summaryrefslogtreecommitdiffstats
path: root/pam_selinux_roles/pam_selinux_roles_example_policy.xml
diff options
context:
space:
mode:
Diffstat (limited to 'pam_selinux_roles/pam_selinux_roles_example_policy.xml')
-rw-r--r--pam_selinux_roles/pam_selinux_roles_example_policy.xml54
1 files changed, 54 insertions, 0 deletions
diff --git a/pam_selinux_roles/pam_selinux_roles_example_policy.xml b/pam_selinux_roles/pam_selinux_roles_example_policy.xml
new file mode 100644
index 0000000..a2b341d
--- /dev/null
+++ b/pam_selinux_roles/pam_selinux_roles_example_policy.xml
@@ -0,0 +1,54 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<ipa xmlns="http://freeipa.org/xml/rng/pam_selinux_roles/1.0">
+ <metadata>
+ <name>simple selinux_roles example</name>
+ <author>sbose@redhat.com</author>
+ <version>0.7071</version>
+ <RNGfile>pam_selinux_roles.rng</RNGfile>
+ <XSLTfile>pam_selinux_roles.xslt</XSLTfile>
+ <app>pam_selinux_roles</app>
+ </metadata>
+
+ <iparole>
+ <role>
+ <name>guest</name>
+ <default_context>
+ <selinux_user>guest_u</selinux_user>
+ <mls>S0</mls>
+ </default_context>
+ </role>
+
+ <role>
+ <name>user</name>
+ <default_context>
+ <selinux_user>guest_u</selinux_user>
+ <mls>S0</mls>
+ </default_context>
+ <context>
+ <service>ssh</service>
+ <service>console</service>
+ <selinux_user>user_u</selinux_user>
+ <mls>S0</mls>
+ </context>
+ </role>
+
+ <role>
+ <name>admin</name>
+ <default_context>
+ <selinux_user>guest_u</selinux_user>
+ <mls>S0</mls>
+ </default_context>
+ <context>
+ <service>ssh</service>
+ <selinux_user>staff_u</selinux_user>
+ <mls>S0</mls>
+ </context>
+ <context>
+ <service>console</service>
+ <selinux_user>staff_u</selinux_user>
+ <mls>S0-S15</mls>
+ </context>
+ </role>
+ </iparole>
+
+</ipa>
generated by cgit (git 2.34.1) at 2024-05-19 11:02:15 +0000