diff --git a/roles/cgit/make_pkgs_list/files/make-people-git.sh b/roles/cgit/make_pkgs_list/files/make-people-git.sh
index 45cca22013..f0e31579d4 100755
--- a/roles/cgit/make_pkgs_list/files/make-people-git.sh
+++ b/roles/cgit/make_pkgs_list/files/make-people-git.sh
@@ -15,3 +15,4 @@ for homedir in /home/fedora/* ; do
 done
 
 cp -f $outfile  $finalfile
+chmod 644 $finalfile
diff --git a/roles/people/files/people.conf b/roles/people/files/people.conf
index e6426f10d2..05988b868d 100644
--- a/roles/people/files/people.conf
+++ b/roles/people/files/people.conf
@@ -54,6 +54,10 @@ NameVirtualHost [2610:28:3090:3001:5054:ff:feff:683f]:443
     Require all granted
   </Directory>
 
+  <Directory /usr/share/cgit>
+    Require all granted
+  </Directory>
+
   UserDir public_html
   <Directory /home/fedora/*/public_html>
     AllowOverride FileInfo AuthConfig Limit Indexes
diff --git a/roles/people/tasks/main.yml b/roles/people/tasks/main.yml
index 8d3167573a..9d08bbf5a2 100644
--- a/roles/people/tasks/main.yml
+++ b/roles/people/tasks/main.yml
@@ -41,6 +41,22 @@
   tags:
   - people
 
+- name: check the selinux context of the users home git dirs
+  command: matchpathcon "/home/fedora/(/.*)/public_git(/.*)?"
+  register: gitcontext
+  always_run: yes
+  changed_when: false
+  tags:
+  - config
+  - selinux
+
+- name: set the SELinux policy for the users home git dirs
+  command: semanage fcontext -a -t git_user_content_t "/home/fedora/(/.*)/public_git(/.*)?"
+  when: distgitcontext.stdout.find('git_user_content_t') == -1
+  tags:
+  - config
+  - selinux
+
 #
 # This sets the default, it's safe to always run. 
 # Default quota for users is 2gb