wazuh · manuasir · Aug 23, 2019 · Aug 20, 2019 · Aug 20, 2019 · Aug 21, 2019
diff --git a/Pipfile b/Pipfile
@@ -14,9 +14,22 @@ molecule = "==2.20.2"
 python_version = "2.7"
 
 [scripts]
+test ="molecule test --destroy=never"
+worker ="molecule test -s worker --destroy=never"
+agent ="molecule test -s wazuh-agent --destroy=never"
+elasticsearch ="molecule test -s elasticsearch  --destroy=never"
+kibana ="molecule test -s kibana --destroy=never"
+
+# Verify ..
+verify ="molecule verify"
+verify_worker ="molecule verify -s worker"
+verify_agent ="molecule verify -s agent"
+verify_elasticsearch ="molecule verify -s elasticsearch"
+verify_kibana ="molecule verify -s kibana"
+
+# Destroy ..
 destroy ="molecule destroy"
-test ="molecule test"
-agent ="molecule test -s wazuh-agent"
-elasticsearch ="molecule test -s elasticsearch"
-filebeat ="molecule test -s filebeat"
-kibana ="molecule test -s kibana"
+destroy_worker ="molecule destroy -s worker"
+destroy_agent ="molecule destroy -s agent"
+destroy_elasticsearch ="molecule destroy -s elasticsearch"
+destroy_kibana ="molecule destroy -s kibana"
diff --git a/molecule/default/create.yml b/molecule/default/create.yml
@@ -44,10 +44,13 @@
 
     - name: Create docker network(s)
       docker_network:
-        name: "{{ item }}"
-        docker_host: "{{ item.docker_host | default('unix://var/run/docker.sock') }}"
+        name: "main"
         state: present
-      with_items: "{{ molecule_yml.platforms | molecule_get_docker_networks }}"
+
+    - name: Sleep 5 seconds till the network gets created if it's not
+        # Pause for 5 minutes to build app cache.
+      pause:
+        seconds: 10
 
     - name: Create molecule instance(s)
       docker_container:
@@ -65,7 +68,8 @@
         exposed_ports: "{{ item.exposed_ports | default(omit) }}"
         published_ports: "{{ item.published_ports | default(omit) }}"
         ulimits: "{{ item.ulimits | default(omit) }}"
-        networks: "{{ item.networks | default(omit) }}"
+        networks: 
+          - name: "main"
         dns_servers: "{{ item.dns_servers | default(omit) }}"
       register: server
       with_items: "{{ molecule_yml.platforms }}"
@@ -78,4 +82,4 @@
       register: docker_jobs
       until: docker_jobs.finished
       retries: 300
-      with_items: "{{ server.results }}"
+      with_items: "{{ server.results }}"
diff --git a/molecule/default/molecule.yml b/molecule/default/molecule.yml
diff --git a/molecule/default/molecule.yml.template b/molecule/default/molecule.yml.template
@@ -0,0 +1,47 @@
+---
+dependency:
+  name: galaxy
+driver:
+  name: docker
+lint:
+  name: yamllint
+  enabled: false
+platforms:
+  - name: manager_platform_
+    image: imagename
+    command: /sbin/init
+    ulimits:
+      - nofile:262144:262144
+    privileged: true
+    memory_reservation: 2048m
+provisioner:
+  name: ansible
+  config_options:
+    defaults:
+      hash_behaviour: merge
+  env:
+    ANSIBLE_ROLES_PATH: ../../roles
+  lint:
+    name: ansible-lint
+    enabled: true
+scenario:
+  name: default
+  test_sequence:
+    - lint
+    - dependency
+    - cleanup
+    - destroy
+    - syntax
+    - create
+    - prepare
+    - converge
+    - idempotence
+    - side_effect
+    - verify
+    - cleanup
+    - destroy
+verifier:
+  name: testinfra
+  lint:
+    name: flake8
+    enabled: true
diff --git a/molecule/default/playbook.yml b/molecule/default/playbook.yml
@@ -3,4 +3,17 @@
   hosts: all
   roles:
     - role: wazuh/ansible-wazuh-manager
-
+      vars:
+        wazuh_manager_config:
+            cluster:
+                disable: 'no'
+                name: 'wazuh'
+                node_name: 'manager'
+                node_type: 'master'
+                key: 'ugdtAnd7Pi9myP7CVts4qZaZQEQcRYZa'
+                port: '1516'
+                bind_addr: '0.0.0.0'
+                nodes:
+                - 'manager_bionic'
+                hidden: 'no'
+    - { role: wazuh/ansible-filebeat, filebeat_output_elasticsearch_hosts: 'elasticsearch_bionic:9200' }
diff --git a/molecule/default/playbook.yml.template b/molecule/default/playbook.yml.template
@@ -0,0 +1,19 @@
+---
+- name: Converge
+  hosts: all
+  roles:
+    - role: wazuh/ansible-wazuh-manager
+      vars:
+        wazuh_manager_config:
+            cluster:
+                disable: 'no'
+                name: 'wazuh'
+                node_name: 'manager'
+                node_type: 'master'
+                key: 'ugdtAnd7Pi9myP7CVts4qZaZQEQcRYZa'
+                port: '1516'
+                bind_addr: '0.0.0.0'
+                nodes:
+                - 'manager_platform'
+                hidden: 'no'
+    - { role: wazuh/ansible-filebeat, filebeat_output_elasticsearch_hosts: 'elasticsearch_platform:9200' }
diff --git a/molecule/default/tests/test_default.py b/molecule/default/tests/test_default.py
@@ -73,8 +73,17 @@ def test_open_ports(host):
     """Test if the main port is open and the agent-auth is not open."""
     distribution = host.system_info.distribution.lower()
     if distribution == 'ubuntu':
+        assert host.socket("tcp://0.0.0.0:1516").is_listening
         assert host.socket("tcp://0.0.0.0:1515").is_listening
         assert host.socket("tcp://0.0.0.0:1514").is_listening
     elif distribution == 'centos':
+        assert host.socket("tcp://0.0.0.0:1516").is_listening
         assert host.socket("tcp://127.0.0.1:1515").is_listening
         assert host.socket("tcp://127.0.0.1:1514").is_listening
+
+
+def test_filebeat_is_installed(host):
+    """Test if the elasticsearch package is installed."""
+    filebeat = host.package("filebeat")
+    assert filebeat.is_installed
+    assert filebeat.version.startswith('7.2.1')
diff --git a/molecule/elasticsearch/molecule.yml b/molecule/elasticsearch/molecule.yml
@@ -8,41 +8,19 @@ lint:
   options:
     config-data:
       ignore: .virtualenv
-platforms:
-  #- name: bionic
-  #  image: solita/ubuntu-systemd:bionic
-  #  command: /sbin/init
-  #  ulimits:
-  #    - nofile:262144:262144
-  #  privileged: true
-  #  memory_reservation: 2048m
-  #- name: xenial
-  #  image: solita/ubuntu-systemd:xenial
-  #  privileged: true
-  #  memory_reservation: 2048m
-  #  command: /sbin/init
-  #  ulimits:
-  #    - nofile:262144:262144
-  #- name: trusty
-  #image: ubuntu:trusty
-  #privileged: true
-  #memory_reservation: 2048m
-  #ulimits:
-      #- nofile:262144:262144
-  #- name: centos6
-  #  image: centos:6
-  #  privileged: true
-  #  memory_reservation: 2048m
-  #  ulimits:
-  #    - nofile:262144:262144
-  - name: centos7
-    image: milcom/centos7-systemd
-    memory_reservation: 2048m
-    privileged: true
+bionics:
+  - name: elasticsearch_bionic
+    image: solita/ubuntu-systemd:bionic
+    command: /sbin/init
     ulimits:
       - nofile:262144:262144
+    privileged: true
+    memory_reservation: 2048m
 provisioner:
   name: ansible
+  config_options:
+    defaults:
+      hash_behaviour: merge
   playbooks:
     docker:
       create: ../default/create.yml
@@ -57,6 +35,22 @@ provisioner:
     group_vars:
       all:
         elasticsearch_jvm_xms: 512
+scenario:
+  name: elasticsearch
+  test_sequence:
+    - lint
+    - dependency
+    - cleanup
+    - destroy
+    - syntax
+    - create
+    - prepare
+    - converge
+    #- idempotence
+    - side_effect
+    - verify
+    - cleanup
+    - destroy
 verifier:
   name: testinfra
   lint:

diff --git a/molecule/elasticsearch/molecule.yml.template b/molecule/elasticsearch/molecule.yml.template
@@ -0,0 +1,57 @@
+---
+dependency:
+  name: galaxy
+driver:
+  name: docker
+lint:
+  name: yamllint
+  options:
+    config-data:
+      ignore: .virtualenv
+platforms:
+  - name: elasticsearch_platform_
+    image: imagename
+    command: /sbin/init
+    ulimits:
+      - nofile:262144:262144
+    privileged: true
+    memory_reservation: 2048m
+provisioner:
+  name: ansible
+  config_options:
+    defaults:
+      hash_behaviour: merge
+  playbooks:
+    docker:
+      create: ../default/create.yml
+      destroy: ../default/destroy.yml
+      prepare: ../default/prepare.yml
+  env:
+    ANSIBLE_ROLES_PATH: ../../roles
+  lint:
+    name: ansible-lint
+    enabled: true
+  inventory:
+    group_vars:
+      all:
+        elasticsearch_jvm_xms: 512
+scenario:
+  name: elasticsearch
+  test_sequence:
+    - lint
+    - dependency
+    - cleanup
+    - destroy
+    - syntax
+    - create
+    - prepare
+    - converge
+    - idempotence
+    - side_effect
+    - verify
+    - cleanup
+    - destroy
+verifier:
+  name: testinfra
+  lint:
+    name: flake8
diff --git a/molecule/elasticsearch/playbook.yml b/molecule/elasticsearch/playbook.yml
@@ -3,4 +3,4 @@
   hosts: all
   roles:
     - role: elastic-stack/ansible-elasticsearch
-      elasticsearch_network_host: 'localhost'
+      elasticsearch_network_host: 'elasticsearch_bionic'
diff --git a/molecule/elasticsearch/playbook.yml.template b/molecule/elasticsearch/playbook.yml.template
@@ -0,0 +1,6 @@
+---
+- name: Converge
+  hosts: all
+  roles:
+    - role: elastic-stack/ansible-elasticsearch
+      elasticsearch_network_host: 'elasticsearch_platform'