]> git.openstreetmap.org Git - chef.git/blob - .kitchen.yml
Revert "community: Fix CSRF issue with monkey patch fix"
[chef.git] / .kitchen.yml
1 ---
2 driver:
3   name: dokken
4   chef_version: 18
5   volumes:
6     - /var/lib/docker
7   env:
8     - container=dokken
9   ipv6: true
10   ipv6_subnet: "fd95:8552:964c::/64"
11   dns:
12     - 8.8.8.8
13     - 8.8.4.4
14     - 1.1.1.1
15     - 1.0.0.1
16
17 transport:
18   name: dokken
19
20 provisioner:
21   name: dokken
22   chef_license: accept
23   data_bags_path: test/data_bags
24   chef_image: ghcr.io/firefishy/chef-docker-image:latest
25   chef_version: latest
26   slow_resource_report: true
27   clean_dokken_sandbox: true
28   attributes:
29     networking:
30       dnssec: "false" # Disable DNSSEC as occasionally unreliable in GitHub Actions
31
32 verifier:
33   name: inspec
34   root_path: /opt/verifier
35   sudo: false
36
37 platforms:
38   - name: ubuntu-20.04
39     driver:
40       image: ghcr.io/test-kitchen/dokken/ubuntu-20.04
41       privileged: true
42       pid_one_command: /bin/systemd
43       intermediate_instructions:
44         - RUN /usr/bin/apt-get update -y
45         - RUN /usr/bin/apt-get install -y eatmydata
46         - RUN echo /usr/lib/$(uname -m)-linux-gnu/libeatmydata.so >>/etc/ld.so.preload
47   - name: ubuntu-22.04
48     driver:
49       image: ghcr.io/test-kitchen/dokken/ubuntu-22.04
50       privileged: true
51       pid_one_command: /bin/systemd
52       intermediate_instructions:
53         - RUN /usr/bin/apt-get update -y
54         - RUN /usr/bin/apt-get install -y eatmydata
55         - RUN echo /usr/lib/$(uname -m)-linux-gnu/libeatmydata.so >>/etc/ld.so.preload
56   - name: debian-12
57     driver:
58       image: ghcr.io/test-kitchen/dokken/debian-12
59       privileged: true
60       pid_one_command: /bin/systemd
61       intermediate_instructions:
62         - RUN /usr/bin/apt-get update -y
63         - RUN /usr/bin/apt-get install -y eatmydata
64         - RUN echo /usr/lib/$(uname -m)-linux-gnu/libeatmydata.so >>/etc/ld.so.preload
65
66 suites:
67   - name: accounts
68     run_list:
69       - recipe[accounts::default]
70   - name: apache
71     run_list:
72       - recipe[apache::default]
73   - name: apt
74     run_list:
75       - recipe[apt::default]
76   - name: apt-repository
77     run_list:
78       - recipe[apt::repository]
79   - name: awscli
80     run_list:
81       - recipe[awscli::default]
82   - name: backup
83     run_list:
84       - recipe[backup::default]
85   - name: bind
86     run_list:
87       - recipe[bind::default]
88     attributes:
89       bind:
90         clients: none
91   - name: blog
92     run_list:
93       - recipe[blog::default]
94   - name: blogs
95     run_list:
96       - recipe[blogs::default]
97   - name: chef
98     run_list:
99       - recipe[chef::default]
100   - name: civicrm
101     run_list:
102       - recipe[civicrm::default]
103   - name: clamav
104     run_list:
105       - recipe[clamav::default]
106   - name: community
107     run_list:
108       - recipe[community::default]
109   - name: db-backup
110     run_list:
111       - recipe[db::backup]
112   - name: db-base
113     run_list:
114       - recipe[db::base]
115   - name: db-master
116     run_list:
117       - recipe[db::master]
118   - name: db-slave
119     run_list:
120       - recipe[db::slave]
121   - name: dev
122     run_list:
123       - recipe[dev::default]
124     attributes:
125       postgresql:
126         versions:
127           - 15
128   - name: devices
129     run_list:
130       - recipe[devices::default]
131   - name: dhcpd
132     run_list:
133       - recipe[dhcpd::default]
134     attributes:
135       dhcpd:
136         first_address: 172.18.100.1
137         last_address: 172.18.100.254
138       networking:
139         interfaces:
140           test:
141             interface: eth0
142             role: internal
143             inet:
144               address: 172.18.0.2
145               prefix: 16
146               gateway: 172.18.0.1
147         roles:
148           external:
149             zone: test
150   - name: dmca
151     run_list:
152       - recipe[dmca::default]
153   - name: dns
154     run_list:
155       - recipe[dns::default]
156   - name: docker
157     run_list:
158       - recipe[docker::default]
159   - name: elasticsearch
160     run_list:
161       - recipe[elasticsearch::default]
162   - name: exim
163     run_list:
164       - recipe[exim::default]
165   - name: fail2ban
166     run_list:
167       - recipe[fail2ban::default]
168   - name: foundation-birthday
169     run_list:
170       - recipe[foundation::birthday]
171   - name: foundation-board
172     run_list:
173       - recipe[foundation::board]
174   - name: foundation-dwg
175     run_list:
176       - recipe[foundation::dwg]
177   - name: foundation-mastodon
178     run_list:
179       - recipe[foundation::mastodon]
180   - name: foundation-mwg
181     run_list:
182       - recipe[foundation::mwg]
183   - name: foundation-owg
184     run_list:
185       - recipe[foundation::owg]
186   - name: foundation-welcome
187     run_list:
188       - recipe[foundation::welcome]
189   - name: foundation-wiki
190     run_list:
191       - recipe[foundation::wiki]
192   - name: ftp
193     run_list:
194       - recipe[ftp::default]
195   - name: geodns
196     run_list:
197       - recipe[geodns::default]
198     attributes:
199       networking:
200         interfaces:
201           test:
202             role: external
203             inet:
204               address: 172.18.0.2
205               prefix: 16
206   - name: geoipupdate
207     run_list:
208       - recipe[geoipupdate::default]
209   - name: git
210     run_list:
211       - recipe[git::default]
212   - name: git-server
213     run_list:
214       - recipe[git::server]
215   - name: git-web
216     run_list:
217       - recipe[git::web]
218   - name: gps-tile
219     run_list:
220       - recipe[gps-tile::default]
221   - name: hardware
222     run_list:
223       - recipe[hardware::default]
224   - name: hot
225     run_list:
226       - recipe[hot::default]
227   - name: ideditor
228     run_list:
229       - recipe[ideditor::default]
230   - name: imagery-tiler
231     run_list:
232       - recipe[imagery::tiler]
233   - name: irc
234     run_list:
235       - recipe[irc::default]
236   - name: kibana
237     run_list:
238       - recipe[kibana::default]
239   - name: letsencrypt
240     run_list:
241       - recipe[letsencrypt::default]
242   - name: logstash
243     run_list:
244       - recipe[logstash::default]
245   - name: logstash-forwarder
246     run_list:
247       - recipe[logstash::forwarder]
248     attributes:
249       logstash:
250         forwarder:
251           filebeat.inputs:
252             - type: filestream
253               id: apache
254               paths:
255                 - /var/log/apache2/access.log
256               fields:
257                 type: apache
258               fields_under_root: true
259   - name: mail
260     run_list:
261       - role[mail]
262   - name: mailman
263     run_list:
264       - recipe[mailman::default]
265   - name: matomo
266     run_list:
267       - recipe[matomo::default]
268   - name: memcached
269     run_list:
270       - recipe[memcached::default]
271   - name: mysql
272     run_list:
273       - recipe[mysql::default]
274   - name: networking
275     run_list:
276       - recipe[networking::default]
277   - name: nginx
278     run_list:
279       - recipe[nginx::default]
280   - name: nodejs
281     run_list:
282       - recipe[nodejs::default]
283   - name: nominatim
284     run_list:
285       - recipe[nominatim::default]
286   - name: ntp
287     run_list:
288       - recipe[ntp::default]
289   - name: openssh
290     run_list:
291       - recipe[openssh::default]
292   - name: osmosis
293     run_list:
294       - recipe[osmosis::default]
295   - name: osqa
296     run_list:
297       - recipe[osqa::default]
298   - name: otrs
299     run_list:
300       - recipe[otrs::default]
301   - name: overpass
302     run_list:
303       - recipe[overpass::default]
304   - name: passenger
305     run_list:
306       - recipe[passenger::default]
307   - name: php
308     run_list:
309       - recipe[php::default]
310   - name: php-apache
311     run_list:
312       - recipe[php::apache]
313   - name: php-fpm
314     run_list:
315       - recipe[php::fpm]
316   - name: planet
317     run_list:
318       - recipe[planet::default]
319   - name: planet-aws
320     run_list:
321       - recipe[planet::aws]
322   - name: planet-current
323     run_list:
324       - recipe[planet::current]
325   - name: planet-dump
326     run_list:
327       - recipe[planet::dump]
328   - name: planet-notes
329     run_list:
330       - recipe[planet::notes]
331     attributes:
332       web:
333         readonly_database_host: readonly
334   - name: planet-replication
335     run_list:
336       - recipe[planet::replication]
337     attributes:
338       web:
339         readonly_database_host: readonly
340   - name: postgresql
341     run_list:
342       - recipe[postgresql::default]
343     attributes:
344       postgresql:
345         versions:
346           - 15
347   - name: prometheus
348     run_list:
349       - recipe[prometheus::default]
350     attributes:
351       networking:
352         interfaces:
353           test:
354             interface: eth0
355             role: internal
356             inet:
357               address: 172.18.0.2
358               prefix: 16
359               gateway: 172.18.0.1
360   - name: prometheus-server
361     run_list:
362       - recipe[prometheus::server]
363   - name: python
364     run_list:
365       - recipe[python::default]
366   - name: rsyncd
367     run_list:
368       - recipe[rsyncd::default]
369   - name: serverinfo
370     run_list:
371       - recipe[serverinfo::default]
372   - name: snmpd
373     run_list:
374       - recipe[snmpd::default]
375   - name: spamassassin
376     run_list:
377       - recipe[spamassassin::default]
378   - name: ssl
379     run_list:
380       - recipe[ssl::default]
381   - name: stateofthemap-container
382     run_list:
383       - recipe[stateofthemap::container]
384   - name: stateofthemap-wordpress
385     run_list:
386       - recipe[stateofthemap::wordpress]
387   - name: subversion
388     run_list:
389       - recipe[subversion::default]
390   - name: supybot
391     run_list:
392       - recipe[supybot::default]
393   - name: switch2osm
394     run_list:
395       - recipe[switch2osm::default]
396   - name: sysctl
397     run_list:
398       - recipe[sysctl::default]
399   - name: sysfs
400     run_list:
401       - recipe[sysfs::default]
402   - name: taginfo
403     run_list:
404       - recipe[taginfo::default]
405     attributes:
406       taginfo:
407         sites:
408           - name: taginfo.example.com
409   - name: tile
410     run_list:
411       - recipe[tile::default]
412   - name: tilelog
413     run_list:
414       - recipe[tilelog::default]
415   - name: tools
416     run_list:
417       - recipe[tools::default]
418   - name: trac
419     run_list:
420       - recipe[trac::default]
421   - name: vectortile
422     run_list:
423       - recipe[vectortile::default]
424   - name: web-cgimap
425     run_list:
426       - recipe[web::cgimap]
427   - name: web-frontend
428     run_list:
429       - recipe[web::frontend]
430   - name: web-rails
431     run_list:
432       - recipe[web::rails]
433   - name: wiki
434     run_list:
435       - recipe[wiki::default]
436   - name: wordpress
437     run_list:
438       - recipe[wordpress::default]