Files @ a0597f1f2578
Branch filter:

Location: majic-ansible-roles/roles/common/molecule/default/prepare.yml - annotation

branko
MAR-239: Dropped support for Debian 11 Bullseye from the common role.
1640ad5b4cac
1640ad5b4cac
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b46fe4ab1956
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
b1caa3b3c7ad
ca784c26d35c
1640ad5b4cac
1640ad5b4cac
6b8b1d4c9061
1640ad5b4cac
1640ad5b4cac
1640ad5b4cac
e75d5d4fba3b
6b8b1d4c9061
6b8b1d4c9061
1640ad5b4cac
1640ad5b4cac
6b8b1d4c9061
1640ad5b4cac
1640ad5b4cac
1640ad5b4cac
1640ad5b4cac
6b8b1d4c9061
6b8b1d4c9061
1640ad5b4cac
1640ad5b4cac
1640ad5b4cac
1640ad5b4cac
1640ad5b4cac
40b5747adcb3
0b7b153fc6a9
0b7b153fc6a9
0b7b153fc6a9
0b7b153fc6a9
0b7b153fc6a9
0b7b153fc6a9
0b7b153fc6a9
0b7b153fc6a9
0b7b153fc6a9
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
76debadf4dae
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
325b9d16a72b
fefde7a74438
fefde7a74438
fefde7a74438
fefde7a74438
325b9d16a72b
325b9d16a72b
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
63b4a5ca9bff
68c15461075c
68c15461075c
63b4a5ca9bff
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
8018788c81c4
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
5f9f8aef3473
72af31a420be
72af31a420be
72af31a420be
72af31a420be
72af31a420be
72af31a420be
72af31a420be
40b5747adcb3
40b5747adcb3
40b5747adcb3
40b5747adcb3
b46fe4ab1956
b46fe4ab1956
b46fe4ab1956
b46fe4ab1956
---

- name: Set-up fixtures
  hosts: localhost
  connection: local
  gather_facts: false
  tasks:

    - name: Initialise CA hierarchy
      command: "gimmecert init --ca-hierarchy-depth 2"
      args:
        creates: ".gimmecert/ca/level1.cert.pem"
        chdir: "tests/data/"

    - name: Set-up link to generated X.509 material
      file:
        src: ".gimmecert"
        dest: "tests/data/x509"
        state: link

- name: Prepare
  hosts: all
  gather_facts: false
  tasks:

    - name: Install python for Ansible
      raw: test -e /usr/bin/python3 || (apt -y update && apt install -y python3-minimal)
      become: true
      changed_when: false

- hosts: all
  become: true
  tasks:

    - name: Update all caches to avoid errors due to missing remote archives
      apt:
        update_cache: true
      changed_when: false

    - name: Install net-tools for running Testinfra host.socket tests
      apt:
        name: net-tools
        state: present

- hosts: helper
  become: true
  tasks:

    - name: Install apt-cacher-ng
      apt:
        name: apt-cacher-ng
        state: present

- hosts: client
  become: true
  tasks:

    - name: Install tool for testing TCP connectivity
      apt:
        name: nmap
        state: present

    - name: Set-up /etc/hosts with entries for all servers
      lineinfile:
        path: /etc/hosts
        regexp: "^{{ item.key }}"
        line: "{{ item.key }} {{ item.value }}"
        owner: root
        group: root
        mode: 0644
        state: present
      with_dict:
        192.168.56.21: parameters-mandatory-bookworm
        192.168.56.22: parameters-optional-bookworm
        fd00::192:168:56:21: parameters-mandatory-bookworm
        fd00::192:168:56:22: parameters-optional-bookworm

- hosts: parameters-mandatory,parameters-optional
  become: true
  tasks:

    - name: Set-up /etc/hosts with entries for all servers
      lineinfile:
        path: /etc/hosts
        regexp: "^{{ item.key }}"
        line: "{{ item.key }} {{ item.value }}"
        owner: root
        group: root
        mode: 0644
        state: present
      with_dict:
        192.168.56.3: client1
        192.168.56.4: client2

    - name: Load legacy iptables to test their removal
      modprobe:
        name: "{{ item }}"
        state: present
      with_items:
        - iptable_filter
        - iptable_nat
        - iptable_mangle
        - iptable_security
        - iptable_raw
        - ip6table_filter
        - ip6table_nat
        - ip6table_mangle
        - ip6table_security
        - ip6table_raw

    - name: Create some custom legacy iptables chains for testing their removal (max chain name length is 29)
      command: "iptables-legacy -t '{{ item }}' -N '{{ (ansible_date_time.iso8601_micro | to_uuid)[:28] }}'"
      with_items:
        - filter
        - nat
        - mangle
        - security
        - raw

    - name: Create some custom legacy ip6tables chains for testing their removal (max chain name length is 29)
      command: "ip6tables-legacy -t '{{ item }}' -N '{{ (ansible_date_time.iso8601_micro | to_uuid)[:28] }}'"
      with_items:
        - filter
        - nat
        - mangle
        - security
        - raw

    - name: Create deprecated directory for storing requirements files created using Python 3 (pip requirements upgrade checks)
      file:
        path: "/etc/pip_check_requirements_upgrades-py3"
        state: directory
        owner: root
        group: root
        mode: 0750

    - name: Create deprecated directory for Python 3 virtual environment (pip requirements upgrade checks)
      file:
        path: "/var/lib/pipreqcheck/virtualenv-py3/"
        state: directory
        owner: root
        group: root
        mode: 0750

    - name: Create deprecated cronjob file for Python 3 (pip requirements upgrade checks)
      file:
        path: "/etc/cron.d/check_pip_requirements-py3"
        state: touch
        owner: root
        group: root
        mode: 0644

    - name: Install the deprecated/obsolete NTP-related packages
      apt:
        name:
          - ntp
          - ntpdate
        state: present

- hosts: parameters-mandatory,parameters-optional
  become: true
  tasks:

    - name: Remove the ss utility (see https://github.com/philpep/testinfra/pull/320)
      file:
        path: "/bin/ss"
        state: absent