aschmidt75

Scenario: Vagrant/Docker Setup
  Given a host with 'vagrant' installed
  When i run vagrant
  Then it should have a vm named 'default'
  And it should have a vm named 'web' 
  And it should have a vm named 'app'

Scenario: Docker Images in web server
  Given a vm named 'web'
  Then it should have docker installed

aschmidt75

                        # install vim magic
			sudo apt-get -y install vim
    			mkdir -p /home/vagrant/.vim/bundle
			mkdir -p /home/vagrant/.vim/autoload
			chown -R vagrant:vagrant /home/vagrant/.vim
			cd /home/vagrant/.vim/bundle
   			git clone git://github.com/scrooloose/syntastic.git
			cd /home/vagrant/.vim/autoload
			wget https://raw.github.com/tpope/vim-pathogen/master/autoload/pathogen.vim
			# patch in pathogen to vimrc

aschmidt75

require 'specinfra/backend/exec'
require 'open3'

module SpecInfra
  module Backend
    class Nsenter < Exec
      def run_command(cmd, opt={})
        cmd = build_command(cmd)
        cmd = add_pre_command(cmd)
        ret = nsenter_exec!(cmd)

aschmidt75

Vagrant.configure("2") do |config|
  config.vm.box = "trusty64"
  config.vm.box_url = "http://cloud-images.ubuntu.com/vagrant/trusty/current/trusty-server-cloudimg-amd64-vagrant-disk1.box"

  config.vm.define "serverspec2-playground", primary: true do |s|
    s.vm.synced_folder "spec.d/", "/mnt/spec.d"

    # install & run serverspec
    s.vm.provision 'shell', inline: <<EOS
	sudo apt-get update -yqq

aschmidt75

Keybase proof

I hereby claim:

• I am aschmidt75 on github.
• I am aschmidt75 (https://keybase.io/aschmidt75) on keybase.
• I have a public key whose fingerprint is 25F0 C870 FECD 702B F177 A46A 95F1 6A5F 4AB3 57AD

To claim this, I am signing this object:

aschmidt75

{
    "app_name": "grafana-pastie-example",
    "services": [
        {
            "service_name": "grafana-pastie",
            "components": [
                {
                    "component_name": "gs-rdb",
                    "image": "dockerfile/rethinkdb",
                    "ports": [ "8080/tcp", "28015/tcp", "29015/tcp" ]

aschmidt75

require 'spec_helper.rb'

# The MIT License (MIT) andreas@de-wiring.net

# This serverspec ensures that
# - tls is configured in docker defaults file
# - certs and keys are present and valid (using openssl verify)
# - dockerd is listing on TLS port
# - there is no activity on docker socket (tls only)
# - that a connection is TLS-secure (using openssl s_client)

aschmidt75

describe ovs_bridge 'port.47' do
  it { should exist }                   # br-exists
  it { should be_tagged }		# br-to-vlan != 0
  its(:tag) { should eq 47 }		# br-to-vlan
  its(:parent) { should eq 'trunk0' }	# br-to-parent
  it { should have_interfaces }		# list-ifaces
end
  

aschmidt75

policy_module(virttest, 1.0);

gen_require( type svirt_sandbox_file_t; )
gen_require( type svirt_lxc_mynet_t; )
gen_require( type virt_lxc_var_run_t; )
gen_require( attribute sandbox_net_domain; )

########################################
#
# svirt_lxc_mynet_t local policy

aschmidt75

Keybase proof

I hereby claim:

• I am aschmidt75 on github.
• I am aschmidt75 (https://keybase.io/aschmidt75) on keybase.
• I have a public key ASDF26fy0u6wSwNTtR9kgKSUM5nBbGu2z7Lpd80bfNmi1Qo

To claim this, I am signing this object: