mirror of
https://github.com/dev-sec/ansible-collection-hardening
synced 2024-11-10 09:14:18 +00:00
16 lines
833 B
YAML
16 lines
833 B
YAML
---
|
|
language: python
|
|
python: "2.7"
|
|
before_install:
|
|
- sudo apt-get update -qq
|
|
- sudo apt-get install -qq python-apt python-pycurl
|
|
install:
|
|
- pip install ansible
|
|
- echo -e 'localhost ansible_connection=local' > spec/inventory
|
|
- echo -e '[defaults]\nroles_path = ../\nhostfile = ./spec/inventory' > ansible.cfg
|
|
|
|
script:
|
|
- ansible-playbook --syntax-check spec/travis.yml
|
|
- ansible-playbook --sudo -v --diff spec/travis.yml --skip-tags "sysctl" --extra-vars "os_security_users_allow=change_user os_security_kernel_enable_core_dump=true os_security_suid_sgid_remove_from_unknown=true"
|
|
- ansible-playbook --sudo -v --diff spec/travis.yml --tags "pam" --extra-vars "os_auth_pam_passwdqc_enable=false"
|
|
- ansible-playbook --sudo -v --diff spec/travis.yml --skip-tags "sysctl" --extra-vars "os_security_users_allow=change_user"
|