From 04555cfb532050019667e6e0614a9ea933253473 Mon Sep 17 00:00:00 2001 From: Tim Flink Date: Wed, 30 Nov 2016 16:47:21 +0000 Subject: [PATCH] removing semanage bits from phabricator role --- roles/phabricator/tasks/main.yml | 31 ------------------------------- 1 file changed, 31 deletions(-) diff --git a/roles/phabricator/tasks/main.yml b/roles/phabricator/tasks/main.yml index ef5273e03a..abb56bf9eb 100644 --- a/roles/phabricator/tasks/main.yml +++ b/roles/phabricator/tasks/main.yml @@ -17,9 +17,6 @@ - libphutil - arcanist - phabricator - - libsemanage-python - - libselinux-python - - policycoreutils-python when: ansible_distribution_major_version|int < 22 - name: ensure packages required for phabricator are installed (dnf) @@ -43,15 +40,6 @@ - phabricator when: ansible_distribution_major_version|int > 21 and ansible_cmdline.ostree is not defined -- name: ensure packages required to make selinux changes for phabricator are installed - dnf: name={{ item }} state=present enablerepo={{ extra_enablerepos }} - with_items: - - libsemanage-python - - libselinux-python - - policycoreutils-python - - policycoreutils-python-utils - when: ansible_distribution_major_version|int > 21 and ansible_cmdline.ostree is not defined - - name: create mariadb user for phabricator mysql_user: name: "{{ mariadb_user }}" @@ -152,25 +140,6 @@ service: name=phabricator-sshd enabled=yes state=started when: enable_phabricator_git -- name: check to see if sshd port is already known by selinux - shell: semanage port -l | grep ssh - register: sshd_selinux_port - check_mode: no - changed_when: false - tags: - - sshd_config - - config - - sshd - - -- name: allow alternate sshd port - command: semanage port -a -t ssh_port_t -p tcp {{ sshd_port }} - when: sshd_selinux_port.stdout.find('{{ sshd_port }}') == -1 - tags: - - sshd_config - - config - - sshd - - name: generate phabricator phd service file template: src=phd.service.j2 dest=/lib/systemd/system/phd.service owner=root group=root mode=0644