Files @ f1b75f1d4b5e
Branch filter:

Location: majic-ansible-roles/roles/bootstrap/molecule/default/tests/test_default.py

branko
MAR-132: Add support for Debian 9 (Stretch) to ldap_server role:

- Updated Molecule tests to cover Debian 9 as well.
- Remove the ss utility instead of renaming it when preparing for
tests, and make sure the netstat utility is available.
- Duplicate private key/certificate for mandatory parameters testing.
import os

import testinfra.utils.ansible_runner


testinfra_hosts = testinfra.utils.ansible_runner.AnsibleRunner(
    os.environ['MOLECULE_INVENTORY_FILE']).get_hosts(['parameters-mandatory', 'parameters-optional'])


def test_installed_packages(host):
    """
    Tests if packages have been installed.
    """

    assert host.package('sudo').is_installed


def test_ansible_user(host):
    """
    Tests if Ansible user and group have been set-up correctly.
    """

    with host.sudo():
        group = host.group('ansible')
        assert group.exists
        assert group.gid < 1000

        user = host.user('ansible')
        assert user.exists
        assert user.group == 'ansible'
        assert user.groups == ['ansible']
        assert user.uid < 1000
        assert user.shell == '/bin/bash'
        assert user.password == '!'


def test_sudo_configuration(host):
    """
    Tests if sudo has been configured to allow Ansible user to run any command
    without password.
    """

    with host.sudo():

        sudo_config = host.file('/etc/sudoers.d/ansible')

        assert sudo_config.is_file
        assert sudo_config.user == 'root'
        assert sudo_config.group == 'root'
        assert sudo_config.mode == 0o640
        assert sudo_config.content == 'ansible ALL=(ALL:ALL) NOPASSWD:ALL'