From 22c729ba6aba2da9c24e83bf904fec16da1e3c1e Mon Sep 17 00:00:00 2001
From: Gabriel Roldan <gabriel.roldan@camptocamp.com>
Date: Thu, 31 Oct 2024 20:41:37 -0300
Subject: [PATCH] Add `:z` SELinux label to bind mounts in dev and sample
 docker compose files

`:z` tells Docker to label the volume for shared access among multiple containers.

Turns out to be important when there's for example a geopackage
in a shared data directory.
---
 compose/catalog-datadir.yml                           | 2 +-
 compose/compose.yml                                   | 2 +-
 compose/infra.yml                                     | 2 +-
 docs/deploy/docker-compose/stable/datadir/compose.yml | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/compose/catalog-datadir.yml b/compose/catalog-datadir.yml
index 0c116508..7c0e5e8d 100644
--- a/compose/catalog-datadir.yml
+++ b/compose/catalog-datadir.yml
@@ -11,7 +11,7 @@ volumes:
     driver_opts:
       type: none
       o: bind
-      device: $PWD/catalog-datadir
+      device: $PWD/catalog-datadir:z
   
 services:
   init-datadir:
diff --git a/compose/compose.yml b/compose/compose.yml
index cb6323e7..ebad5a75 100644
--- a/compose/compose.yml
+++ b/compose/compose.yml
@@ -7,7 +7,7 @@ volumes:
     driver_opts:
       type: none
       o: bind
-      device: $PWD/../config
+      device: $PWD/../config:z
     driver: local
 
 x-gs-dependencies: &gs-dependencies
diff --git a/compose/infra.yml b/compose/infra.yml
index ab74becb..1757d4ed 100644
--- a/compose/infra.yml
+++ b/compose/infra.yml
@@ -26,7 +26,7 @@ services:
     tmpfs:
       - /var/lib/rabbitmq
     volumes:
-      - $PWD/../config/rabbitmq.conf:/etc/rabbitmq/rabbitmq.conf
+      - $PWD/../config/rabbitmq.conf:/etc/rabbitmq/rabbitmq.conf:Z
     #  - rabbitmq_data:/var/lib/rabbitmq
     ports:
       - "5672:5672"
diff --git a/docs/deploy/docker-compose/stable/datadir/compose.yml b/docs/deploy/docker-compose/stable/datadir/compose.yml
index 4bbdfced..d64d966f 100644
--- a/docs/deploy/docker-compose/stable/datadir/compose.yml
+++ b/docs/deploy/docker-compose/stable/datadir/compose.yml
@@ -7,7 +7,7 @@ volumes:
     #driver_opts:
       #type: none
       #o: bind
-      #device: $PWD/datadir
+      #device: $PWD/datadir:z
   rabbitmq_data: # volume for rabbitmq data, so it doesn't create an anonymous one on each container
   geowebcache_data: # used by gwc and web-ui to locate the default gwc tile cache directory