- ci: bump codecov/codecov-action from 4 to 5 (#255)
- ci: Use Fedora 41, drop Fedora 39 (#256)
- ci: Use Fedora 41, drop Fedora 39 - part two (#257)
- ci: Add tft plan and workflow (#243)
- ci: Update fmf plan to add a separate job to prepare managed nodes (#245)
- ci: bump sclorg/testing-farm-as-github-action from 2 to 3 (#246)
- ci: Add workflow for ci_test bad, use remote fmf plan (#247)
- ci: Fix missing slash in ARTIFACTS_URL (#248)
- ci: Add tags to TF workflow, allow more [citest bad] formats (#249)
- ci: ansible-test action now requires ansible-core version (#250)
- ci: add YAML header to github action workflow files (#251)
- refactor: Use vars/RedHat_N.yml symlink for CentOS, Rocky, Alma wherever possible (#253)
- feat: add support for transactional update (#241)
- fix: add support for EL10 (#239)
- ci: ansible-lint action now requires absolute directory (#238)
- ci: use tox-lsr 3.3.0 which uses ansible-test 2.17 (#233)
- ci: tox-lsr 3.4.0 - fix py27 tests; move other checks to py310 (#235)
- ci: Add supported_ansible_also to .ansible-lint (#236)
- ci: bump ansible/ansible-lint from 6 to 24 (#230)
- ci: bump mathieudutour/github-tag-action from 6.1 to 6.2 (#231)
- ci: bump codecov/codecov-action from 3 to 4 (#226)
- ci: fix python unit test - copy pytest config to tests/unit (#227)
- test: Add python_version to test facts gather ansible_python_version (#228)
- ci: bump actions/setup-python from 4 to 5 (#221)
- ci: bump github/codeql-action from 2 to 3 (#222)
- ci: support ansible-lint and ansible-test 2.16 (#223)
- ci: Use supported ansible-lint action; run ansible-lint against the collection (#224)
- fix: no longer use "item" as a loop variable (#217)
- fix: Print an error message when module to be created doesn't exist (#218)
- ci: bump actions/github-script from 6 to 7 (#214)
- refactor: get_ostree_data.sh use env shebang - remove from .sanity* (#215)
- docs: Update docs to use yaml style when defining vars (#219)
- fix: fix ansible-lint issues (#210)
- docs: Add example playbook and "readme" for confined users (#184)
- test: skip tests_modifications_with_selinux_disabled on EL6 (#211)
- refactor: improve support for ostree systems (#212)
- feat: support for ostree systems (#206)
- fix: Use
ignore_selinux_state
module option (#194)
- Bump actions/checkout from 3 to 4 (#197)
- test: Add modifications in SELinux disabled mode (#201)
- ci: ensure dependabot git commit message conforms to commitlint (#202)
- ci: use dump_packages.py callback to get packages used by role (#204)
- ci: tox-lsr version 3.1.1 (#207)
- fix: make role work again on Suse - not officially supported (#195)
- refactor: use primary package names instead of aliases (#192)
-
ci: Add markdownlint, test_converting_readme, and build_docs workflows (#182)
- markdownlint runs against README.md to avoid any issues with converting it to HTML
- test_converting_readme converts README.md > HTML and uploads this test artifact to ensure that conversion works fine
- build_docs converts README.md > HTML and pushes the result to the docs branch to publish dosc to GitHub pages site.
- Fix markdown issues in README.md
Signed-off-by: Sergei Petrosian [email protected]
-
docs: Fix highlighting for code blocks to look nice (#183)
For given code blocks yaml looks nicer, json marks some parts as errors.
-
docs: Make badges consistent, run markdownlint on all .md files (#185)
- Consistently generate badges for GH workflows in README RHELPLAN-146921
- Run markdownlint on all .md files
- Add custom-woke-action if not used already
- Rename woke action to Woke for a pretty badge
Signed-off-by: Sergei Petrosian [email protected]
-
ci: Remove badges from README.md prior to converting to HTML (#186)
- Remove thematic break after badges
- Remove badges from README.md prior to converting to HTML
Signed-off-by: Sergei Petrosian [email protected]
- fix: facts being gathered unnecessarily (#180)
- ci: Add pull request template and run commitlint on PR title only (#175)
- ci: Rename commitlint to PR title Lint, echo PR titles from env var (#176)
- ci: fix python 2.7 CI tests by manually installing python2.7 package (#177)
- ci: ansible-lint - ignore var-naming[no-role-prefix] (#178)
- refactor: ansible-lint - vars cannot be reserved names (#179)
- feat: Use
restorecon -T 0
on Fedora and RHEL > 8
- docs: Consistent contributing.md for all roles - allow role specific contributing.md section
- docs: add Collection requirements section to README
- test: Add basic selinux_restore_dirs test
- test: ensure the test works with ANSIBLE_GATHERING=explicit
- ci: Add commitlint GitHub action to ensure conventional commits with feedback
- ansible-lint - use changed_when for conditional tasks (#163)
- s/restoreconf/restorecon/ (#160)
- Add README-ansible.md to refer Ansible intro page on linux-system-roles.github.io (#161)
- none
- use fileglob to lookup selinux module file - idempotency support (#155)
- none
- none
- Use stat on localhost with become: false for module idempotency (#152)
- none
- none
- Fix idempotency - Use lookup file + sha256 to get hash of local policy file
- none
- none
- Use selinux facts to compare module checksums before copying to a node (#144)
- do not use 'become' in tests, examples (#145)
- none
- Rewrite selinux_load_module.yml to use local_semodule (#135)
This makes module management idempotent on Fedora, and EL 8.6 and later.
- none
- none
- ansible-lint 6.x fixes (#132)
- Add check for non-inclusive language (#131)
- cleanup non-inclusive words.
- ensure semanage present on EL7 tests; fix jinja spacing, quoting (#139)
- add 'local' parameter to seport (#124)
community.general.seport
has recently added the local
parameter
which is now supported by the role.
local: true
:state: present
enforces change to be made even though the port mapping could already exists in built in policystate: absent
would remove only local modification and would not try to remove builtin mapping.
The role vendors-in the seport module as local_seport
, because otherwise
it is too difficult to support both Ansible 2.9 and ansible-core. We will
revisit this when Ansible 2.9 is EOL.
- none
- add test for fcontext seuser and selevel (#120)
- Added setting of seuser and selevel for completeness (#108)
Added setting of seuser and selevel for completeness See Issue #106 "RFE: Support for setting seuser in selinux_fcontexts" #106
Added explanation of seuser and selevel parameters
Added -F flag to restorecon to force reset See "man restorecon" for more detail on -F flag
Authored-by: Benjamin Blasco [email protected]
- none
-
changelog_to_tag action - github action ansible test improvements
-
Use GITHUB_REF_NAME as name of push branch; fix error in branch detection [citest skip] (#118)
We need to get the name of the branch to which CHANGELOG.md was pushed.
Signed-off-by: Rich Megginson [email protected]
- none
- none
- make all tests work with gather_facts: false (#111)
Ensure all tests work if using ANSIBLE_GATHERING=explicit
- make min_ansible_version a string in meta/main.yml (#112)
The Ansible developers say that min_ansible_version
in meta/main.yml
must be a string
value like "2.9"
, not a float
value like 2.9
.
- Add CHANGELOG.md (#113)
- none
- none
- Use meta/collection-requirements.yml for collection dependencies
- bump tox-lsr version to 2.11.0; remove py37; add py310
- support gather_facts: false; support setup-snapshot.yml
- none
- bump tox-lsr version to 2.10.1
- none
- none
- bump tox-lsr version to 2.8.3
- change recursive role symlink to individual role dir symlinks
- support python 39, ansible-core 2.12, ansible-plugin-scan
- fix ansible-lint issues
- update tox-lsr version to 2.7.1
- Add meta/requirements.yml; support ansible-core 2.11
- none
- Fix version comparisons for ansible_distribution_major_version
- none
- Improve README
- Add support for Rocky Linux 8
- none
- use tox-lsr version 2.5.1
- use apt-get install -y
- Drop support for Ansible 2.8 by bumping the Ansible version to 2.9
- none
- Clean up Ansible 2.8 CI configuration entries
- Update semanage task to not specify Fedora since it also runs on RHEL/CentOS 8
- none
- none
- use lazy unmount to fix umount: target is busy
- move example playbook to examples/ directory
- use reboot module; ansible 2.8
- Drop selogin module
- tag problematic tests; fix wording; fix formatting
- Fix issues found by - linters - enable all tests on all repos - remove suppressions
- Fix ansible-test errors
- Remove python-26 environment from tox testing
- update to tox-lsr 2.4.0 - add support for ansible-test with docker
- Add a note to each module Doc to indicate it is private
- use tox-lsr 2.2.1
- CI: Add support for RHEL-9
- none
- fix incorrect default value (there is no variable named "present")
- Fix centos6 repos; use standard centos images; add centos8
- use tox-lsr 2.2.0
- use molecule v3, drop v2 - use tox-lsr 2.1.2
- remove ansible 2.7 support from molecule
- Add explaining comments to selinux-playbook.yml
- use tox for ansible-lint instead of molecule
- use new tox-lsr plugin
- use github actions instead of travis
- Add ability to manage SELinux modules on multiple machines
- none
- none
- none
- none
- lock ansible-lint version at 4.3.5; suppress role name lint warning
- sync collections related changes from template to selinux role
- collections prep - use FQRN
- none
- Fix yamllint errors
- Fix typo, older ansible did not care, but 2.7 does.
- Synchronize files from linux-system-roles/template
- sync with latest template including shellcheck
- use molecule v2
- List all variables in defaults.
- Configure Molecule and Travis CI
- Add test running the role with default parameters
- Move defaults to defaults/main.yml