mirror of
https://github.com/ansible-collections/community.general.git
synced 2025-05-29 04:19:15 -07:00
d13d7e9404
* Fail when attempting to modify unmodifiable target group parameters As you can't modify Port, Protocol or VPC id for a target group, fail when this happens rather than pretending to do it. One could argue that the target group could be recreated rather than failing, but this has massive knock on implications to other resources that depend on the TG (all ASGs would need to be updated, the ELB listener would need to be updated, etc) * Use `.get()` instead of direct dictionary access
680 lines
28 KiB
Python
680 lines
28 KiB
Python
#!/usr/bin/python
|
|
# Copyright: Ansible Project
|
|
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
__metaclass__ = type
|
|
|
|
|
|
ANSIBLE_METADATA = {'metadata_version': '1.1',
|
|
'status': ['preview'],
|
|
'supported_by': 'community'}
|
|
|
|
DOCUMENTATION = '''
|
|
---
|
|
module: elb_target_group
|
|
short_description: Manage a target group for an Application load balancer
|
|
description:
|
|
- Manage an AWS Application Elastic Load Balancer target group. See
|
|
U(http://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-target-groups.html) for details.
|
|
version_added: "2.4"
|
|
requirements: [ boto3 ]
|
|
author: "Rob White (@wimnat)"
|
|
options:
|
|
deregistration_delay_timeout:
|
|
description:
|
|
- The amount time for Elastic Load Balancing to wait before changing the state of a deregistering target from draining to unused.
|
|
The range is 0-3600 seconds.
|
|
health_check_protocol:
|
|
description:
|
|
- The protocol the load balancer uses when performing health checks on targets.
|
|
required: false
|
|
choices: [ 'http', 'https', 'tcp' ]
|
|
health_check_port:
|
|
description:
|
|
- The port the load balancer uses when performing health checks on targets.
|
|
Can be set to 'traffic-port' to match target port.
|
|
required: false
|
|
default: "The port on which each target receives traffic from the load balancer."
|
|
health_check_path:
|
|
description:
|
|
- The ping path that is the destination on the targets for health checks. The path must be defined in order to set a health check.
|
|
required: false
|
|
health_check_interval:
|
|
description:
|
|
- The approximate amount of time, in seconds, between health checks of an individual target.
|
|
required: false
|
|
health_check_timeout:
|
|
description:
|
|
- The amount of time, in seconds, during which no response from a target means a failed health check.
|
|
required: false
|
|
healthy_threshold_count:
|
|
description:
|
|
- The number of consecutive health checks successes required before considering an unhealthy target healthy.
|
|
required: false
|
|
modify_targets:
|
|
description:
|
|
- Whether or not to alter existing targets in the group to match what is passed with the module
|
|
required: false
|
|
default: yes
|
|
name:
|
|
description:
|
|
- The name of the target group.
|
|
required: true
|
|
port:
|
|
description:
|
|
- The port on which the targets receive traffic. This port is used unless you specify a port override when registering the target. Required if
|
|
I(state) is C(present).
|
|
required: false
|
|
protocol:
|
|
description:
|
|
- The protocol to use for routing traffic to the targets. Required when I(state) is C(present).
|
|
required: false
|
|
choices: [ 'http', 'https', 'tcp' ]
|
|
purge_tags:
|
|
description:
|
|
- If yes, existing tags will be purged from the resource to match exactly what is defined by I(tags) parameter. If the tag parameter is not set then
|
|
tags will not be modified.
|
|
required: false
|
|
default: yes
|
|
choices: [ 'yes', 'no' ]
|
|
state:
|
|
description:
|
|
- Create or destroy the target group.
|
|
required: true
|
|
choices: [ 'present', 'absent' ]
|
|
stickiness_enabled:
|
|
description:
|
|
- Indicates whether sticky sessions are enabled.
|
|
choices: [ 'yes', 'no' ]
|
|
stickiness_lb_cookie_duration:
|
|
description:
|
|
- The time period, in seconds, during which requests from a client should be routed to the same target. After this time period expires, the load
|
|
balancer-generated cookie is considered stale. The range is 1 second to 1 week (604800 seconds).
|
|
stickiness_type:
|
|
description:
|
|
- The type of sticky sessions. The possible value is lb_cookie.
|
|
default: lb_cookie
|
|
successful_response_codes:
|
|
description:
|
|
- >
|
|
The HTTP codes to use when checking for a successful response from a target. You can specify multiple values (for example, "200,202") or a range of
|
|
values (for example, "200-299").
|
|
required: false
|
|
tags:
|
|
description:
|
|
- A dictionary of one or more tags to assign to the target group.
|
|
required: false
|
|
targets:
|
|
description:
|
|
- A list of targets to assign to the target group. This parameter defaults to an empty list. Unless you set the 'modify_targets' parameter then
|
|
all existing targets will be removed from the group. The list should be an Id and a Port parameter. See the Examples for detail.
|
|
required: false
|
|
unhealthy_threshold_count:
|
|
description:
|
|
- The number of consecutive health check failures required before considering a target unhealthy.
|
|
required: false
|
|
vpc_id:
|
|
description:
|
|
- The identifier of the virtual private cloud (VPC). Required when I(state) is C(present).
|
|
required: false
|
|
extends_documentation_fragment:
|
|
- aws
|
|
- ec2
|
|
notes:
|
|
- Once a target group has been created, only its health check can then be modified using subsequent calls
|
|
'''
|
|
|
|
EXAMPLES = '''
|
|
# Note: These examples do not set authentication details, see the AWS Guide for details.
|
|
|
|
# Create a target group with a default health check
|
|
- elb_target_group:
|
|
name: mytargetgroup
|
|
protocol: http
|
|
port: 80
|
|
vpc_id: vpc-01234567
|
|
state: present
|
|
|
|
# Modify the target group with a custom health check
|
|
- elb_target_group:
|
|
name: mytargetgroup
|
|
protocol: http
|
|
port: 80
|
|
vpc_id: vpc-01234567
|
|
health_check_path: /
|
|
successful_response_codes: "200, 250-260"
|
|
state: present
|
|
|
|
# Delete a target group
|
|
- elb_target_group:
|
|
name: mytargetgroup
|
|
state: absent
|
|
|
|
# Create a target group with targets
|
|
- elb_target_group:
|
|
name: mytargetgroup
|
|
protocol: http
|
|
port: 81
|
|
vpc_id: vpc-01234567
|
|
health_check_path: /
|
|
successful_response_codes: "200,250-260"
|
|
targets:
|
|
- Id: i-01234567
|
|
Port: 80
|
|
- Id: i-98765432
|
|
Port: 80
|
|
state: present
|
|
wait_timeout: 200
|
|
wait: True
|
|
'''
|
|
|
|
RETURN = '''
|
|
deregistration_delay_timeout_seconds:
|
|
description: The amount time for Elastic Load Balancing to wait before changing the state of a deregistering target from draining to unused.
|
|
returned: when state present
|
|
type: int
|
|
sample: 300
|
|
health_check_interval_seconds:
|
|
description: The approximate amount of time, in seconds, between health checks of an individual target.
|
|
returned: when state present
|
|
type: int
|
|
sample: 30
|
|
health_check_path:
|
|
description: The destination for the health check request.
|
|
returned: when state present
|
|
type: string
|
|
sample: /index.html
|
|
health_check_port:
|
|
description: The port to use to connect with the target.
|
|
returned: when state present
|
|
type: string
|
|
sample: traffic-port
|
|
health_check_protocol:
|
|
description: The protocol to use to connect with the target.
|
|
returned: when state present
|
|
type: string
|
|
sample: HTTP
|
|
health_check_timeout_seconds:
|
|
description: The amount of time, in seconds, during which no response means a failed health check.
|
|
returned: when state present
|
|
type: int
|
|
sample: 5
|
|
healthy_threshold_count:
|
|
description: The number of consecutive health checks successes required before considering an unhealthy target healthy.
|
|
returned: when state present
|
|
type: int
|
|
sample: 5
|
|
load_balancer_arns:
|
|
description: The Amazon Resource Names (ARN) of the load balancers that route traffic to this target group.
|
|
returned: when state present
|
|
type: list
|
|
sample: []
|
|
matcher:
|
|
description: The HTTP codes to use when checking for a successful response from a target.
|
|
returned: when state present
|
|
type: dict
|
|
sample: {
|
|
"http_code": "200"
|
|
}
|
|
port:
|
|
description: The port on which the targets are listening.
|
|
returned: when state present
|
|
type: int
|
|
sample: 80
|
|
protocol:
|
|
description: The protocol to use for routing traffic to the targets.
|
|
returned: when state present
|
|
type: string
|
|
sample: HTTP
|
|
stickiness_enabled:
|
|
description: Indicates whether sticky sessions are enabled.
|
|
returned: when state present
|
|
type: bool
|
|
sample: true
|
|
stickiness_lb_cookie_duration_seconds:
|
|
description: The time period, in seconds, during which requests from a client should be routed to the same target.
|
|
returned: when state present
|
|
type: int
|
|
sample: 86400
|
|
stickiness_type:
|
|
description: The type of sticky sessions.
|
|
returned: when state present
|
|
type: string
|
|
sample: lb_cookie
|
|
tags:
|
|
description: The tags attached to the target group.
|
|
returned: when state present
|
|
type: dict
|
|
sample: "{
|
|
'Tag': 'Example'
|
|
}"
|
|
target_group_arn:
|
|
description: The Amazon Resource Name (ARN) of the target group.
|
|
returned: when state present
|
|
type: string
|
|
sample: "arn:aws:elasticloadbalancing:ap-southeast-2:01234567890:targetgroup/mytargetgroup/aabbccddee0044332211"
|
|
target_group_name:
|
|
description: The name of the target group.
|
|
returned: when state present
|
|
type: string
|
|
sample: mytargetgroup
|
|
unhealthy_threshold_count:
|
|
description: The number of consecutive health check failures required before considering the target unhealthy.
|
|
returned: when state present
|
|
type: int
|
|
sample: 2
|
|
vpc_id:
|
|
description: The ID of the VPC for the targets.
|
|
returned: when state present
|
|
type: string
|
|
sample: vpc-0123456
|
|
'''
|
|
|
|
import time
|
|
import traceback
|
|
|
|
try:
|
|
import boto3
|
|
from botocore.exceptions import ClientError, NoCredentialsError
|
|
HAS_BOTO3 = True
|
|
except ImportError:
|
|
HAS_BOTO3 = False
|
|
|
|
from ansible.module_utils.basic import AnsibleModule
|
|
from ansible.module_utils.ec2 import (boto3_conn, get_aws_connection_info, camel_dict_to_snake_dict,
|
|
ec2_argument_spec, boto3_tag_list_to_ansible_dict,
|
|
compare_aws_tags, ansible_dict_to_boto3_tag_list)
|
|
|
|
|
|
def get_tg_attributes(connection, module, tg_arn):
|
|
|
|
try:
|
|
tg_attributes = boto3_tag_list_to_ansible_dict(connection.describe_target_group_attributes(TargetGroupArn=tg_arn)['Attributes'])
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
# Replace '.' with '_' in attribute key names to make it more Ansibley
|
|
return dict((k.replace('.', '_'), v) for k, v in tg_attributes.items())
|
|
|
|
|
|
def get_target_group_tags(connection, module, target_group_arn):
|
|
|
|
try:
|
|
return connection.describe_tags(ResourceArns=[target_group_arn])['TagDescriptions'][0]['Tags']
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
|
|
def get_target_group(connection, module):
|
|
|
|
try:
|
|
target_group_paginator = connection.get_paginator('describe_target_groups')
|
|
return (target_group_paginator.paginate(Names=[module.params.get("name")]).build_full_result())['TargetGroups'][0]
|
|
except ClientError as e:
|
|
if e.response['Error']['Code'] == 'TargetGroupNotFound':
|
|
return None
|
|
else:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
|
|
def wait_for_status(connection, module, target_group_arn, targets, status):
|
|
polling_increment_secs = 5
|
|
max_retries = (module.params.get('wait_timeout') // polling_increment_secs)
|
|
status_achieved = False
|
|
|
|
for x in range(0, max_retries):
|
|
try:
|
|
response = connection.describe_target_health(TargetGroupArn=target_group_arn, Targets=targets)
|
|
if response['TargetHealthDescriptions'][0]['TargetHealth']['State'] == status:
|
|
status_achieved = True
|
|
break
|
|
else:
|
|
time.sleep(polling_increment_secs)
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
result = response
|
|
return status_achieved, result
|
|
|
|
|
|
def create_or_update_target_group(connection, module):
|
|
|
|
changed = False
|
|
new_target_group = False
|
|
params = dict()
|
|
params['Name'] = module.params.get("name")
|
|
params['Protocol'] = module.params.get("protocol").upper()
|
|
params['Port'] = module.params.get("port")
|
|
params['VpcId'] = module.params.get("vpc_id")
|
|
tags = module.params.get("tags")
|
|
purge_tags = module.params.get("purge_tags")
|
|
deregistration_delay_timeout = module.params.get("deregistration_delay_timeout")
|
|
stickiness_enabled = module.params.get("stickiness_enabled")
|
|
stickiness_lb_cookie_duration = module.params.get("stickiness_lb_cookie_duration")
|
|
stickiness_type = module.params.get("stickiness_type")
|
|
|
|
# If health check path not None, set health check attributes
|
|
if module.params.get("health_check_path") is not None:
|
|
params['HealthCheckPath'] = module.params.get("health_check_path")
|
|
|
|
if module.params.get("health_check_protocol") is not None:
|
|
params['HealthCheckProtocol'] = module.params.get("health_check_protocol").upper()
|
|
|
|
if module.params.get("health_check_port") is not None:
|
|
params['HealthCheckPort'] = module.params.get("health_check_port")
|
|
|
|
if module.params.get("health_check_interval") is not None:
|
|
params['HealthCheckIntervalSeconds'] = module.params.get("health_check_interval")
|
|
|
|
if module.params.get("health_check_timeout") is not None:
|
|
params['HealthCheckTimeoutSeconds'] = module.params.get("health_check_timeout")
|
|
|
|
if module.params.get("healthy_threshold_count") is not None:
|
|
params['HealthyThresholdCount'] = module.params.get("healthy_threshold_count")
|
|
|
|
if module.params.get("unhealthy_threshold_count") is not None:
|
|
params['UnhealthyThresholdCount'] = module.params.get("unhealthy_threshold_count")
|
|
|
|
if module.params.get("successful_response_codes") is not None:
|
|
params['Matcher'] = {}
|
|
params['Matcher']['HttpCode'] = module.params.get("successful_response_codes")
|
|
|
|
# Get target group
|
|
tg = get_target_group(connection, module)
|
|
|
|
if tg:
|
|
diffs = [param for param in ('Port', 'Protocol', 'VpcId')
|
|
if tg.get(param) != params.get(param)]
|
|
if diffs:
|
|
module.fail_json(msg="Cannot modify %s parameter(s) for a target group" %
|
|
", ".join(diffs))
|
|
# Target group exists so check health check parameters match what has been passed
|
|
health_check_params = dict()
|
|
|
|
# If we have no health check path then we have nothing to modify
|
|
if module.params.get("health_check_path") is not None:
|
|
# Health check protocol
|
|
if 'HealthCheckProtocol' in params and tg['HealthCheckProtocol'] != params['HealthCheckProtocol']:
|
|
health_check_params['HealthCheckProtocol'] = params['HealthCheckProtocol']
|
|
|
|
# Health check port
|
|
if 'HealthCheckPort' in params and tg['HealthCheckPort'] != params['HealthCheckPort']:
|
|
health_check_params['HealthCheckPort'] = params['HealthCheckPort']
|
|
|
|
# Health check path
|
|
if 'HealthCheckPath'in params and tg['HealthCheckPath'] != params['HealthCheckPath']:
|
|
health_check_params['HealthCheckPath'] = params['HealthCheckPath']
|
|
|
|
# Health check interval
|
|
if 'HealthCheckIntervalSeconds' in params and tg['HealthCheckIntervalSeconds'] != params['HealthCheckIntervalSeconds']:
|
|
health_check_params['HealthCheckIntervalSeconds'] = params['HealthCheckIntervalSeconds']
|
|
|
|
# Health check timeout
|
|
if 'HealthCheckTimeoutSeconds' in params and tg['HealthCheckTimeoutSeconds'] != params['HealthCheckTimeoutSeconds']:
|
|
health_check_params['HealthCheckTimeoutSeconds'] = params['HealthCheckTimeoutSeconds']
|
|
|
|
# Healthy threshold
|
|
if 'HealthyThresholdCount' in params and tg['HealthyThresholdCount'] != params['HealthyThresholdCount']:
|
|
health_check_params['HealthyThresholdCount'] = params['HealthyThresholdCount']
|
|
|
|
# Unhealthy threshold
|
|
if 'UnhealthyThresholdCount' in params and tg['UnhealthyThresholdCount'] != params['UnhealthyThresholdCount']:
|
|
health_check_params['UnhealthyThresholdCount'] = params['UnhealthyThresholdCount']
|
|
|
|
# Matcher (successful response codes)
|
|
# TODO: required and here?
|
|
if 'Matcher' in params:
|
|
current_matcher_list = tg['Matcher']['HttpCode'].split(',')
|
|
requested_matcher_list = params['Matcher']['HttpCode'].split(',')
|
|
if set(current_matcher_list) != set(requested_matcher_list):
|
|
health_check_params['Matcher'] = {}
|
|
health_check_params['Matcher']['HttpCode'] = ','.join(requested_matcher_list)
|
|
|
|
try:
|
|
if health_check_params:
|
|
connection.modify_target_group(TargetGroupArn=tg['TargetGroupArn'], **health_check_params)
|
|
changed = True
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
# Do we need to modify targets?
|
|
if module.params.get("modify_targets"):
|
|
if module.params.get("targets"):
|
|
params['Targets'] = module.params.get("targets")
|
|
|
|
# get list of current target instances. I can't see anything like a describe targets in the doco so
|
|
# describe_target_health seems to be the only way to get them
|
|
|
|
try:
|
|
current_targets = connection.describe_target_health(TargetGroupArn=tg['TargetGroupArn'])
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
current_instance_ids = []
|
|
|
|
for instance in current_targets['TargetHealthDescriptions']:
|
|
current_instance_ids.append(instance['Target']['Id'])
|
|
|
|
new_instance_ids = []
|
|
for instance in params['Targets']:
|
|
new_instance_ids.append(instance['Id'])
|
|
|
|
add_instances = set(new_instance_ids) - set(current_instance_ids)
|
|
|
|
if add_instances:
|
|
instances_to_add = []
|
|
for target in params['Targets']:
|
|
if target['Id'] in add_instances:
|
|
instances_to_add.append({'Id': target['Id'], 'Port': int(target['Port'])})
|
|
|
|
changed = True
|
|
try:
|
|
connection.register_targets(TargetGroupArn=tg['TargetGroupArn'], Targets=instances_to_add)
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
if module.params.get("wait"):
|
|
status_achieved, registered_instances = wait_for_status(connection, module, tg['TargetGroupArn'], instances_to_add, 'healthy')
|
|
if not status_achieved:
|
|
module.fail_json(msg='Error waiting for target registration - please check the AWS console')
|
|
|
|
remove_instances = set(current_instance_ids) - set(new_instance_ids)
|
|
|
|
if remove_instances:
|
|
instances_to_remove = []
|
|
for target in current_targets['TargetHealthDescriptions']:
|
|
if target['Target']['Id'] in remove_instances:
|
|
instances_to_remove.append({'Id': target['Target']['Id'], 'Port': target['Target']['Port']})
|
|
|
|
changed = True
|
|
try:
|
|
connection.deregister_targets(TargetGroupArn=tg['TargetGroupArn'], Targets=instances_to_remove)
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
if module.params.get("wait"):
|
|
status_achieved, registered_instances = wait_for_status(connection, module, tg['TargetGroupArn'], instances_to_remove, 'unused')
|
|
if not status_achieved:
|
|
module.fail_json(msg='Error waiting for target deregistration - please check the AWS console')
|
|
else:
|
|
try:
|
|
current_targets = connection.describe_target_health(TargetGroupArn=tg['TargetGroupArn'])
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
current_instances = current_targets['TargetHealthDescriptions']
|
|
|
|
if current_instances:
|
|
instances_to_remove = []
|
|
for target in current_targets['TargetHealthDescriptions']:
|
|
instances_to_remove.append({'Id': target['Target']['Id'], 'Port': target['Target']['Port']})
|
|
|
|
changed = True
|
|
try:
|
|
connection.deregister_targets(TargetGroupArn=tg['TargetGroupArn'], Targets=instances_to_remove)
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
if module.params.get("wait"):
|
|
status_achieved, registered_instances = wait_for_status(connection, module, tg['TargetGroupArn'], instances_to_remove, 'unused')
|
|
if not status_achieved:
|
|
module.fail_json(msg='Error waiting for target deregistration - please check the AWS console')
|
|
else:
|
|
try:
|
|
connection.create_target_group(**params)
|
|
changed = True
|
|
new_target_group = True
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
tg = get_target_group(connection, module)
|
|
|
|
if module.params.get("targets"):
|
|
params['Targets'] = module.params.get("targets")
|
|
try:
|
|
connection.register_targets(TargetGroupArn=tg['TargetGroupArn'], Targets=params['Targets'])
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
if module.params.get("wait"):
|
|
status_achieved, registered_instances = wait_for_status(connection, module, tg['TargetGroupArn'], params['Targets'], 'healthy')
|
|
if not status_achieved:
|
|
module.fail_json(msg='Error waiting for target registration - please check the AWS console')
|
|
|
|
# Now set target group attributes
|
|
update_attributes = []
|
|
|
|
# Get current attributes
|
|
current_tg_attributes = get_tg_attributes(connection, module, tg['TargetGroupArn'])
|
|
|
|
if deregistration_delay_timeout is not None:
|
|
if str(deregistration_delay_timeout) != current_tg_attributes['deregistration_delay_timeout_seconds']:
|
|
update_attributes.append({'Key': 'deregistration_delay.timeout_seconds', 'Value': str(deregistration_delay_timeout)})
|
|
if stickiness_enabled is not None:
|
|
if stickiness_enabled and current_tg_attributes['stickiness_enabled'] != "true":
|
|
update_attributes.append({'Key': 'stickiness.enabled', 'Value': 'true'})
|
|
if stickiness_lb_cookie_duration is not None:
|
|
if str(stickiness_lb_cookie_duration) != current_tg_attributes['stickiness_lb_cookie_duration_seconds']:
|
|
update_attributes.append({'Key': 'stickiness.lb_cookie.duration_seconds', 'Value': str(stickiness_lb_cookie_duration)})
|
|
if stickiness_type is not None and "stickiness_type" in current_tg_attributes:
|
|
if stickiness_type != current_tg_attributes['stickiness_type']:
|
|
update_attributes.append({'Key': 'stickiness.type', 'Value': stickiness_type})
|
|
|
|
if update_attributes:
|
|
try:
|
|
connection.modify_target_group_attributes(TargetGroupArn=tg['TargetGroupArn'], Attributes=update_attributes)
|
|
changed = True
|
|
except ClientError as e:
|
|
# Something went wrong setting attributes. If this target group was created during this task, delete it to leave a consistent state
|
|
if new_target_group:
|
|
connection.delete_target_group(TargetGroupArn=tg['TargetGroupArn'])
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
# Tags - only need to play with tags if tags parameter has been set to something
|
|
if tags:
|
|
# Get tags
|
|
current_tags = get_target_group_tags(connection, module, tg['TargetGroupArn'])
|
|
|
|
# Delete necessary tags
|
|
tags_need_modify, tags_to_delete = compare_aws_tags(boto3_tag_list_to_ansible_dict(current_tags), tags, purge_tags)
|
|
if tags_to_delete:
|
|
try:
|
|
connection.remove_tags(ResourceArns=[tg['TargetGroupArn']], TagKeys=tags_to_delete)
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
changed = True
|
|
|
|
# Add/update tags
|
|
if tags_need_modify:
|
|
try:
|
|
connection.add_tags(ResourceArns=[tg['TargetGroupArn']], Tags=ansible_dict_to_boto3_tag_list(tags_need_modify))
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
changed = True
|
|
|
|
# Get the target group again
|
|
tg = get_target_group(connection, module)
|
|
|
|
# Get the target group attributes again
|
|
tg.update(get_tg_attributes(connection, module, tg['TargetGroupArn']))
|
|
|
|
# Convert tg to snake_case
|
|
snaked_tg = camel_dict_to_snake_dict(tg)
|
|
|
|
snaked_tg['tags'] = boto3_tag_list_to_ansible_dict(get_target_group_tags(connection, module, tg['TargetGroupArn']))
|
|
|
|
module.exit_json(changed=changed, **snaked_tg)
|
|
|
|
|
|
def delete_target_group(connection, module):
|
|
|
|
changed = False
|
|
tg = get_target_group(connection, module)
|
|
|
|
if tg:
|
|
try:
|
|
connection.delete_target_group(TargetGroupArn=tg['TargetGroupArn'])
|
|
changed = True
|
|
except ClientError as e:
|
|
module.fail_json(msg=e.message, exception=traceback.format_exc(), **camel_dict_to_snake_dict(e.response))
|
|
|
|
module.exit_json(changed=changed)
|
|
|
|
|
|
def main():
|
|
|
|
argument_spec = ec2_argument_spec()
|
|
argument_spec.update(
|
|
dict(
|
|
deregistration_delay_timeout=dict(type='int'),
|
|
health_check_protocol=dict(choices=['http', 'https', 'tcp', 'HTTP', 'HTTPS', 'TCP'], type='str'),
|
|
health_check_port=dict(),
|
|
health_check_path=dict(default=None, type='str'),
|
|
health_check_interval=dict(type='int'),
|
|
health_check_timeout=dict(type='int'),
|
|
healthy_threshold_count=dict(type='int'),
|
|
modify_targets=dict(default=True, type='bool'),
|
|
name=dict(required=True, type='str'),
|
|
port=dict(type='int'),
|
|
protocol=dict(choices=['http', 'https', 'tcp', 'HTTP', 'HTTPS', 'TCP'], type='str'),
|
|
purge_tags=dict(default=True, type='bool'),
|
|
stickiness_enabled=dict(type='bool'),
|
|
stickiness_type=dict(default='lb_cookie', type='str'),
|
|
stickiness_lb_cookie_duration=dict(type='int'),
|
|
state=dict(required=True, choices=['present', 'absent'], type='str'),
|
|
successful_response_codes=dict(type='str'),
|
|
tags=dict(default={}, type='dict'),
|
|
targets=dict(type='list'),
|
|
unhealthy_threshold_count=dict(type='int'),
|
|
vpc_id=dict(type='str'),
|
|
wait_timeout=dict(type='int'),
|
|
wait=dict(type='bool')
|
|
)
|
|
)
|
|
|
|
module = AnsibleModule(argument_spec=argument_spec,
|
|
required_if=[
|
|
('state', 'present', ['protocol', 'port', 'vpc_id'])
|
|
]
|
|
)
|
|
|
|
if not HAS_BOTO3:
|
|
module.fail_json(msg='boto3 required for this module')
|
|
|
|
region, ec2_url, aws_connect_params = get_aws_connection_info(module, boto3=True)
|
|
|
|
if region:
|
|
connection = boto3_conn(module, conn_type='client', resource='elbv2', region=region, endpoint=ec2_url, **aws_connect_params)
|
|
else:
|
|
module.fail_json(msg="region must be specified")
|
|
|
|
state = module.params.get("state")
|
|
|
|
if state == 'present':
|
|
create_or_update_target_group(connection, module)
|
|
else:
|
|
delete_target_group(connection, module)
|
|
|
|
if __name__ == '__main__':
|
|
main()
|