ability to run standlone goss config

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
2026-06-02 02:51:02 +00:00 · 2022-04-06 09:00:46 +01:00
parent 379f1441fc
commit 714b191731
1 changed files with 44 additions and 0 deletions
@@ -0,0 +1,44 @@
+gossfile:
+  {{ if .Vars.rhel9cis_section1 }}
+  section_1/*/*.yml: {}
+  {{ end }}
+  {{ if .Vars.rhel9cis_section2 }}
+  section_2/*/*.yml: {}
+  {{ end }}
+  {{ if .Vars.rhel9cis_section3 }}
+  section_3/cis_3.1/*.yml: {}
+  section_3/cis_3.2/*.yml: {}
+  section_3/cis_3.3/*.yml: {}
+## firewall configurations
+    {{ if eq .Vars.rhel9cis_firewall "firewalld" }}
+  section_3/cis_3.4.1/*.yml: {}
+    {{ end }}
+    {{ if eq .Vars.rhel9cis_firewall "nftables" }}
+  section_3/cis_3.4.2/*.yml: {}
+    {{ end }}
+    {{ if eq .Vars.rhel9cis_firewall "iptables" }}
+  section_3/cis_3.4.3.1/*.yml: {}
+  section_3/cis_3.4.3.2/*.yml: {}
+      {{ if .Vars.rhel9cis_ipv6_required }}
+  section_3/cis_3.4.3.2/*.yml: {}
+      {{ end }}
+    {{ end }}
+  {{ end }}
+  {{ if .Vars.rhel9cis_section4 }}
+  # Auditd and level 2
+    {{ if .Vars.rhel9cis_level_2 }}
+      {{ if .Vars.rhel9cis_auditd }}
+  section_4/cis_4.1/*.yml: {}
+      {{ end }}
+    {{ end }}
+  section_4/cis_4.2.1/*.yml: {}
+  section_4/cis_4.2.2/*.yml: {}
+  section_4/cis_4.2.3/*.yml: {}
+  section_4/cis_4.3/*.yml: {}
+  {{ end }}
+  {{ if .Vars.rhel9cis_section5 }}
+  section_5/*/*.yml: {}
+  {{ end }}
+  {{ if .Vars.rhel9cis_section6 }}
+  section_6/*/*.yml: {}
+  {{ end }}