set seliux contexts for all files and directories - https://gitlab.confdroid.com/internal/confdroid_management/-/issues/292

manifests/main/files.pp

@@ -15,6 +15,10 @@ class puppet_cd::main::files (
       owner    => 'root',
       group    => 'root',
       mode     => '0644',
+      selrange => s0,
+      selrole  => object_r,
+      seltype  => puppet_etc_t,
+      seluser  => system_u,
       content  => template($pt_puppet_conf_erb),
       notify   => Service[$pt_agent_service],
     }
@@ -44,6 +48,10 @@ class puppet_cd::main::files (
       owner    => 'root',
       group    => 'root',
       mode     => '0644',
+      selrange => s0,
+      selrole  => object_r,
+      seltype  => puppet_etc_t,
+      seluser  => system_u,
       content  => template($pt_puppet_conf_erb),
       notify   => Service[$pt_agent_service,$pt_server_service],
     }
@@ -56,6 +64,10 @@ class puppet_cd::main::files (
         owner    => 'root',
         group    => 'root',
         mode     => '0644',
+        selrange => s0,
+        selrole  => object_r,
+        seltype  => puppet_etc_t,
+        seluser  => system_u,
         content  => template($pt_puppetdb_conf_erb),
         notify   => Service[$pt_agent_service,$pt_server_service],
       }
@@ -66,6 +78,10 @@ class puppet_cd::main::files (
         owner    => 'root',
         group    => 'root',
         mode     => '0644',
+        selrange => s0,
+        selrole  => object_r,
+        seltype  => puppet_etc_t,
+        seluser  => system_u,
         content  => template($pt_routes_erb),
         notify   => Service[$pt_server_service],
       }
@@ -74,6 +90,7 @@ class puppet_cd::main::files (
         owner    => 'puppet',
         group    => 'puppet',
         mode     => '0550',
+        selrange => s0,
         selrole  => object_r,
         seltype  => foreman_enc_t,
         seluser  => system_u,