- docs: vpn_ipaddr filter requires vpn_ipaddr.yml for docs (#176)
- ci: Add tft plan and workflow (#162)
- ci: Update fmf plan to add a separate job to prepare managed nodes (#164)
- ci: Bump sclorg/testing-farm-as-github-action from 2 to 3 (#165)
- ci: Add workflow for ci_test bad, use remote fmf plan (#166)
- ci: Fix missing slash in ARTIFACTS_URL (#167)
- ci: Add tags to TF workflow, allow more [citest bad] formats (#170)
- ci: ansible-test action now requires ansible-core version (#171)
- ci: add YAML header to github action workflow files (#172)
- refactor: Use vars/RedHat_N.yml symlink for CentOS, Rocky, Alma wherever possible (#174)
- fix: add support for EL10 (#160)
- test: stop firewall after tests that use firewall (#158)
- ci: ansible-lint action now requires absolute directory (#159)
- ci: use tox-lsr 3.3.0 which uses ansible-test 2.17 (#153)
- ci: tox-lsr 3.4.0 - fix py27 tests; move other checks to py310 (#155)
- ci: Add supported_ansible_also to .ansible-lint (#156)
- ci: Bump codecov/codecov-action from 3 to 4 (#147)
- ci: fix python unit test - copy pytest config to tests/unit (#148)
- ci: Bump ansible/ansible-lint from 6 to 24 (#149)
- ci: Bump mathieudutour/github-tag-action from 6.1 to 6.2 (#151)
- ci: Bump actions/setup-python from 4 to 5 (#142)
- ci: support ansible-lint and ansible-test 2.16 (#144)
- ci: Use supported ansible-lint action; run ansible-lint against the collection (#145)
- ci: bump actions/github-script from 6 to 7 (#139)
- refactor: get_ostree_data.sh use env shebang - remove from .sanity* (#140)
- tests: do not remove iproute when cleaning up (#137)
- feat: support for ostree systems (#134)
- Bump actions/checkout from 3 to 4 (#126)
- ci: ensure dependabot git commit message conforms to commitlint (#129)
- ci: tox-lsr version 3.1.1 (#133)
- tests: add cleanup after each test (#135)
-
ci: Add markdownlint, test_converting_readme, and build_docs workflows (#46)
- markdownlint runs against README.md to avoid any issues with converting it to HTML
- test_converting_readme converts README.md > HTML and uploads this test artifact to ensure that conversion works fine
- build_docs converts README.md > HTML and pushes the result to the docs branch to publish dosc to GitHub pages site.
- Fix markdown issues in README.md
Signed-off-by: Sergei Petrosian [email protected]
-
docs: Make badges consistent, run markdownlint on all .md files (#47)
- Consistently generate badges for GH workflows in README RHELPLAN-146921
- Run markdownlint on all .md files
- Add custom-woke-action if not used already
- Rename woke action to Woke for a pretty badge
Signed-off-by: Sergei Petrosian [email protected]
-
ci: Remove badges from README.md prior to converting to HTML (#48)
- Remove thematic break after badges
- Remove badges from README.md prior to converting to HTML
Signed-off-by: Sergei Petrosian [email protected]
-
docs: Make supported versions and README consistent (#49)
- Add Postgresql version 15 into README
-
ci: fix mode of vars/main.yml for ansible-test (#50)
- fix: facts being gathered unnecessarily (#120)
- ci: Add pull request template and run commitlint on PR title only (#114)
- ci: Rename commitlint to PR title Lint, echo PR titles from env var (#115)
- ci: fix python 2.7 CI tests by manually installing python2.7 package (#116)
- ci: ansible-lint - ignore var-naming[no-role-prefix] (#117)
- ci: ansible-test ignores file for ansible-core 2.15 (#118)
- ci: ansible-lint - skip var-naming[read-only] (#119)
- docs: Consistent contributing.md for all roles - allow role specific contributing.md section
- docs: add Collection requirements section to README
- test: check generated files for ansible_managed, fingerprint
- ci: Add commitlint GitHub action to ensure conventional commits with feedback
- ansible-lint - use changed_when for conditional tasks (#104)
- Fix issues found by CodeQL (#93)
- Add README-ansible.md to refer Ansible intro page on linux-system-roles.github.io (#101)
- Fingerprint RHEL System Role managed config files (#102)
- none
- Clean up non-inclusive words.
- ansible-lint 6.x fixes (#86)
- Add check for non-inclusive language (#82)
- Add CodeQL workflow for GitHub code scanning (#83)
- update ignore files for ansible-test 2.14 (#89)
- none
- only check for firewall ipsec service if managing firewall (#76)
Some systems use firewalld by default. We should only expect the
ipsec service is present if the test tells the vpn role to manage
firewall or selinux.
- none
- none
- none
- fix markdown to adoc conversion (#73)
long heading causes problems with md to adoc conversion
The long heading causes problems with md to adoc conversion. Shorten the length by using abbreviations.
-
Use the firewall role and the selinux role from the vpn role (#70)
-
Introduce vpn_manage_firewall to enable the firewall role to manage the ipsec service. vpn_manage_firewall is set to false, by default. If the variable is set to false, the firewall configuration is disabled.
-
Introduce vpn_manage_selinux to enable the selinux role to manage the ports defined in the firewall ipsec service. vpn_manage_selinux is set to false, by default. If the variable is set to false, the selinux configuration is disabled.
-
Add the test check task check_firewall_selinux.yml for verify the ports status.
-
Add meta/collection-requirements.yml
- none
- none
- Various improvements required to connect to a managed remote host (#65)
Add support for the parameters shared_key_content, leftid, rightid, ike, esp, type, ikelifetime, salifetime, retransmit_timeout, dpddelay, dpdtimeout, dpdaction, leftupdown
- Check for /usr/bin/openssl on controller - do not use package_facts (#66)
Check for existence of openssl without using sudo on the controller Basically, any task, even package_facts:, will use sudo if using become=true - so just use "exists" test to check for /usr/bin/openssl
-
Fix a bash bug in changelog_to_tag.yml, which unexpectedly expanded "*" (#62)
-
changelog_to_tag action - github action ansible test improvements
-
Use GITHUB_REF_NAME as name of push branch; fix error in branch detection [citest skip] (#64)
We need to get the name of the branch to which CHANGELOG.md was pushed.
- none
- none
-
gather network facts default_ipv4 default_ipv6 (#56)
- Gather fact subset
networkinstead ofmin - Ensure facts
default_ipv4anddefault_ipv6 - Ensure all tests work when using ANSIBLE_GATHERING=explicit
- Gather fact subset
-
make min_ansible_version a string in meta/main.yml (#57)
The Ansible developers say that min_ansible_version in meta/main.yml
must be a string value like "2.9", not a float value like 2.9.
- Add CHANGELOG.md (#58)
- none
- none
- bump tox-lsr version to 2.11.0; remove py37; add py310
- Add tests::no_serialization tag
- support gather_facts: false; support setup-snapshot.yml
- none
- bump tox-lsr version to 2.10.1
- System Roles should consistently use ansible_managed in configuration files it manages
- none
- none
- script to convert vpn_ipaddr to FQCN
- none
- bump tox-lsr version to 2.9.1
- use custom vpn_ipaddr filter
- none
- bump tox-lsr version to 2.8.3
- change recursive role symlink to individual role dir symlinks
- Run the new tox test
- support python 39, ansible-core 2.12, ansible-plugin-scan
- none
- update tox-lsr version to 2.7.1
- add netaddr dep for qemu
- Add meta/requirements.yml; support ansible-core 2.11
- Modifications and clarifications to the readme
- none
- do not use json_query - not needed here
- use wait_for_connection instead of wait_for with ssh
- use apt-get install -y
- use tox-lsr version 2.5.1
- Drop support for Ansible 2.8 by bumping the Ansible version to 2.9
- none
- none
- Remove RHEL6/CentOS6 files from vars directory
- Add support for rhel7 managed hosts
- Update conn naming scheme and leftid/rightid values
- VPN role v2 (mesh encryption use case).
- Cleaning up ansible-lint errors
- Bugfix/leftid ip for certs
- fix ansible-test issues
- Remove python-26 environment from tox testing
- update to tox-lsr 2.4.0 - add support for ansible-test with docker
- CI: Add support for RHEL-9