Files @ 17cf34f73ca6
Branch filter:

Location: majic-ansible-roles/roles/common/handlers/main.yml

17cf34f73ca6 1.3 KiB text/x-yaml Show Annotation Show as Raw Download as Raw
branko
MAR-28: Implemented additional tests for mail_server role:

- Deploy a number of tools on clients in order to test SMTP, IMAP, and Sieve
services.
- Added one more user to LDAP directory for testing group restrictions.
- Deploy CA certificate on all testing machines for TLS validation purposes.
- Use different custom-configured cipher for mail server ciphers.
- Fixed invalid postmaster address for parameters-optional host.
- Deploy configuration files for use with Imap-CLI on client test machines.
- Updated testing of SMTP server to include checks for users that do not belong
to mail group.
- Extended some SMTP-related tests to cover both test servers.
- Some small fixes in SMTP-related tests for expected output from commands.
- Implemented tests covering Dovecot (IMAP + Sieve) functionality.
- Implemented tests for running/enabled services.
- Implemented tests for ClamAV.
- Implemented tests for firewall and connectivity.
- Implemented tests for Postfix TLS configuration.
- TODO: Tests for Sieve TLS configuration have not been written yet due to
limitation of available tools.
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
---

- name: Update PAM configuration
  command: /usr/sbin/pam-auth-update --package
  tags:
    # [ANSIBLE0012] Commands should not change things if nothing needs doing
    #   This task is invoked only if user is very specific about requiring to
    #   run the handlers manually as a way to bring the system to consistency
    #   after interrupted runs.
    - skip_ansible_lint

- name: Restart SSH
  service: name=ssh state=restarted

- name: Update CA certificate cache
  command: /usr/sbin/update-ca-certificates --fresh
  tags:
    # [ANSIBLE0012] Commands should not change things if nothing needs doing
    #   This task is invoked only if user is very specific about requiring to
    #   run the handlers manually as a way to bring the system to consistency
    #   after interrupted runs.
    - skip_ansible_lint

- name: Restart ferm
  service: name=ferm state=restarted

# @TODO: Replace this with use of systemd module once Ansible is upgraded to
# version 2.2+.
- name: Reload systemd
  command: systemctl daemon-reload
  tags:
    # [ANSIBLE0012] Commands should not change things if nothing needs doing
    #   This task is invoked only if user is very specific about requiring to
    #   run the handlers manually as a way to bring the system to consistency
    #   after interrupted runs.
    - skip_ansible_lint
This site is powered by Kallithea 0.7.0, which is © 2010–2024 by various authors & licensed under GPLv3.