]> git.openstreetmap.org Git - chef.git/blob - .kitchen.yml
apache: set our correct defaults for mod_evasive
[chef.git] / .kitchen.yml
1 ---
2 driver:
3   name: dokken
4   chef_version: 18
5   volumes:
6     - /var/lib/docker
7   env:
8     - container=dokken
9   ipv6: true
10   ipv6_subnet: "fd95:8552:964c::/64"
11   dns:
12     - 1.1.1.1
13     - 8.8.8.8
14     - 8.8.4.4
15     - 1.0.0.1
16
17 transport:
18   name: dokken
19
20 provisioner:
21   name: dokken
22   chef_license: accept
23   data_bags_path: test/data_bags
24   slow_resource_report: true
25   clean_dokken_sandbox: true
26
27 verifier:
28   name: inspec
29   root_path: /opt/verifier
30   sudo: false
31
32 platforms:
33   - name: ubuntu-20.04
34     driver:
35       image: ghcr.io/test-kitchen/dokken/ubuntu-20.04
36       privileged: true
37       pid_one_command: /bin/systemd
38       intermediate_instructions:
39         - RUN /usr/bin/apt-get update -y
40         - RUN /usr/bin/apt-get install -y eatmydata
41         - RUN echo libeatmydata.so >>/etc/ld.so.preload
42   - name: ubuntu-22.04
43     driver:
44       image: ghcr.io/test-kitchen/dokken/ubuntu-22.04
45       privileged: true
46       pid_one_command: /bin/systemd
47       intermediate_instructions:
48         - RUN /usr/bin/apt-get update -y
49         - RUN /usr/bin/apt-get install -y eatmydata
50         - RUN echo libeatmydata.so >>/etc/ld.so.preload
51   - name: debian-12
52     driver:
53       image: ghcr.io/test-kitchen/dokken/debian-12
54       privileged: true
55       pid_one_command: /bin/systemd
56       intermediate_instructions:
57         - RUN /usr/bin/apt-get update -y
58         - RUN /usr/bin/apt-get install -y eatmydata
59         - RUN echo libeatmydata.so >>/etc/ld.so.preload
60
61 suites:
62   - name: accounts
63     run_list:
64       - recipe[accounts::default]
65   - name: apache
66     run_list:
67       - recipe[apache::default]
68   - name: apt
69     run_list:
70       - recipe[apt::default]
71   - name: awscli
72     run_list:
73       - recipe[awscli::default]
74   - name: backup
75     run_list:
76       - recipe[backup::default]
77   - name: bind
78     run_list:
79       - recipe[bind::default]
80     attributes:
81       bind:
82         clients: none
83   - name: blog
84     run_list:
85       - recipe[blog::default]
86   - name: blogs
87     run_list:
88       - recipe[blogs::default]
89   - name: chef
90     run_list:
91       - recipe[chef::default]
92   - name: civicrm
93     run_list:
94       - recipe[civicrm::default]
95   - name: clamav
96     run_list:
97       - recipe[clamav::default]
98   - name: community
99     run_list:
100       - recipe[community::default]
101   - name: db-backup
102     run_list:
103       - recipe[db::backup]
104   - name: db-base
105     run_list:
106       - recipe[db::base]
107   - name: db-master
108     run_list:
109       - recipe[db::master]
110   - name: db-slave
111     run_list:
112       - recipe[db::slave]
113   - name: devices
114     run_list:
115       - recipe[devices::default]
116   - name: dhcpd
117     run_list:
118       - recipe[dhcpd::default]
119     attributes:
120       dhcpd:
121         first_address: 172.18.100.1
122         last_address: 172.18.100.254
123       networking:
124         interfaces:
125           test:
126             interface: eth0
127             role: internal
128             inet:
129               address: 172.18.0.2
130               prefix: 16
131               gateway: 172.18.0.1
132         roles:
133           external:
134             zone: test
135   - name: dmca
136     run_list:
137       - recipe[dmca::default]
138   - name: dns
139     run_list:
140       - recipe[dns::default]
141   - name: docker
142     run_list:
143       - recipe[docker::default]
144   - name: elasticsearch
145     run_list:
146       - recipe[elasticsearch::default]
147   - name: exim
148     run_list:
149       - recipe[exim::default]
150   - name: fail2ban
151     run_list:
152       - recipe[fail2ban::default]
153   - name: foundation-board
154     run_list:
155       - recipe[foundation::board]
156   - name: foundation-dwg
157     run_list:
158       - recipe[foundation::dwg]
159   - name: foundation-mastodon
160     run_list:
161       - recipe[foundation::mastodon]
162   - name: foundation-mwg
163     run_list:
164       - recipe[foundation::mwg]
165   - name: foundation-owg
166     run_list:
167       - recipe[foundation::owg]
168   - name: foundation-welcome
169     run_list:
170       - recipe[foundation::welcome]
171   - name: foundation-wiki
172     run_list:
173       - recipe[foundation::wiki]
174   - name: ftp
175     run_list:
176       - recipe[ftp::default]
177   - name: geodns
178     run_list:
179       - recipe[geodns::default]
180     attributes:
181       networking:
182         interfaces:
183           test:
184             role: external
185             inet:
186               address: 172.18.0.2
187               prefix: 16
188   - name: geoipupdate
189     run_list:
190       - recipe[geoipupdate::default]
191   - name: git
192     run_list:
193       - recipe[git::default]
194   - name: git-server
195     run_list:
196       - recipe[git::server]
197   - name: git-web
198     run_list:
199       - recipe[git::web]
200   - name: gps-tile
201     run_list:
202       - recipe[gps-tile::default]
203   - name: hardware
204     run_list:
205       - recipe[hardware::default]
206   - name: hot
207     run_list:
208       - recipe[hot::default]
209   - name: ideditor
210     run_list:
211       - recipe[ideditor::default]
212   - name: imagery-tiler
213     run_list:
214       - recipe[imagery::tiler]
215   - name: irc
216     run_list:
217       - recipe[irc::default]
218   - name: kibana
219     run_list:
220       - recipe[kibana::default]
221   - name: letsencrypt
222     run_list:
223       - recipe[letsencrypt::default]
224   - name: logstash
225     run_list:
226       - recipe[logstash::default]
227   - name: logstash-forwarder
228     run_list:
229       - recipe[logstash::forwarder]
230     attributes:
231       logstash:
232         forwarder:
233           filebeat.inputs:
234             - type: filestream
235               id: apache
236               paths:
237                 - /var/log/apache2/access.log
238               fields:
239                 type: apache
240               fields_under_root: true
241   - name: mail
242     run_list:
243       - role[mail]
244   - name: mailman
245     run_list:
246       - recipe[mailman::default]
247   - name: matomo
248     run_list:
249       - recipe[matomo::default]
250   - name: memcached
251     run_list:
252       - recipe[memcached::default]
253   - name: munin
254     run_list:
255       - recipe[munin::default]
256   - name: munin-plugins
257     run_list:
258       - recipe[munin::plugins]
259   - name: munin-server
260     run_list:
261       - recipe[munin::server]
262   - name: mysql
263     run_list:
264       - recipe[mysql::default]
265   - name: networking
266     run_list:
267       - recipe[networking::default]
268   - name: nginx
269     run_list:
270       - recipe[nginx::default]
271   - name: nodejs
272     run_list:
273       - recipe[nodejs::default]
274   - name: nominatim
275     run_list:
276       - recipe[nominatim::default]
277   - name: ntp
278     run_list:
279       - recipe[ntp::default]
280   - name: openssh
281     run_list:
282       - recipe[openssh::default]
283   - name: osmosis
284     run_list:
285       - recipe[osmosis::default]
286   - name: osqa
287     run_list:
288       - recipe[osqa::default]
289   - name: otrs
290     run_list:
291       - recipe[otrs::default]
292   - name: overpass
293     run_list:
294       - recipe[overpass::default]
295   - name: passenger
296     run_list:
297       - recipe[passenger::default]
298   - name: php
299     run_list:
300       - recipe[php::default]
301   - name: php-apache
302     run_list:
303       - recipe[php::apache]
304   - name: php-fpm
305     run_list:
306       - recipe[php::fpm]
307   - name: planet
308     run_list:
309       - recipe[planet::default]
310   - name: planet-aws
311     run_list:
312       - recipe[planet::aws]
313   - name: planet-current
314     run_list:
315       - recipe[planet::current]
316   - name: planet-dump
317     run_list:
318       - recipe[planet::dump]
319   - name: planet-notes
320     run_list:
321       - recipe[planet::notes]
322     attributes:
323       web:
324         readonly_database_host: readonly
325   - name: planet-replication
326     run_list:
327       - recipe[planet::replication]
328     attributes:
329       web:
330         readonly_database_host: readonly
331   - name: postgresql
332     run_list:
333       - recipe[postgresql::default]
334     attributes:
335       postgresql:
336         versions:
337           - 15
338   - name: prometheus
339     run_list:
340       - recipe[prometheus::default]
341     attributes:
342       networking:
343         interfaces:
344           test:
345             interface: eth0
346             role: internal
347             inet:
348               address: 172.18.0.2
349               prefix: 16
350               gateway: 172.18.0.1
351   - name: prometheus-server
352     run_list:
353       - recipe[prometheus::server]
354   - name: python
355     run_list:
356       - recipe[python::default]
357   - name: rsyncd
358     run_list:
359       - recipe[rsyncd::default]
360   - name: serverinfo
361     run_list:
362       - recipe[serverinfo::default]
363   - name: snmpd
364     run_list:
365       - recipe[snmpd::default]
366   - name: spamassassin
367     run_list:
368       - recipe[spamassassin::default]
369   - name: ssl
370     run_list:
371       - recipe[ssl::default]
372   - name: stateofthemap-container
373     run_list:
374       - recipe[stateofthemap::container]
375   - name: stateofthemap-wordpress
376     run_list:
377       - recipe[stateofthemap::wordpress]
378   - name: subversion
379     run_list:
380       - recipe[subversion::default]
381   - name: supybot
382     run_list:
383       - recipe[supybot::default]
384   - name: switch2osm
385     run_list:
386       - recipe[switch2osm::default]
387   - name: sysctl
388     run_list:
389       - recipe[sysctl::default]
390   - name: sysfs
391     run_list:
392       - recipe[sysfs::default]
393   - name: taginfo
394     run_list:
395       - recipe[taginfo::default]
396     attributes:
397       taginfo:
398         sites:
399           - name: taginfo.example.com
400   - name: tile
401     run_list:
402       - recipe[tile::default]
403   - name: tilelog
404     run_list:
405       - recipe[tilelog::default]
406   - name: tools
407     run_list:
408       - recipe[tools::default]
409   - name: trac
410     run_list:
411       - recipe[trac::default]
412   - name: web-cgimap
413     run_list:
414       - recipe[web::cgimap]
415   - name: web-frontend
416     run_list:
417       - recipe[web::frontend]
418   - name: web-rails
419     run_list:
420       - recipe[web::rails]
421   - name: wiki
422     run_list:
423       - recipe[wiki::default]
424   - name: wordpress
425     run_list:
426       - recipe[wordpress::default]