summaryrefslogtreecommitdiffstats
path: root/selinux/ipa_dogtag/ipa_dogtag.te
diff options
context:
space:
mode:
Diffstat (limited to 'selinux/ipa_dogtag/ipa_dogtag.te')
-rw-r--r--selinux/ipa_dogtag/ipa_dogtag.te35
1 files changed, 0 insertions, 35 deletions
diff --git a/selinux/ipa_dogtag/ipa_dogtag.te b/selinux/ipa_dogtag/ipa_dogtag.te
deleted file mode 100644
index 713ea560b..000000000
--- a/selinux/ipa_dogtag/ipa_dogtag.te
+++ /dev/null
@@ -1,35 +0,0 @@
-module ipa_dogtag 2.0;
-
-require {
- type cert_t;
- type pki_tomcat_t;
- class dir write;
- class dir add_name;
- class dir remove_name;
- class dir search;
- class dir getattr;
- class file read;
- class file getattr;
- class file open;
- class file create;
- class file write;
- class file rename;
- class lnk_file create;
- class lnk_file rename;
- class lnk_file unlink;
-}
-
-# Let dogtag write to cert_t directories
-allow pki_tomcat_t cert_t:dir write;
-allow pki_tomcat_t cert_t:dir add_name;
-allow pki_tomcat_t cert_t:dir remove_name;
-
-# Let dogtag write cert_t files
-allow pki_tomcat_t cert_t:file create;
-allow pki_tomcat_t cert_t:file write;
-allow pki_tomcat_t cert_t:file rename;
-
-# Let dogtag manage cert_t symbolic links
-allow pki_tomcat_t cert_t:lnk_file create;
-allow pki_tomcat_t cert_t:lnk_file rename;
-allow pki_tomcat_t cert_t:lnk_file unlink;
generated by cgit (git 2.34.1) at 2024-05-20 15:54:10 +0000