add support for rhel, remove selinux config (now in rpm)

Author: aknot242

README.md

@@ -50,6 +50,16 @@ CentOS:
     - 8.0
     - 8.1
     - 8.2
+RHEL:
+  versions:
+    - 7.4
+    - 7.5
+    - 7.6
+    - 7.7
+    - 7.8
+    - 8.0
+    - 8.1
+    - 8.2
 Debian:
   versions:
     - 9.0
@@ -78,7 +88,7 @@ Dependencies
 
 - Since this role uses the [package_facts](https://docs.ansible.com/ansible/latest/modules/package_facts_module.html) module, on debian-based systems the `python-apt` package must be installed on targeted hosts.
 
-- NGINX+ R19-R21 must already be installed on the target system 
+- NGINX+ R20-R22 must already be installed on the target system 
 
 Example Playbook
 ----------------
@@ -101,11 +111,7 @@ This is a sample playbook file for using the role to install NGINX App Protect o
     app_protect_state: present
 
     # OPTIONAL: Installs a specific version of NGINX App Protect
-    app_protect_version: 21
-
-    # Enable enforcing selinux (you may need to open ports on your own)
-    # WARNING: If this is set to false and you are installing NGINX Protect on a system with SELinux enforced, NGINX App Protect may fail to load. 
-    app_protect_selinux: false
+    app_protect_version: 22
 
     # The installation of NGINX App Protect includes a base signature set, which may be out of date. 
     # This option installs the latest NGINX App Protect signatures.
@@ -158,7 +164,7 @@ This is a sample playbook file for using the role to install NGINX App Protect o
       key: "{{playbook_dir}}/license/nginx-repo.key"
 
   roles:
-    - role: ansible-role-nginx-app-protect
+    - role: nginxinc.nginx_app_protect
 ```
 
 This is a sample playbook file for deploying the Ansible Galaxy NGINX App Protect role in a localhost and installing NGINX App Protect on NGINX Plus.

defaults/main.yml

@@ -10,13 +10,7 @@
 app_protect_state: present
 
 # # OPTIONAL: Installs a specific version of NGINX App Protect
-# app_protect_version: 20
-
-# Enable enforcing selinux (you may need to open ports on your own)
-app_protect_selinux: false
-
-# Enable enforcing mode if true.  Permissive if false (audit only, no enforcing) globally (only works with app_protect_selinux: true)
-app_protect_selinux_enforcing: true
+# app_protect_version: 22
 
 # The installation of NGINX App Protect includes a base signature set, which may be out of date. 
 # This option installs the latest NGINX App Protect signatures.
@@ -46,7 +40,7 @@ app_protect_tempdir: /tmp
 # Default is the official NGINX App Protect signing key host.
 # app_protect_signing_key: https://cs.nginx.com/static/keys/app-protect.key
 
-# populate this dictionary of lists with appropriate values from the ansible_os_family and ansible_distribution_version facts
+# populate this dictionary of lists with appropriate values from the ansible_distribution and ansible_distribution_version facts
 app_protect_linux_families:
   CentOS:
     - 7.4
@@ -57,6 +51,15 @@ app_protect_linux_families:
     - 8.0
     - 8.1
     - 8.2
+  RedHat:
+    - 7.4
+    - 7.5
+    - 7.6
+    - 7.7
+    - 7.8
+    - 8.0
+    - 8.1
+    - 8.2
   Debian:
     - 9.0
     - 9.1

meta/main.yml

@@ -9,7 +9,7 @@ galaxy_info:
   min_ansible_version: 2.7
 
   platforms:
-    - name: CentOS
+    - name: EL
       versions:
         - 7
         - 8

tasks/configure-selinux.yml

@@ -83,11 +83,6 @@
 
   when: app_protect_state != "absent"
 
-- name: "(Install: CentOS) Setup SELinux"
-  include_tasks: "{{ role_path }}/tasks/configure-selinux.yml"
-  when:
-    - app_protect_selinux
-    - ansible_os_family == "RedHat"
 
 - name: "Remove NGINX App Protect"
   block: