forked from ansible-lockdown/RHEL7-CIS
-
Notifications
You must be signed in to change notification settings - Fork 7
/
.travis.yml
45 lines (34 loc) · 1.61 KB
/
.travis.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
---
sudo: required
env:
- distro: centos
version: 7
container: "centos:7"
init: /usr/lib/systemd/systemd
run_opts: "--privileged --volume=/sys/fs/cgroup:/sys/fs/cgroup:ro --tmpfs /run --tmpfs /run/lock"
services:
- docker
before_install:
# Pull container
- 'docker pull ${container}'
# Customize container
- 'docker build --rm=true --file=tests/Dockerfile.${distro}-${version} --tag=${distro}-${version}:ansible tests'
script:
- container_id=$(mktemp)
# Run container in detached state
- 'docker run --detach --volume="${PWD}":/etc/ansible/roles/role_under_test:ro ${run_opts} ${distro}-${version}:ansible "${init}" > "${container_id}"'
# Ansible syntax check.
- 'docker exec --tty "$(cat ${container_id})" env TERM=xterm ansible-playbook /etc/ansible/roles/role_under_test/tests/test.yml --syntax-check'
# Test role.
- docker exec --tty "$(cat ${container_id})" env TERM=xterm ansible-playbook /etc/ansible/roles/role_under_test/tests/test.yml -e 'rhel7cis_selinux_disable=true rhel7cis_skip_for_travis=true' --skip-tags "sysctl" -vv
# Test role idempotence.
- idempotence=$(mktemp)
- docker exec "$(cat ${container_id})" ansible-playbook /etc/ansible/roles/role_under_test/tests/test.yml -e 'rhel7cis_selinux_disable=true rhel7cis_skip_for_travis=true' --skip-tags "sysctl" -vv | tee -a ${idempotence}
- >
grep -q "changed=0.*failed=0" ${idempotence}
&& (echo 'Idempotence test: pass' && exit 0)
|| (echo 'Idempotence test: fail' && exit 1)
# Clean up
- 'docker stop "$(cat ${container_id})"'
notifications:
webhooks: https://galaxy.ansible.com/api/v1/notifications/