updated apparmor state

2023-03-10 00:07:59 +01:00 · 2023-03-10 00:07:59 +01:00 · dff51f8bb3
commit dff51f8bb3
parent c0add92d8d
5 changed files with 7 additions and 7 deletions
--- a/states/apparmor/init.sls
+++ b/states/apparmor/init.sls
@ -4,8 +4,8 @@
 {%- for cfg in apparmor.configs %}
 apparmor-{{ cfg }}:
  file.managed:
-    - name: "/etc/apparmor.d/{{ cfg }}"
-    - source: "salt://apparmor/{{ cfg }}.j2"
+    - name: /etc/apparmor.d/{{ cfg }}
+    - source: salt://apparmor/templates/{{ cfg }}.j2
    - user: root
    - group: root
    - mode: "0644"
@ -18,4 +18,4 @@ apparmor-reload:
  service.running:
    - name: apparmor
    - enable: true
-{%- endif %}
+{%- endif %}
--- a/states/apparmor/templates/opt.kingsoft.j2
+++ b/states/apparmor/templates/opt.kingsoft.j2
@ -24,4 +24,4 @@
  owner @{HOME}/Documents/** rw,

  deny network inet,
-}
+}
--- a/states/apparmor/templates/opt.sublime_text.sublime_text.j2
+++ b/states/apparmor/templates/opt.sublime_text.sublime_text.j2
@ -38,4 +38,4 @@
  deny network inet,
  deny network inet6,
  deny network raw,
-}
+}
--- a/states/apparmor/templates/usr.bin.skype.j2
+++ b/states/apparmor/templates/usr.bin.skype.j2
@ -74,4 +74,4 @@
  deny /var/cache/fontconfig/ w,
  deny owner @{HOME}/.fontconfig/ w,
  deny owner @{HOME}/.fontconfig/*.cache-*.TMP* w,
-}
+}
--- a/states/apparmor/templates/usr.bin.spotify.j2
+++ b/states/apparmor/templates/usr.bin.spotify.j2
@ -21,4 +21,4 @@
  owner @{HOME}/.config/spotify/ w,

  owner @{HOME}/Music/** r,
-}
+}