From b29b23f3e9306f3fa2d3af3479bcf317e27e3985 Mon Sep 17 00:00:00 2001
From: Seddik Alaoui Ismaili <seddikalaouiismaili@gmail.com>
Date: Sep 24 2024 18:27:30 +0000
Subject: selinux allow rabbitmq logs in logrotate


---

diff --git a/roles/rabbitmq_cluster/tasks/main.yml b/roles/rabbitmq_cluster/tasks/main.yml
index 383c732..4852cb1 100644
--- a/roles/rabbitmq_cluster/tasks/main.yml
+++ b/roles/rabbitmq_cluster/tasks/main.yml
@@ -476,6 +476,13 @@
   command: /etc/nagios/selinux-load.sh
   when: selinux_module is changed
 
+- name: /var/log/rabbitmq selinux file context
+  command: semanage fcontext -a -t var_log_t "/var/log/rabbitmq(/.*)?"
+  register: semanage_rabbit
+  changed_when: "'already defined' not in semanage_rabbit.stdout"
+  tags:
+    - selinux_module
+
 # Individual applications accounts & queues
 - import_tasks: apps.yml
   tags: