From a453ac31f3428614cceb99027f8efbdb9258a40b Mon Sep 17 00:00:00 2001 From: Daniel Baumann Date: Tue, 14 May 2024 22:03:01 +0200 Subject: Adding upstream version 2.10.7+merged+base+2.10.8+dfsg. Signed-off-by: Daniel Baumann --- .../ansible_collections/splunk/es/tests/.keep | 0 .../es/tests/integration/target-prefixes.network | 1 + .../adaptive_response_notable_event/aliases | 1 + .../adaptive_response_notable_event/tasks/main.yml | 40 +++++++++++ .../targets/correlation_search_info/aliases | 1 + .../targets/correlation_search_info/tasks/main.yml | 79 ++++++++++++++++++++++ .../integration/targets/data_input_monitor/aliases | 1 + .../targets/data_input_monitor/tasks/main.yml | 52 ++++++++++++++ .../integration/targets/data_input_network/aliases | 1 + .../targets/data_input_network/tasks/main.yml | 52 ++++++++++++++ .../splunk_adaptive_response_notable_event/aliases | 1 + .../tasks/main.yml | 0 12 files changed, 229 insertions(+) create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/.keep create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/target-prefixes.network create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/adaptive_response_notable_event/aliases create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/adaptive_response_notable_event/tasks/main.yml create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/correlation_search_info/aliases create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/correlation_search_info/tasks/main.yml create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_monitor/aliases create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_monitor/tasks/main.yml create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_network/aliases create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_network/tasks/main.yml create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/splunk_adaptive_response_notable_event/aliases create mode 100644 collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/splunk_adaptive_response_notable_event/tasks/main.yml (limited to 'collections-debian-merged/ansible_collections/splunk/es/tests') diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/.keep b/collections-debian-merged/ansible_collections/splunk/es/tests/.keep new file mode 100644 index 00000000..e69de29b diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/target-prefixes.network b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/target-prefixes.network new file mode 100644 index 00000000..2a852434 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/target-prefixes.network @@ -0,0 +1 @@ +splunk diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/adaptive_response_notable_event/aliases b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/adaptive_response_notable_event/aliases new file mode 100644 index 00000000..f4c7f6a2 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/adaptive_response_notable_event/aliases @@ -0,0 +1 @@ +network/splunk diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/adaptive_response_notable_event/tasks/main.yml b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/adaptive_response_notable_event/tasks/main.yml new file mode 100644 index 00000000..c3f1ec1b --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/adaptive_response_notable_event/tasks/main.yml @@ -0,0 +1,40 @@ +--- +- name: Test splunk.es.adaptive_response_notable_event + adaptive_response_notable_event: + name: "Fake notable event from playbook" + correlation_search_name: "Test Fake Coorelation Search From Playbook" + description: "Test Fake notable event from playbook, description edition." + state: "present" + next_steps: + - ping + - nslookup + recommended_actions: + - script + - ansiblesecurityautomation + register: adaptive_response_notable_event_out + +- name: Assert Create splunk.es.adaptive_response_notable_event CHANGED + assert: + that: + - adaptive_response_notable_event_out is changed + - adaptive_response_notable_event_out is not failed + +- name: Validate splunk.es.adaptive_response_notable_event idempotent + adaptive_response_notable_event: + name: "Fake notable event from playbook" + correlation_search_name: "Test Fake Coorelation Search From Playbook" + description: "Test Fake notable event from playbook, description edition." + state: "present" + next_steps: + - ping + - nslookup + recommended_actions: + - script + - ansiblesecurityautomation + register: adaptive_response_notable_event_out2 + +- name: Assert Create splunk.es.adaptive_response_notable_event IDEMPOTENT + assert: + that: + - adaptive_response_notable_event_out2 is not changed + - adaptive_response_notable_event2 is not failed diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/correlation_search_info/aliases b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/correlation_search_info/aliases new file mode 100644 index 00000000..f4c7f6a2 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/correlation_search_info/aliases @@ -0,0 +1 @@ +network/splunk diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/correlation_search_info/tasks/main.yml b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/correlation_search_info/tasks/main.yml new file mode 100644 index 00000000..6469bc98 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/correlation_search_info/tasks/main.yml @@ -0,0 +1,79 @@ +--- +- name: Test correlation_search - CREATE + correlation_search: + name: "Test Fake Coorelation Search From Playbook" + description: "Test Fake Coorelation Search From Playbook, description edition." + search: 'source="/var/log/snort.log"' + state: "present" + register: correlation_search_create_output + +- name: Assert Create splunk.es.correlation_search CHANGED + assert: + that: + - correlation_search_create_output is changed + - correlation_search_create_output is not failed + +- name: Test correlation_search - CREATE IDEMPOTENT + correlation_search: + name: "Test Fake Coorelation Search From Playbook" + description: "Test Fake Coorelation Search From Playbook, description edition." + search: 'source="/var/log/snort.log"' + state: "present" + register: correlation_search_create_output2 + +- name: Assert Create splunk.es.correlation_search IDEMPOTENT + assert: + that: + - correlation_search_create_output2 is not changed + - correlation_search_create_output2 is not failed + +- name: Test correlation_search_info + correlation_search_info: + name: "Test Fake Coorelation Search From Playbook" + register: correlation_search_info_output + +- name: Assert Create splunk.es.correlation_search CHANGED + assert: + that: + - correlation_search_info_output is not changed + - correlation_search_info_output is not failed + +- name: Test correlation_search - DELETE + correlation_search: + name: "Test Fake Coorelation Search From Playbook" + description: "Test Fake Coorelation Search From Playbook, description edition." + search: 'source="/var/log/snort.log"' + state: "absent" + register: correlation_search_delete_output + +- name: Assert Create splunk.es.correlation_search CHANGED + assert: + that: + - correlation_search_delete_output is changed + - correlation_search_delete_output is not failed + +- name: Test correlation_search - DELETE IDEMPOTENT + correlation_search: + name: "Test Fake Coorelation Search From Playbook" + description: "Test Fake Coorelation Search From Playbook, description edition." + search: 'source="/var/log/snort.log"' + state: "absent" + register: correlation_search_delete_output2 + +- name: Assert Create splunk.es.correlation_search IDEMPOTENT + assert: + that: + - correlation_search_delete_output2 is not changed + - correlation_search_delete_output2 is not failed + +- name: Test correlation_search_info + correlation_search_info: + name: "Test Fake Coorelation Search From Playbook" + ignore_errors: yes + register: correlation_search_info_output2 + +- name: Assert Create splunk.es.correlation_search FAILED + assert: + that: + - correlation_search_info_output2 is not changed + - correlation_search_info_output2 is failed diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_monitor/aliases b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_monitor/aliases new file mode 100644 index 00000000..f4c7f6a2 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_monitor/aliases @@ -0,0 +1 @@ +network/splunk diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_monitor/tasks/main.yml b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_monitor/tasks/main.yml new file mode 100644 index 00000000..585f21d2 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_monitor/tasks/main.yml @@ -0,0 +1,52 @@ +--- +- name: Test data_input_monitor - CREATE + data_input_monitor: + name: "/var/log/messages" + state: "present" + recursive: True + register: data_input_monitor_output + +- name: Assert Create splunk.es.data_input_monitor CHANGED + assert: + that: + - data_input_monitor_output is changed + - data_input_monitor_output is not failed + +- name: Test data_input_monitor - CREATE IDEMPOTENT + data_input_monitor: + name: "/var/log/messages" + state: "present" + recursive: True + register: data_input_monitor_output2 + +- name: Assert Create splunk.es.data_input_monitor CREATE IDEMPOTENT + assert: + that: + - data_input_monitor_output2 is not changed + - data_input_monitor_output2 is not failed + +- name: Test data_input_monitor - DELETE + data_input_monitor: + name: "/var/log/messages" + state: "absent" + recursive: True + register: data_input_monitor_absent_output + +- name: Assert Create splunk.es.data_input_monitor CHANGED + assert: + that: + - data_input_monitor_absent_output is changed + - data_input_monitor_absent_output is not failed + +- name: Test data_input_monitor - DELETE IDEMPOTENT + data_input_monitor: + name: "/var/log/messages" + state: "absent" + recursive: True + register: data_input_monitor_absent_output2 + +- name: Assert Create splunk.es.data_input_monitor DELETE IDEMPOTENT + assert: + that: + - data_input_monitor_absent_output2 is not changed + - data_input_monitor_absent_output2 is not failed diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_network/aliases b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_network/aliases new file mode 100644 index 00000000..f4c7f6a2 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_network/aliases @@ -0,0 +1 @@ +network/splunk diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_network/tasks/main.yml b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_network/tasks/main.yml new file mode 100644 index 00000000..4eca9ac6 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/data_input_network/tasks/main.yml @@ -0,0 +1,52 @@ +--- +- name: Test data_input_network - CREATE + data_input_network: + name: "8099" + protocol: "tcp" + state: "present" + register: data_input_network_output + +- name: Assert Create splunk.es.data_input_network CHANGED + assert: + that: + - data_input_network_output is changed + - data_input_network_output is not failed + +- name: Test data_input_network - CREATE IDEMPOTENT + data_input_network: + name: "8099" + protocol: "tcp" + state: "present" + register: data_input_network_output2 + +- name: Assert Create splunk.es.data_input_network CREATE IDEMPOTENT + assert: + that: + - data_input_network_output2 is not changed + - data_input_network_output2 is not failed + +- name: Test data_input_network - DELETE + data_input_network: + name: "8099" + protocol: "tcp" + state: "present" + register: data_input_network_absent_output + +- name: Assert Create splunk.es.data_input_network CHANGED + assert: + that: + - data_input_network_absent_output is changed + - data_input_network_absent_output is not failed + +- name: Test data_input_network - DELETE IDEMPOTENT + data_input_network: + name: "8099" + protocol: "tcp" + state: "present" + register: data_input_network_absent_output2 + +- name: Assert Create splunk.es.data_input_network DELETE IDEMPOTENT + assert: + that: + - data_input_network_absent_output2 is not changed + - data_input_network_absent_output2 is not failed diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/splunk_adaptive_response_notable_event/aliases b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/splunk_adaptive_response_notable_event/aliases new file mode 100644 index 00000000..f4c7f6a2 --- /dev/null +++ b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/splunk_adaptive_response_notable_event/aliases @@ -0,0 +1 @@ +network/splunk diff --git a/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/splunk_adaptive_response_notable_event/tasks/main.yml b/collections-debian-merged/ansible_collections/splunk/es/tests/integration/targets/splunk_adaptive_response_notable_event/tasks/main.yml new file mode 100644 index 00000000..e69de29b -- cgit v1.2.3