Merge pull request #9 from ait-testbed/api_server

thorinaboenke · web-flow · commit e4e89d6d78b6 · 2026-02-25T10:42:42.000+01:00
add remote server to configs
diff --git a/README.md b/README.md
@@ -33,6 +33,7 @@ It is further possible to roll out playbooks.
 | attackmate_msf_passwd          | password | **None** | Password for the Metasploit rpcd. (only needed for msf-commands) |
 | attackmate_playwright          | bool         | True | Whether to install Playwright and its dependencies |
 | command_delay                  | float | **None** | delay in seconds before commands for the CommandConfig |
+| attackmate_remote_config | dict | {} | Optional map of named remote AttackMate connections. Each entry requires url, username, password, and optionally cafile. If empty, no remote_config section is written to the config file. |
 
 ## Example Playbook
 
@@ -52,6 +53,12 @@ It is further possible to roll out playbooks.
           - upgradeshell.j2
           - attackchain.j2
         command_delay: 2
+        attackmate_remote_config:
+          primary_node:
+            url: "https://10.0.0.5:5000"
+            username: admin
+            password: securepassword
+            cafile: "/path/to/cert.pem"
 ```
 
 This role installs to executables:
diff --git a/defaults/main.yml b/defaults/main.yml
@@ -37,4 +37,18 @@ attackmate_playwright_pip_packages:  # Python packages to install into the Attac
   - playwright
 
 grpc_download_base_url: "https://aecidimages.ait.ac.at/EXTRA/grpc"
-distribution_lower: "{{ ansible_distribution | lower }}"
+distribution_lower: "{{ ansible_distribution | lower }}"
+
+# Remote AttackMate connections (optional)
+# attackmate_remote_config:
+#   remote_server:
+#     url: "https://10.0.0.5:5000"
+#     username: admin
+#     password: securepassword
+#     cafile: "/path/to/cert.pem"
+#   another_server:
+#     url: "https://10.0.0.6:5000"
+#     username: user
+#     password: anotherpassword
+#     cafile: "/path/to/another_cert.pem"
+attackmate_remote_config: {}
diff --git a/molecule/default/molecule.yml b/molecule/default/molecule.yml
@@ -27,7 +27,8 @@ platforms:
     pre_build_image: true
 provisioner:
   name: ansible
-  ANSIBLE_ROLES_PATH: "/home/ubuntu/aecid_roles/"
+  env:
+    ANSIBLE_ALLOW_BROKEN_CONDITIONALS: "True"
 verifier:
   name: ansible
 scenario:
diff --git a/templates/attackmate.yml.j2 b/templates/attackmate.yml.j2
@@ -20,4 +20,17 @@ msf_config:
 
 cmd_config:
   command_delay: {{ command_delay }}
+{% endif %}
+
+{% if attackmate_remote_config %}
+remote_config:
+{% for name, conn in attackmate_remote_config.items() %}
+  {{ name }}:
+    url: "{{ conn.url }}"
+    username: {{ conn.username }}
+    password: {{ conn.password }}
+{% if conn.cafile is defined %}
+    cafile: "{{ conn.cafile }}"
+{% endif %}
+{% endfor %}
 {% endif %}
