refactor to comply with current ansible-lint and sanity guidelines

Signed-off-by: Adam Miller <admiller@redhat.com>

tests/integration/targets/firewalld/meta/main.yml

@@ -1,2 +1,3 @@
+---
 dependencies:
   - setup_pkg_mgr

tests/integration/targets/firewalld/tasks/icmp_block_inversion_test_cases.yml

@@ -1,172 +1,173 @@
+---
 # Test playbook for the firewalld module - icmp block inversion operations
 # (c) 2022, Gregory Furlong <gnfzdz@fzdz.io>
 # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 
 - name: Icmp block inversion enabled when icmp block inversion is truthy and state is enabled
   block:
-  - name: Testing enable icmp block inversion
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: yes
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing enable icmp block inversion
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: true
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert icmp block inversion is enabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert icmp block inversion is enabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing enable icmp block inversion (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: yes
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing enable icmp block inversion (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: true
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert icmp block inversion is enabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert icmp block inversion is enabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Icmp block inversion disabled when icmp block inversion is falsy and state is enabled
   block:
-  - name: Testing disable icmp block inversion
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: no
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing disable icmp block inversion
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: false
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert icmp block inversion is disabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert icmp block inversion is disabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing disable icmp block inversion (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: no
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing disable icmp block inversion (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: false
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert icmp block inversion is disabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert icmp block inversion is disabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Icmp block inversion enabled when icmp block inversion is falsy and state is disabled
   block:
-  - name: Testing enable icmp block inversion
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: no
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing enable icmp block inversion
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: false
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert icmp block inversion is enabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert icmp block inversion is enabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing enable icmp block inversion (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: no
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing enable icmp block inversion (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: false
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert icmp block inversion is enabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert icmp block inversion is enabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Icmp block inversion disabled when icmp block inversion is truthy and state is disabled
   block:
-  - name: Testing disable icmp block inversion
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: yes
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing disable icmp block inversion
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: true
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert icmp block inversion is disabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert icmp block inversion is disabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing disable icmp block inversion (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: yes
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing disable icmp block inversion (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: true
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert icmp block inversion is disabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert icmp block inversion is disabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 # Validate backwards compatible behavior until icmp block inversion is switched from string to boolean type
 - name: Icmp block inversion enabled when icmp block inversion is non-boolean string and state is enabled
   block:
-  - name: Testing enable icmp block inversion
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: 'some string'
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing enable icmp block inversion
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: some string
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert icmp block inversion is enabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert icmp block inversion is enabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing enable icmp block inversion (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: 'some string'
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing enable icmp block inversion (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: some string
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert icmp block inversion is enabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert icmp block inversion is enabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Icmp block inversion disabled when icmp block inversion is non-boolean string and state is disabled
   block:
-  - name: Testing disable icmp block inversion
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: 'some string'
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing disable icmp block inversion
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: some string
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert icmp block inversion is disabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert icmp block inversion is disabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing disable icmp block inversion (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      icmp_block_inversion: 'some string'
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing disable icmp block inversion (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        icmp_block_inversion: some string
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert icmp block inversion is disabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert icmp block inversion is disabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed

tests/integration/targets/firewalld/tasks/interface_test_cases.yml

@@ -1,87 +1,88 @@
+---
 # Test playbook for the firewalld module - interface operations
 # (c) 2022, Gregory Furlong <gnfzdz@fzdz.io>
 # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 
 - name: Validate adding interface
   block:
-  - name: Add lo interface to trusted zone
-    ansible.posix.firewalld:
-      interface: lo
-      zone: trusted
-      permanent: Yes
-      state: enabled
-    register: result
+    - name: Add lo interface to trusted zone
+      ansible.posix.firewalld:
+        interface: lo
+        zone: trusted
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert lo was added to trusted zone
-    assert:
-      that:
-      - result is changed
+    - name: Assert lo was added to trusted zone
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Add lo interface to trusted zone (verify not changed)
-    ansible.posix.firewalld:
-      interface: lo
-      zone: trusted
-      permanent: Yes
-      state: enabled
-    register: result
+    - name: Add lo interface to trusted zone (verify not changed)
+      ansible.posix.firewalld:
+        interface: lo
+        zone: trusted
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert lo was added to trusted zone (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert lo was added to trusted zone (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Validate moving interfaces
   block:
-  - name: Move lo interface from trusted zone to internal zone
-    ansible.posix.firewalld:
-      interface: lo
-      zone: internal
-      permanent: Yes
-      state: enabled
-    register: result
+    - name: Move lo interface from trusted zone to internal zone
+      ansible.posix.firewalld:
+        interface: lo
+        zone: internal
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: Assert lo was moved from trusted zone to internal zone
-    assert:
-      that:
-      - result is changed
+    - name: Assert lo was moved from trusted zone to internal zone
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Move lo interface from trusted zone to internal zone (verify not changed)
-    ansible.posix.firewalld:
-      interface: lo
-      zone: internal
-      permanent: Yes
-      state: enabled
-    register: result
+    - name: Move lo interface from trusted zone to internal zone (verify not changed)
+      ansible.posix.firewalld:
+        interface: lo
+        zone: internal
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert lo was moved from trusted zone to internal zone (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert lo was moved from trusted zone to internal zone (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Validate removing interface
   block:
-  - name: Remove lo interface from internal zone
-    ansible.posix.firewalld:
-      interface: lo
-      zone: internal
-      permanent: Yes
-      state: disabled
-    register: result
+    - name: Remove lo interface from internal zone
+      ansible.posix.firewalld:
+        interface: lo
+        zone: internal
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: Assert lo interface was removed from internal zone
-    assert:
-      that:
-      - result is changed
+    - name: Assert lo interface was removed from internal zone
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Remove lo interface from internal zone (verify not changed)
-    ansible.posix.firewalld:
-      interface: lo
-      zone: internal
-      permanent: Yes
-      state: disabled
-    register: result
+    - name: Remove lo interface from internal zone (verify not changed)
+      ansible.posix.firewalld:
+        interface: lo
+        zone: internal
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: Assert lo interface was removed from internal zone (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert lo interface was removed from internal zone (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed

tests/integration/targets/firewalld/tasks/main.yml

@@ -1,17 +1,24 @@
+---
 # Test playbook for the firewalld module
 # (c) 2017, Adam Miller <admiller@redhat.com>
 # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 
 - name: Run firewalld tests
+  when:
+    - ansible_facts.os_family == "RedHat" and ansible_facts.distribution_major_version is version('7', '>=')
+    - not (ansible_distribution == "Ubuntu" and ansible_distribution_version is version('14.04', '=='))
+    # Firewalld package on OpenSUSE (15+) require Python 3, so we skip on OpenSUSE running py2 on these newer distros
+    - not (ansible_os_family == "Suse" and ansible_distribution_major_version|int != 42 and ansible_python.version.major != 3)
+    - not (ansible_facts.distribution == "CentOS" and ansible_distribution_major_version is version('7', '==')) # FIXME
   block:
     - name: Ensure firewalld is installed
-      package:
+      ansible.builtin.package:
         name: firewalld
         state: present
-      # This doesn't work for CentOS 6 because firewalld doesn't exist in CentOS6
+    # This doesn't work for CentOS 6 because firewalld doesn't exist in CentOS6
 
     - name: Enable dbus-broker daemon
-      service:
+      ansible.builtin.service:
         name: dbus-broker
         enabled: true
         state: started
@@ -19,25 +26,20 @@
 
     - name: Test Online Operations
       block:
-        - name: start firewalld
-          service:
+        - name: Start firewalld
+          ansible.builtin.service:
             name: firewalld
             state: started
 
-        - import_tasks: run_all_tests.yml
+        - name: Import test tasks
+          ansible.builtin.import_tasks: run_all_tests.yml
 
     - name: Test Offline Operations
       block:
-        - name: stop firewalld
-          service:
+        - name: Stop firewalld
+          ansible.builtin.service:
             name: firewalld
             state: stopped
 
-        - import_tasks: run_all_tests.yml
-
-  when:
-  - ansible_facts.os_family == "RedHat" and ansible_facts.distribution_major_version is version('7', '>=')
-  - not (ansible_distribution == "Ubuntu" and ansible_distribution_version is version('14.04', '=='))
-  # Firewalld package on OpenSUSE (15+) require Python 3, so we skip on OpenSUSE running py2 on these newer distros
-  - not (ansible_os_family == "Suse" and ansible_distribution_major_version|int != 42 and ansible_python.version.major != 3)
-  - not (ansible_facts.distribution == "CentOS" and ansible_distribution_major_version is version('7', '==')) # FIXME
+        - name: Import test tasks
+          ansible.builtin.import_tasks: run_all_tests.yml

tests/integration/targets/firewalld/tasks/masquerade_test_cases.yml

@@ -1,172 +1,173 @@
+---
 # Test playbook for the firewalld module - masquerade operations
 # (c) 2022, Gregory Furlong <gnfzdz@fzdz.io>
 # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 
 - name: Masquerade enabled when masquerade is truthy and state is enabled
   block:
-  - name: Testing enable masquerade
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: yes
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing enable masquerade
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: true
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert masquerade is enabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert masquerade is enabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing enable masquerade (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: yes
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing enable masquerade (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: true
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert masquerade is enabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert masquerade is enabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Masquerade disabled when masquerade is falsy and state is enabled
   block:
-  - name: Testing disable masquerade
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: no
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing disable masquerade
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: false
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert masquerade is disabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert masquerade is disabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing disable masquerade (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: no
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing disable masquerade (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: false
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert masquerade is disabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert masquerade is disabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Masquerade enabled when masquerade is falsy and state is disabled
   block:
-  - name: Testing enable masquerade
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: no
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing enable masquerade
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: false
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert masquerade is enabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert masquerade is enabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing enable masquerade (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: no
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing enable masquerade (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: false
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert masquerade is enabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert masquerade is enabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Masquerade disabled when masquerade is truthy and state is disabled
   block:
-  - name: Testing disable masquerade
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: yes
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing disable masquerade
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: true
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert masquerade is disabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert masquerade is disabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing disable masquerade (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: yes
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing disable masquerade (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: true
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert masquerade is disabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert masquerade is disabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 # Validate backwards compatible behavior until masquerade is switched from string to boolean type
 - name: Masquerade enabled when masquerade is non-boolean string and state is enabled
   block:
-  - name: Testing enable masquerade
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: 'some string'
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing enable masquerade
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: some string
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert masquerade is enabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert masquerade is enabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing enable masquerade (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: 'some string'
-      permanent:  yes
-      state:      enabled
-    register: result
+    - name: Testing enable masquerade (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: some string
+        permanent: true
+        state: enabled
+      register: result
 
-  - name: assert masquerade is enabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert masquerade is enabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed
 
 - name: Masquerade disabled when masquerade is non-boolean string and state is disabled
   block:
-  - name: Testing disable masquerade
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: 'some string'
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing disable masquerade
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: some string
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert masquerade is disabled
-    assert:
-      that:
-      - result is changed
+    - name: Assert masquerade is disabled
+      ansible.builtin.assert:
+        that:
+          - result is changed
 
-  - name: Testing disable masquerade (verify not changed)
-    ansible.posix.firewalld:
-      zone:       trusted
-      masquerade: 'some string'
-      permanent:  yes
-      state:      disabled
-    register: result
+    - name: Testing disable masquerade (verify not changed)
+      ansible.posix.firewalld:
+        zone: trusted
+        masquerade: some string
+        permanent: true
+        state: disabled
+      register: result
 
-  - name: assert masquerade is disabled (verify not changed)
-    assert:
-      that:
-      - result is not changed
+    - name: Assert masquerade is disabled (verify not changed)
+      ansible.builtin.assert:
+        that:
+          - result is not changed

tests/integration/targets/firewalld/tasks/port_forward_test_cases.yml

@@ -1,9 +1,10 @@
+---
 # Test playbook for the firewalld module - port operations
 # (c) 2017, Adam Miller <admiller@redhat.com>
 # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 
-- name: firewalld port forward test permanent enabled
-  firewalld:
+- name: Firewalld port forward test permanent enabled
+  ansible.posix.firewalld:
     port_forward:
       - port: 8080
         proto: tcp
@@ -12,13 +13,13 @@
     state: enabled
   register: result
 
-- name: assert firewalld port test permanent enabled worked
-  assert:
+- name: Assert firewalld port test permanent enabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld port test permanent enabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld port test permanent enabled rerun (verify not changed)
+  ansible.posix.firewalld:
     port_forward:
       - port: 8080
         proto: tcp
@@ -27,13 +28,13 @@
     state: enabled
   register: result
 
-- name: assert firewalld port test permanent enabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld port test permanent enabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld port test permanent disabled
-  firewalld:
+- name: Firewalld port test permanent disabled
+  ansible.posix.firewalld:
     port_forward:
       - port: 8080
         proto: tcp
@@ -42,13 +43,13 @@
     state: disabled
   register: result
 
-- name: assert firewalld port test permanent disabled worked
-  assert:
+- name: Assert firewalld port test permanent disabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld port test permanent disabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld port test permanent disabled rerun (verify not changed)
+  ansible.posix.firewalld:
     port_forward:
       - port: 8080
         proto: tcp
@@ -57,7 +58,7 @@
     state: disabled
   register: result
 
-- name: assert firewalld port test permanent disabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld port test permanent disabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed

tests/integration/targets/firewalld/tasks/port_test_cases.yml

@@ -1,57 +1,58 @@
+---
 # Test playbook for the firewalld module - port operations
 # (c) 2017, Adam Miller <admiller@redhat.com>
 # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 
-- name: firewalld port range test permanent enabled
-  firewalld:
+- name: Firewalld port range test permanent enabled
+  ansible.posix.firewalld:
     port: 5500-6850/tcp
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld port range test permanent enabled worked
-  assert:
+- name: Assert firewalld port range test permanent enabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld port range test permanent enabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld port range test permanent enabled rerun (verify not changed)
+  ansible.posix.firewalld:
     port: 5500-6850/tcp
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld port range test permanent enabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld port range test permanent enabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld port test permanent enabled
-  firewalld:
+- name: Firewalld port test permanent enabled
+  ansible.posix.firewalld:
     port: 6900/tcp
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld port test permanent enabled worked
-  assert:
+- name: Assert firewalld port test permanent enabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld port test permanent enabled
-  firewalld:
+- name: Firewalld port test permanent enabled
+  ansible.posix.firewalld:
     port: 6900/tcp
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld port test permanent enabled worked
-  assert:
+- name: Assert firewalld port test permanent enabled worked
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld port test disabled
-  firewalld:
+- name: Firewalld port test disabled
+  ansible.posix.firewalld:
     port: "{{ item }}"
     permanent: true
     state: disabled
@@ -59,50 +60,50 @@
     - 6900/tcp
     - 5500-6850/tcp
 
-- name: firewalld port test permanent enabled
-  firewalld:
+- name: Firewalld port test permanent enabled
+  ansible.posix.firewalld:
     port: 8081/tcp
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld port test permanent enabled worked
-  assert:
+- name: Assert firewalld port test permanent enabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld port test permanent enabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld port test permanent enabled rerun (verify not changed)
+  ansible.posix.firewalld:
     port: 8081/tcp
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld port test permanent enabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld port test permanent enabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld port test permanent disabled
-  firewalld:
+- name: Firewalld port test permanent disabled
+  ansible.posix.firewalld:
     port: 8081/tcp
     permanent: true
     state: disabled
   register: result
 
-- name: assert firewalld port test permanent disabled worked
-  assert:
+- name: Assert firewalld port test permanent disabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld port test permanent disabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld port test permanent disabled rerun (verify not changed)
+  ansible.posix.firewalld:
     port: 8081/tcp
     permanent: true
     state: disabled
   register: result
 
-- name: assert firewalld port test permanent disabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld port test permanent disabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed

tests/integration/targets/firewalld/tasks/protocol_test_cases.yml

@@ -1,3 +1,4 @@
+---
 # Test playbook for the firewalld module - protocol operations
 # (c) 2022, Robért S. Guhr <rguhr@cronon.net>
 
@@ -16,50 +17,50 @@
 # You should have received a copy of the GNU General Public License
 # along with Ansible.  If not, see <http://www.gnu.org/licenses/>.
 
-- name: firewalld protocol test permanent enabled
-  firewalld:
+- name: Firewalld protocol test permanent enabled
+  ansible.posix.firewalld:
     protocol: ospf
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld protocol test permanent enabled worked
-  assert:
+- name: Assert firewalld protocol test permanent enabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld protocol test permanent enabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld protocol test permanent enabled rerun (verify not changed)
+  ansible.posix.firewalld:
     protocol: ospf
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld protocol test permanent enabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld protocol test permanent enabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld protocol test permanent disabled
-  firewalld:
+- name: Firewalld protocol test permanent disabled
+  ansible.posix.firewalld:
     protocol: ospf
     permanent: true
     state: disabled
   register: result
 
-- name: assert firewalld protocol test permanent disabled worked
-  assert:
+- name: Assert firewalld protocol test permanent disabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld protocol test permanent disabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld protocol test permanent disabled rerun (verify not changed)
+  ansible.posix.firewalld:
     protocol: ospf
     permanent: true
     state: disabled
   register: result
 
-- name: assert firewalld protocol test permanent disabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld protocol test permanent disabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed

tests/integration/targets/firewalld/tasks/run_all_tests.yml

@@ -1,38 +1,50 @@
+---
 # Test playbook for the firewalld module
 # (c) 2017, Adam Miller <admiller@redhat.com>
 # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 
 - name: Ensure /run/firewalld exists
-  file:
+  ansible.builtin.file:
     path: /run/firewalld
     state: directory
+    mode: "0755"
 
 # firewalld service operation test cases
-- include_tasks: service_test_cases.yml
+- name: Include service test cases for firewalld module
+  ansible.builtin.include_tasks: service_test_cases.yml
 
 # firewalld protocol operation test cases
-- include_tasks: protocol_test_cases.yml
+- name: Include protocol test cases for firewalld module
+  ansible.builtin.include_tasks: protocol_test_cases.yml
 
 # firewalld port operation test cases
-- include_tasks: port_test_cases.yml
+- name: Include port test cases for firewalld module
+  ansible.builtin.include_tasks: port_test_cases.yml
 
 # firewalld source operation test cases
-- include_tasks: source_test_cases.yml
+- name: Include source test cases for firewalld module
+  ansible.builtin.include_tasks: source_test_cases.yml
 
 # firewalld zone operation test cases
-- include_tasks: zone_test_cases.yml
+- name: Include zone test cases for firewalld module
+  ansible.builtin.include_tasks: zone_test_cases.yml
 
 # firewalld zone target operation test cases
-- include_tasks: zone_target_test_cases.yml
+- name: Include zone target test cases for firewalld module
+  ansible.builtin.include_tasks: zone_target_test_cases.yml
 
 # firewalld port forwarding operation test cases
-- include_tasks: port_forward_test_cases.yml
+- name: Include port forward target test cases for firewalld module
+  ansible.builtin.include_tasks: port_forward_test_cases.yml
 
 # firewalld masquerade operation test cases
-- include_tasks: masquerade_test_cases.yml
+- name: Include masquerade target test cases for firewalld module
+  ansible.builtin.include_tasks: masquerade_test_cases.yml
 
 # firewalld icmp block inversion operation test cases
-- include_tasks: icmp_block_inversion_test_cases.yml
+- name: Include icmp block inversion target test cases for firewalld module
+  ansible.builtin.include_tasks: icmp_block_inversion_test_cases.yml
 
 # firewalld interface operation test cases
-- include_tasks: interface_test_cases.yml
+- name: Include interface target test cases for firewalld module
+  ansible.builtin.include_tasks: interface_test_cases.yml

tests/integration/targets/firewalld/tasks/service_test_cases.yml

@@ -1,3 +1,4 @@
+---
 # Test playbook for the firewalld module - service operations
 # (c) 2017, Adam Miller <admiller@redhat.com>
 
@@ -16,50 +17,50 @@
 # You should have received a copy of the GNU General Public License
 # along with Ansible.  If not, see <http://www.gnu.org/licenses/>.
 
-- name: firewalld service test permanent enabled
-  firewalld:
+- name: Firewalld service test permanent enabled
+  ansible.posix.firewalld:
     service: https
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld service test permanent enabled worked
-  assert:
+- name: Assert firewalld service test permanent enabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld service test permanent enabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld service test permanent enabled rerun (verify not changed)
+  ansible.posix.firewalld:
     service: https
     permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld service test permanent enabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld service test permanent enabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld service test permanent disabled
-  firewalld:
+- name: Firewalld service test permanent disabled
+  ansible.posix.firewalld:
     service: https
     permanent: true
     state: disabled
   register: result
 
-- name: assert firewalld service test permanent disabled worked
-  assert:
+- name: Assert firewalld service test permanent disabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld service test permanent disabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld service test permanent disabled rerun (verify not changed)
+  ansible.posix.firewalld:
     service: https
     permanent: true
     state: disabled
   register: result
 
-- name: assert firewalld service test permanent disabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld service test permanent disabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed

tests/integration/targets/firewalld/tasks/source_test_cases.yml

@@ -1,3 +1,4 @@
+---
 # Test playbook for the firewalld module - source operations
 # (c) 2019, Hideki Saito <saito@fgrep.org>
 
@@ -16,70 +17,71 @@
 # You should have received a copy of the GNU General Public License
 # along with Ansible.  If not, see <http://www.gnu.org/licenses/>.
 
-- name: firewalld source test permanent enabled
-  firewalld:
+- name: Firewalld source test permanent enabled
+  ansible.posix.firewalld:
     source: 192.0.2.0/24
     zone: internal
-    permanent: True
+    permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld source test permanent enabled worked
-  assert:
+- name: Assert firewalld source test permanent enabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld source test permanent enabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld source test permanent enabled rerun (verify not changed)
+  ansible.posix.firewalld:
     source: 192.0.2.0/24
     zone: internal
-    permanent: True
+    permanent: true
     state: enabled
   register: result
 
-- name: assert firewalld source test permanent enabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld source test permanent enabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld source test permanent disabled
-  firewalld:
+- name: Firewalld source test permanent disabled
+  ansible.posix.firewalld:
     source: 192.0.2.0/24
     zone: internal
-    permanent: True
+    permanent: true
     state: disabled
   register: result
 
-- name: assert firewalld source test permanent disabled worked
-  assert:
+- name: Assert firewalld source test permanent disabled worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld source test permanent disabled rerun (verify not changed)
-  firewalld:
+- name: Firewalld source test permanent disabled rerun (verify not changed)
+  ansible.posix.firewalld:
     source: 192.0.2.0/24
     zone: internal
-    permanent: True
+    permanent: true
     state: disabled
   register: result
 
-- name: assert firewalld source test permanent disabled rerun worked (verify not changed)
-  assert:
+- name: Assert firewalld source test permanent disabled rerun worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld source test permanent enabled is exclusive (verify exclusive error)
-  firewalld:
+- name: Firewalld source test permanent enabled is exclusive (verify exclusive error)
+  ansible.posix.firewalld:
     source: 192.0.2.0/24
     port: 8081/tcp
     zone: internal
-    permanent: True
+    permanent: true
     state: enabled
   register: result
   ignore_errors: true
 
-- name: assert firewalld source test permanent enabled is exclusive (verify exclusive error)
-  assert:
+- name: Assert firewalld source test permanent enabled is exclusive (verify exclusive error)
+  ansible.builtin.assert:
     that:
-    - result is not changed
-    - "result.msg == 'parameters are mutually exclusive: icmp_block|icmp_block_inversion|service|protocol|port|port_forward|rich_rule|interface|masquerade|source|target'"
+      - result is not changed
+      - "result.msg ==
+        'parameters are mutually exclusive: icmp_block|icmp_block_inversion|service|protocol|port|port_forward|rich_rule|interface|masquerade|source|target'"

tests/integration/targets/firewalld/tasks/zone_target_test_cases.yml

@@ -1,3 +1,4 @@
+---
 # Test playbook for the firewalld module - source operations
 # (c) 2020, Adam Miller <admiller@redhat.com>
 
@@ -16,106 +17,106 @@
 # You should have received a copy of the GNU General Public License
 # along with Ansible.  If not, see <http://www.gnu.org/licenses/>.
 
-- name: firewalld dmz zone target DROP
-  firewalld:
+- name: Firewalld dmz zone target DROP
+  ansible.posix.firewalld:
     zone: dmz
-    permanent: True
+    permanent: true
     state: present
     target: DROP
   register: result
 
-- name: assert firewalld dmz zone target DROP present worked
-  assert:
+- name: Assert firewalld dmz zone target DROP present worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld dmz zone target DROP rerun (verify not changed)
-  firewalld:
+- name: Firewalld dmz zone target DROP rerun (verify not changed)
+  ansible.posix.firewalld:
     zone: dmz
-    permanent: True
+    permanent: true
     state: present
     target: DROP
   register: result
 
-- name: assert firewalld dmz zone target DROP present worked (verify not changed)
-  assert:
+- name: Assert firewalld dmz zone target DROP present worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld dmz zone target DROP absent
-  firewalld:
+- name: Firewalld dmz zone target DROP absent
+  ansible.posix.firewalld:
     zone: dmz
-    permanent: True
+    permanent: true
     state: absent
     target: DROP
   register: result
 
-- name: assert firewalld dmz zone target DROP absent worked
-  assert:
+- name: Assert firewalld dmz zone target DROP absent worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld dmz zone target DROP rerun (verify not changed)
-  firewalld:
+- name: Firewalld dmz zone target DROP rerun (verify not changed)
+  ansible.posix.firewalld:
     zone: dmz
-    permanent: True
+    permanent: true
     state: absent
     target: DROP
   register: result
 
-- name: assert firewalld dmz zone target DROP present worked (verify not changed)
-  assert:
+- name: Assert firewalld dmz zone target DROP present worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld dmz zone target %%REJECT%%
-  firewalld:
+- name: Firewalld dmz zone target %%REJECT%%
+  ansible.posix.firewalld:
     zone: dmz
-    permanent: True
+    permanent: true
     state: present
-    target: '%%REJECT%%'
+    target: "%%REJECT%%"
   register: result
 
-- name: assert firewalld dmz zone target %%REJECT%% present worked
-  assert:
+- name: Assert firewalld dmz zone target %%REJECT%% present worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld dmz zone target %%REJECT%% rerun (verify not changed)
-  firewalld:
+- name: Firewalld dmz zone target %%REJECT%% rerun (verify not changed)
+  ansible.posix.firewalld:
     zone: dmz
-    permanent: True
+    permanent: true
     state: present
-    target: '%%REJECT%%'
+    target: "%%REJECT%%"
   register: result
 
-- name: assert firewalld dmz zone target %%REJECT%% present worked (verify not changed)
-  assert:
+- name: Assert firewalld dmz zone target %%REJECT%% present worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld dmz zone target %%REJECT%% absent
-  firewalld:
+- name: Firewalld dmz zone target %%REJECT%% absent
+  ansible.posix.firewalld:
     zone: dmz
-    permanent: True
+    permanent: true
     state: absent
-    target: '%%REJECT%%'
+    target: "%%REJECT%%"
   register: result
 
-- name: assert firewalld dmz zone target %%REJECT%% absent worked
-  assert:
+- name: Assert firewalld dmz zone target %%REJECT%% absent worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld dmz zone target %%REJECT%% rerun (verify not changed)
-  firewalld:
+- name: Firewalld dmz zone target %%REJECT%% rerun (verify not changed)
+  ansible.posix.firewalld:
     zone: dmz
-    permanent: True
+    permanent: true
     state: absent
-    target: '%%REJECT%%'
+    target: "%%REJECT%%"
   register: result
 
-- name: assert firewalld dmz zone target %%REJECT%% present worked (verify not changed)
-  assert:
+- name: Assert firewalld dmz zone target %%REJECT%% present worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed

tests/integration/targets/firewalld/tasks/zone_test_cases.yml

@@ -1,47 +1,48 @@
-- name: firewalld create zone custom
-  firewalld:
+---
+- name: Firewalld create zone custom
+  ansible.posix.firewalld:
     zone: custom
-    permanent: True
+    permanent: true
     state: present
   register: result
 
-- name: assert firewalld custom zone created worked
-  assert:
+- name: Assert firewalld custom zone created worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld create zone custom rerun (verify not changed)
-  firewalld:
+- name: Firewalld create zone custom rerun (verify not changed)
+  ansible.posix.firewalld:
     zone: custom
-    permanent: True
+    permanent: true
     state: present
   register: result
 
-- name: assert firewalld custom zone created worked (verify not changed)
-  assert:
+- name: Assert firewalld custom zone created worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed
 
-- name: firewalld remove zone custom
-  firewalld:
+- name: Firewalld remove zone custom
+  ansible.posix.firewalld:
     zone: custom
-    permanent: True
+    permanent: true
     state: absent
   register: result
 
-- name: assert firewalld custom zone removed worked
-  assert:
+- name: Assert firewalld custom zone removed worked
+  ansible.builtin.assert:
     that:
-    - result is changed
+      - result is changed
 
-- name: firewalld remove custom zone rerun (verify not changed)
-  firewalld:
+- name: Firewalld remove custom zone rerun (verify not changed)
+  ansible.posix.firewalld:
     zone: custom
-    permanent: True
+    permanent: true
     state: absent
   register: result
 
-- name: assert firewalld custom zone removed worked (verify not changed)
-  assert:
+- name: Assert firewalld custom zone removed worked (verify not changed)
+  ansible.builtin.assert:
     that:
-    - result is not changed
+      - result is not changed