[people/stevee/selinux-policy.git] / policy / modules / services / mojomojo.if

## <summary>MojoMojo Wiki</summary>

########################################
## <summary>
##	All of the rules required to administrate
##	an mojomojo environment
## </summary>
## <param name="domain">
##	<summary>
##	Domain allowed access.
##	</summary>
## </param>
## <param name="role">
##	<summary>
##	Role allowed access.
##	</summary>
## </param>
## <rolecap/>
#
interface(`mojomojo_admin',`
	gen_require(`
		type httpd_mojomojo_script_t;
		type httpd_mojomojo_content_t, httpd_mojomojo_ra_content_t;
		type httpd_mojomojo_rw_content_t, httpd_mojomojo_tmp_t;
		type httpd_mojomojo_script_exec_t, httpd_mojomojo_htaccess_t;
	')

	allow $1 httpd_mojomojo_script_t:process { ptrace signal_perms };
	ps_process_pattern($1, httpd_mojomojo_script_t)

	files_list_tmp($1)
	admin_pattern($1, httpd_mojomojo_tmp_t)

	files_search_var_lib(httpd_mojomojo_script_t)

	apache_search_sys_content($1)
	admin_pattern($1, httpd_mojomojo_script_exec_t)
	admin_pattern($1, httpd_mojomojo_script_t)
	admin_pattern($1, httpd_mojomojo_content_t)
	admin_pattern($1, httpd_mojomojo_htaccess_t)
	admin_pattern($1, httpd_mojomojo_rw_content_t)
	admin_pattern($1, httpd_mojomojo_ra_content_t)
')
Commit	Line	Data
9d4395a7 CP	1	## <summary>MojoMojo Wiki</summary>
	2
	3	########################################
	4	## <summary>
	5	## All of the rules required to administrate
	6	## an mojomojo environment
	7	## </summary>
	8	## <param name="domain">
	9	## <summary>
	10	## Domain allowed access.
	11	## </summary>
	12	## </param>
	13	## <param name="role">
	14	## <summary>
	15	## Role allowed access.
	16	## </summary>
	17	## </param>
	18	## <rolecap/>
	19	#
	20	interface(`mojomojo_admin',`
	21	gen_require(`
	22	type httpd_mojomojo_script_t;
	23	type httpd_mojomojo_content_t, httpd_mojomojo_ra_content_t;
aae38f05	24	type httpd_mojomojo_rw_content_t, httpd_mojomojo_tmp_t;
9d4395a7 CP	25	type httpd_mojomojo_script_exec_t, httpd_mojomojo_htaccess_t;
	26	')
	27
	28	allow $1 httpd_mojomojo_script_t:process { ptrace signal_perms };
	29	ps_process_pattern($1, httpd_mojomojo_script_t)
	30
aae38f05 DW	31	files_list_tmp($1)
	32	admin_pattern($1, httpd_mojomojo_tmp_t)
	33
9d4395a7 CP	34	files_search_var_lib(httpd_mojomojo_script_t)
	35
	36	apache_search_sys_content($1)
	37	admin_pattern($1, httpd_mojomojo_script_exec_t)
	38	admin_pattern($1, httpd_mojomojo_script_t)
	39	admin_pattern($1, httpd_mojomojo_content_t)
	40	admin_pattern($1, httpd_mojomojo_htaccess_t)
	41	admin_pattern($1, httpd_mojomojo_rw_content_t)
	42	admin_pattern($1, httpd_mojomojo_ra_content_t)
	43	')