Move nuancier+fedmsg semanage port stuff over to the base fedmsg module.

roles/fedmsg_base/tasks/main.yml

@@ -85,3 +85,13 @@
 - name: install our custom selinux module
   command: semodule -i /usr/local/share/fedmsg/fedmsg.pp
   when: selinux_module|changed
+
+# Also, label the ports that we commonly use for fedmsg under mod_wsgi
+# to be http_port_t so selinux lets apache bind there.
+- name: check semanage ports
+  command: semanage port -l
+  register: semanageoutput
+
+- name: set ports so httpd can bind to fedmsg endpoints
+  command: semanage port -a -t http_port_t -p tcp 3000-3100
+  when: semanageoutput.stdout.find("3000-3100") == -1

roles/nuancier/tasks/main.yml

@@ -68,14 +68,6 @@
                     state=true
                     persistent=true
 
-- name: check semanage ports
-  command: semanage port -l
-  register: semanageoutput
-
-- name: set ports so httpd can talk to fedmsg endpoints
-  command: semanage port -a -t http_port_t -p tcp 3001-3100
-  when: semanageoutput.stdout.find("3001-3100") == -1
-
 - name: apply selinux type to static files
   file: >
     dest=/usr/lib/python2.6/site-packages/nuancier/static/