mirror of
				https://github.com/ansible-collections/community.general.git
				synced 2025-10-24 13:04:00 -07:00 
			
		
		
		
	lmn*: style adjustments (#9528)
* lmn*: style adjustments
* Apply suggestions from code review
* Apply suggestions from code review
Co-authored-by: Felix Fontein <felix@fontein.de>
---------
Co-authored-by: Felix Fontein <felix@fontein.de>
(cherry picked from commit 838cdaab42)
Co-authored-by: Alexei Znamensky <103110+russoz@users.noreply.github.com>
		
	
			
		
			
				
	
	
		
			172 lines
		
	
	
	
		
			5.6 KiB
		
	
	
	
		
			Python
		
	
	
	
	
	
			
		
		
	
	
			172 lines
		
	
	
	
		
			5.6 KiB
		
	
	
	
		
			Python
		
	
	
	
	
	
| #!/usr/bin/python
 | |
| # -*- coding: utf-8 -*-
 | |
| # Copyright (c) 2017, Daniel Korn <korndaniel1@gmail.com>
 | |
| # Copyright (c) 2017, Yaacov Zamir <yzamir@redhat.com>
 | |
| # GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
 | |
| # SPDX-License-Identifier: GPL-3.0-or-later
 | |
| 
 | |
| from __future__ import absolute_import, division, print_function
 | |
| __metaclass__ = type
 | |
| 
 | |
| 
 | |
| DOCUMENTATION = r"""
 | |
| module: manageiq_policies
 | |
| 
 | |
| short_description: Management of resource policy_profiles in ManageIQ
 | |
| extends_documentation_fragment:
 | |
|   - community.general.manageiq
 | |
|   - community.general.attributes
 | |
| 
 | |
| author: Daniel Korn (@dkorn)
 | |
| description:
 | |
|   - The manageiq_policies module supports adding and deleting policy_profiles in ManageIQ.
 | |
| attributes:
 | |
|   check_mode:
 | |
|     support: none
 | |
|   diff_mode:
 | |
|     support: none
 | |
| 
 | |
| options:
 | |
|   state:
 | |
|     type: str
 | |
|     description:
 | |
|       - V(absent) - policy_profiles should not exist,
 | |
|       - V(present) - policy_profiles should exist.
 | |
|     choices: ['absent', 'present']
 | |
|     default: 'present'
 | |
|   policy_profiles:
 | |
|     type: list
 | |
|     elements: dict
 | |
|     description:
 | |
|       - List of dictionaries, each includes the policy_profile V(name) key.
 | |
|       - Required if O(state) is V(present) or V(absent).
 | |
|   resource_type:
 | |
|     type: str
 | |
|     description:
 | |
|       - The type of the resource to which the profile should be [un]assigned.
 | |
|     required: true
 | |
|     choices: ['provider', 'host', 'vm', 'blueprint', 'category', 'cluster', 'data store', 'group', 'resource pool', 'service',
 | |
|       'service template', 'template', 'tenant', 'user']
 | |
|   resource_name:
 | |
|     type: str
 | |
|     description:
 | |
|       - The name of the resource to which the profile should be [un]assigned.
 | |
|       - Must be specified if O(resource_id) is not set. Both options are mutually exclusive.
 | |
|   resource_id:
 | |
|     type: int
 | |
|     description:
 | |
|       - The ID of the resource to which the profile should be [un]assigned.
 | |
|       - Must be specified if O(resource_name) is not set. Both options are mutually exclusive.
 | |
|     version_added: 2.2.0
 | |
| """
 | |
| 
 | |
| EXAMPLES = r"""
 | |
| - name: Assign new policy_profile for a provider in ManageIQ
 | |
|   community.general.manageiq_policies:
 | |
|     resource_name: 'EngLab'
 | |
|     resource_type: 'provider'
 | |
|     policy_profiles:
 | |
|       - name: openscap profile
 | |
|     manageiq_connection:
 | |
|       url: 'http://127.0.0.1:3000'
 | |
|       username: 'admin'
 | |
|       password: 'smartvm'
 | |
|       validate_certs: false # only do this when you trust the network!
 | |
| 
 | |
| - name: Unassign a policy_profile for a provider in ManageIQ
 | |
|   community.general.manageiq_policies:
 | |
|     state: absent
 | |
|     resource_name: 'EngLab'
 | |
|     resource_type: 'provider'
 | |
|     policy_profiles:
 | |
|       - name: openscap profile
 | |
|     manageiq_connection:
 | |
|       url: 'http://127.0.0.1:3000'
 | |
|       username: 'admin'
 | |
|       password: 'smartvm'
 | |
|       validate_certs: false # only do this when you trust the network!
 | |
| """
 | |
| 
 | |
| RETURN = r"""
 | |
| manageiq_policies:
 | |
|     description:
 | |
|       - List current policy_profile and policies for a provider in ManageIQ.
 | |
|     returned: always
 | |
|     type: dict
 | |
|     sample: {
 | |
|         "changed": false,
 | |
|         "profiles": [
 | |
|             {
 | |
|                 "policies": [
 | |
|                     {
 | |
|                         "active": true,
 | |
|                         "description": "OpenSCAP",
 | |
|                         "name": "openscap policy"
 | |
|                     },
 | |
|                     {
 | |
|                         "active": true,
 | |
|                         "description": "Analyse incoming container images",
 | |
|                         "name": "analyse incoming container images"
 | |
|                     },
 | |
|                     {
 | |
|                         "active": true,
 | |
|                         "description": "Schedule compliance after smart state analysis",
 | |
|                         "name": "schedule compliance after smart state analysis"
 | |
|                     }
 | |
|                 ],
 | |
|                 "profile_description": "OpenSCAP profile",
 | |
|                 "profile_name": "openscap profile"
 | |
|             }
 | |
|         ]
 | |
|     }
 | |
| """
 | |
| 
 | |
| from ansible.module_utils.basic import AnsibleModule
 | |
| from ansible_collections.community.general.plugins.module_utils.manageiq import ManageIQ, manageiq_argument_spec, manageiq_entities
 | |
| 
 | |
| 
 | |
| def main():
 | |
|     actions = {'present': 'assign', 'absent': 'unassign'}
 | |
|     argument_spec = dict(
 | |
|         policy_profiles=dict(type='list', elements='dict'),
 | |
|         resource_id=dict(type='int'),
 | |
|         resource_name=dict(type='str'),
 | |
|         resource_type=dict(required=True, type='str',
 | |
|                            choices=list(manageiq_entities().keys())),
 | |
|         state=dict(required=False, type='str',
 | |
|                    choices=['present', 'absent'], default='present'),
 | |
|     )
 | |
|     # add the manageiq connection arguments to the arguments
 | |
|     argument_spec.update(manageiq_argument_spec())
 | |
| 
 | |
|     module = AnsibleModule(
 | |
|         argument_spec=argument_spec,
 | |
|         mutually_exclusive=[["resource_id", "resource_name"]],
 | |
|         required_one_of=[["resource_id", "resource_name"]],
 | |
|         required_if=[
 | |
|             ('state', 'present', ['policy_profiles']),
 | |
|             ('state', 'absent', ['policy_profiles'])
 | |
|         ],
 | |
|     )
 | |
| 
 | |
|     policy_profiles = module.params['policy_profiles']
 | |
|     resource_id = module.params['resource_id']
 | |
|     resource_type_key = module.params['resource_type']
 | |
|     resource_name = module.params['resource_name']
 | |
|     state = module.params['state']
 | |
| 
 | |
|     # get the action and resource type
 | |
|     action = actions[state]
 | |
|     resource_type = manageiq_entities()[resource_type_key]
 | |
| 
 | |
|     manageiq = ManageIQ(module)
 | |
|     manageiq_policies = manageiq.policies(resource_id, resource_type, resource_name)
 | |
| 
 | |
|     # assign or unassign the profiles
 | |
|     res_args = manageiq_policies.assign_or_unassign_profiles(policy_profiles, action)
 | |
| 
 | |
|     module.exit_json(**res_args)
 | |
| 
 | |
| 
 | |
| if __name__ == "__main__":
 | |
|     main()
 |