ansible-role-nginx/defaults/main/selinux.yml

---
# Set SELinux enforcing for NGINX (CentOS/Red Hat only) - you may need to open ports on your own
nginx_selinux: false

# Enable enforcing mode if true.  Permissive if false (audit only, no enforcing) globally (only works with nginx_selinux: true)

nginx_selinux_enforcing: true
# List of TCP ports to add to http_port_t type (80 and 443 have this type already)
# nginx_selinux_tcp_ports:
#   - 80
#   - 443

# List of UDP ports to add to http_port_t type
# nginx_selinux_udp_ports:
#   - 80
#   - 443
# Temporary directory to hold selinux modules
nginx_selinux_tempdir: /tmp
Add basic assertions (#319) 2020-09-15 21:27:06 +02:00			`---`
			`# Set SELinux enforcing for NGINX (CentOS/Red Hat only) - you may need to open ports on your own`
			`nginx_selinux: false`
Improve uninstalling NGINX capabilities (#472) 2021-12-07 02:47:13 +01:00
Add basic assertions (#319) 2020-09-15 21:27:06 +02:00			`# Enable enforcing mode if true. Permissive if false (audit only, no enforcing) globally (only works with nginx_selinux: true)`
Improve uninstalling NGINX capabilities (#472) 2021-12-07 02:47:13 +01:00
Add basic assertions (#319) 2020-09-15 21:27:06 +02:00			`nginx_selinux_enforcing: true`
			`# List of TCP ports to add to http_port_t type (80 and 443 have this type already)`
			`# nginx_selinux_tcp_ports:`
			`# - 80`
			`# - 443`
Improve uninstalling NGINX capabilities (#472) 2021-12-07 02:47:13 +01:00
Add basic assertions (#319) 2020-09-15 21:27:06 +02:00			`# List of UDP ports to add to http_port_t type`
			`# nginx_selinux_udp_ports:`
			`# - 80`
			`# - 443`
			`# Temporary directory to hold selinux modules`
			`nginx_selinux_tempdir: /tmp`