From 0459ad96836599b357e312e8d7cb7b647a8b7c5e Mon Sep 17 00:00:00 2001
From: Robert Kaussow <mail@geeklabor.de>
Date: Thu, 27 Sep 2018 00:06:07 +0200
Subject: [PATCH] add task to set selinux booleans

---
 tasks/install.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/tasks/install.yml b/tasks/install.yml
index 81ffb9d..f3e0dca 100644
--- a/tasks/install.yml
+++ b/tasks/install.yml
@@ -82,6 +82,14 @@
       state: present
       rules: '-A INPUT -p tcp -m multiport --dports {{ nginx_open_ports|join(",") }} -j ACCEPT'
     when: nginx_iptables_enabled
+
+  - name: Set selinux booleans
+    seboolean:
+      name: "{{ item.name }}"
+      state: "{{ item.state }}"
+      persistent: "{{ item.persistent }}"
+    with_items: "{{ nginx_set_sebooleans }}"
+    when: nginx_set_sebooleans
   become: True
   become_user: root