fix SELinux bit of docker role

roles/docker/tasks/create_dirs.yml

@@ -4,12 +4,24 @@
     path: "{{ item }}"
   register: container_dir
 
-- name: Create {{ item }}
-  file:
-    path: "{{ item }}"
-    state: directory
-    owner: "{{ container_user }}"
-    group: "{{ container_group }}"
-    mode: '0770'
+
+- block:
+    - name: Create {{ item }}
+      file:
+        path: "{{ item }}"
+        state: directory
+        owner: "{{ container_user }}"
+        group: "{{ container_group }}"
+        mode: '0770'
+
+    - name: Modify SELinux contexts for {{ item }}
+      sefcontext:
+        target: "{{ item }}(/.*)?"
+        setype: container_file_t
+        state: present
+
+    - name: Apply SELinux contexts to {{ item }}
+      shell:
+        cmd: restorecon -r "{{ item }}"
   when:
     - not container_dir.stat.exists

roles/docker/tasks/main.yml

@@ -94,15 +94,6 @@
   loop_control:
     label: "{{ item }}"
 
-#- name: Modify SELinux contexts for container directories
-#  sefcontext:
-#    target: "{{ item | quote }}(/.*)?"
-#    setype: container_file_t
-#    state: present
-#  with_items:
-#    - "{{ persistent_container_dirs }}"
-#  notify: Apply SELinux contexts
-
 - name: Copy systemd service file
   template:
     src: service.j2