From b29b23f3e9306f3fa2d3af3479bcf317e27e3985 Mon Sep 17 00:00:00 2001 From: Seddik Alaoui Ismaili Date: Sat, 21 Sep 2024 16:37:42 +0200 Subject: [PATCH] selinux allow rabbitmq logs in logrotate --- roles/rabbitmq_cluster/tasks/main.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/roles/rabbitmq_cluster/tasks/main.yml b/roles/rabbitmq_cluster/tasks/main.yml index 383c73286e..4852cb19fc 100644 --- a/roles/rabbitmq_cluster/tasks/main.yml +++ b/roles/rabbitmq_cluster/tasks/main.yml @@ -476,6 +476,13 @@ command: /etc/nagios/selinux-load.sh when: selinux_module is changed +- name: /var/log/rabbitmq selinux file context + command: semanage fcontext -a -t var_log_t "/var/log/rabbitmq(/.*)?" + register: semanage_rabbit + changed_when: "'already defined' not in semanage_rabbit.stdout" + tags: + - selinux_module + # Individual applications accounts & queues - import_tasks: apps.yml tags: