hans/Nominatim
1
0
Fork 1
mirror of https://github.com/osm-search/Nominatim.git synced 2026-02-26 11:08:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

move CentOS Vagrant VM to a SELinux-enabled base image

Browse Source
This commit is contained in:
marc tobias
2018-02-22 17:51:55 +01:00
parent ff2a40b109
commit c3e5654113
2 changed files with 7 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
Vagrantfile vendored
View File

@@ -33,7 +33,7 @@ Vagrant.configure("2") do |config|
end end
config.vm.define "centos" do |sub| config.vm.define "centos" do |sub|
sub.vm.box = "bento/centos-7.2" sub.vm.box = "centos/7"
sub.vm.provision :shell do |s| sub.vm.provision :shell do |s|
s.path = "vagrant/Install-on-Centos-7.sh" s.path = "vagrant/Install-on-Centos-7.sh"
s.privileged = false s.privileged = false

10
vagrant/Install-on-Centos-7.sh
View File

@@ -22,7 +22,7 @@
#DOCS: :::sh #DOCS: :::sh
sudo yum install -y postgresql-server postgresql-contrib postgresql-devel \ sudo yum install -y postgresql-server postgresql-contrib postgresql-devel \
postgis postgis-utils \ postgis postgis-utils \
git cmake make gcc gcc-c++ libtool policycoreutils-python \ wget git cmake make gcc gcc-c++ libtool policycoreutils-python \
php-pgsql php php-pear php-pear-DB php-intl libpqxx-devel \ php-pgsql php php-pear php-pear-DB php-intl libpqxx-devel \
proj-epsg bzip2-devel proj-devel libxml2-devel boost-devel \ proj-epsg bzip2-devel proj-devel libxml2-devel boost-devel \
expat-devel zlib-devel expat-devel zlib-devel
@@ -52,7 +52,8 @@
# we assume this user is called nominatim and the installation will be in # we assume this user is called nominatim and the installation will be in
# /srv/nominatim. To create the user and directory run: # /srv/nominatim. To create the user and directory run:
# #
# sudo useradd -d /srv/nominatim -s /bin/bash -m nominatim sudo mkdir -p /opt/nominatim #DOCS: sudo useradd -d /srv/nominatim -s /bin/bash -m nominatim
sudo chown vagrant /opt/nominatim #DOCS:
# #
# You may find a more suitable location if you wish. # You may find a more suitable location if you wish.
# #
@@ -60,7 +61,7 @@
# user name and home directory now like this: # user name and home directory now like this:
# #
export USERNAME=vagrant #DOCS: export USERNAME=nominatim export USERNAME=vagrant #DOCS: export USERNAME=nominatim
export USERHOME=/home/vagrant #DOCS: export USERHOME=/srv/nominatim export USERHOME=/opt/nominatim #DOCS: export USERHOME=/srv/nominatim
# #
# **Never, ever run the installation as a root user.** You have been warned. # **Never, ever run the installation as a root user.** You have been warned.
# #
@@ -122,6 +123,7 @@ sudo sed -i 's:#.*::' /etc/httpd/conf.d/nominatim.conf #DOCS:
# Then reload apache # Then reload apache
# #
sudo systemctl enable httpd
sudo systemctl restart httpd sudo systemctl restart httpd
# #
@@ -133,7 +135,7 @@ sudo sed -i 's:#.*::' /etc/httpd/conf.d/nominatim.conf #DOCS:
# following SELinux labeling should be done for Nominatim: # following SELinux labeling should be done for Nominatim:
sudo semanage fcontext -a -t httpd_sys_content_t "$USERHOME/Nominatim/(website|lib|settings)(/.*)?" sudo semanage fcontext -a -t httpd_sys_content_t "$USERHOME/Nominatim/(website|lib|settings)(/.*)?"
sudo semanage fcontext -a -t lib_t "$USERHOME/Nominatim/module/nominatim.so" sudo semanage fcontext -a -t lib_t "$USERHOME/build/module/nominatim.so"
sudo restorecon -R -v $USERHOME/Nominatim sudo restorecon -R -v $USERHOME/Nominatim
# #