Files
@ c2f446ec7e2a
Branch filter:
Location: majic-ansible-roles/roles/ldap_client/molecule/default/tests/test_optional.py - annotation
c2f446ec7e2a
628 B
text/x-python
MAR-158: Update default TLS ciphers configuration in the mail_server role:
- Updated the default value for parameter mail_server_tls_ciphers.
- Updated tests, making them explicitly test for enabled and disabled
ciphers.
- Refactored tests for TLS to use nmap ssl-enum-ciphers script for
listing available TLS versions and ciphers.
- Install nmap as part of preparation step.
- Updated role reference documentation.
- Updated the default value for parameter mail_server_tls_ciphers.
- Updated tests, making them explicitly test for enabled and disabled
ciphers.
- Refactored tests for TLS to use nmap ssl-enum-ciphers script for
listing available TLS versions and ciphers.
- Install nmap as part of preparation step.
- Updated role reference documentation.
62014a66e35f 62014a66e35f 0c2178fd95a5 0c2178fd95a5 62014a66e35f 0c2178fd95a5 d62b3adec462 0c2178fd95a5 0c2178fd95a5 7180fd36dda8 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 0c2178fd95a5 a0e0015117c1 a0e0015117c1 0c2178fd95a5 7180fd36dda8 0c2178fd95a5 d752715bb533 | import os
import testinfra.utils.ansible_runner
testinfra_hosts = testinfra.utils.ansible_runner.AnsibleRunner(
os.environ['MOLECULE_INVENTORY_FILE']).get_hosts('parameters-optional')
def test_ldap_configuration_file_content(host):
"""
Tests if LDAP configuration file has correct content
"""
expected_content = """# CA truststore
TLS_CACERT /etc/ssl/certs/testca.cert.pem
# Ensure TLS is enforced
TLS_REQCERT demand
# Default URI to connect to
URI ldaps://ldap-server/
# Base entry
BASE dc=local
"""
config = host.file('/etc/ldap/ldap.conf')
assert config.content_string == expected_content
|