Download as
Browse Code »

Commit 77730dfede7fb2c19c1fc9545059a44712272d72

Authored by Macartur Sousa
1 parent 677ccf51
Exists in master and in 65 other branches 3.x, add_you_are_here_breadcrumbs_label, api_for_colab, backup, backup_not_prod, cdtc_configuration, create_institution_bootstrap_modal, design_validation, dev-lappis, dev_env_minimal, disable_email_dev, docs, fix_edit_software_permission, fix_edit_software_with_another_license, fix_hover_button_whitening, fix_members_pagination, fix_models_translations, fix_software_api, fix_software_block_migration, fix_validations_and_tests, focus_search_field_theme, gov-user-refactoring, gov-user-refactoring-rails4, header_fix, institution_modal_on_rating, kalibro-conf-refactoring, kalibro-processor-package, lxc, margin_fix, mezuro_cookbook, organization_rating_style_changes, performance, prezento, r3, refactor_software_communities, refactor_software_for_sisp, register_page, release-process, release-process-v2, remove-unused-images, remove_backup_emails, remove_secondary_email_from_user, removing_super_archives_email, review_message, scope2method, signals_community_noosfero, sisp_colab_config, sisp_dev, sisp_dev_master, sisp_improvements, sisp_simple_version, software_as_organization, software_catalog_style_fix, software_catalog_style_fixes, spb_minimal_env, spec_refactor, stable-4.x, stable-devel, support_docs, syslog, temp_soft_comm_refactoring, thread_dropdown, thread_page, update_software_api, update_softwares_boxes

Added nginx permission to write files *.error.log 

Signed-off-by: Macartur Sousa <macartur.sc@gmail.com>
Showing 2 changed files with 23 additions and 0 deletions   Show diff stats
cookbooks/basics/files/default/nginx.te 0 → 100644
  Diff comments   View file @77730df
@@ -0,0 +1,11 @@ @@ -0,0 +1,11 @@
  1 +
  2 +module nginx_integration 1.0;
  3 +
  4 +require {
  5 + type httpd_log_t;
  6 + type httpd_t;
  7 + class file setattr;
  8 +}
  9 +
  10 +#============= httpd_t ==============
  11 +allow httpd_t httpd_log_t:file setattr;
cookbooks/basics/recipes/nginx.rb
  Diff comments   View file @77730df
@@ -4,3 +4,15 @@ service &#39;nginx&#39; do @@ -4,3 +4,15 @@ service &#39;nginx&#39; do
4 action :enable 4 action :enable
5 supports :restart => true 5 supports :restart => true
6 end 6 end
  7 +
  8 +################################
  9 +# SELinux: allow nginx to use log files
  10 +################################
  11 +cookbook_file '/etc/selinux/local/nginx.te' do
  12 + notifies :run, 'execute[selinux-nginx]'
  13 +end
  14 +
  15 +execute 'selinux-nginx' do
  16 + command 'selinux-install-module /etc/selinux/local/nginx.te'
  17 + action :nothing
  18 +end