module my-httpd 1.0;

require {
	type httpd_t;
	type user_home_t;
	class lnk_file { getattr read };
}

#============= httpd_t ==============

#!!!! This avc is allowed in the current policy
allow httpd_t user_home_t:lnk_file { getattr read };