mirror of
https://github.com/freeipa/ansible-freeipa.git
synced 2026-06-10 18:55:53 +00:00
872537f4de
Use Fully Qualified Collection Name (FQCN) for ansible builtins. This is ansible.builtin.set_fact instead of set_fact for example and aplies for all actions that are part of ansible.builtin. All the replaced ansible.builtins: assert, command, copy, debug, fail, fetch, file, import_playbook, import_tasks, include_role, include_tasks, include_vars, package, set_fact, shell, slurp, stat, systemd
210 lines
7.2 KiB
YAML
210 lines
7.2 KiB
YAML
---
|
|
- name: Test group membermanagers
|
|
hosts: ipaserver
|
|
become: true
|
|
gather_facts: false
|
|
|
|
tasks:
|
|
- ansible.builtin.include_tasks: ../env_freeipa_facts.yml
|
|
|
|
- name: Tests requiring IPA version 4.8.4+
|
|
block:
|
|
- name: Ensure user manangeruser1 and manageruser2 is absent
|
|
ipauser:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: manageruser1,manageruser2,unknown_user
|
|
state: absent
|
|
|
|
- name: Ensure group testgroup, managergroup1 and managergroup2 are absent
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup,managergroup1,managergroup2
|
|
state: absent
|
|
|
|
- name: Ensure user manageruser1 and manageruser2 are present
|
|
ipauser:
|
|
ipaadmin_password: SomeADMINpassword
|
|
users:
|
|
- name: manageruser1
|
|
first: manageruser1
|
|
last: Last1
|
|
- name: manageruser2
|
|
first: manageruser2
|
|
last: Last2
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure testgroup is present
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure managergroup1 is present
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: managergroup1
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure managergroup2 is present
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: managergroup2
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user1 is present for testgroup
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user1 is present for testgroup again
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1
|
|
register: result
|
|
failed_when: result.changed or result.failed
|
|
|
|
- name: Ensure membermanager group1 is present for testgroup
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_group: managergroup1
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure membermanager group1 is present for testgroup again
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_group: managergroup1
|
|
register: result
|
|
failed_when: result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user2 and group2 members are present for testgroup
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser2
|
|
membermanager_group: managergroup2
|
|
action: member
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user2 and group2 members are present for testgroup again
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser2
|
|
membermanager_group: managergroup2
|
|
action: member
|
|
register: result
|
|
failed_when: result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user and group members are present for testgroup again
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1,manageruser2
|
|
membermanager_group: managergroup1,managergroup2
|
|
action: member
|
|
register: result
|
|
failed_when: result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user1 and group1 members are absent for testgroup
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1
|
|
membermanager_group: managergroup1
|
|
action: member
|
|
state: absent
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user1 and group1 members are absent for testgroup again
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1
|
|
membermanager_group: managergroup1
|
|
action: member
|
|
state: absent
|
|
register: result
|
|
failed_when: result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user1 and group1 members are present for testgroup
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1
|
|
membermanager_group: managergroup1
|
|
action: member
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user1 and group1 members are present for testgroup again
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1
|
|
membermanager_group: managergroup1
|
|
action: member
|
|
register: result
|
|
failed_when: result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user and group members are absent for testgroup
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1,manageruser2
|
|
membermanager_group: managergroup1,managergroup2
|
|
action: member
|
|
state: absent
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure membermanager user and group members are absent for testgroup again
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: manageruser1,manageruser2
|
|
membermanager_group: managergroup1,managergroup2
|
|
action: member
|
|
state: absent
|
|
register: result
|
|
failed_when: result.changed or result.failed
|
|
|
|
- name: Ensure user manangeruser1 and manageruser2 is absent
|
|
ipauser:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: manageruser1,manageruser2
|
|
state: absent
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
- name: Ensure unknown membermanager_user member failure
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup
|
|
membermanager_user: unknown_user
|
|
action: member
|
|
register: result
|
|
failed_when: result.changed or "no such entry" not in result.msg or not result.failed
|
|
|
|
- name: Ensure group testgroup, managergroup1 and managergroup2 are absent
|
|
ipagroup:
|
|
ipaadmin_password: SomeADMINpassword
|
|
name: testgroup,managergroup1,managergroup2
|
|
state: absent
|
|
register: result
|
|
failed_when: not result.changed or result.failed
|
|
|
|
when: ipa_version is version('4.8.4', '>=')
|