.kitchen.yml

   1 ---
   2 driver:
   3   name: dokken
   4   chef_image: ghcr.io/firefishy/chef-docker-image
   5   chef_version: latest
   6   volumes:
   7     - /var/lib/docker
   8   env:
   9     - container=dokken
  10   ipv6: true
  11   ipv6_subnet: "fd95:8552:964c::/64"
  12   dns:
  13     - 8.8.8.8
  14     - 8.8.4.4
  15     - 1.1.1.1
  16     - 1.0.0.1
  17
  18 transport:
  19   name: dokken
  20
  21 provisioner:
  22   name: dokken
  23   chef_license: accept
  24   data_bags_path: test/data_bags
  25   slow_resource_report: true
  26   clean_dokken_sandbox: true
  27   attributes:
  28     networking:
  29       dnssec: "false" # Disable DNSSEC as occasionally unreliable in GitHub Actions
  30
  31 verifier:
  32   name: inspec
  33   root_path: /opt/verifier
  34   sudo: false
  35
  36 platforms:
  37   - name: ubuntu-20.04
  38     driver:
  39       image: ghcr.io/test-kitchen/dokken/ubuntu-20.04
  40       privileged: true
  41       pid_one_command: /bin/systemd
  42       intermediate_instructions:
  43         - RUN /usr/bin/apt-get update -y
  44         - RUN /usr/bin/apt-get install -y eatmydata
  45         - RUN echo /usr/lib/$(uname -m)-linux-gnu/libeatmydata.so >>/etc/ld.so.preload
  46   - name: ubuntu-22.04
  47     driver:
  48       image: ghcr.io/test-kitchen/dokken/ubuntu-22.04
  49       privileged: true
  50       pid_one_command: /bin/systemd
  51       intermediate_instructions:
  52         - RUN /usr/bin/apt-get update -y
  53         - RUN /usr/bin/apt-get install -y eatmydata
  54         - RUN echo /usr/lib/$(uname -m)-linux-gnu/libeatmydata.so >>/etc/ld.so.preload
  55   - name: debian-12
  56     driver:
  57       image: ghcr.io/test-kitchen/dokken/debian-12
  58       privileged: true
  59       pid_one_command: /bin/systemd
  60       intermediate_instructions:
  61         - RUN /usr/bin/apt-get update -y
  62         - RUN /usr/bin/apt-get install -y eatmydata
  63         - RUN echo /usr/lib/$(uname -m)-linux-gnu/libeatmydata.so >>/etc/ld.so.preload
  64
  65 suites:
  66   - name: accounts
  67     run_list:
  68       - recipe[accounts::default]
  69   - name: apache
  70     run_list:
  71       - recipe[apache::default]
  72   - name: apt
  73     run_list:
  74       - recipe[apt::default]
  75   - name: apt-repository
  76     run_list:
  77       - recipe[apt::repository]
  78   - name: awscli
  79     run_list:
  80       - recipe[awscli::default]
  81   - name: backup
  82     run_list:
  83       - recipe[backup::default]
  84   - name: bind
  85     run_list:
  86       - recipe[bind::default]
  87     attributes:
  88       bind:
  89         clients: none
  90   - name: blog
  91     run_list:
  92       - recipe[blog::default]
  93   - name: blogs
  94     run_list:
  95       - recipe[blogs::default]
  96   - name: chef
  97     run_list:
  98       - recipe[chef::default]
  99   - name: civicrm
 100     run_list:
 101       - recipe[civicrm::default]
 102   - name: clamav
 103     run_list:
 104       - recipe[clamav::default]
 105   - name: community
 106     run_list:
 107       - recipe[community::default]
 108   - name: db-backup
 109     run_list:
 110       - recipe[db::backup]
 111   - name: db-base
 112     run_list:
 113       - recipe[db::base]
 114   - name: db-master
 115     run_list:
 116       - recipe[db::master]
 117   - name: db-slave
 118     run_list:
 119       - recipe[db::slave]
 120   - name: dev
 121     run_list:
 122       - recipe[dev::default]
 123     attributes:
 124       postgresql:
 125         versions:
 126           - 15
 127   - name: devices
 128     run_list:
 129       - recipe[devices::default]
 130   - name: dhcpd
 131     run_list:
 132       - recipe[dhcpd::default]
 133     attributes:
 134       dhcpd:
 135         first_address: 172.18.100.1
 136         last_address: 172.18.100.254
 137       networking:
 138         interfaces:
 139           test:
 140             interface: eth0
 141             role: internal
 142             inet:
 143               address: 172.18.0.2
 144               prefix: 16
 145               gateway: 172.18.0.1
 146         roles:
 147           external:
 148             zone: test
 149   - name: dmca
 150     run_list:
 151       - recipe[dmca::default]
 152   - name: dns
 153     run_list:
 154       - recipe[dns::default]
 155   - name: docker
 156     run_list:
 157       - recipe[docker::default]
 158   - name: elasticsearch
 159     run_list:
 160       - recipe[elasticsearch::default]
 161   - name: exim
 162     run_list:
 163       - recipe[exim::default]
 164   - name: fail2ban
 165     run_list:
 166       - recipe[fail2ban::default]
 167   - name: foundation-birthday
 168     run_list:
 169       - recipe[foundation::birthday]
 170   - name: foundation-board
 171     run_list:
 172       - recipe[foundation::board]
 173   - name: foundation-dwg
 174     run_list:
 175       - recipe[foundation::dwg]
 176   - name: foundation-mastodon
 177     run_list:
 178       - recipe[foundation::mastodon]
 179   - name: foundation-mwg
 180     run_list:
 181       - recipe[foundation::mwg]
 182   - name: foundation-owg
 183     run_list:
 184       - recipe[foundation::owg]
 185   - name: foundation-welcome
 186     run_list:
 187       - recipe[foundation::welcome]
 188   - name: foundation-wiki
 189     run_list:
 190       - recipe[foundation::wiki]
 191   - name: ftp
 192     run_list:
 193       - recipe[ftp::default]
 194   - name: geodns
 195     run_list:
 196       - recipe[geodns::default]
 197     attributes:
 198       networking:
 199         interfaces:
 200           test:
 201             role: external
 202             inet:
 203               address: 172.18.0.2
 204               prefix: 16
 205   - name: geoipupdate
 206     run_list:
 207       - recipe[geoipupdate::default]
 208   - name: git
 209     run_list:
 210       - recipe[git::default]
 211   - name: git-server
 212     run_list:
 213       - recipe[git::server]
 214   - name: git-web
 215     run_list:
 216       - recipe[git::web]
 217   - name: gps-tile
 218     run_list:
 219       - recipe[gps-tile::default]
 220   - name: hardware
 221     run_list:
 222       - recipe[hardware::default]
 223   - name: hot
 224     run_list:
 225       - recipe[hot::default]
 226   - name: ideditor
 227     run_list:
 228       - recipe[ideditor::default]
 229   - name: imagery-tiler
 230     run_list:
 231       - recipe[imagery::tiler]
 232   - name: irc
 233     run_list:
 234       - recipe[irc::default]
 235   - name: kibana
 236     run_list:
 237       - recipe[kibana::default]
 238   - name: letsencrypt
 239     run_list:
 240       - recipe[letsencrypt::default]
 241   - name: logstash
 242     run_list:
 243       - recipe[logstash::default]
 244   - name: logstash-forwarder
 245     run_list:
 246       - recipe[logstash::forwarder]
 247     attributes:
 248       logstash:
 249         forwarder:
 250           filebeat.inputs:
 251             - type: filestream
 252               id: apache
 253               paths:
 254                 - /var/log/apache2/access.log
 255               fields:
 256                 type: apache
 257               fields_under_root: true
 258   - name: mail
 259     run_list:
 260       - role[mail]
 261   - name: mailman
 262     run_list:
 263       - recipe[mailman::default]
 264   - name: matomo
 265     run_list:
 266       - recipe[matomo::default]
 267   - name: memcached
 268     run_list:
 269       - recipe[memcached::default]
 270   - name: mysql
 271     run_list:
 272       - recipe[mysql::default]
 273   - name: networking
 274     run_list:
 275       - recipe[networking::default]
 276   - name: nginx
 277     run_list:
 278       - recipe[nginx::default]
 279   - name: nodejs
 280     run_list:
 281       - recipe[nodejs::default]
 282   - name: nominatim
 283     run_list:
 284       - recipe[nominatim::default]
 285   - name: ntp
 286     run_list:
 287       - recipe[ntp::default]
 288   - name: openssh
 289     run_list:
 290       - recipe[openssh::default]
 291   - name: osmosis
 292     run_list:
 293       - recipe[osmosis::default]
 294   - name: osqa
 295     run_list:
 296       - recipe[osqa::default]
 297   - name: otrs
 298     run_list:
 299       - recipe[otrs::default]
 300   - name: overpass
 301     run_list:
 302       - recipe[overpass::default]
 303   - name: passenger
 304     run_list:
 305       - recipe[passenger::default]
 306   - name: php
 307     run_list:
 308       - recipe[php::default]
 309   - name: php-apache
 310     run_list:
 311       - recipe[php::apache]
 312   - name: php-fpm
 313     run_list:
 314       - recipe[php::fpm]
 315   - name: planet
 316     run_list:
 317       - recipe[planet::default]
 318   - name: planet-aws
 319     run_list:
 320       - recipe[planet::aws]
 321   - name: planet-current
 322     run_list:
 323       - recipe[planet::current]
 324   - name: planet-dump
 325     run_list:
 326       - recipe[planet::dump]
 327   - name: planet-notes
 328     run_list:
 329       - recipe[planet::notes]
 330     attributes:
 331       web:
 332         readonly_database_host: readonly
 333   - name: planet-replication
 334     run_list:
 335       - recipe[planet::replication]
 336     attributes:
 337       web:
 338         readonly_database_host: readonly
 339   - name: postgresql
 340     run_list:
 341       - recipe[postgresql::default]
 342     attributes:
 343       postgresql:
 344         versions:
 345           - 15
 346   - name: prometheus
 347     run_list:
 348       - recipe[prometheus::default]
 349     attributes:
 350       networking:
 351         interfaces:
 352           test:
 353             interface: eth0
 354             role: internal
 355             inet:
 356               address: 172.18.0.2
 357               prefix: 16
 358               gateway: 172.18.0.1
 359   - name: prometheus-server
 360     run_list:
 361       - recipe[prometheus::server]
 362   - name: python
 363     run_list:
 364       - recipe[python::default]
 365   - name: rsyncd
 366     run_list:
 367       - recipe[rsyncd::default]
 368   - name: serverinfo
 369     run_list:
 370       - recipe[serverinfo::default]
 371   - name: snmpd
 372     run_list:
 373       - recipe[snmpd::default]
 374   - name: spamassassin
 375     run_list:
 376       - recipe[spamassassin::default]
 377   - name: ssl
 378     run_list:
 379       - recipe[ssl::default]
 380   - name: stateofthemap-container
 381     run_list:
 382       - recipe[stateofthemap::container]
 383   - name: stateofthemap-wordpress
 384     run_list:
 385       - recipe[stateofthemap::wordpress]
 386   - name: subversion
 387     run_list:
 388       - recipe[subversion::default]
 389   - name: supybot
 390     run_list:
 391       - recipe[supybot::default]
 392   - name: switch2osm
 393     run_list:
 394       - recipe[switch2osm::default]
 395   - name: sysctl
 396     run_list:
 397       - recipe[sysctl::default]
 398   - name: sysfs
 399     run_list:
 400       - recipe[sysfs::default]
 401   - name: taginfo
 402     run_list:
 403       - recipe[taginfo::default]
 404     attributes:
 405       taginfo:
 406         sites:
 407           - name: taginfo.example.com
 408   - name: tile
 409     run_list:
 410       - recipe[tile::default]
 411   - name: tilelog
 412     run_list:
 413       - recipe[tilelog::default]
 414   - name: tools
 415     run_list:
 416       - recipe[tools::default]
 417   - name: trac
 418     run_list:
 419       - recipe[trac::default]
 420   - name: vectortile
 421     run_list:
 422       - recipe[vectortile::default]
 423   - name: web-cgimap
 424     run_list:
 425       - recipe[web::cgimap]
 426   - name: web-frontend
 427     run_list:
 428       - recipe[web::frontend]
 429   - name: web-rails
 430     run_list:
 431       - recipe[web::rails]
 432   - name: wiki
 433     run_list:
 434       - recipe[wiki::default]
 435   - name: wordpress
 436     run_list:
 437       - recipe[wordpress::default]