Files
@ 8d272d91d3d2
Branch filter:
Location: majic-ansible-roles/roles/ldap_server/molecule/default/molecule.yml - annotation
8d272d91d3d2
1.8 KiB
text/x-yaml
MAR-165: Deploy Diffie-Helman parameters for LDAP server in the ldap_server role:
- Not relevant for Debian Strech because of a bug in the OpenLDAP
version it ships with.
- This should allow use of DHE ciphers with LDAP server.
- Generated DH parameters only help pick one of the parameters from
RFC-7919 (based on the size of generated ones).
- Make the cipher test lists distro-specific due to differences
between supported algorithms in respective GnuTLS versions.
- Not relevant for Debian Strech because of a bug in the OpenLDAP
version it ships with.
- This should allow use of DHE ciphers with LDAP server.
- Generated DH parameters only help pick one of the parameters from
RFC-7919 (based on the size of generated ones).
- Make the cipher test lists distro-specific due to differences
between supported algorithms in respective GnuTLS versions.
ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 c082a26b62ff c082a26b62ff ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 2f8747288649 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 5a36f75bc297 f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e f1b75f1d4b5e 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 2f8747288649 ec4e3e91c4d3 ec4e3e91c4d3 bba096126140 bba096126140 ec4e3e91c4d3 1bf0f41d1854 1bf0f41d1854 e75d5d4fba3b ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 ec4e3e91c4d3 | ---
dependency: {}
driver:
name: vagrant
provider:
name: virtualbox
lint:
name: yamllint
options:
config-file: ../../.yamllint.yml
platforms:
- name: client
box: debian/contrib-buster64
memory: 512
cpus: 1
interfaces:
- auto_config: true
ip: 10.31.127.10
network_name: private_network
type: static
- name: parameters-mandatory-stretch64
groups:
- parameters-mandatory
box: debian/contrib-stretch64
memory: 256
cpus: 1
interfaces:
- auto_config: true
ip: 10.31.127.22
network_name: private_network
type: static
- name: parameters-optional-stretch64
groups:
- parameters-optional
- backup-server
box: debian/contrib-stretch64
memory: 256
cpus: 1
interfaces:
- auto_config: true
ip: 10.31.127.23
network_name: private_network
type: static
- name: parameters-mandatory-buster64
groups:
- parameters-mandatory
box: debian/contrib-buster64
memory: 256
cpus: 1
interfaces:
- auto_config: true
ip: 10.31.127.12
network_name: private_network
type: static
- name: parameters-optional-buster64
groups:
- parameters-optional
- backup-server
box: debian/contrib-buster64
memory: 256
cpus: 1
interfaces:
- auto_config: true
ip: 10.31.127.13
network_name: private_network
type: static
provisioner:
name: ansible
playbooks:
cleanup: cleanup.yml
config_options:
defaults:
force_valid_group_names: "ignore"
interpreter_python: "/usr/bin/python3"
ssh_connection:
pipelining: "True"
lint:
name: ansible-lint
scenario:
name: default
verifier:
name: testinfra
lint:
name: flake8
|