Test Ansible Roles using molecule and goss
Preparation
Create new python environment if you are using python 3 (molecule at this point only supports python 2.7).
$ conda create -n ansible python=2.7
$ # for some reson molecule doesn't install
$ # functools_lru_cache automagically
$ source activate ansible
$ pip install ansible molecule docker-py backports.functools_lru_cache
$ # install goss
$ curl -fsSL https://goss.rocks/install | shSetup
Create a some role with ansible-galaxy,…
(ansible) $ ansible-galaxy init r-nasg.dummyCreate your default playbook (default.yml) with the following content:
---
- hosts: localhost
roles:
- r-nasg.dummyIn the tasks file (tasks/main.yml) add something simple just to test the concept…
---
- name: Add flag
blockinfile:
path: /root/ansible-flag
create: yes
block: |
flagCreate tests
Create the tests using molecule using the following command:
(ansible) $ # molecule init scenario -r <role-name> -s <scenario-name> -d <driver (docker | vagrant | etc.)> --verifier-name <(goss | testinfra | etc.)>
(ansible) $ molecule init scenario -r r-nasg.dummy -s default -d docker --verifier-name gossmolecule will create a series of folders and files, open the tests file (playbook_dir/molecule/default/tests/test_default.yml) and add the following:
---
file:
/root/ansible-flag:
exists: true
owner: root
group: root
contains:
- flagRun tests
Finally run:
(ansible) $ molecule testOutput:
...
"msg": [
"File: /root/ansible-flag: exists: matches expectation: [true]",
"File: /root/ansible-flag: owner: matches expectation: [\"root\"]",
"File: /root/ansible-flag: group: matches expectation: [\"root\"]",
"File: /root/ansible-flag: contains: matches expectation: [flag]",
"",
"",
"Total Duration: 0.001s",
"Count: 4, Failed: 0, Skipped: 0"
]
...Notes
You can always skip ansible-lint check in any taks uou pick add the tag skip_ansible_lint in the tags statement.
tags:
- skip_ansible_lint