From 70b82629ee2d3aea2f301ecf453a0756d2892b72 Mon Sep 17 00:00:00 2001
From: Aaron Guise <aaron.guise@ultrafast.co.nz>
Date: Thu, 26 Nov 2020 12:09:17 +1300
Subject: [PATCH] Added SELinux policy to Allow DUO Api

---
 files/selinux/duo.pp | Bin 0 -> 947 bytes
 tasks/main.yml       |  18 +++++++++++++++++-
 2 files changed, 17 insertions(+), 1 deletion(-)
 create mode 100644 files/selinux/duo.pp

diff --git a/files/selinux/duo.pp b/files/selinux/duo.pp
new file mode 100644
index 0000000000000000000000000000000000000000..cf18fcaeaf831132a2b8d1955c16152c6266fb0b
GIT binary patch
literal 947
zcmb`FO-jT-5QXCiA}T0&fjNQb4Qk^~S013zBryJ^!=wW)yn=XMS6bgp9#blapbuWx
zt5?<48Kz#}pWn8ss)9$(7taqpUY*Y`ZoBbmewmx`p`E#P?4)hi3AUZhm<eYmr{>`+
zG<a_+C?|qa_i4!WeOnGZ!|kpg+f?VSYwMzJ-qVeIbLW+`H1`CP@EEo1=<z$?zEkrx
zJN7L~=~JJVC6%4&irPK>^vp0UnpALqf^O?EdgY;QqUwAku+_Oa$f5ca@gg)^^;olz
zprQH{@dR@LRpTEAwmR3xZ#4JmgPNs?CzyoC|I%UPpCsSQI&W4NCz5s5n$AKE&Dw?4
Piq}}P^(sZz&2RVsTvs@Z

literal 0
HcmV?d00001

diff --git a/tasks/main.yml b/tasks/main.yml
index b9a2549..a2b0564 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -43,4 +43,20 @@
   notify: restart sshd
 
 - name: Flush Handlers
-  meta: flush_handlers
\ No newline at end of file
+  meta: flush_handlers
+
+- name: Duo SELinux Enablement
+  block:
+    - name: Copy SELinux Module
+      copy:
+        src: files/duo.pp
+        dest: /tmp/duo.pp
+
+    - name: Install Policy (Ensure we can access DUO Api)
+      command: /usr/sbin/semodule -i /tmp/duo.pp
+
+    - name: Remove Policy file
+      file:
+        path: /tmp/duo.pp
+        state: absent
+  
\ No newline at end of file