1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2024-09-14 20:13:21 +02:00
community.general/test/integration/targets/tower_workflow_launch/tests/validate.yml
James Cassell bc4ef99533 standardize TLS connection properties (#54315)
* openstack: standardize tls params

* tower: tower_verify_ssl->validate_certs

* docker: use standard tls config params

- cacert_path -> ca_cert
- cert_path -> client_cert
- key_path -> client_key
- tls_verify -> validate_certs

* k8s: standardize tls connection params

- verify_ssl -> validate_certs
- ssl_ca_cert -> ca_cert
- cert_file -> client_cert
- key_file -> client_key

* ingate: verify_ssl -> validate_certs

* manageiq: standardize tls params

- verify_ssl -> validate_certs
- ca_bundle_path -> ca_cert

* mysql: standardize tls params

- ssl_ca -> ca_cert
- ssl_cert -> client_cert
- ssl_key -> client_key

* nios: ssl_verify -> validate_certs

* postgresql: ssl_rootcert -> ca_cert

* rabbitmq: standardize tls params

- cacert -> ca_cert
- cert -> client_cert
- key -> client_key

* rackspace: verify_ssl -> validate_certs

* vca: verify_certs -> validate_certs

* kubevirt_cdi_upload: upload_host_verify_ssl -> upload_host_validate_certs

* lxd: standardize tls params

- key_file -> client_key
- cert_file -> client_cert

* get_certificate: ca_certs -> ca_cert

* get_certificate.py: clarify one or more certs in a file

Co-Authored-By: jamescassell <code@james.cassell.me>

* zabbix: tls_issuer -> ca_cert

* bigip_device_auth_ldap: standardize tls params

- ssl_check_peer -> validate_certs
- ssl_client_cert -> client_cert
- ssl_client_key -> client_key
- ssl_ca_cert -> ca_cert

* vdirect: vdirect_validate_certs -> validate_certs

* mqtt: standardize tls params

- ca_certs -> ca_cert
- certfile -> client_cert
- keyfile -> client_key

* pulp_repo: standardize tls params

remove `importer_ssl` prefix

* rhn_register: sslcacert -> ca_cert

* yum_repository: standardize tls params

The fix for yum_repository is not straightforward since this module is
only a thin wrapper for the underlying commands and config.  In this
case, we add the new values as aliases, keeping the old as primary,
only due to the internal structure of the module.

Aliases added:
- sslcacert -> ca_cert
- sslclientcert -> client_cert
- sslclientkey -> client_key
- sslverify -> validate_certs

* gitlab_hook: enable_ssl_verification -> hook_validate_certs

* Adjust arguments for docker_swarm inventory plugin.

* foreman callback: standardize tls params

- ssl_cert -> client_cert
- ssl_key -> client_key

* grafana_annotations: validate_grafana_certs -> validate_certs

* nrdp callback: validate_nrdp_certs -> validate_certs

* kubectl connection: standardize tls params

- kubectl_cert_file -> client_cert
- kubectl_key_file -> client_key
- kubectl_ssl_ca_cert -> ca_cert
- kubectl_verify_ssl -> validate_certs

* oc connection: standardize tls params

- oc_cert_file -> client_cert
- oc_key_file -> client_key
- oc_ssl_ca_cert -> ca_cert
- oc_verify_ssl -> validate_certs

* psrp connection: cert_trust_path -> ca_cert

TODO: cert_validation -> validate_certs (multi-valued vs bool)

* k8s inventory: standardize tls params

- cert_file -> client_cert
- key_file -> client_key
- ca_cert -> ca_cert
- verify_ssl -> validate_certs

* openshift inventory: standardize tls params

- cert_file -> client_cert
- key_file -> client_key
- ca_cert -> ca_cert
- verify_ssl -> validate_certs

* tower inventory: verify_ssl -> validate_certs

* hashi_vault lookup: cacert -> ca_cert

* k8s lookup: standardize tls params

- cert_file -> client_cert
- key_file -> client_key
- ca_cert -> ca_cert
- verify_ssl -> validate_certs

* laps_passord lookup: cacert_file -> ca_cert

* changelog for TLS parameter standardization
2019-03-28 00:19:28 -05:00

99 lines
2.3 KiB
YAML

- name: Run a workflow with no parameters
tower_workflow_launch:
validate_certs: False
ignore_errors: true
register: result1
- assert:
that:
- result1.failed
- "'missing required arguments' in result1.msg"
- name: Fail no connect to Tower server
tower_workflow_launch:
tower_host: 127.0.0.1:22
validate_certs: False
workflow_template: "Here"
ignore_errors: True
register: result2
- assert:
that:
- result2.failed
- "'Failed to reach Tower' in result2.msg"
- name: Connect to Tower server but request an invalid workflow
tower_workflow_launch:
validate_certs: False
workflow_template: "Does Not Exist"
ignore_errors: true
register: result3
- assert:
that:
- result3.failed
- "'The requested object could not be found' in result3.msg"
- name: Connect to Tower in check_mode with a valid workflow name
tower_workflow_launch:
validate_certs: False
workflow_template: "Success Workflow"
check_mode: True
ignore_errors: true
register: result4
- assert:
that:
- not result4.failed
- "'Check mode passed' in result4.msg"
- name: Connect to Tower in check_mode with a valid workflow id
tower_workflow_launch:
validate_certs: False
workflow_template: 9999999
check_mode: True
ignore_errors: true
register: result5
- assert:
that:
- result5.failed
- "'The requested object could not be found' in result5.msg"
- name: Run the workflow without waiting (this should just give us back a job ID)
tower_workflow_launch:
validate_certs: False
workflow_template: "Success Workflow"
wait: False
ignore_errors: True
register: result6
- assert:
that:
- not result6.failed
- "'id' in result6['job_info']"
- name: Kick off a workflow and wait for it
tower_workflow_launch:
validate_certs: False
workflow_template: "Success Workflow"
ignore_errors: True
register: result7
- assert:
that:
- not result7.failed
- "'id' in result7['job_info']"
- name: Kick off a workflow and wait for it, but only for a second
tower_workflow_launch:
validate_certs: False
workflow_template: "Success Workflow"
timeout: 1
ignore_errors: True
register: result8
- assert:
that:
- result8.failed
- "'Monitoring aborted due to timeout' in result8.msg"