ansible/community.general
1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2024-09-14 20:13:21 +02:00
Code Releases Activity
community.general/changelogs/fragments
History
Petr Lautrbach 4c52fdb9d9
seport: add local argument (#5203) 
Using `local: true` users can enforce to work only with local policy
modifications. i.e.

    # Without `local`, no new modification is added when port already exists
    $ sudo ansible -m seport -a 'ports=22 state=present setype=ssh_port_t proto=tcp' localhost

    localhost | SUCCESS => {
        "changed": false,
        "ports": [
            "22"
        ],
        "proto": "tcp",
        "setype": "ssh_port_t",
        "state": "present"
    }

    $ sudo semanage port -l -C

    # With `local`, a port is always added/changed in local modification list
    $ sudo ansible -m seport -a 'ports=22 state=present setype=ssh_port_t proto=tcp local=true' localhost

    localhost | CHANGED => {
        "changed": true,
        "ports": [
            "22"
        ],
        "proto": "tcp",
        "setype": "ssh_port_t",
        "state": "present"
    }

    $ sudo semanage port -l -C
    SELinux Port Type              Proto    Port Number

    ssh_port_t                     tcp      22

    # With `local`, seport removes the port only from local modifications
    $ sudo ansible -m seport -a 'ports=22 state=absent setype=ssh_port_t proto=tcp local=true' localhost

    localhost | CHANGED => {
        "changed": true,
        "ports": [
            "22"
        ],
        "proto": "tcp",
        "setype": "ssh_port_t",
        "state": "absent"
    }

    $ sudo semanage port -l -C

    # Even though the port is still defined in system policy, the module
    # result is success as there's no port local modification
    $ sudo ansible -m seport -a 'ports=22 state=absent setype=ssh_port_t proto=tcp local=true' localhost

    localhost | SUCCESS => {
        "changed": false,
        "ports": [
            "22"
        ],
        "proto": "tcp",
        "setype": "ssh_port_t",
        "state": "absent"
    }

    # But it fails without `local` as it tries to remove port defined in
    # system policy
    $ sudo ansible -m seport -a 'ports=22 state=absent setype=ssh_port_t proto=tcp' localhost

    An exception occurred during task execution. To see the full traceback, use -vvv. The error was: ValueError: Port tcp/22 is defined in policy, cannot be deleted
    localhost | FAILED! => {
        "changed": false,
        "msg": "ValueError: Port tcp/22 is defined in policy, cannot be deleted\n"
    }

Signed-off-by: Petr Lautrbach <plautrba@redhat.com>

Signed-off-by: Petr Lautrbach <plautrba@redhat.com>
2022-09-03 11:53:57 +02:00
..
.keep Rename changelogs/fragments/.empty -> changelogs/fragments/.keep 2020-08-07 08:17:57 +02:00
4520-xfconf-deprecate-disable-facts.yml [6.0.0] xfconf - deprecate parameter disable_facts (#4520) 2022-05-17 19:26:06 +02:00
4654-alternatives-add-subcommands.yml Add subcommands parameter for module alternatives. (#4654) 2022-06-06 10:33:39 +02:00
4674-use-mh-raise.yaml Multiple modules using ModuleHelper (#4674) 2022-05-23 07:19:24 +02:00
4682-compatibility-virtualmedia-resource-location.yaml Make sure all files have trailing newline (#5076) 2022-08-05 21:08:41 +02:00
4700-code-changes.yml Add RHEL 9.0, FreeBSD 13.1, Ubuntu 22.04 and Fedora 36 to CI, fix bug in filesystem module (#4700) 2022-05-22 17:20:30 +02:00
4712-consul-bugfix.yaml consul: applied bugfix from issue (#4712) 2022-05-23 07:22:15 +02:00
4719-fix-keycloak-realm.yaml Make sure all files have trailing newline (#5076) 2022-08-05 21:08:41 +02:00
4724-proxmox-qemu-extend.yaml Proxmox Inventory: added new statuses for qemu (#4723) 2022-06-04 09:15:02 +02:00
4726-zfs.yml Fix quoting bug in zfs. (#4726) 2022-05-28 21:38:30 +02:00
4733-redis-fail.yml fix invalid fail_json call (#4733) 2022-05-30 08:03:25 +02:00
4736-cmd-runner-skip-if-check.yml cmd_runner: added flag check_mode_skip to context (#4736) 2022-06-04 09:13:37 +02:00
4740-puppet-feature.yaml Add puppet confdir option (#4740) 2022-06-06 10:32:20 +02:00
4746-add-vpn-support-nmcli.yaml Make sure all files have trailing newline (#5076) 2022-08-05 21:08:41 +02:00
4752-ansible-galaxy-install-mh-updates.yml ansible_galaxy_install: minor improvements based on MH updates (#4752) 2022-06-04 09:14:17 +02:00
4755-mhexception-improvement.yml ModuleHelperException module utils - improved exception initialization (#4755) 2022-06-06 10:30:55 +02:00
4776-xfconf-cmd-runner.yaml xfconf module utils: providing a cmd_runner object (#4776) 2022-06-06 10:38:46 +02:00
4777-cmd-runner-deprecate-fmt.yaml cmd_runner: deprecate fmt as the name for the format class (#4777) 2022-06-05 18:37:59 +02:00
4778-gconftool2-deprecate-state-get.yaml gconftool2: deprecate state get (#4778) 2022-07-29 11:38:37 +02:00
4780-passwordstore-wrapper-compat.yml passwordstore: Make compatible with shims (#4780) 2022-06-15 08:08:04 +02:00
4791-cmd-runner-callable.yaml cmd_runner: add __call__ method to invoke context (#4791) 2022-06-15 08:06:26 +02:00
4794-sudoers-validation.yml Sudoers validate (#4794) 2022-06-21 12:41:24 +02:00
4809-redhat_subscription-unsubscribe.yaml redhat_subscription: call 'remove' instead of 'unsubscribe' (#4809) 2022-06-14 07:26:38 +02:00
4810-alternatives-bug.yml alternatives: Fix bug with priority default (#4810) 2022-06-13 21:40:02 +02:00
4812-expose-unredirected-headers.yml Expose unredirected_headers on maven_artifact (#4812) 2022-07-24 12:09:58 +02:00
4813-fix-nmcli-convert-list.yaml nmcli: do not convert undefined lists to empty strings (#4813) 2022-06-13 11:56:10 +02:00
4814-sudoers-file-permissions.yml Ensure managed sudoers config files have 0440 permissions (#4814) 2022-06-12 08:17:56 +02:00
4816-proxmox-fix-extended-status.yaml Added conditional to only collect qmpstatus on qemu VMs (#4816) 2022-06-11 13:46:17 +02:00
4836-alternatives.yml Fix alternatives module (#4836) 2022-06-14 16:02:31 +02:00
4839-fix-VirtualMediaInsert-Supermicro.yml redfish_command: VirtualMediaInsert does not work with Supermicro (#4839) 2022-06-20 19:13:31 +02:00
4849-add-password-prompt-support-for-machinectl.yml added password prompt support for machinectl (#4849) 2022-07-08 23:11:14 +02:00
4852-sudoers-state-absent.yml sudoers: fix handling of state: absent (#4852) (#4853) 2022-06-19 15:34:24 +02:00
4886-fix-lxd-inventory-hostname.yml fix lxd connection plugin inventory_hostname (#4912) 2022-07-07 21:49:10 +02:00
4899-add-GetManagerInventory-for-redfish_info.yml Add GetFirmwareVersion command to redfish_info (#4900) 2022-06-30 20:35:35 +02:00
4901-fix-redfish-chassispower.yml Fix GetChassisPower when multiple chassis are present (#4902) 2022-06-30 20:36:01 +02:00
4903-cmdrunner-bugfix.yaml Fix command variable usage in CmdRunner (#4903) 2022-06-30 07:08:55 +02:00
4910-fix-for-agent-enabled.yml proxmox inventory: fix for agent enabled (#4910) 2022-07-12 11:03:13 +02:00
4911-dsv-honor-tld-option.yml Make sure all files have trailing newline (#5076) 2022-08-05 21:08:41 +02:00
4916-opentelemetry-ini-options.yaml allow configuring opentelementry callback via config file (#4916) 2022-07-07 21:51:04 +02:00
4933-fix-rax-clb-nodes.yaml Fix syntax in rax_clb_nodes that breaks in Python3 (#4933) 2022-07-07 21:49:45 +02:00
4945-fix-get_vm-int-parse-handling.yaml proxmox module_utils: fix get_vm int parse handling (#4945) 2022-07-21 07:19:44 +02:00
4953-listen-ports-facts-extend-output.yaml Module listen ports facts extend output (#4953) 2022-07-31 22:12:38 +02:00
4955-fix-path-detection-for-gopass.yaml Fix changelog fragment. 2022-07-29 12:09:10 +02:00
4956-pacman-install-reason.yaml Pacman: Add support for install reason (#4956) 2022-07-31 22:10:49 +02:00
4959-pacman-fix-url-packages-name.yaml Pacman: Fix name of URL packages (#4959) 2022-07-21 13:58:03 +02:00
4964-fix-keyring-info.yml Fix keyring_info when using keyring library (#4964) 2022-07-24 12:08:12 +02:00
4973-introduce-dig-lookup-argument.yaml Introduce dig lookup argument fail_on_error (#4973) 2022-07-24 12:08:47 +02:00
4975-xfconf-use-do-raise.yaml xfconf and xfconf_info: use do_raise (#4975) 2022-07-24 12:09:24 +02:00
4976-apk-add-support-for-a-custom-world-file.yaml Apk: add support for a custom world file (#4976) 2022-07-26 11:14:17 +02:00
4996-consul-session-ttl.yml consul: add support for session TTL (#4996) 2022-07-31 13:17:43 +02:00
4999-xfconf-bool.yml xfconf: fix setting of boolean values (#5007) 2022-07-27 07:42:25 +02:00
5019-slack-support-more-groups.yml Make sure all files have trailing newline (#5076) 2022-08-05 21:08:41 +02:00
5022-lastpass-lookup-cleanup.yml Make sure all files have trailing newline (#5076) 2022-08-05 21:08:41 +02:00
5023-http-agent-param-keycloak.yml Make sure all files have trailing newline (#5076) 2022-08-05 21:08:41 +02:00
5027-fix-returnall-for-gopass.yaml Fix returnall for gopass (#5027) 2022-07-29 14:24:15 +02:00
5035-mh-base-verbosity.yaml mh base: add verbosity() property (#5035) 2022-07-31 11:28:17 +02:00
5037-xfconf-add-cmd-output.yaml xfconf: add command output to results (#5037) 2022-08-01 11:21:06 +02:00
5059-wdc_redfish_command-indicator-leds.yml WDC Redfish support for chassis indicator LED toggling. (#5059) 2022-08-07 09:56:07 +02:00
5085-pipx-use-cmd-runner.yaml pipx: use CmdRunner (#5085) 2022-08-08 08:02:56 +02:00
5100-pipx-req-if.yaml pipx: add required_if fo upgrade and reinstall (#5100) 2022-08-09 10:15:51 +02:00
5105-pipx-state-latest.yaml pipx: add state latest (#5105) 2022-08-18 06:44:18 +02:00
5107-proxmox-agent-argument.yaml Change Proxmox agent argument to string. (#5107) 2022-08-20 13:21:07 +02:00
5108-proxmox-node-name-condition.yml Fix Proxmox node, name condition. (#5108) 2022-08-12 14:03:57 +12:00
5111-fixes.yml Fix linting errors; fix some real bugs (#5111) 2022-08-12 11:07:30 +02:00
5112-fix-nsupdate-ns-entry.yaml Fix nsupdate when updating NS record (#5112) 2022-08-20 13:22:13 +02:00
5124-compatibility-virtualmedia-resource-location.yaml Update redfish module for compatibility with VirtualMedia resource location (#5124) 2022-08-24 21:36:35 +02:00
5129-dig-boolean-params-fix.yml dig: Fix evaluation of boolean parameters (#5129) 2022-08-20 14:31:15 +02:00
5151-add-delinea-support-tss-lookup.yml adding nested try block for tss.py to import new Delinea library (#5151) 2022-08-23 21:53:06 +02:00
5194-fix-proxmox-agent-exception.yaml Fix exception when agent argument is not specified. (#5194) 2022-08-28 12:03:27 +02:00
5203-seport-add-local-argument.yaml seport: add local argument (#5203) 2022-09-03 11:53:57 +02:00
licenses-2.yml Make reuse conformant (#5138) 2022-08-21 08:27:01 +02:00
licenses.yml Update copyright statements. (#5106) 2022-08-13 16:56:40 +02:00
psf-license.yml Add PSF-license.txt for plugins/module_utils/_mount.py (#4847) 2022-06-17 08:21:34 +02:00
simplified-bsd-license.yml Add simplified_bsd.txt license file (#4759) 2022-06-02 07:30:06 +02:00