468ea4d1ce
Many, many patches have gone into the master branch to enable the use of depends-on for role tests and to make use of the git clones put into place by zuul. This patch ensures that this functionality is now available for this branch too. The primary benefit for doing this would be to make use of the cached git clones provided by zuul to improve test reliability. The secondary benefit would be to have the ability to use depends-on to test patches together. However, this will come at the cost of requiring a tox configuration change, and the implementation of the tests/tests-repo-clone.sh and run_tests.sh scripts across all repositories. Change-Id: I8ad3aeeec22c2a79dc04bd729d54ccf6b5f046c5 Depends-On: Ia806f19e00703c53f03a2420dbac1da4ba68db6c |
||
|---|---|---|
| defaults | ||
| doc | ||
| files | ||
| handlers | ||
| library | ||
| meta | ||
| releasenotes | ||
| tasks | ||
| templates | ||
| test_plugins | ||
| tests | ||
| vars | ||
| zuul.d | ||
| .gitignore | ||
| .gitreview | ||
| LICENSE | ||
| README.md | ||
| README.rst | ||
| Vagrantfile | ||
| bindep.txt | ||
| manual-test.rc | ||
| run_tests.sh | ||
| setup.cfg | ||
| setup.py | ||
| test-requirements.txt | ||
| tox.ini | ||
README.md
ansible-hardening
The ansible-hardening role applies security hardening configurations from the Security Technical Implementation Guide(STIG) to systems running the following distributions:
- CentOS 7
- Debian Jessie (experimental)
- Ubuntu 14.04 (deprecated)
- Ubuntu 16.04
- Red Hat Enterprise Linux 7
For more details, review the ansible-hardening documentation.
Requirements
This role can be used with or without the OpenStack-Ansible role. It requires Ansible 1.9.1 or later.
Role Variables
All of the variables for this role are in defaults/main.yml.
Dependencies
This role has no dependencies.
Example Playbook
Using the role is fairly straightforward:
- hosts: servers
roles:
- ansible-hardening
Running with Vagrant
This role can be tested easily on multiple platforms using Vagrant.
The Vagrantfile supports testing on:
- Ubuntu 14.04
- Ubuntu 16.04
- CentOS 7
To test on all platforms:
vagrant destroy --force && vagrant up
To test on Ubuntu 14.04 only:
vagrant destroy ubuntu1404 --force && vagrant up ubuntu1404
To test on Ubuntu 16.04 only:
vagrant destroy ubuntu1604 --force && vagrant up ubuntu1604
To test on CentOS 7 only:
vagrant destroy centos7 --force && vagrant up centos7
License
Apache 2.0
Author Information
For more information, join #openstack-ansible on Freenode.