rodjek/gist:472123

## gistfile1.rb
define selinux_login($identity, $ensure="present") {
    if $ensure == "present" {
        exec { "Mapping ${name} to the ${identity} SELinux identity":
            command => "semanage login -a -S targeted -s ${identity} -r s0 ${name}",
            unless  => "semanage login -l | grep \"${name}\" | grep \"${identity}\"",
        }
    } else {
        exec { "Removing ${name} from the ${identity} SELinux identity":
            command => "semanage login -d ${name}",
            onlyif  => "semanage login -l | grep \"${name}\" | grep \"${identity}\"",
        }
    }
}

selinux_login { "fenris02":
    indentity => "user_u",
    ensure    => present,
}
	define selinux_login($identity, $ensure="present") {
	if $ensure == "present" {
	exec { "Mapping ${name} to the ${identity} SELinux identity":
	command => "semanage login -a -S targeted -s ${identity} -r s0 ${name}",
	unless => "semanage login -l \| grep \"${name}\" \| grep \"${identity}\"",
	}
	} else {
	exec { "Removing ${name} from the ${identity} SELinux identity":
	command => "semanage login -d ${name}",
	onlyif => "semanage login -l \| grep \"${name}\" \| grep \"${identity}\"",
	}
	}
	}

	selinux_login { "fenris02":
	indentity => "user_u",
	ensure => present,
	}