2020-08-11 13:01:34 +00:00
|
|
|
## <summary>Shibboleth authentication daemon</summary>
|
2018-06-23 13:00:56 +00:00
|
|
|
|
|
|
|
|
########################################
|
|
|
|
|
## <summary>
|
|
|
|
|
## Allow your application domain to access
|
|
|
|
|
## config files from shibboleth
|
|
|
|
|
## </summary>
|
|
|
|
|
## <param name="domain">
|
|
|
|
|
## <summary>
|
|
|
|
|
## The domain which should be enabled.
|
|
|
|
|
## </summary>
|
|
|
|
|
## </param>
|
|
|
|
|
#
|
|
|
|
|
interface(`shibboleth_read_config',`
|
|
|
|
|
gen_require(`
|
|
|
|
|
type shibboleth_etc_t;
|
|
|
|
|
')
|
|
|
|
|
|
|
|
|
|
read_files_pattern($1, shibboleth_etc_t, shibboleth_etc_t)
|
|
|
|
|
')
|
|
|
|
|
|
|
|
|
|
########################################
|
|
|
|
|
## <summary>
|
|
|
|
|
## Allow the specified domain to connect to shibboleth with a unix socket.
|
|
|
|
|
## </summary>
|
|
|
|
|
## <param name="domain">
|
|
|
|
|
## <summary>
|
|
|
|
|
## Domain allowed access.
|
|
|
|
|
## </summary>
|
|
|
|
|
## </param>
|
|
|
|
|
#
|
|
|
|
|
interface(`shibboleth_stream_connect',`
|
|
|
|
|
gen_require(`
|
|
|
|
|
type shibboleth_t;
|
2019-09-08 20:55:02 +00:00
|
|
|
type shibboleth_runtime_t;
|
2018-06-23 13:00:56 +00:00
|
|
|
')
|
|
|
|
|
|
2019-09-08 20:55:02 +00:00
|
|
|
stream_connect_pattern($1, shibboleth_runtime_t, shibboleth_runtime_t, shibboleth_t)
|
2020-06-27 21:11:48 +00:00
|
|
|
files_search_runtime($1)
|
2018-06-23 13:00:56 +00:00
|
|
|
')
|
