mirror of https://github.com/ansible/ansible.git
Ensure files created by authorized_key have correct selinux context
Three changes: * Add set_default_selinux_context() to module_common that sets a file's context according to the defaults in the policy * In atomic_replace(), set the default context for the file if selinux is enabled and the destination file does not exist. * In authorized_key, set the default context when creating $HOME/.ssh and $HOME/.ssh/authorized_keys. If these already exist, this won't touch them.reviewable/pr18780/r1
parent
393079d5e4
commit
d8e3a00933
Loading…
Reference in New Issue