Commit Graph

242 Commits

Author SHA1 Message Date
Michal Hrusecky
8d0172f5c7
feat(zone.xml): allow more services definition inside zone
Now multiple sections ending with `services` can be defined for each in pillar
and all of them will get merged into one service block in the zone. The goal is
to keep backward compatibility while allowing different services to be defined
in different pillars. So basically have various parts of the pillar affecting
the firewall without need to define everything centrally. Helpful for the
exceptions to the rules.
2020-02-11 15:29:11 +01:00
Imran Iqbal
0b82e43a15 ci(kitchen): avoid using bootstrap for master instances [skip ci]
* Automated using https://github.com/myii/ssf-formula/pull/124
2020-02-05 14:04:05 +00:00
Imran Iqbal
b96cc569fe ci(travis): use major.minor for semantic-release version [skip ci]
* Automated using https://github.com/myii/ssf-formula/pull/112
2019-12-22 00:56:35 +00:00
Imran Iqbal
908f5df86c ci(gemfile): restrict train gem version until upstream fix [skip ci]
* Automated using https://github.com/myii/ssf-formula/pull/110
2019-12-16 13:39:37 +00:00
Imran Iqbal
97afbb1575 ci(travis): quote pathspecs used with git ls-files [skip ci]
* Automated using https://github.com/myii/ssf-formula/pull/107
2019-11-27 22:01:28 +00:00
Imran Iqbal
d8bede7082 ci(travis): run shellcheck during lint job [skip ci]
* Automated using https://github.com/myii/ssf-formula/pull/106
2019-11-27 21:03:06 +00:00
Imran Iqbal
70dc9aa3b4 ci(travis): opt-in to dpl v2 to complete build config validation [skip ci]
* Automated using https://github.com/myii/ssf-formula/pull/100
2019-11-20 16:36:24 +00:00
Imran Iqbal
6e1b876298 ci(travis): apply changes from build config validation [skip ci]
* Automated using https://github.com/myii/ssf-formula/pull/98
2019-11-16 20:09:44 +00:00
Imran Iqbal
07e79001cd ci(travis): use build config validation (beta) [skip ci]
* Automated using https://github.com/myii/ssf-formula/pull/97
2019-11-13 16:51:58 +00:00
semantic-release-bot
dc8a9df3b8 chore(release): 0.7.0 [skip ci]
# [0.7.0](https://github.com/saltstack-formulas/firewalld-formula/compare/v0.6.2...v0.7.0) (2019-11-09)

### Bug Fixes

* **map.jinja:** fix `salt-lint` errors ([de4e191](de4e1915fb))
* **rubocop:** add fixes using `rubocop --safe-auto-correct` ([8136b75](8136b75fa0))
* **yamllint:** fix all errors ([0f808d6](0f808d6afb))

### Documentation

* **readme:** modify according to standard structure ([3df11fc](3df11fc75c))
* **readme:** move to `docs/` directory ([d47265f](d47265f974))

### Features

* **semantic-release:** implement for this formula ([c5f114d](c5f114d886))
2019-11-09 15:08:24 +00:00
Niels Abspoel
cf901ef465
Merge pull request #33 from myii/feat/implement-semantic-release
feat(semantic-release): implement for this formula
2019-11-09 15:58:03 +01:00
Imran Iqbal
3df11fc75c
docs(readme): modify according to standard structure 2019-11-09 08:24:56 +00:00
Imran Iqbal
d47265f974
docs(readme): move to docs/ directory 2019-11-09 08:24:55 +00:00
Imran Iqbal
8136b75fa0
fix(rubocop): add fixes using rubocop --safe-auto-correct 2019-11-09 08:24:55 +00:00
Imran Iqbal
0f808d6afb
fix(yamllint): fix all errors
```bash
firewalld-formula$ yamllint -s .
./pillar.example
  2:1       warning  missing document start "---"  (document-start)
  3:12      warning  truthy value should be one of [false, true]  (truthy)
  12:13     warning  truthy value should be one of [false, true]  (truthy)
  15:89     error    line too long (108 > 88 characters)  (line-length)
  19:13     warning  truthy value should be one of [false, true]  (truthy)
  30:89     error    line too long (363 > 88 characters)  (line-length)
  96:89     error    line too long (170 > 88 characters)  (line-length)
  108:15    error    wrong indentation: expected 12 but found 14  (indentation)
  115:13    error    empty value in block mapping  (empty-values)
  116:2     error    syntax error: found character '%' that cannot start any token
  152:89    error    line too long (112 > 88 characters)  (line-length)

./firewalld/defaults.yaml
  3:1       warning  missing document start "---"  (document-start)
```
2019-11-09 08:24:55 +00:00
Imran Iqbal
de4e1915fb
fix(map.jinja): fix salt-lint errors
```bash
Examining firewalld/map.jinja of type state
[209] Jinja comment should have spaces before and after: {# comment #}
firewalld/map.jinja:4
{## Start with  defaults from defaults.yaml ##}

[209] Jinja comment should have spaces before and after: {# comment #}
firewalld/map.jinja:7
{##

[201] Trailing whitespace
firewalld/map.jinja:16
  }, grain='os_family', merge=salt['pillar.get']('firewalld:lookup'))

[209] Jinja comment should have spaces before and after: {# comment #}
firewalld/map.jinja:19
{## Merge the flavor_map to the default settings ##}

[209] Jinja comment should have spaces before and after: {# comment #}
firewalld/map.jinja:22
{## Merge in salt:lookup pillar ##}
```
2019-11-09 08:24:55 +00:00
Imran Iqbal
c5f114d886
feat(semantic-release): implement for this formula
* Automated using https://github.com/myii/ssf-formula/pull/95
2019-11-09 08:24:55 +00:00
Imran Iqbal
db9597e398
Merge pull request #32 from Sxderp/pr-remove-unexpected-icmp-block-attribtue
Remove name attribute in icmp-block-inversion
2019-11-08 18:52:47 +00:00
Steven Daniele
12b696a8fe Remove name attribute in icmp-block-inversion
Firewalld does not parse the name attribute.

Log message:
firewalld[1999]: ERROR: Failed to load zone file 'public.xml':
PARSE_ERROR: icmp-block-inversion: Unexpected attribute name
2019-11-08 10:37:31 -05:00
Imran Iqbal
9646ead4b4
Merge pull request #31 from Sxderp/pr-fix-block-inversion-key-name
Fix typo in icmp block inversion key name
2019-11-08 15:13:25 +00:00
Steven Daniele
64825e20ab Fix typo in icmp block inversion key name 2019-11-08 09:39:57 -05:00
Niels Abspoel
ae1f2453d3 add updated firewalld.conf from 0.7.1 2019-09-15 21:01:15 +01:00
Niels Abspoel
4937787038
Merge pull request #29 from noelmcloughlin/arch
feat(linux): archlinux support (no osfinger grain)
2019-08-04 21:23:15 +02:00
N
ad37448038
feat(linux): archlinux support (no osfinger grain) 2019-08-03 14:59:08 +01:00
Imran Iqbal
46288d6b50
Merge pull request #28 from aboe76/update_test_images
update test images
2019-04-30 20:07:25 +01:00
Niels Abspoel
f560dcd1b4 add @myii recommendations 2019-04-30 20:55:32 +02:00
Niels Abspoel
d201f448c9 update test images 2019-04-30 19:26:04 +02:00
Imran Iqbal
6a546ca192
Merge pull request #27 from aboe76/improve_service
update service and zones with more options
2019-04-06 22:39:30 +01:00
Niels Abspoel
a438f30f50 fix spacing in closing tags 2019-04-06 23:26:48 +02:00
Niels Abspoel
9522826dcb update gems 2019-04-06 22:03:15 +02:00
Niels Abspoel
87ecf4eea4 update gems 2019-04-06 21:58:48 +02:00
Niels Abspoel
18fc482853 update service and zones with more options
update kitchen travis
fix ipsets.sls
2019-04-06 21:40:50 +02:00
Javier Bértoli
f5c2acbd3a
Merge pull request #25 from aboe76/fix_travis
update kitchen.yml and Gemfile
2018-12-23 19:55:19 -03:00
Niels Abspoel
b05886c13e update kitchen.yml and Gemfile 2018-12-22 19:38:27 +01:00
Niels Abspoel
22e301a218
Merge pull request #24 from valibud/master
Add support for inet6 ipsets.
2018-12-10 20:01:04 +01:00
Valentin Bud
d1d7a9186c Add support for inet6 ipsets. 2018-12-10 13:44:53 +02:00
Niels Abspoel
a2d99c5957
Merge pull request #23 from netmanagers/master
Refactor ipset & backend
2018-08-26 07:55:00 +02:00
Javier Bértoli
951050008d Update pillar.example 2018-08-25 19:05:21 -03:00
Javier Bértoli
15a48462f0 Refactor backend format, add backward compatibility, simple pkg testing
See https://github.com/saltstack-formulas/firewalld-formula/pull/21#pullrequestreview-146958098
2018-08-25 19:00:11 -03:00
Javier Bértoli
d3928d1be0 Refactor ipset format, add backward compatibility
See https://github.com/saltstack-formulas/firewalld-formula/pull/21#pullrequestreview-146958098
2018-08-25 18:27:37 -03:00
Javier Bértoli
7bc3a9cdd4 Use mapped data instead of pillar.get data 2018-08-25 18:20:27 -03:00
Javier Bértoli
bcd47361ca Refactor .kitchen.yml to use pillar.example as pillar 2018-08-25 18:13:06 -03:00
Niels Abspoel
9017ad5ea2
Merge pull request #22 from netmanagers/master
Update testing environment
2018-08-25 21:36:47 +02:00
Javier Bértoli
e513275112 Updated REDME 2018-08-25 16:16:01 -03:00
Javier Bértoli
b641216b8b Update testing environment 2018-08-25 16:08:24 -03:00
Javier Bértoli
8694a11de5
Merge pull request #21 from aboe76/update_config_6.x
update firewalld formula for firewalld > 0.6
2018-08-16 15:19:46 -03:00
Niels Abspoel
7c0b6aeb55 fix whitespacing 2018-08-14 19:52:08 +02:00
Niels Abspoel
36da1094b7 update firewalld formula for firewalld > 0.6 2018-08-12 20:26:21 +02:00
Niels Abspoel
1ddb09137c
Merge pull request #20 from noelmcloughlin/suseSupport
notify nosupport if SLES version < 15
2018-06-05 17:04:53 +02:00
N
1ba51b8583 notify nosupport if SLES version < 15 2018-06-05 15:36:29 +01:00