1 |
On Mon, Aug 22, 2011 at 11:00:16PM +0200, Rados??aw Smogura wrote: |
2 |
> Maybe better idea will be to move one level upper and instead of working with |
3 |
> domain templates we should create role templates. I generally like idea of |
4 |
> roles, and I think it may be nice solution that administrator may give someone |
5 |
> dba_admin role. |
6 |
> |
7 |
> So templates should not only create domains, but roles too. |
8 |
> |
9 |
> I may try to write few such templates. |
10 |
|
11 |
That's perfectly possible. The reference policy contains a few default |
12 |
roles, but additional roles might always be submitted. However, for |
13 |
inclusion in Gentoo, please know that we try to follow the reference policy. |
14 |
So if you are writing roles, it is best to contribute them there: |
15 |
|
16 |
http://oss.tresys.com/projects/refpolicy |
17 |
|
18 |
That being said, most of the time roles are "fed" with the proper templates |
19 |
(you have _role or _run templates to execute applications, or _admin |
20 |
templates to manage daemons). |
21 |
|
22 |
Perhaps it would be better if someone drafts up a nice document on how to |
23 |
create your own roles (and maintain them)? |
24 |
|
25 |
Wkr, |
26 |
Sven Vermeulen |