Update kitchen-ansible, remove separate debian install

Due to the new kitchen-ansible version it is now possible to install ansible on all major OS's via a ansible omnibus script which is provided by kitchen ansible. There's no more need to separate the debian tests. Also removed whitespace.
2024-11-10 09:14:18 +00:00 · 2015-08-29 14:13:17 +02:00 · 2015-08-29 14:13:17 +02:00 · 7b5fa53f3a
commit 7b5fa53f3a
parent b6f22299d4
4 changed files with 16 additions and 38 deletions
--- a/.kitchen.yml
+++ b/.kitchen.yml
@ -5,6 +5,8 @@ provisioner:
  name: ansible_playbook
  test_repo_uri: https://github.com/TelekomLabs/tests-ssh-hardening.git
  hosts: all
+  require_ansible_repo: false
+  require_ansible_omnibus: true
 platforms:
 - name: ubuntu-12.04
  driver_config:
@ -30,11 +32,23 @@ platforms:
  driver_config:
    box: oracle-6.5
    box_url: https://storage.us2.oraclecloud.com/v1/istoilis-istoilis/vagrant/oel65-64.box
+- name: debian-6
+  driver_config:
+    box: debian-6
+    box_url: https://opscode-vm-bento.s3.amazonaws.com/vagrant/virtualbox/opscode_debian-6.0.10_chef-provisionerless.box
+- name: debian-7
+  driver_config:
+    box: debian-7
+    box_url: https://opscode-vm-bento.s3.amazonaws.com/vagrant/virtualbox/opscode_debian-7.8_chef-provisionerless.box
+- name: debian-8
+  driver_config:
+    box: debian-8
+    box_url: https://opscode-vm-bento.s3.amazonaws.com/vagrant/virtualbox/opscode_debian-8.1_chef-provisionerless.box
+
 suites:
 - name: default
  roles_path: roles
  hosts: all
-  require_ansible_repo: true
  ansible_verbose: true
  ansible_version: 1.9.2
  provisioner:
--- a/.kitchen_debian.yml
+++ b/.kitchen_debian.yml
@ -1,31 +0,0 @@
---
-driver:
-  name: vagrant
-provisioner:
-  name: ansible_playbook
-  test_repo_uri: https://github.com/TelekomLabs/tests-ssh-hardening.git
-  hosts: all
-  require_ansible_omnibus: true
-  ansible_omnibus_url: https://raw.githubusercontent.com/hardening-io/ansible-ssh-hardening/master/ansible-install.sh
-platforms:
- name: debian-6
-  driver_config:
-    box: debian-6
-    box_url: https://opscode-vm-bento.s3.amazonaws.com/vagrant/virtualbox/opscode_debian-6.0.10_chef-provisionerless.box
- name: debian-7
-  driver_config:
-    box: debian-7
-    box_url: https://opscode-vm-bento.s3.amazonaws.com/vagrant/virtualbox/opscode_debian-7.8_chef-provisionerless.box
- name: debian-8
-  driver_config:
-    box: debian-8
-    box_url: https://opscode-vm-bento.s3.amazonaws.com/vagrant/virtualbox/opscode_debian-8.1_chef-provisionerless.box
-suites:
- name: default
-  roles_path: roles
-  hosts: all
-  require_ansible_repo: true
-  ansible_verbose: true
-  ansible_version: 1.9.2
-  provisioner:
-    playbook: test/integration/playbooks/default.yml
--- a/ansible-install.sh
+++ b/ansible-install.sh
@ -1,5 +0,0 @@
-#!/bin/bash
-sudo apt-get install -y build-essential python-dev python-setuptools
-cd /tmp && wget http://releases.ansible.com/ansible/ansible-latest.tar.gz
-tar xzf ansible-latest.tar.gz
-cd ansible-* && sudo python setup.py install
--- a/roles/ansible-ssh-hardening/templates/opensshd.conf.j2
+++ b/roles/ansible-ssh-hardening/templates/opensshd.conf.j2
@ -134,7 +134,7 @@ IgnoreUserKnownHosts yes
 HostbasedAuthentication no

 # Enable PAM to enforce system wide rules
-UsePAM {{ 'yes' if ssh_use_pam else 'no' }} 
+UsePAM {{ 'yes' if ssh_use_pam else 'no' }}

 # Disable password-based authentication, it can allow for potentially easier brute-force attacks.
 PasswordAuthentication no