Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/juju4/ansible-ail-framework

CIRCL AIL framework ansible role
https://github.com/juju4/ansible-ail-framework

Last synced: 27 days ago
JSON representation

CIRCL AIL framework ansible role

Host: GitHub
URL: https://github.com/juju4/ansible-ail-framework
Owner: juju4
License: bsd-2-clause
Created: 2016-10-30T19:16:29.000Z (about 8 years ago)
Default Branch: master
Last Pushed: 2023-09-04T23:32:32.000Z (over 1 year ago)
Last Synced: 2024-11-07T17:40:52.779Z (3 months ago)
Language: Jinja
Size: 254 KB
Stars: 1
Watchers: 2
Forks: 1
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

[![No Maintenance Intended](http://unmaintained.tech/badge.svg)](http://unmaintained.tech/)
# DEPRECATED/LOOKING FOR MAINTAINERS -> to be archived else

[![Actions Status - Master](https://github.com/juju4/ansible-ail-framework/workflows/AnsibleCI/badge.svg)](https://github.com/juju4/ansible-ail-framework/actions?query=branch%3Amaster)
[![Actions Status - Devel](https://github.com/juju4/ansible-ail-framework/workflows/AnsibleCI/badge.svg?branch=devel)](https://github.com/juju4/ansible-ail-framework/actions?query=branch%3Adevel)

# CIRCL AIL framework ansible role

Ansible role to setup CIRCL.LU Analysis of Information Leaks framework
* https://github.com/CIRCL/AIL-framework
* http://www.foo.be/cours/dess-20152016/AIL.pdf
* https://www.circl.lu/assets/files/201603owasp_circl.pdf

There is an [official ansible role](https://github.com/CIRCL/AIL-framework/tree/master/ansible) included since Mar 2018.

## Requirements & Dependencies

### Ansible
It was tested on the following versions:
* 2.0
* 2.2
* 2.5

### Operating systems

Tested on Ubuntu 16.04, 18.04

## Example Playbook

Just include this role in your list.
For example

```
- host: all
roles:
- juju4.ail_framework
```

## Variables

Nothing specific for now.

## Continuous integration

This role has a travis basic test (for github), more advanced with kitchen and also a Vagrantfile (test/vagrant).
Default kitchen config (.kitchen.yml) is lxd-based, while (.kitchen.vagrant.yml) is vagrant/virtualbox based.

Once you ensured all necessary roles are present, You can test with:
```
$ gem install kitchen-ansible kitchen-lxd_cli kitchen-sync kitchen-vagrant
$ cd /path/to/roles/juju4.ail_framework
$ kitchen verify
$ kitchen login
$ KITCHEN_YAML=".kitchen.vagrant.yml" kitchen verify
```
or
```
$ cd /path/to/roles/juju4.ail_framework/test/vagrant
$ vagrant up
$ vagrant ssh
```

Role has also a packer config which allows to create image for virtualbox, vmware, eventually digitalocean, lxc and others.
When building it, it's advise to do it outside of roles directory as all the directory is upload to the box during building
and it's currently not possible to exclude packer directory from it (https://github.com/mitchellh/packer/issues/1811)
```
$ cd /path/to/packer-build
$ cp -Rd /path/to/ail-framework/packer .
## update packer-*.json with your current absolute ansible role path for the main role
## you can add additional role dependencies inside setup-roles.sh
$ cd packer
$ packer build packer-*.json
$ packer build -only=virtualbox-iso packer-*.json
## if you want to enable extra log
$ PACKER_LOG_PATH="packerlog.txt" PACKER_LOG=1 packer build packer-*.json
## for digitalocean build, you need to export TOKEN in environment.
## update json config on your setup and region.
$ export DO_TOKEN=xxx
$ packer build -only=digitalocean packer-*.json
```

## Troubleshooting & Known issues

* Ubuntu trusty and Centos7 are not supported because of Redis 2.8. Need 3+.
Centos7 miss also packages for some libraries even with EPEL repository.

* if not finding DEFAULT_PASSWORD credentials file, call it manually
```
sudo -H -u _ail /var/_ail/AIL/var/www/create_default_user.py
```

## License

BSD 2-clause