| 1 |
On Mon, Aug 22, 2011 at 11:00:16PM +0200, Rados??aw Smogura wrote: |
| 2 |
> Maybe better idea will be to move one level upper and instead of working with |
| 3 |
> domain templates we should create role templates. I generally like idea of |
| 4 |
> roles, and I think it may be nice solution that administrator may give someone |
| 5 |
> dba_admin role. |
| 6 |
> |
| 7 |
> So templates should not only create domains, but roles too. |
| 8 |
> |
| 9 |
> I may try to write few such templates. |
| 10 |
|
| 11 |
That's perfectly possible. The reference policy contains a few default |
| 12 |
roles, but additional roles might always be submitted. However, for |
| 13 |
inclusion in Gentoo, please know that we try to follow the reference policy. |
| 14 |
So if you are writing roles, it is best to contribute them there: |
| 15 |
|
| 16 |
http://oss.tresys.com/projects/refpolicy |
| 17 |
|
| 18 |
That being said, most of the time roles are "fed" with the proper templates |
| 19 |
(you have _role or _run templates to execute applications, or _admin |
| 20 |
templates to manage daemons). |
| 21 |
|
| 22 |
Perhaps it would be better if someone drafts up a nice document on how to |
| 23 |
create your own roles (and maintain them)? |
| 24 |
|
| 25 |
Wkr, |
| 26 |
Sven Vermeulen |
Archives