- additional ansible-lint fixes (#104)
- Add README-ansible.md to refer Ansible intro page on linux-system-roles.github.io (#101)
- Fingerprint RHEL System Role managed config files (#102)
- none
- ansible-lint 6.x fixes
- Add check for non-inclusive language
- cleanup non-inclusive words.
- none
- ansible-core 2.14 support - remove another warn
- use fedora.linux_system_roles.certificate role in tests
The dependencies will be installed everywhere, so just use them in the tests
- none
- make role work with ansible-core 2.14 - fix ansible-lint 6.x issues (#81)
- none
- Use the firewall role and the selinux role from the cockpit role (#76)
Since cockpit_port is a public api of the cockpit role, define it in defaults/main.yml as null.
-
Introduce cockpit_manage_firewall to use the firewall role to manage the cockpit service. Default to false - means the firewall role is not used.
-
Add the test check task tasks/check_port.yml for verifying the ports status.
-
Add meta/collection-requirements.yml.
-
Introduce cockpit_manage_selinux to use the selinux role to manage the ports in the cockpit service. Assign websm_port_t to the cockpit service ports. Default to false - means the selinux role is not used.
-
Use the certificate role to create the cert and the key (#78)
-
Introduce a variable cockpit_certificates to set the certificate_requests.
-
Update README so that using the certificate role is recommended.
Add a check and README note for not supporting creating a self-signed certificate on RHEL/CentOS-7.
- none
- workflows: Add integration-tests for Ubuntu 22.04 (#68)
The current LTS 22.04 is the more interesting target. This detects bugs like [1]. Keep 20.04 running as well for the time being.
[1] linux-system-roles/certificate#130
- Clone the certificate role in the temporary dir. (#77)
- Add customization of port (#67)
Introduce a cockpit_port variable which changes the default port 9090,
as per https://cockpit-project.org/guide/latest/listen.html#listen-systemd
This requires an extra step with SELinux: It only allows cockpit to own port 9090, so for any other port the user needs to adjust the policy first. As this is outside of what the cockpit role ought to mess with, only document it and do that in the tests.
Fixes #63
- none
-
changelog_to_tag action - github action ansible test improvements
-
fix yamllint indentation issue
- none
- none
- make min_ansible_version a string in meta/main.yml (#60)
The Ansible developers say that min_ansible_version in meta/main.yml
must be a string value like "2.9", not a float value like 2.9.
- Add CHANGELOG.md (#61)
- none
- none
- bump tox-lsr version to 2.11.0; remove py37; add py310
- none
- none
- support gather_facts: false; support setup-snapshot.yml
- bump tox-lsr version to 2.10.1
- Test "cockpit_packages: full" scenario
- none
- Skip/undocument obsolete packages
- none
- none
- none
- bump tox-lsr version to 2.8.3
- change recursive role symlink to individual role dir symlinks
- Add option to use an existing certificate
- none
- update tox-lsr version to 2.8.0
- tests: Run cleanup on failures as well
- Document how to generate a web server certificate, various small documentation improvements
- Don't restart cockpit.socket with cockpit_started: no; check role options in integration test
- update tox-lsr version to 2.7.1
- support python 39, ansible-core 2.12, ansible-plugin-scan
- tests: Run Ansible in verbose mode in GitHub workflow integration test
- Test certmonger-generated certificates directly in cockpit/ws-certs.d/
- Test certmonger-generated Cockpit certificates
- Enable the Extras repository on RHEL 7
- tests: Generate self-signed certificate for RHEL >= 8
- tests: Run integration test in GitHub actions
- tests: Assert some assumptions about the default role behaviour
- Drop cockpit-dashboard from Debian's "full" list
- none
- Use {{ ansible_managed | comment }} to fix multi-line ansible_managed
- use apt-get install -y
- use tox-lsr version 2.5.1
- Raise supported Ansible version to 2.9
- none
- none