7e40c9ff35
- editing playbook to add backup-and-restore as group: * check-cpu.yaml * service-status.yaml * validate-selinux.yaml Depends-on: I6167f65837ba5e96243b20a3661008d1805eedd5 Change-Id: I9428a63327b6b628f9552b6c5ee7f91c8b972508
23 lines
728 B
YAML
23 lines
728 B
YAML
---
|
|
- hosts: all
|
|
vars:
|
|
metadata:
|
|
name: validate-selinux
|
|
description: >-
|
|
Ensures we don't have any SELinux denials on the system
|
|
groups:
|
|
- backup-and-restore
|
|
- pre-deployment
|
|
- post-deployment
|
|
- pre-upgrade
|
|
- post-upgrade
|
|
validate_selinux_working_dir: /tmp
|
|
validate_selinux_audit_source: /var/log/audit/audit.log
|
|
validate_selinux_skip_list_dest: "{{ validate_selinux_working_dir }}/denials-skip-list.txt"
|
|
validate_selinux_filtered_denials_dest: "{{ validate_selinux_working_dir }}/denials-filtered.log"
|
|
validate_selinux_strict: false
|
|
validate_selinux_filter: "None"
|
|
validate_selinux_skip_list: {}
|
|
roles:
|
|
- validate_selinux
|