freeipa

Clone
Source Code
GIT

310dbd6 SELinux Policy: ipa_pki_retrieve_key_exec_t => ipa_pki_retrieve_key_t

Authored and Committed by François Cami 3 years ago
raw patch tree parent
1 file changed. 3 lines added. 1 lines removed.
selinux/ipa.te
file modified
+3 -1 
    SELinux Policy: ipa_pki_retrieve_key_exec_t => ipa_pki_retrieve_key_t
    
    Grant pki_manage_tomcat_etc_rw to ipa_pki_retrieve_key_t instead of
    ipa_pki_retrieve_key_exec_t.
    As suggested by Ondrej Mosnáček.
    
    Fixes: https://pagure.io/freeipa/issue/8488
    Signed-off-by: François Cami <fcami@redhat.com>
    Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
    Reviewed-By: Christian Heimes <cheimes@redhat.com>
    Reviewed-By: Rob Crittenden <rcritten@redhat.com>
    Reviewed-By: Ondrej Mosnacek <omosnace@redhat.com>
    Reviewed-By: Lukas Vrabec <lvrabec@redhat.com>
    Reviewed-By: Zdenek Pytela <zpytela@redhat.com>
    Reviewed-By: Thomas Woerner <twoerner@redhat.com>
    Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
    Reviewed-By: Christian Heimes <cheimes@redhat.com>
    Reviewed-By: Rob Crittenden <rcritten@redhat.com>
    Reviewed-By: Ondrej Mosnacek <omosnace@redhat.com>
    Reviewed-By: Lukas Vrabec <lvrabec@redhat.com>
    Reviewed-By: Zdenek Pytela <zpytela@redhat.com>
    Reviewed-By: Thomas Woerner <twoerner@redhat.com>
file modified
+3 -1
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.