From 2059c5f6579f18a6c1f68913f6e13ec4ffb8beb1 Mon Sep 17 00:00:00 2001 From: Stephen Fromm Date: Wed, 2 May 2012 12:03:56 -0700 Subject: [PATCH] Update file documentation for se* options Describes how you can use '_default' to seuser, serole, setype, and selevel to use the default context from the policy, if available. --- rst/modules.rst | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/rst/modules.rst b/rst/modules.rst index 22483c0129e..6ed357237dd 100644 --- a/rst/modules.rst +++ b/rst/modules.rst @@ -207,19 +207,19 @@ All parameters available to the file module are also available when running the *seuser*: -* 'user' part of SELinux file context. Will default to what is provided by system policy, if available. Only used on systems with SELinux present. +* 'user' part of SELinux file context. Will default to what is provided by system policy, if available. Only used on systems with SELinux present. If you specify '_default', it will use the 'user' portion of default context from the policy if available. *serole*: -* 'role' part of SELinux file context. Will default to what is provided by system policy, if available. Only used on systems with SELinux present. +* 'role' part of SELinux file context. Will default to what is provided by system policy, if available. Only used on systems with SELinux present. If you specify '_default', it will use the 'role' portion of default context from the policy if available. *setype*: -* 'type' part of SELinux file context. Will default to what is provided by system policy, if available. Only used on systems with SELinux present. +* 'type' part of SELinux file context. Will default to what is provided by system policy, if available. Only used on systems with SELinux present. If you specify '_default', it will use the 'type' portion of default context from the policy if available. *selevel*: -* 'level' part of SELinux file context. This is the MLS and MCS attribute of the file context. It defaults to 's0'. Only used only used on hosts with SELinux present. +* 'level' part of SELinux file context. This is the MLS and MCS attribute of the file context, also sometimes known as the 'range'. It defaults to 's0'. Only used only used on hosts with SELinux present. If you specify '_default', it will use the 'level' portion of default context from the policy if available. Example action from Ansible :doc:`playbooks`::