CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679

Browse Source
This commit is contained in:
m0duspwnens
2021-01-20 15:09:53 -05:00
parent b1c5b83fd5
commit b693373d8d
44 changed files with 491 additions and 234 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
salt/nginx/init.sls
View File

@@ -1,7 +1,5 @@
{% set show_top = salt['state.show_top']() %}
{% set top_states = show_top.values() | join(', ') %}
{% if 'nginx' in top_states %}
{% from 'allowed_states.map.jinja' import allowed_states %}
{% if sls in allowed_states %}
{% set FLEETMANAGER = salt['pillar.get']('global:fleet_manager', False) %}
{% set FLEETNODE = salt['pillar.get']('global:fleet_node', False) %}
@@ -105,8 +103,8 @@ append_so-nginx_so-status.conf:
{% else %}
nginx_state_not_allowed:
{{sls}}_state_not_allowed:
test.fail_without_changes:
- name: nginx_state_not_allowed
- name: {{sls}}_state_not_allowed
{% endif %}