internet/ansible-freeipa
4
0
Fork 0
mirror of https://github.com/freeipa/ansible-freeipa.git synced 2026-06-10 02:35:54 +00:00
Code Issues Projects Releases Wiki Activity
Files
b33c5a7bab619f4dded94285635d9cadbeca75b5
ansible-freeipa/tests
History
Rafael Guterres Jeffman b33c5a7bab New Role management module 
There is a new role management module placed in the plugins folder:

    plugins/modules/iparole.py

The role module allows to ensure presence or absence of roles and
manage role members.

Here is the documentation for the module:

    README-role.md

New example playbooks have been added:

    playbooks/role/role-is-absent.yml
    playbooks/role/role-is-present.yml
    playbooks/role/role-member-group-absent.yml
    playbooks/role/role-member-group-present.yml
    playbooks/role/role-member-host-absent.yml
    playbooks/role/role-member-host-present.yml
    playbooks/role/role-member-hostgroup-absent.yml
    playbooks/role/role-member-hostgroup-present.yml
    playbooks/role/role-member-privilege-absent.yml
    playbooks/role/role-member-privilege-present.yml
    playbooks/role/role-member-service-absent.yml
    playbooks/role/role-member-service-present.yml
    playbooks/role/role-member-user-absent.yml
    playbooks/role/role-member-user-present.yml
    playbooks/role/role-members-absent.yml
    playbooks/role/role-members-present.yml
    playbooks/role/role-rename.yml

New tests for the module:

    tests/role/test_role.yml
    tests/role/test_role_service_member.yml
2020-07-21 10:33:34 -03:00
..
ca-less
Fix KDC certificate permissions
2020-06-09 14:48:07 +02:00
config
Add support for missing attributes, and enhance ipaconfig tests.
2020-06-11 09:23:50 -03:00
dnsconfig
Fixes error handling on dnsconfig module.
2020-06-11 11:02:12 -03:00
dnsforwardzone
Allows modification of forward policy in existing DNS Forward Zone.
2020-06-26 13:10:48 -03:00
dnsrecord
New dnsrecord management module.
2020-06-11 09:02:31 -03:00
dnszone
New IPADNSZone module
2020-03-24 10:52:53 -03:00
external-signed-ca-with-automatic-copy
tests/external-signed-ca tests: Fix external-ca.sh to use proper serials
2019-09-27 15:25:26 +02:00
external-signed-ca-with-manual-copy
tests/external-signed-ca tests: Fix external-ca.sh to use proper serials
2019-09-27 15:25:26 +02:00
group
ipa[host]group: Fix membermanager unknow user issue
2020-06-29 15:38:18 +02:00
hbacrule
Fixes attempt to create rules with members when category is all.
2020-06-11 11:48:00 -03:00
hbacsvc
tests: Unite admin passwords
2020-02-26 12:42:31 +01:00
hbacsvcgroup
tests: Unite admin passwords
2020-02-26 12:42:31 +01:00
host
ipa[user,host]: Fail on duplucate names in the users and hosts lists
2020-06-29 14:50:56 +02:00
hostgroup
ipa[host]group: Fix membermanager unknow user issue
2020-06-29 15:38:18 +02:00
pwpolicy
tests: Unite admin passwords
2020-02-26 12:42:31 +01:00
role
New Role management module
2020-07-21 10:33:34 -03:00
service
Fixes ipaservice disable tests.
2020-06-29 17:32:07 -03:00
sudocmd
tests: Unite admin passwords
2020-02-26 12:42:31 +01:00
sudocmdgroup
tests: Unite admin passwords
2020-02-26 12:42:31 +01:00
sudorule
Fixes attempt to create rules with members when category is all.
2020-06-11 11:48:00 -03:00
user
ipa[user,host]: Fail on duplucate names in the users and hosts lists
2020-06-29 14:50:56 +02:00
vault
Add suppport for changing password of symmetric vaults.
2020-06-29 10:04:36 -03:00
ansible.cfg
Added pytests as test entrypoint
2020-05-19 19:21:53 -03:00
README.md
Reformatted README for better presentation on 80 column terminals.
2020-06-11 11:19:25 -03:00
test_playbook_runs.py
Fix all tests entry point
2020-05-26 11:53:53 -03:00

README.md

Running the tests

Before starting

In order to run ansible-freeipa tests you will need to have ansible and pytest installed on your machine. We'll call this local machine controller.

You will also need to have a remote host with freeipa server installed and configured. We'll call this remote host ipaserver.

Some other requirements:

  • The controller must be able to connect to ipaserver through ssh using keys.
  • ipaserver must be configured with DNS support. See ipaserver role.
  • IPA admin password must be SomeADMINpassword.
  • Directory Server admin password must be SomeDMpassword.

Running the tests

To run the tests run:

IPA_SERVER_HOST=<ipaserver_host_or_ip> pytest

If you need to run using a different user you can use ANSIBLE_REMOTE_USER environment variable. For example:

ANSIBLE_REMOTE_USER=root IPA_SERVER_HOST=<ipaserver_host_or_ip> pytest

To select which tests to run use the option -k. For example:

IPA_SERVER_HOST=<ipaserver_host_or_ip> pytest -k dnszone

To see the ansible output use the option --capture=sys. For example:

IPA_SERVER_HOST=<ipaserver_host_or_ip> pytest --capture=sys

To see why tests were skipped use -rs. For example:

IPA_SERVER_HOST=<ipaserver_host_or_ip> pytest -rs

For a complete list of options check pytest --help.

Upcoming/desired improvements:

  • A script to pre-config the complete test environment using virsh.
  • A test matrix to run tests against different distros in parallel (probably using tox).
  • Allow to connect to ipaserver using ssh and password.