Files
@ 8d272d91d3d2
Branch filter:
Location: majic-ansible-roles/roles/preseed/molecule/default/create.yml - annotation
8d272d91d3d2
2.2 KiB
text/x-yaml
MAR-165: Deploy Diffie-Helman parameters for LDAP server in the ldap_server role:
- Not relevant for Debian Strech because of a bug in the OpenLDAP
version it ships with.
- This should allow use of DHE ciphers with LDAP server.
- Generated DH parameters only help pick one of the parameters from
RFC-7919 (based on the size of generated ones).
- Make the cipher test lists distro-specific due to differences
between supported algorithms in respective GnuTLS versions.
- Not relevant for Debian Strech because of a bug in the OpenLDAP
version it ships with.
- This should allow use of DHE ciphers with LDAP server.
- Generated DH parameters only help pick one of the parameters from
RFC-7919 (based on the size of generated ones).
- Make the cipher test lists distro-specific due to differences
between supported algorithms in respective GnuTLS versions.
4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 abe3f4e5e6a6 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 4ee589937d60 | ---
- name: Create
hosts: localhost
connection: local
gather_facts: false
no_log: "{{ not lookup('env', 'MOLECULE_DEBUG') | bool }}"
vars:
molecule_file: "{{ lookup('env', 'MOLECULE_FILE') }}"
molecule_instance_config: "{{ lookup('env', 'MOLECULE_INSTANCE_CONFIG') }}"
molecule_yml: "{{ lookup('file', molecule_file) | molecule_from_yaml }}"
tasks:
- name: Create molecule instance(s)
molecule_vagrant:
instance_name: "{{ item.name }}"
instance_interfaces: "{{ item.interfaces | default(omit) }}"
instance_raw_config_args: "{{ item.instance_raw_config_args | default(omit) }}"
platform_box: "{{ item.box }}"
platform_box_version: "{{ item.box_version | default(omit) }}"
platform_box_url: "{{ item.box_url | default(omit) }}"
provider_name: "{{ molecule_yml.driver.provider.name }}"
provider_memory: "{{ item.memory | default(omit) }}"
provider_cpus: "{{ item.cpus | default(omit) }}"
provider_raw_config_args: "{{ item.raw_config_args | default(omit) }}"
state: up
register: server
with_items: "{{ molecule_yml.platforms }}"
# Mandatory configuration for Molecule to function.
- name: Populate instance config dict
set_fact:
instance_conf_dict: {
'instance': "{{ item.Host }}",
'address': "{{ item.HostName }}",
'user': "{{ item.User }}",
'port': "{{ item.Port }}",
'identity_file': "{{ item.IdentityFile }}", }
with_items: "{{ server.results }}"
register: instance_config_dict
when: server.changed | bool
- name: Convert instance config dict to a list
set_fact:
instance_conf: "{{ instance_config_dict.results | map(attribute='ansible_facts.instance_conf_dict') | list }}"
when: server.changed | bool
- name: Dump instance config
copy:
# NOTE(retr0h): Workaround for Ansible 2.2.
# https://github.com/ansible/ansible/issues/20885
content: "{{ instance_conf | to_json | from_json | molecule_to_yaml | molecule_header }}"
dest: "{{ molecule_instance_config }}"
when: server.changed | bool
|