| Ivan Udovichenko | defb2de | 2018-09-26 14:47:05 +0300 | [diff] [blame] | 1 | # |
| 2 | # Job to collect oscap results based on input benchmarks |
| 3 | # |
| 4 | parameters: |
| 5 | jenkins: |
| 6 | client: |
| 7 | job: |
| 8 | run-openscap-xccdf-evaluation: |
| 9 | type: workflow-scm |
| 10 | concurrent: true |
| 11 | discard: |
| 12 | build: |
| 13 | keep_num: 10 |
| 14 | artifact: |
| 15 | keep_num: 10 |
| 16 | display_name: "Run openscap xccdf evaluation on given nodes" |
| 17 | scm: |
| 18 | type: git |
| 19 | url: "${_param:jenkins_gerrit_url}/mk/mk-pipelines" |
| 20 | branch: "${_param:jenkins_pipelines_branch}" |
| Sergey Galkin | 4cf87b9 | 2019-06-19 17:53:07 +0400 | [diff] [blame] | 21 | credentials: ${_param:jenkins_gerrit_credentials} |
| Ivan Udovichenko | defb2de | 2018-09-26 14:47:05 +0300 | [diff] [blame] | 22 | script: test-openscap-pipeline.groovy |
| 23 | param: |
| Pavlo Shchelokovskyy | f891588 | 2018-10-08 17:11:54 +0300 | [diff] [blame] | 24 | OPENSCAP_TEST_TYPE: |
| 25 | type: choice |
| 26 | description: "Type of tests to run" |
| 27 | choices: |
| 28 | - xccdf |
| 29 | - oval |
| Ivan Udovichenko | defb2de | 2018-09-26 14:47:05 +0300 | [diff] [blame] | 30 | DASHBOARD_API_URL: |
| 31 | type: string |
| Pavlo Shchelokovskyy | da849d3 | 2018-12-26 14:27:15 +0000 | [diff] [blame] | 32 | default: "http://oscore-bandit.vm.mirantis.net:8090/api" |
| Ivan Udovichenko | defb2de | 2018-09-26 14:47:05 +0300 | [diff] [blame] | 33 | description: "The WORP api base url. Mandatory if UPLOAD_TO_DASHBOARD is true" |
| 34 | SALT_MASTER_URL: |
| 35 | type: string |
| 36 | default: "" |
| 37 | SALT_MASTER_CREDENTIALS: |
| 38 | type: string |
| Vasyl Saienko | 04d144f | 2018-10-01 09:55:29 +0300 | [diff] [blame] | 39 | default: "salt-qa-credentials" |
| Ivan Udovichenko | defb2de | 2018-09-26 14:47:05 +0300 | [diff] [blame] | 40 | TARGET_SERVERS: |
| 41 | type: string |
| 42 | default: '*' |
| 43 | description: "The target Salt nodes" |
| 44 | UPLOAD_TO_DASHBOARD: |
| 45 | type: boolean |
| 46 | default: "false" |
| 47 | description: "Upload results to the WORP or not" |
| 48 | XCCDF_BENCHMARKS: |
| 49 | type: string |
| 50 | default: "cis_ubuntu_1604_server_l2/cis_ubuntu_1604_server_l2-xccdf.xml,default" |
| 51 | description: "List of pairs XCCDF benchmark filename and corresponding profile, format xccdf_benchmark 1, profile; xccdf_benchmark 2, profile" |
| 52 | XCCDF_BENCHMARKS_DIR: |
| 53 | type: string |
| 54 | default: "/usr/share/xccdf-benchmarks/mirantis/" |
| 55 | description: "The XCCDF benchmarks base directory" |
| 56 | XCCDF_VERSION: |
| 57 | type: string |
| 58 | default: "1.2" |
| 59 | description: "The XCCDF version" |
| 60 | XCCDF_TAILORING_ID: |
| 61 | type: string |
| 62 | default: "None" |
| 63 | description: "The tailoring id" |
| Ivan Udovichenko | 8e5c948 | 2018-12-04 13:22:27 +0300 | [diff] [blame] | 64 | XCCDF_CPE: |
| 65 | type: string |
| Ivan Udovichenko | 6347ed2 | 2018-12-07 15:26:25 +0300 | [diff] [blame] | 66 | default: '/usr/share/mirantis-scap-content/mirantis/cpe/openscap-cpe-dict.xml' |
| Ivan Udovichenko | 8e5c948 | 2018-12-04 13:22:27 +0300 | [diff] [blame] | 67 | description: "CPE dictionary or language for applicability checks. (Example: /usr/share/openscap/cpe/openscap-cpe-dict.xml)" |