OP#563 remove ls step

.gitignore

@@ -1,39 +1,5 @@
-.git/
-.*.sw[op]
-.metadata
 .yardoc
-.yardwarns
+Gemfile.lock
+FileList
 .scannerwork
-*.iml
+.vscode
-/.bundle/
-/.idea/
-/.vagrant/
-/coverage/
-/bin/
-/doc/
-/Gemfile.local
-/Gemfile.lock
-/junit/
-/log/
-/pkg/
-/spec/fixtures/manifests/
-/spec/fixtures/modules/*
-/tmp/
-/vendor/
-/.vendor/
-/convert_report.txt
-/update_report.txt
-.DS_Store
-.project
-.envrc
-/inventory.yaml
-/spec/fixtures/litmus_inventory.yaml
-.resource_types
-.modules
-.task_cache.json
-.plan_cache.json
-.rerun.json
-bolt-debug.log
-.vscode
-.puppet-lint.rc
-.rspec

.puppet-lint.rc

@@ -0,0 +1,3 @@
+--no-variable_scope-check
+--no-top_scope_facts
+--no-140chars-check

.vscode/settings.json

@@ -2,6 +2,7 @@
     "cSpell.words": [
         "getenforce",
         "policycoreutils",
+        "SELINUXTYPE",
         "setenforce",
         "setools",
         "setroubleshoot",

README.md

@@ -1,8 +1,7 @@
 # Readme
 
-[![Build Status](https://jenkins.confdroid.com/buildStatus/icon?job=confdroid_selinux)](https://jenkins.confdroid.com/job/confdroid_selinux/)
+[![Build Status](https://jenkins.confdroid.com/buildStatus/icon?job=confdroid_selinux&style=plastic)](https://jenkins.confdroid.com/job/confdroid_selinux/)
-
+[![Security Hotspots](https://sonarqube.confdroid.com/api/project_badges/measure?project=confdroid_selinux&metric=security_hotspots&token=sqb_cc73d9e100a7cda91c7f45b8a7690bd16498e852)](https://sonarqube.confdroid.com/dashboard?id=confdroid_selinux)
-[[_TOC_]]
 
 ## Synopsis
 
@@ -18,12 +17,12 @@
 
 Installation:
 
-* install binaries required for selinux and  related tools
+- install binaries required for selinux and  related tools
 
 Configuration
 
-* manage `/etc/sysconfig/selinux` file (file system permissions, selinux context, content)
+- manage `/etc/sysconfig/selinux` file (file system permissions, selinux context, content)
-* manage current selinux status (permissive,enforcing)
+- manage current selinux status (permissive,enforcing)
 
 ## Repo Documentation
 
@@ -33,11 +32,11 @@ See the full Puppet documentation including parameters in `docs/index.html`.
 
 All dependencies must be included in the catalogue.
 
-* [cd_resources](https://gitlab.confdroid.com/puppet/cd_resources) for yum repo resources.
+- [confdroid_resources](https://sourcecode.confdroid.com/confdroid/confdroid_resources) for yum repo resources.
 
 ## Deployment
 
-* native Puppet deployment
+- native Puppet deployment
 
 via site.pp or nodes.pp
 
@@ -47,9 +46,9 @@ node 'example.example.net' {
 }
 ```
 
-* through Foreman:
+- through Foreman:
 
-In order to apply parameters through Foreman, **__confdroid_selinux::params__** must be added to the host or host group in question.
+In order to apply parameters through Foreman, **confdroid_selinux::params*- must be added to the host or host group in question.
 
 See [more details about class deployment on Confdroid.com](https://confdroid.com/2017/05/deploying-our-puppet-modules/).
 
@@ -59,25 +58,26 @@ All files and directories are configured with correct selinux context. If selinu
 
 ## Known Problems
 
-* Systems reconfigured with selinux disabled require once a reboot for selinux to be enabled. This module will **__not__** do the reboot for you to avoid unexpected outages.
+- Systems reconfigured with selinux disabled require once a reboot for selinux to be enabled. This module will **not**- do the reboot for you to avoid unexpected outages.
 
 ## Support
 
-* OS: CentOS 7
+- OS: Rocky 9 (any RHEL9-based OS should work, but Rocky has been tested)
-* Puppet 5,6
+- Puppet 8
 
 ## Tests
 
-* Puppet Lint
+- Puppet Lint
-  * excluded tests:
+  - excluded tests:
-    * `--no-variable_scope-check`: not applicable as we are inheriting parameters from params class. the lint check does not distinguish between facts and inherited parameters.
+    - `--no-variable_scope-check`: not applicable as we are inheriting parameters from params class. the lint check does not distinguish between facts and inherited parameters.
-* Puppet Parser
+- Puppet Parser
-* ERB Template Parser
+- ERB Template Parser
-* Sonar Quality Gate
+- Sonar Quality Gate
 
 ## Contact Us
 
-[contact Us](https://confdroid.com/contact/)
+- [contact Us](https://confdroid.com/contact/)
+- [Feedback Portal](https://feedback.confdroid.com/)
 
 ## Disclaimer
 

manifests/params.pp

@@ -22,7 +22,7 @@
 ##############################################################################
 class confdroid_selinux::params (
 
-  Array[String] $sx_reqpackages       = ['selinux-policy','policycoreutils','setroubleshoot-server','policycoreutils-python'],
+  Array[String] $sx_reqpackages       = ['selinux-policy','policycoreutils','setroubleshoot-server','policycoreutils-python-utils'],
   String $sx_pkg_ensure               = 'latest',
   String $sx_selinux_status           = 'enforcing',
   String $sx_selinux_type             = 'targeted',
@@ -36,11 +36,11 @@ class confdroid_selinux::params (
   $os_release               = $facts['os']['release']['major']
 
 # directories
-  $sx_main_dir        = '/etc/selinux'
+  $sx_main_dir              = '/etc/selinux'
 
 # files
-  $sx_main_file       = "${sx_main_dir}/config"
+  $sx_main_file             = "${sx_main_dir}/config"
-  $sx_main_file_erb   = 'confdroid_selinux/main/selinux_config.erb'
+  $sx_main_file_erb         = 'confdroid_selinux/main/selinux_config.erb'
 
 # includes must be last
   include confdroid_selinux::main::config

templates/main/selinux_config.erb

@@ -1,6 +1,7 @@
 ################################################################################
 ##########        /etc/selinux/config managed by Puppet               ##########
-##########        manual changes will be overwritten !!!              ##########
+##########        manual changes will be overwritten !!!              ##########   
+##########        original file: https://3for.me/wdtuj                ##########
 ################################################################################
 SELINUX=<%= @sx_selinux_status %>