Rework Molecule prepare phase to install sudo only if root on target

jboss-set · Mar 11, 2024 · 3a88fc4 · 3a88fc4
1 parent e480b78
commit 3a88fc4
Show file tree

Hide file tree

Showing 44 changed files with 384 additions and 240 deletions.
diff --git a/molecule/account/molecule.yml b/molecule/account/molecule.yml
@@ -1,12 +1,6 @@
 ---
-dependency:
-  name: galaxy
-  options:
-    ignore-certs: True
-    ignore-errors: True
-    requirements-file: molecule/default/requirements.yml
 driver:
-  name: podman
+  name: docker
 platforms:
   - name: instance
     image: registry.access.redhat.com/ubi8/ubi-init:latest
@@ -17,18 +11,25 @@ platforms:
       - sudo
 provisioner:
   name: ansible
+  config_options:
+    defaults:
+      interpreter_python: auto_silent
+    ssh_connection:
+      pipelining: false
   playbooks:
+    prepare: prepare.yml
     converge: converge.yml
     verify: verify.yml
   env:
+    ANSIBLE_FORCE_COLOR: "true"
     ANSIBLE_ROLES_PATH: "../../roles"
 verifier:
   name: ansible
 scenario:
   test_sequence:
-    - dependency
     - cleanup
     - destroy
+    - syntax
     - create
     - prepare
     - converge

diff --git a/molecule/account/verify.yml b/molecule/account/verify.yml
@@ -1,6 +1,7 @@
 ---
 - name: Verify for account role
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
   gather_facts: false

diff --git a/molecule/aphrodite/converge.yml b/molecule/aphrodite/converge.yml
@@ -1,6 +1,7 @@
 ---
 - name: Converge
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
 

diff --git a/molecule/aphrodite/prepare.yml b/molecule/aphrodite/prepare.yml
@@ -1,14 +1,27 @@
 ---
 - name: Prepare
   hosts: all
+  gather_facts: yes
   vars_files:
     - vars.yml
   tasks:
+
+    - name: Display Ansible version
+      ansible.builtin.debug:
+        msg: "Ansible version is  {{ ansible_version.full }}"
+
+    - name: "Install sudo if user is root"
+      ansible.builtin.yum:
+        name: sudo
+        state: present
+      when:
+        - ansible_user_id == "root"
     - name: Add the user jenkins
       ansible.builtin.user:
         name: jenkins
 
     - name: Creates directory
+      become: yes
       ansible.builtin.file:
         path: /opt/tools
         state: directory
@@ -17,6 +30,7 @@
         mode: 0644
 
     - name: "Deploy aphrodite configuration to {{ aphrodite.path }}"
+      become: yes
       ansible.builtin.template:
         src: "../../roles/aphrodite/templates/aphrodite.json.j2"
         dest: "{{ aphrodite.path }}"

diff --git a/molecule/aphrodite/verify.yml b/molecule/aphrodite/verify.yml
@@ -1,6 +1,7 @@
 ---
 - name: Verify for aphrodite role
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
   gather_facts: false

diff --git a/molecule/bashrc/molecule.yml b/molecule/bashrc/molecule.yml
@@ -20,7 +20,7 @@ provisioner:
   playbooks:
     converge: converge.yml
     verify: verify.yml
-    prepare: ../prepare.yml
+    prepare: prepare.yml
   env:
     ANSIBLE_ROLES_PATH: "../../roles"
 verifier:

diff --git a/molecule/cron/molecule.yml b/molecule/cron/molecule.yml
@@ -1,12 +1,6 @@
 ---
-dependency:
-  name: galaxy
-  options:
-    ignore-certs: True
-    ignore-errors: True
-    requirements-file: molecule/default/requirements.yml
 driver:
-  name: podman
+  name: docker
 platforms:
   - name: instance
     image: registry.access.redhat.com/ubi8/ubi-init:latest
@@ -17,6 +11,11 @@ platforms:
       - sudo
 provisioner:
   name: ansible
+  config_options:
+    defaults:
+      interpreter_python: auto_silent
+    ssh_connection:
+      pipelining: false
   playbooks:
     converge: converge.yml
     verify: verify.yml
@@ -27,9 +26,9 @@ verifier:
   name: ansible
 scenario:
   test_sequence:
-    - dependency
     - cleanup
     - destroy
+    - syntax
     - create
     - prepare
     - converge

diff --git a/molecule/cron/prepare.yml b/molecule/cron/prepare.yml
@@ -1,13 +1,27 @@
 ---
 - name: Prepare
   hosts: all
+  gather_facts: yes
   vars_files:
     - vars.yml
   tasks:
+
+    - name: Display Ansible version
+      ansible.builtin.debug:
+        msg: "Ansible version is  {{ ansible_version.full }}"
+
+    - name: "Install sudo if user is root"
+      ansible.builtin.yum:
+        name: sudo
+        state: present
+      when:
+        - ansible_user_id == "root"
+
     - name: Creates directory
+      become: yes
       ansible.builtin.file:
         path: /opt/tools
         state: directory
         owner: root
         group: root
-        mode: 0745
+        mode: 0745
diff --git a/molecule/fast_yum_install/converge.yml b/molecule/fast_yum_install/converge.yml
@@ -1,6 +1,7 @@
 ---
 - name: Converge
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
   tasks:

diff --git a/molecule/fast_yum_install/molecule.yml b/molecule/fast_yum_install/molecule.yml
@@ -18,6 +18,7 @@ platforms:
 provisioner:
   name: ansible
   playbooks:
+    prepare: prepare.yml
     converge: converge.yml
     verify: verify.yml
   env:

diff --git a/molecule/git/prepare.yml b/molecule/git/prepare.yml
@@ -1,16 +1,32 @@
 ---
 - name: Prepare
   hosts: all
+  gather_facts: yes
   vars_files:
     - vars.yml
   tasks:
+
+    - name: Display Ansible version
+      ansible.builtin.debug:
+        msg: "Ansible version is  {{ ansible_version.full }}"
+
+    - name: "Install sudo if user is root"
+      ansible.builtin.yum:
+        name: sudo
+        state: present
+      when:
+        - ansible_user_id == "root"
+
     - name: Add the user jenkins
+      become: yes
       ansible.builtin.user:
         name: jenkins
+
     - name: Creates directory
+      become: yes
       ansible.builtin.file:
         path: /home/jenkins
         state: directory
         owner: jenkins
         group: jenkins
-        mode: 0644
+        mode: 0644
diff --git a/molecule/hosts/converge.yml b/molecule/hosts/converge.yml
@@ -1,6 +1,7 @@
 ---
 - name: Converge
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
   tasks:

diff --git a/molecule/hosts/prepare.yml b/molecule/hosts/prepare.yml
@@ -1,20 +1,34 @@
 ---
 - name: Prepare
   hosts: all
+  gather_facts: yes
   vars_files:
     - vars.yml
   tasks:
+    - name: Display Ansible version
+      ansible.builtin.debug:
+        msg: "Ansible version is  {{ ansible_version.full }}"
+
+    - name: "Install sudo if user is root"
+      ansible.builtin.yum:
+        name: sudo
+        state: present
+      when:
+        - ansible_user_id == "root"
+
     - name: "Include fast_yum_install"
       ansible.builtin.include_role:
         name: "fast_yum_install"
 
     - name: Creates /etc/fake_hosts directory
+      become: yes
       ansible.builtin.file:
         path: /etc/fake_hosts
         state: touch
         mode: 0644
 
     - name: Creates /etc/real_hosts directory
+      become: yes
       ansible.builtin.file:
         path: /etc/real_hosts
         state: touch

diff --git a/molecule/hosts/verify.yml b/molecule/hosts/verify.yml
@@ -1,6 +1,7 @@
 ---
 - name: Verify for hosts role
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
   gather_facts: false

diff --git a/molecule/java/molecule.yml b/molecule/java/molecule.yml
@@ -20,7 +20,7 @@ provisioner:
   playbooks:
     converge: converge.yml
     verify: verify.yml
-    prepare: ../prepare.yml
+    prepare: prepare.yml
   env:
     ANSIBLE_ROLES_PATH: "../../roles"
 verifier:

diff --git a/molecule/java/prepare.yml b/molecule/java/prepare.yml
@@ -1,9 +1,21 @@
 ---
 - name: Prepare
   hosts: all
+  gather_facts: yes
   vars_files:
     - vars.yml
   tasks:
+    - name: Display Ansible version
+      ansible.builtin.debug:
+        msg: "Ansible version is  {{ ansible_version.full }}"
+
+    - name: "Install sudo if user is root"
+      ansible.builtin.yum:
+        name: sudo
+        state: present
+      when:
+        - ansible_user_id == "root"
+
     - ansible.builtin.assert:
         that:
           - jdk_list is defined

diff --git a/molecule/kdump/converge.yml b/molecule/kdump/converge.yml
@@ -1,6 +1,7 @@
 ---
 - name: Converge
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
   tasks:

diff --git a/molecule/kdump/verify.yml b/molecule/kdump/verify.yml
@@ -1,6 +1,7 @@
 ---
 - name: Verify for kdump role
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
   gather_facts: false

diff --git a/molecule/motd/molecule.yml b/molecule/motd/molecule.yml
@@ -20,7 +20,7 @@ provisioner:
   playbooks:
     converge: converge.yml
     verify: verify.yml
-    prepare: ../prepare.yml
+    prepare: prepare.yml
   env:
     ANSIBLE_ROLES_PATH: "../../roles"
 verifier:

diff --git a/molecule/motd/prepare.yml b/molecule/motd/prepare.yml
@@ -1,9 +1,22 @@
 ---
 - name: Prepare
   hosts: all
+  gather_facts: yes
   vars_files:
     - vars.yml
   tasks:
+
+    - name: Display Ansible version
+      ansible.builtin.debug:
+        msg: "Ansible version is  {{ ansible_version.full }}"
+
+    - name: "Install sudo if user is root"
+      ansible.builtin.yum:
+        name: sudo
+        state: present
+      when:
+        - ansible_user_id == "root"
+
     - ansible.builtin.assert:
         that:
           - motd_path is defined

diff --git a/molecule/motd/verify.yml b/molecule/motd/verify.yml
@@ -3,10 +3,10 @@
   hosts: all
   vars_files:
     - vars.yml
-  gather_facts: false
-
+  gather_facts: yes
   tasks:
     - name: Add a duplicate motd
+      become: yes
       ansible.builtin.copy:
         src: "../../roles/motd/files/motd.standard"
         dest: /etc/duplicateMotd

diff --git a/molecule/netrc/converge.yml b/molecule/netrc/converge.yml
@@ -1,6 +1,7 @@
 ---
 - name: Converge
   hosts: all
+  become: yes
   vars_files:
     - vars.yml
   tasks: