ansible/community.general
1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2024-09-14 20:13:21 +02:00
Code Releases Activity
community.general/changelogs/fragments
History
bluikko c8a2ac3a47
sefcontext: add support for path substitutions (#5830) 
* sefcontext: add path substitution support (#1193)

First commit for feedback, missing docs and tests.

* sefcontext: add documentation

* Add changelog fragment

* Documentation formatting

* Delete extra newline

* pep8 fixes

Fix indentation

* Add version_added to arg docs

* Add examples

* Don't delete non-matching path substitutions

* Add integration tests

* Delete only substitutions if such arg passed

Don't delete existing regular file context mappings if deletion of
a path substitution was requested with the presence of the
`equal` arg - delete only path substitutions in such case.

Path substitutions and regular mappings may overlap.

* Can only add args in minor releases

:(

* Cleanup before tests

* Fix deletion using substitution

Was comparing wrong var.

* Fix test checking wrong var

* Improve args documentation and examples

List the default values for selevel, seuser.
Add example for deleting path substitutions only.

* Add attributes documentation block

Not sure if should add become/delegate/async,
shouldn't those work just like that without any
specific code added for them?

* and fix indentation on attribute block

* Consistent indentation for attributes

Confusing, most plugins indent with 4 spaces.
But some use 2 like the rest of the code, so use 2.

* Add missing ref for attribute block

* Use correct c.g version in doc block

Co-authored-by: Felix Fontein <felix@fontein.de>

* Add full stop to changelog fragment

Co-authored-by: Felix Fontein <felix@fontein.de>

* Streamline documentation

Co-authored-by: Alexei Znamensky <103110+russoz@users.noreply.github.com>

* Support limiting deletion to setype

Deleting file context mappings may be limited by
passing setype or equal, if neither arg is passed
then delete either setype/equal mappings that match.

* Change arg name, diff mode output fix

Change arg name from equal to substitute.
Print target = subsitute in diff mode same way as
semanage does.

Also put back platform attribute, try to improve
clumsy language in the substitute arg docs.

* Delete even if arg setype not match existing

Test 5 indicates that deletion is supposed to not check that
the arg setype passed when deleting matches the setype
of the mapping to delete.
Delete any mapping that matches target, regardless of
setype arg value.

* Update arg name in tests

* Too eager replacing

Accidentally replaced seobject function names so fix them back

* 4564: Fix invalid setype in doc example

Change from httpd_git_rw_content_t which
does not exist to httpd_sys_rw_content_t

Fixes #4564

* Fix documentation attributes

Additional fragment

Co-authored-by: Felix Fontein <felix@fontein.de>

* Update version_added in docs

Bumping minor to 6.4.0 since it didn't make 6.3.0.

* Add more description to the new arg docs

Try to improve discoverability of the new feature and make it easier to understand without deep SELinux understanding.

* Update platform to Linux in documentation

* Add equal as alias for the new argument

Improve discoverability of the new feature by adding an alias to the new module argument. The argument name "equal" will be easy to find for users who are not familiar with SELinux and who just try to match to the CLI tool `semanage`.

* And add alias argument properly

Previous commit missed actually adding the alias (added to docs only).

---------

Co-authored-by: Felix Fontein <felix@fontein.de>
Co-authored-by: Alexei Znamensky <103110+russoz@users.noreply.github.com>
2023-02-26 14:04:57 +01:00
..
.keep Rename changelogs/fragments/.empty -> changelogs/fragments/.keep 2020-08-07 08:17:57 +02:00
3910-redfish-add-operation-apply-time-to-simple-update.yml Redfish: Expanded SimpleUpdate command to allow for users to monitor the progress of an update and perform follow-up operations (#5580) 2022-11-23 07:46:39 +01:00
4276-redfish-command-updates-for-full-simple-update-workflow.yml Redfish: Expanded SimpleUpdate command to allow for users to monitor the progress of an update and perform follow-up operations (#5580) 2022-11-23 07:46:39 +01:00
5431-nmcli-wifi.yml nmcli: two fixes needed to make wifi.wake-on-wlan settings work properly (#5431) 2023-02-24 09:10:41 +01:00
5486-snap-alias-cmd-runner.yml snap_alias: using CmdRunner (#5486) 2023-01-08 21:37:29 +01:00
5489-nonetype-in-get-vm-by-label.yml one_vm: fix for 'NoneType' object has no attribute 'split' in get_vm_labels_and_attributes_dict (#5489) 2022-11-08 23:00:05 +01:00
5490-adding-put-functionality.yml Adding PUT functionality to redfish_utils (Updated) (#5507) 2022-12-05 18:31:50 +01:00
5493-proxmox.yml Add changelog fragment. 2022-11-13 21:06:11 +01:00
5502-xfconf-facts-deprecation.yml xfconf: prune deprecated facts-generation code (#5502) 2022-11-10 21:18:52 +01:00
5506-onepassword_raw-missing-param.yml onepassword_raw - Add missing parameter to doc string (#5511) 2022-11-09 07:28:49 +01:00
5514-fix-logical-flaw-when-deleting-jenkins-build.yml Fix a logical flaw when deleting a build in the jenkins_build module (#5514) 2022-11-10 21:18:01 +01:00
5538-cmd-runner-as-fixed.yml cmd_runner module utils: fix case for as_fixed() format (#5538) 2022-11-16 06:44:40 +01:00
5543-dependent-template.yml dependent lookup: prevent deprecation warning with ansible-core 2.14 (#5543) 2022-11-15 08:12:09 +01:00
5545-gconftool-cmd-runner.yml gconftool2: refactored to use ModuleHelper + CmdRunner (#5545) 2022-11-15 21:02:45 +01:00
5549-lxd-project-sanity.yml lxd_project: refactored os.path.expanduser() to module utils (#5549) 2022-11-15 21:04:29 +01:00
5550-java_certs-not-enough-info-on-error.yml java_certs : Not enough info on error (#5550) 2022-11-28 22:44:24 +01:00
5553-spotinst-aws-elasticgroup-sanity.yml spotinst_aws_elasticgroup: sanity checks (#5553) 2022-11-15 22:37:48 +01:00
5557-udm-share-sanity.yml udm_share: fix sanity checks (#5557) 2022-11-26 18:41:45 +01:00
5559-udm-user-sanity.yml udm_user: sanity (#5559) 2022-11-23 18:43:58 +01:00
5563-rax-scaling-group-sanity.yml rax_scaling_group: fix sanity check (#5563) 2022-11-16 21:58:55 +01:00
5565-jenkins-plugin-sanity.yml jenkins_plugin: fix sanity checks (#5565) 2022-11-17 06:55:46 +01:00
5566-additional-flags-nmap.yml Add additional flags to nmap.py (#5566) 2022-11-17 06:56:21 +01:00
5570-chroot-plugin-fix-default-inventory_hostname.yml chroot plugin fix inventory_hostname var for remote_addr (#5570) 2022-11-17 06:53:46 +01:00
5583-redhat_subscription-subscribe-parameters.yaml redhat_subscription: drop unneeded args to Rhsm.register() (#5583) 2022-11-29 13:07:08 +01:00
5592-redirect-remove-sap-modules.yml Redirect and Remove sap modules (#5592) 2022-11-27 13:59:29 +01:00
5601-unixy-callback-use-config-manager.yml unixy Callback: Use Ansible's config manager (#5601) 2022-11-28 21:51:23 +00:00
5602-proxmox-tags.yml Updated tags delimiter (#5602) 2022-12-04 12:42:46 +01:00
5605-ssh-config-add-host-key-algorithms.yaml feat(ssh_config): host_key_algorithms option (#5605) 2022-12-04 12:57:54 +01:00
5612-puppet-cmd-runner.yml puppet: refactored to use CmdRunner (#5612) 2022-12-14 21:30:03 +01:00
5615-zypper-transactional-update.yml Added support for openSUSE MicroOS (#5998) 2023-02-25 10:58:04 +01:00
5619-keycloak-improvements.yml Fix keycloak_client_rolemapping role removal and diff (#5619) 2022-12-05 06:23:00 +01:00
5627-redhat_subscription-subscribe-parameters-2.yaml redhat_subscription: don't discard vars with key (#5627) 2022-11-30 22:15:55 +01:00
5628-fix-vmadm-off-by-one.yml Fix for vmadm get_vm_uuid out of range (#5628) 2022-11-30 22:41:35 +01:00
5629-add-prepend-hash-option-for-channel-id.yml Remove automatically adding # symbol to channel names (#5629) 2022-12-01 22:17:09 +01:00
5632-vdo-Use-yaml-safe-load-instead-of-yaml-load.yml vdo: Use yaml.safe_load() instead of yaml.load() (#5632) 2022-11-30 22:48:32 +01:00
5640-fix-typo-proxmox-inventory.yml fix typo disable_looups in inventory/proxmox (#5640) 2022-12-02 06:43:22 +01:00
5647-cmd-runner-as-bool-false.yml cmd_runner: allow bool format to pass alternate (false) value (#5647) 2022-12-04 12:18:33 +01:00
5659-fix-lxc_container-command.yml lxc_container: fix lxc argument when executing lxc command (#5659) 2022-12-17 12:10:23 +01:00
5662-redhat_subscription-server_proxy_scheme.yaml redhat_subscription: add server_proxy_scheme parameter (#5662) 2022-12-08 22:40:37 +01:00
5666-gitlab-variables.yml respect new variable property in gitlab_group_variable and gitlab_project_variable (#5667) 2022-12-10 21:40:36 +01:00
5672-proxmox.yml Bugfix: Remove redundant VMID parameters (#5672) 2022-12-19 20:22:23 +01:00
5680-ansible_galaxy_install-fx-locale.yaml ansible_galaxy_install: use locale C tentatively, else en_US (#5680) 2022-12-22 06:45:07 +01:00
5688-opkg-module-install-certain-version.yml opkg module: allow installing a package in a certain version (#5688) 2022-12-22 19:31:33 +01:00
5694-add-custom-fields-to-bitwarden.yml Add Support to Bitwarden Lookup for Custom Fields (#5694) 2023-01-07 10:28:05 +01:00
5703-sudoers-host-support.yml Add support for host restriction in sudoers module (#5703) 2022-12-20 12:49:11 +01:00
5705-opkg-fix-force-reinstall.yml opkg: fix issue that force=reinstall would not reinstall an existing package (#5705) 2022-12-19 20:23:44 +01:00
5706-add-builds-forks-container-registry.yml Fixes #5691. Support gitlab forking_access_level, builds_access_level and container_registry_access_level fields (#5706) 2023-01-12 21:06:52 +01:00
5714-proxmox-lxc-tag-support.yml feat: add tags to proxmox containers (#5714) 2022-12-30 22:09:00 +01:00
5718-opkg-refactor.yaml opkg: refactor module to use StateModuleHelper and CmdRunner (#5718) 2023-01-12 20:42:38 +01:00
5719-xfconf-facts-deprecation.yml xfconf: prune deprecated facts-generating code (more of it) (#5719) 2022-12-22 06:54:02 +01:00
5720-ssh_config-plugin-sanity.yml ssh_config: fixed sanity (#5720) 2022-12-22 21:34:21 +01:00
5721-manageiq-policies-deprecate-list-state.yaml manageiq_policies: deprecate list state (#5721) 2022-12-22 06:57:23 +01:00
5725-redhat_subscription-add-red-hat-api-token.yml redhat_subscription: Add support for Red Hat API token (#5725) 2023-01-05 21:36:07 +01:00
5727-manageiq-tags-deprecate-list-state.yaml manageiq_tags: deprecate list state (#5727) 2022-12-23 07:13:56 +01:00
5732-bugfix-keycloak-userfed-idempotency.yml Bugfix/keycloak userfed idempotency (#5732) 2023-01-22 17:27:57 +01:00
5735-terraform-init-fix-when-default-workspace-doesnt-exists.yaml terraform: bugfix: init command when default workspace doesn't exists (#5735) 2023-01-07 10:24:32 +01:00
5744-unixy-callback-fix-config-manager-typo.yml unixy Callback: Fix typo using ansibles config manager (#5744) 2022-12-30 22:35:03 +01:00
5750-bugfixing-keycloak-usrfed-fail-when-update-default-mapper-simultaneously.yml bugfixing keycloak user federation failing when updating default mapper simultaneously (#5750) 2023-01-22 17:28:33 +01:00
5751-gem-fix-uninstall-hang.yml Fix gem.py, hang on uninstall specific gem version (#5751) 2023-01-07 10:31:50 +01:00
5752-rax-deprecation.yml rax modules: deprecation (#5752) 2023-01-14 18:39:05 +01:00
5755-mh-fix-output-conflict.yml ModuleHelper - fix bug when adjusting conflicting output (#5755) 2023-01-04 11:59:06 +01:00
5761-callback-types.yml Fix callback plugin types (#5761) 2023-01-04 22:06:57 +01:00
5765-mh-lax-output-conflict.yml ModuleHelper - lax handling of conflicting output (#5765) 2023-01-07 10:21:13 +01:00
5772-consul-deprecate-params-when-absent.yml consul: deprecate params incompatible with state=absent (#5772) 2023-01-13 20:47:56 +01:00
5773-snap-mh-execute.yml snap: use MH execute() static method (#5773) 2023-01-07 10:20:19 +01:00
5793-apache2-module-npm-warnings.yml apache2_module generates false/misleading warning (#5793) 2023-01-14 18:37:33 +01:00
5794-alternatives-fedora37.yml alternatives: make work with Fedora 37 (#5794) 2023-01-07 16:44:27 +01:00
5803-proxmox-read-timeout.yml Bugfix: proxmox_disk - read time out on import (#5803) 2023-01-23 22:49:50 +01:00
5804-minor-changes-to-hpe-ilo-collection.yml Minor changes to HPE iLO collection (#5804) 2023-01-18 07:59:13 +01:00
5808-xml-children-parameter-does-not-exist.yml xml children module parameter does not exist (#5808) 2023-01-14 18:22:00 +01:00
5811-clarify-bitwarden-error.yml Fix changelog fragment types. 2023-01-31 07:15:12 +01:00
5812-implement-updateconf-api-call.yml OpenNebula/one_vm implement the one.vm.updateconf API call (#5812) 2023-01-28 11:29:00 +01:00
5814-support-keycloak-subgroups.yml keycloak_group: support keycloak subgroups (#5814) 2023-02-25 11:12:35 +01:00
5818-nsupdate-fix-zone-lookup.yml nsupdate: fix zone lookup (#5818) 2023-01-17 21:03:38 +01:00
5822-gem-uninstall-force.yml Gem: Support force flag when uninstalling (#5822) 2023-01-24 19:43:28 +01:00
5829-fix-yarn-global.yml yarn: Fix state=latest not working with global=true (#5829) 2023-02-13 21:54:56 +01:00
5830-sefcontext-path-subs.yml sefcontext: add support for path substitutions (#5830) 2023-02-26 14:04:57 +01:00
5843-terraform-validate-no-color.yml Add -no-color argument to terraform validation (#5843) 2023-01-16 22:54:07 +01:00
5844-iptables-state-refactor.yml iptables_state: minor pythonisms (#5844) 2023-01-18 08:05:31 +01:00
5851-lookup-bitwarden-add-filter-by-collection-id-parameter.yml Add support to Bitwarden Lookup for filtering results by collection (#5849) (#5851) 2023-01-28 11:28:18 +01:00
5863-providerType-defaulted-keycloak_userfed-mappers.yml providerType should be defaulted for keycloak_user_federation mappers (#5863) 2023-02-25 10:59:18 +01:00
5866-lxd_container-diff-and-check-mode.yml lxd_container: add check- and diff-mode support (#5866) 2023-02-22 14:41:46 +01:00
5883-sudoers-add-support-for-setenv-parameter.yml Add support for setenv parameters (#5883) 2023-01-30 06:30:54 +01:00
5886-redfish-correct-basic-auth-usage-on-session-creation.yml Redfish: Removed basic auth header when performing a GET on the service root and POST to the session collection (#5903) 2023-01-30 21:05:22 +01:00
5888-update-key-title.yml Fix changelog fragment types. 2023-01-31 07:15:12 +01:00
5897-ipa_group-add-external-users.yml add external user support to ipa_group module (#5897) 2023-01-29 15:18:40 +01:00
5899-adding-enablesecureboot-functionality-to-redfish-config.yml Adding EnableSecureBoot functionality (#5899) 2023-02-17 13:24:35 +01:00
5900-adding-verifybiosattribute-fucntionality-to-redfish-command.yml Adding VerifyBiosAttributes functionality (#5900) 2023-02-17 07:49:54 +01:00
5907-fix-gitlab_runner-not-idempotent.yml Fixes #5907: gitlab_runner is not idempotent on first run after runner creation (#5908) 2023-01-30 21:03:13 +01:00
5913-dig-caa.yml dig lookup: support CAA record type (#5913) 2023-01-29 18:19:14 +01:00
5914-dig-dnskey.yml dig lookup: fix DNSKEY's algorithm handling (#5914) 2023-01-29 18:18:27 +01:00
5915-suppress-urllib3-insecure-request-warnings.yml Suppress urllib3 InsecureRequestWarnings when validate_certs option is false (#5931) 2023-02-13 21:36:09 +01:00
5925-align_gitlab_runner_access_level_default_with_gitlab.yml Align 'gitlab_runner' with GitLab's default access level. (#5930) 2023-02-10 13:54:24 +01:00
5926-flatpak-remote-enabled.yml Add enabled parameter to flatpak_remote (#5926) 2023-02-25 22:40:17 +01:00
5927-set-user-agent-dnsimple.yml Set User-Agent for API requests to DNSimple (#5927) 2023-02-17 07:48:46 +01:00
5928-fix-favicon-url.yml Replace missing default favicon with docs.ansible.com favicon (#5928) 2023-02-03 11:02:14 +01:00
5933-linting.yml Fix pylint errors (#5933) 2023-02-04 17:05:08 +01:00
5934-fix-keycloak-sanitize_cr.yml Fix keycloak sanitize_cr (#5934) 2023-02-22 15:14:33 +01:00
5942-onepassword-ignore-errors-from-op-account-get.yml onepassword: ignore errors from "op account get" (#5942) 2023-02-22 15:23:50 +01:00
5943-zfs_delegate_admin-fix-zfs-allow-cannot-parse-unknown-uid-gid.yml zfs_delegate_admin: fix: zfs allow cannot parse unknown uid/gid (#5943) 2023-02-25 11:02:28 +01:00
5972-cloudflare-dns-srv-record.yml cloudflare_dns: Fix setting SRV records with a root level entry (#5972) 2023-02-26 14:03:30 +01:00
5994-github-webhook-secret.yml github_webhook: Don't include secret in the config if it's absent (#5994) 2023-02-25 11:03:13 +01:00
6011-osx-defaults-errors.yml community.general.osx_defaults: Include stderr in error messages (#6011) 2023-02-25 11:00:07 +01:00
6034-lxd-tls.yml lxd plugins and modules: fix TLS/SSL context creation (#6034) 2023-02-25 11:01:32 +01:00
6043-jc_plugin_parser_support.yml JC: Add plugin parser functionality to JC Filter Plugin (#6043) 2023-02-23 16:54:38 +01:00
6048-nmcli-addres-order.yml nmcli: Treat order as significant when comparing address lists (#6048) 2023-02-25 11:00:43 +01:00
6074-loader_in_listify.yml.yml stop passing loader/dataloader since it has been deprecated by ansible (#6074) 2023-02-25 15:29:27 +01:00
remove-unneeded-imports.yml Remove unneccessary imports (#5940) 2023-02-12 19:48:39 +01:00