manage AppArmor on web-proxie's #27
@ -209,3 +209,10 @@ firewalld:
|
||||
services:
|
||||
- http
|
||||
- https
|
||||
|
||||
profile:
|
||||
apparmor:
|
||||
local:
|
||||
usr.sbin.nginx:
|
||||
- '{{ trustcrt }} r,'
|
||||
- '/srv/www/{libsso.net,sso.casa,sso.syscid.com}/{index.html,stuff/tacit-css-1.5.2.min.css} r,'
|
||||
|
9
salt/profile/apparmor/local.sls
Normal file
9
salt/profile/apparmor/local.sls
Normal file
@ -0,0 +1,9 @@
|
||||
{%- set aapillar = salt['pillar.get']('profile:apparmor') %}
|
||||
|
||||
{%- if 'local' in aapillar %}
|
||||
{%- for profile, lines in aapillar['local'].items() %}
|
||||
/etc/apparmor.d/local/{{ profile }}:
|
||||
file.managed:
|
||||
- contents: {{ lines }}
|
||||
{%- endfor %}
|
||||
{%- endif %}
|
@ -1,5 +1,6 @@
|
||||
include:
|
||||
- nginx.pkg
|
||||
- profile.apparmor.local
|
||||
- nginx.config
|
||||
- nginx.snippets
|
||||
- nginx.servers
|
||||
|
Loading…
Reference in New Issue
Block a user