Page MenuHomeDevCentral

D1478.id3787.diff
No OneTemporary

D1478.id3787.diff

diff --git a/roles/paas-docker/nginx/init.sls b/roles/paas-docker/nginx/init.sls
--- a/roles/paas-docker/nginx/init.sls
+++ b/roles/paas-docker/nginx/init.sls
@@ -8,3 +8,4 @@
include:
- .config
+ - .selinux
diff --git a/roles/paas-docker/nginx/selinux.sls b/roles/paas-docker/nginx/selinux.sls
new file mode 100644
--- /dev/null
+++ b/roles/paas-docker/nginx/selinux.sls
@@ -0,0 +1,22 @@
+# -------------------------------------------------------------
+# Salt — Provision Docker engine
+# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
+# Project: Nasqueron
+# Created: 2018-03-23
+# License: Trivial work, not eligible to copyright
+# -------------------------------------------------------------
+
+{% if grains['os_family'] == 'RedHat' %}
+
+# On Fedora and downstreams, SELinux restricts the capability
+# of HTTP server to connect to external servers.
+#
+# This feature allows nginx to connect to other servers,
+# and so to act as a front-end server through proxy_pass.
+
+httpd_can_network_connect:
+ selinux.boolean:
+ - value: True
+ - persist: True
+
+{% endif %}

File Metadata

Mime Type
text/plain
Expires
Tue, Nov 26, 10:47 (8 h, 26 m)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
2264501
Default Alt Text
D1478.id3787.diff (1 KB)

Event Timeline