From 4efa5e2c5eb15c3d9018d97f7024da7a37b0c2fe Mon Sep 17 00:00:00 2001 From: Romain Pelisse Date: Thu, 30 Jan 2025 10:28:00 +0100 Subject: [PATCH] ci: add a varname to switch all become to false, as GH action does not allow priv escalation anymore --- .github/workflows/ci.yml | 5 ++++- .github/workflows/cish.yml | 9 ++++++--- 2 files changed, 10 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index d6eb706..fa1c1b1 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -9,6 +9,9 @@ on: molecule_tests: required: true type: string + root_permission_varname: + required: false + type: string sanity_includes: required: false type: string @@ -213,7 +216,7 @@ jobs: - name: Run molecule test run: | molecule --version - molecule test -s ${{ matrix.molecule_test }} + molecule test -s ${{ matrix.molecule_test }} -- -e ${{ inputs.root_permission_varname }}=false working-directory: ./ansible_collections/${{ inputs.fqcn }} env: ANSIBLE_VERBOSITY: ${{ inputs.debug_verbosity }} diff --git a/.github/workflows/cish.yml b/.github/workflows/cish.yml index 3020bca..2082fd1 100644 --- a/.github/workflows/cish.yml +++ b/.github/workflows/cish.yml @@ -9,6 +9,9 @@ on: molecule_tests: required: true type: string + root_permission_varname: + required: false + type: string podman_tests_current: required: true type: string @@ -219,7 +222,7 @@ jobs: - name: Run molecule test run: | molecule --version - molecule test -s ${{ matrix.molecule_test }} + molecule test -s ${{ matrix.molecule_test }} -- -e ${{ inputs.root_permission_varname }}=false working-directory: ./ansible_collections/${{ inputs.fqcn }} env: ANSIBLE_VERBOSITY: ${{ inputs.debug_verbosity }} @@ -267,7 +270,7 @@ jobs: - name: Run molecule test run: | molecule --version - molecule test -s ${{ matrix.molecule_test }} + molecule test -s ${{ matrix.molecule_test }} -- -e ${{ inputs.root_permission_varname }}=false working-directory: ./ansible_collections/${{ inputs.fqcn }} env: ANSIBLE_REMOTE_TMP: "/tmp-2.15-${{ matrix.molecule_test }}" @@ -316,7 +319,7 @@ jobs: - name: Run molecule test run: | molecule --version - molecule test -s ${{ matrix.molecule_test }} + molecule test -s ${{ matrix.molecule_test }} -- -e ${{ inputs.root_permission_varname }}=false working-directory: ./ansible_collections/${{ inputs.fqcn }} env: ANSIBLE_REMOTE_TMP: "/tmp-2.16-${{ matrix.molecule_test }}"