   - abrt
   - accountsd
   - acpi
   - afs
   - aisexec
   - amavis
   - apache
   - apcupsd
   - aptcacher
   - arpwatch
   - asterisk
   - automount
   - avahi
   - bind
   - bird
   - bitlbee
   - bluetooth
   - boinc
   - bugzilla
   - cachefilesd
   - canna
   - certbot
   - certmaster
   - certmonger
   - cgmanager
   - cgroup
   - chronyd
   - clamav
   - cobbler
   - cockpit
   - collectd
   - colord
   - comsat
   - condor
   - consolesetup
   - container
   - corosync
   - couchdb
   - courier
   - cpucontrol
   - cron
   - ctdb
   - cups
   - cvs
   - cyphesis
   - cyrus
   - dante
   - dbskk
   - dbus
   - ddclient
   - devicekit
   - dhcp
   - dictd
   - dirmngr
   - distcc
   - djbdns
   - dkim
   - dnsmasq
   - docker
   - dovecot
   - drbd
   - entropyd
   - exim
   - fail2ban
   - fcoe
   - fetchmail
   - finger
   - firewalld
   - fprintd
   - ftp
   - gatekeeper
   - gdomap
   - geoclue
   - git
   - glance
   - glusterfs
   - gnomeclock
   - gpm
   - gpsd
   - gssproxy
   - hadoop
   - hddtemp
   - hostapd
   - hypervkvp
   - i18n_input
   - icecast
   - ifplugd
   - inetd
   - inn
   - iodine
   - ircd
   - irqbalance
   - isns
   - jabber
   - kerberos
   - kerneloops
   - keystone
   - knot
   - ksmtuned
   - l2tp
   - ldap
   - likewise
   - lircd
   - lldpad
   - lpd
   - lsm
   - mailman
   - matrixd
   - mediawiki
   - memcached
   - memlockd
   - milter
   - minidlna
   - minissdpd
   - modemmanager
   - mojomojo
   - mon
   - mongodb
   - monit
   - monop
   - mpd
   - mta
   - munin
   - mysql
   - nagios
   - nessus
   - networkmanager
   - nis
   - node_exporter
   - nscd
   - nsd
   - nslcd
   - ntop
   - ntp
   - numad
   - nut
   - nx
   - obex
   - obfs4proxy
   - oddjob
   - oident
   - openca
   - openct
   - openhpi
   - opensm
   - openvpn
   - openvswitch
   - pacemaker
   - pads
   - pcscd
   - pegasus
   - perdition
   - pingd
   - pkcs
   - plymouthd
   - podman
   - policykit
   - portmap
   - portreserve
   - portslave
   - postfix
   - postfixpolicyd
   - postgresql
   - postgrey
   - ppp
   - prelude
   - privoxy
   - procmail
   - psad
   - publicfile
   - pwauth
   - pxe
   - pyzor
   - qmail
   - qpid
   - quantum
   - rabbitmq
   - radius
   - radvd
   - rasdaemon
   - razor
   - rdisc
   - realmd
   - redis
   - remotelogin
   - resmgr
   - rhsmcertd
   - rlogin
   - rngd
   - rootlesskit
   - rpc
   - rpcbind
   - rshd
   - rsync
   - rtkit
   - rwho
   - samba
   - sanlock
   - sasl
   - sendmail
   - sensord
   - setroubleshoot
   - shibboleth
   - slpd
   - slrnpull
   - smartmon
   - smokeping
   - smstools
   - snmp
   - snort
   - soundserver
   - spamassassin
   - squid
   - ssh
   - sssd
   - stubby
   - stunnel
   - svnserve
   - sympa
   - sysstat
   - systemtap
   - tcpd
   - tcsd
   - telnet
   - tftp
   - tgtd
   - timidity
   - tor
   - tpm2
   - transproxy
   - tuned
   - ucspitcp
   - ulogd
   - uptime
   - usbmuxd
   - uucp
   - uuidd
   - uwimap
   - varnishd
   - vdagent
   - vhostmd
   - virt
   - vnstatd
   - watchdog
   - wdmd
   - wireguard
   - xfs
   - xserver
   - zabbix
   - zarafa
   - zebra
   - zfs
   - zosremote

* Global Booleans

* Global Tunables

* Boolean Index

* Tunable Index

* Interface Index

* Template Index

Layer: services

Module: docker

Interfaces Templates

Description:

Policy for docker

Interfaces:

docker_admin(
	
		domain
		
			,
		
		role
		
	)

Summary

All of the rules required to administrate a docker environment.

Parameters

Parameter:	Description:
domain	Domain allowed access.
role	Role allowed access.

docker_domtrans_cli(
	
		domain
		
	)

Summary

Execute docker CLI in the docker CLI domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

docker_domtrans_user_cli(
	
		domain
		
	)

Summary

Execute docker CLI in the docker CLI user domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

docker_domtrans_user_daemon(
	
		domain
		
	)

Summary

Execute docker in the docker user domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

docker_run_cli(
	
		domain
		
			,
		
		role
		
	)

Summary

Execute docker CLI in the docker CLI domain, and allow the specified role the docker CLI domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.
role	The role to be allowed the docker domain.

docker_run_user_cli(
	
		domain
		
			,
		
		role
		
	)

Summary

Execute docker CLI in the docker CLI user domain, and allow the specified role the docker CLI user domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.
role	The role to be allowed the docker user domain.

docker_run_user_daemon(
	
		domain
		
			,
		
		role
		
	)

Summary

Execute docker in the docker user domain, and allow the specified role the docker user domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.
role	The role to be allowed the docker domain.

docker_signal_user_daemon(
	
		domain
		
	)

Summary

Send signals to the rootless docker daemon.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

Return

Templates:

docker_user_role(
	
		role_prefix
		
			,
		
		user_domain
		
			,
		
		user_exec_domain
		
			,
		
		role
		
	)

Summary

Role access for rootless docker.

Parameters

Parameter:	Description:
role_prefix	The prefix of the user role (e.g., user is the prefix for user_r).
user_domain	User domain for the role.
user_exec_domain	User exec domain for execute and transition access.
role	Role allowed access.

Return