mirror of
https://github.com/dev-sec/ansible-collection-hardening
synced 2024-09-20 13:21:52 +00:00
72 lines
1.4 KiB
YAML
72 lines
1.4 KiB
YAML
---
|
|
dependency:
|
|
name: galaxy
|
|
options:
|
|
role-file: molecule/ssh_hardening/requirements.yml
|
|
driver:
|
|
name: docker
|
|
platforms:
|
|
- name: instance
|
|
image: "rndmh3ro/docker-${MOLECULE_DISTRO}-ansible:latest"
|
|
command: ${MOLECULE_DOCKER_COMMAND:-/lib/systemd/systemd}
|
|
volumes:
|
|
- /sys/fs/cgroup:/sys/fs/cgroup:ro
|
|
privileged: true
|
|
tmpfs:
|
|
- /tmp
|
|
- /run
|
|
capabilities:
|
|
- SYS_ADMIN
|
|
tty: true
|
|
env:
|
|
http_proxy: "${http_proxy}"
|
|
https_proxy: "${https_proxy}"
|
|
no_proxy: "${no_proxy}"
|
|
container: docker
|
|
provisioner:
|
|
name: ansible
|
|
options:
|
|
diff: true
|
|
config_options:
|
|
defaults:
|
|
interpreter_python: auto_silent
|
|
callback_whitelist: profile_tasks, timer, yaml
|
|
inventory:
|
|
host_vars:
|
|
# https://molecule.readthedocs.io/en/latest/examples.html#docker-with-non-privileged-user
|
|
# setting for the platform instance named 'instance'
|
|
instance:
|
|
ansible_user: ansible
|
|
verifier:
|
|
name: ansible
|
|
|
|
scenario:
|
|
create_sequence:
|
|
- dependency
|
|
- create
|
|
- prepare
|
|
check_sequence:
|
|
- dependency
|
|
- destroy
|
|
- create
|
|
- prepare
|
|
- converge
|
|
- check
|
|
- destroy
|
|
converge_sequence:
|
|
- dependency
|
|
- create
|
|
- prepare
|
|
- converge
|
|
destroy_sequence:
|
|
- destroy
|
|
test_sequence:
|
|
- dependency
|
|
- destroy
|
|
- syntax
|
|
- create
|
|
- prepare
|
|
- converge
|
|
- idempotence
|
|
- verify
|
|
- destroy
|