From 72d8f34299acd3198a53c84d5a61130750e1be61 Mon Sep 17 00:00:00 2001
From: Arne Teuke <arne_teuke@confdroid.com>
Date: Fri, 21 Jul 2017 17:34:48 +0100
Subject: [PATCH] adding selinux control

---
 manifests/certbot/config.pp | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/manifests/certbot/config.pp b/manifests/certbot/config.pp
index fa706b1..68c0549 100644
--- a/manifests/certbot/config.pp
+++ b/manifests/certbot/config.pp
@@ -49,6 +49,13 @@ class cd_nagios::certbot::config (
           require   =>  Exec['remove_nagios_conf'],
         }
 
+        exec { 'disable_selinux_temporarily':
+          command   =>  'setenforce 0'
+          path      =>  ['/usr/sbin'],
+          creates   =>  '/etc/httpd/conf.d/.cert_created',
+          require   =>  Exec['remove_index_html'],
+        }
+
         # create cert
 
         exec { 'create_cert':
@@ -61,6 +68,13 @@ class cd_nagios::certbot::config (
           creates   =>  '/etc/httpd/conf.d/.cert_created',
         }
 
+        exec { 'enable_selinux':
+          command   =>  'setenforce 1'
+          path      =>  ['/usr/sbin'],
+          creates   =>  '/etc/httpd/conf.d/.cert_created',
+          require   =>  Exec['create_cert'],
+        }
+
         # renew certs
 
         exec {  'renew_cert':