Skip to content
Development repository for apparmor Chef Cookbook
Branch: master
Clone or download
tas50 Remove Ubuntu 14.04 testing for 18.04
Signed-off-by: Tim Smith <tsmith@chef.io>
Latest commit e855d44 Jan 20, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.delivery Test with local delivery and not Rake Mar 1, 2017
.github Add code owners file Jan 10, 2019
attributes Cookstyle and copyright header update Dec 22, 2016
recipes Cookstyle and copyright header update Dec 22, 2016
resources Resolve FC108 warning Nov 14, 2017
spec Integration testing in travis Jan 24, 2017
test
.gitignore Test Ubuntu 18.04 May 26, 2018
.travis.yml Remove Ubuntu 14.04 testing for 18.04 Jan 20, 2019
Berksfile Testing updates Aug 16, 2016
CHANGELOG.md
CONTRIBUTING.md updating TESTING.MD and CONTRIBUTING.md Sep 7, 2015
Gemfile Test Ubuntu 18.04 May 26, 2018
LICENSE
README.md Require Chef 12.7 or later May 26, 2018
TESTING.md updating TESTING.MD and CONTRIBUTING.md Sep 7, 2015
chefignore Test Ubuntu 18.04 May 26, 2018
kitchen.dokken.yml
kitchen.yml Remove Ubuntu 14.04 testing for 18.04 Jan 20, 2019
metadata.rb Require Chef 12.7 or later May 26, 2018

README.md

apparmor Cookbook

Build Status Cookbook Version

Default recipe installs and manages AppArmor service, or disables and removes AppArmor depending on default['apparmor']['disable'] attribute. Also includes a custom resource (LWRP) for managing AppArmor policies.

Requirements

Platforms

  • Ubuntu
  • Debian

Chef

  • Chef 12.7+

Cookbooks

  • none

Attributes

  • default['apparmor']['disable']: Controls installing or removing apparmor service in the default.rb recipe. Defaults to false which installs apparmor, starts the service, and enables the service.

Recipes

default.rb

This recipe either installs or removes the apparmor package and starts / enables the service depending on the state of default['apparmor']['disable'].

Custom Resources

Policy

Adds or removes Apparmor policies

Actions

  • :add: Adds a new Apparmor policy using a provided policy file
  • :remove: Removes a specified Apparmor policy

Properties

  • :name: Name attribute. The name of the policy as stored in /etc/apparmor.d/.
  • :source_cookbook: Cookbook to source the policy file from if the provider is not in the same cookbook.
  • :source_filename: Name of the source file in the cookbook if it doesn't match the name attribute.

Examples

Add the policy my_super_app where a cookbook file exists in the same cookbook and is named my_super_app

apparmor_policy 'my_super_app'

Add the policy my_super_app where a cookbook file exists in a different cookbook and the file is named my_super_app_am_policy

apparmor_policy 'my_super_app' do
  source_cookbook 'acme_apparmor_profiles'
  source_filename 'my_super_app_am_policy'
end

Remove the policy my_super_app

apparmor_policy 'my_super_app' do
  action  :remove
end

Maintainers

This cookbook is maintained by Chef's Community Cookbook Engineering team. Our goal is to improve cookbook quality and to aid the community in contributing to cookbooks. To learn more about our team, process, and design goals see our team documentation. To learn more about contributing to cookbooks like this see our contributing documentation, or if you have general questions about this cookbook come chat with us in #cookbok-engineering on the Chef Community Slack

License

Copyright: 2009-2017, Chef Software, Inc.

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
You can’t perform that action at this time.