diff --git a/README.md b/README.md index f15a97b..dd45725 100644 --- a/README.md +++ b/README.md @@ -35,12 +35,15 @@ ansible-galaxy collection install google.cloud * Compute Engine Instance (gcp_compute_instance, gcp_compute_instance_facts) * Compute Engine InstanceGroup (gcp_compute_instance_group, gcp_compute_instance_group_facts) * Compute Engine InstanceGroupManager (gcp_compute_instance_group_manager, gcp_compute_instance_group_manager_facts) + * Compute Engine RegionInstanceGroupManager (gcp_compute_region_instance_group_manager, gcp_compute_region_instance_group_manager_facts) * Compute Engine InterconnectAttachment (gcp_compute_interconnect_attachment, gcp_compute_interconnect_attachment_facts) * Compute Engine Network (gcp_compute_network, gcp_compute_network_facts) * Compute Engine NetworkEndpointGroup (gcp_compute_network_endpoint_group, gcp_compute_network_endpoint_group_facts) * Compute Engine NodeGroup (gcp_compute_node_group, gcp_compute_node_group_facts) * Compute Engine NodeTemplate (gcp_compute_node_template, gcp_compute_node_template_facts) + * Compute Engine RegionAutoscaler (gcp_compute_region_autoscaler, gcp_compute_region_autoscaler_facts) * Compute Engine RegionDisk (gcp_compute_region_disk, gcp_compute_region_disk_facts) + * Compute Engine RegionUrlMap (gcp_compute_region_url_map, gcp_compute_region_url_map_facts) * Compute Engine RegionHealthCheck (gcp_compute_region_health_check, gcp_compute_region_health_check_facts) * Compute Engine Route (gcp_compute_route, gcp_compute_route_facts) * Compute Engine Router (gcp_compute_router, gcp_compute_router_facts) @@ -51,6 +54,8 @@ ansible-galaxy collection install google.cloud * Compute Engine Subnetwork (gcp_compute_subnetwork, gcp_compute_subnetwork_facts) * Compute Engine TargetHttpProxy (gcp_compute_target_http_proxy, gcp_compute_target_http_proxy_facts) * Compute Engine TargetHttpsProxy (gcp_compute_target_https_proxy, gcp_compute_target_https_proxy_facts) + * Compute Engine RegionTargetHttpProxy (gcp_compute_region_target_http_proxy, gcp_compute_region_target_http_proxy_facts) + * Compute Engine RegionTargetHttpsProxy (gcp_compute_region_target_https_proxy, gcp_compute_region_target_https_proxy_facts) * Compute Engine TargetInstance (gcp_compute_target_instance, gcp_compute_target_instance_facts) * Compute Engine TargetPool (gcp_compute_target_pool, gcp_compute_target_pool_facts) * Compute Engine TargetSslProxy (gcp_compute_target_ssl_proxy, gcp_compute_target_ssl_proxy_facts) diff --git a/plugins/modules/gcp_compute_region_autoscaler.py b/plugins/modules/gcp_compute_region_autoscaler.py new file mode 100644 index 0000000..1f9d400 --- /dev/null +++ b/plugins/modules/gcp_compute_region_autoscaler.py @@ -0,0 +1,750 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_autoscaler +description: +- Represents an Autoscaler resource. +- Autoscalers allow you to automatically scale virtual machine instances in managed + instance groups according to an autoscaling policy that you define. +short_description: Creates a GCP RegionAutoscaler +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + state: + description: + - Whether the given object should exist in GCP + choices: + - present + - absent + default: present + type: str + name: + description: + - Name of the resource. The name must be 1-63 characters long and match the regular + expression `[a-z]([-a-z0-9]*[a-z0-9])?` which means the first character must + be a lowercase letter, and all following characters must be a dash, lowercase + letter, or digit, except the last character, which cannot be a dash. + required: true + type: str + description: + description: + - An optional description of this resource. + required: false + type: str + autoscaling_policy: + description: + - 'The configuration parameters for the autoscaling algorithm. You can define + one or more of the policies for an autoscaler: cpuUtilization, customMetricUtilizations, + and loadBalancingUtilization.' + - If none of these are specified, the default will be to autoscale based on cpuUtilization + to 0.6 or 60%. + required: true + type: dict + suboptions: + min_num_replicas: + description: + - The minimum number of replicas that the autoscaler can scale down to. This + cannot be less than 0. If not provided, autoscaler will choose a default + value depending on maximum number of instances allowed. + required: false + type: int + max_num_replicas: + description: + - The maximum number of instances that the autoscaler can scale up to. This + is required when creating or updating an autoscaler. The maximum number + of replicas should not be lower than minimal number of replicas. + required: true + type: int + cool_down_period_sec: + description: + - The number of seconds that the autoscaler should wait before it starts collecting + information from a new instance. This prevents the autoscaler from collecting + information when the instance is initializing, during which the collected + usage would not be reliable. The default time autoscaler waits is 60 seconds. + - Virtual machine initialization times might vary because of numerous factors. + We recommend that you test how long an instance may take to initialize. + To do this, create an instance and time the startup process. + required: false + default: '60' + type: int + cpu_utilization: + description: + - Defines the CPU utilization policy that allows the autoscaler to scale based + on the average CPU utilization of a managed instance group. + required: false + type: dict + suboptions: + utilization_target: + description: + - The target CPU utilization that the autoscaler should maintain. + - Must be a float value in the range (0, 1]. If not specified, the default + is 0.6. + - If the CPU level is below the target utilization, the autoscaler scales + down the number of instances until it reaches the minimum number of + instances you specified or until the average CPU of your instances reaches + the target utilization. + - If the average CPU is above the target utilization, the autoscaler scales + up until it reaches the maximum number of instances you specified or + until the average utilization reaches the target utilization. + required: false + type: str + custom_metric_utilizations: + description: + - Configuration parameters of autoscaling based on a custom metric. + elements: dict + required: false + type: list + suboptions: + metric: + description: + - The identifier (type) of the Stackdriver Monitoring metric. + - The metric cannot have negative values. + - The metric must have a value type of INT64 or DOUBLE. + required: true + type: str + utilization_target: + description: + - The target value of the metric that autoscaler should maintain. This + must be a positive value. A utilization metric scales number of virtual + machines handling requests to increase or decrease proportionally to + the metric. + - For example, a good metric to use as a utilizationTarget is U(www.googleapis.com/compute/instance/network/received_bytes_count). + - The autoscaler will work to keep this value constant for each of the + instances. + required: false + type: str + utilization_target_type: + description: + - Defines how target utilization value is expressed for a Stackdriver + Monitoring metric. Either GAUGE, DELTA_PER_SECOND, or DELTA_PER_MINUTE. + - 'Some valid choices include: "GAUGE", "DELTA_PER_SECOND", "DELTA_PER_MINUTE"' + required: false + type: str + load_balancing_utilization: + description: + - Configuration parameters of autoscaling based on a load balancer. + required: false + type: dict + suboptions: + utilization_target: + description: + - Fraction of backend capacity utilization (set in HTTP(s) load balancing + configuration) that autoscaler should maintain. Must be a positive float + value. If not defined, the default is 0.8. + required: false + type: str + target: + description: + - URL of the managed instance group that this autoscaler will scale. + required: true + type: str + region: + description: + - URL of the region where the instance group resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +notes: +- 'API Reference: U(https://cloud.google.com/compute/docs/reference/rest/v1/regionAutoscalers)' +- 'Autoscaling Groups of Instances: U(https://cloud.google.com/compute/docs/autoscaler/)' +- for authentication, you can set service_account_file using the C(gcp_service_account_file) + env variable. +- for authentication, you can set service_account_contents using the C(GCP_SERVICE_ACCOUNT_CONTENTS) + env variable. +- For authentication, you can set service_account_email using the C(GCP_SERVICE_ACCOUNT_EMAIL) + env variable. +- For authentication, you can set auth_kind using the C(GCP_AUTH_KIND) env variable. +- For authentication, you can set scopes using the C(GCP_SCOPES) env variable. +- Environment variables values will only be used if the playbook values are not set. +- The I(service_account_email) and I(service_account_file) options are mutually exclusive. +''' + +EXAMPLES = ''' +- name: create a network + google.cloud.gcp_compute_network: + name: network-instancetemplate + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: network + +- name: create a address + google.cloud.gcp_compute_address: + name: address-instancetemplate + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: address + +- name: create a instance template + google.cloud.gcp_compute_instance_template: + name: "{{ resource_name }}" + properties: + disks: + - auto_delete: 'true' + boot: 'true' + initialize_params: + source_image: projects/ubuntu-os-cloud/global/images/family/ubuntu-1604-lts + machine_type: n1-standard-1 + network_interfaces: + - network: "{{ network }}" + access_configs: + - name: test-config + type: ONE_TO_ONE_NAT + nat_ip: "{{ address }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: instancetemplate + +- name: create a region instance group manager + google.cloud.gcp_compute_region_instance_group_manager: + name: "{{ resource_name }}" + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: igrm + +- name: create a region autoscaler + google.cloud.gcp_compute_region_autoscaler: + name: my-region-autoscaler + region: us-central1 + autoscaling_policy: + min_num_replicas: 1 + max_num_replicas: 5 + cool_down_period_sec: 60 + cpu_utilization: + utilization_target: 0.5 + target: "{{igrm.selfLink}}" + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" + state: present +''' + +RETURN = ''' +id: + description: + - Unique identifier for the resource. + returned: success + type: int +creationTimestamp: + description: + - Creation timestamp in RFC3339 text format. + returned: success + type: str +name: + description: + - Name of the resource. The name must be 1-63 characters long and match the regular + expression `[a-z]([-a-z0-9]*[a-z0-9])?` which means the first character must be + a lowercase letter, and all following characters must be a dash, lowercase letter, + or digit, except the last character, which cannot be a dash. + returned: success + type: str +description: + description: + - An optional description of this resource. + returned: success + type: str +autoscalingPolicy: + description: + - 'The configuration parameters for the autoscaling algorithm. You can define one + or more of the policies for an autoscaler: cpuUtilization, customMetricUtilizations, + and loadBalancingUtilization.' + - If none of these are specified, the default will be to autoscale based on cpuUtilization + to 0.6 or 60%. + returned: success + type: complex + contains: + minNumReplicas: + description: + - The minimum number of replicas that the autoscaler can scale down to. This + cannot be less than 0. If not provided, autoscaler will choose a default value + depending on maximum number of instances allowed. + returned: success + type: int + maxNumReplicas: + description: + - The maximum number of instances that the autoscaler can scale up to. This + is required when creating or updating an autoscaler. The maximum number of + replicas should not be lower than minimal number of replicas. + returned: success + type: int + coolDownPeriodSec: + description: + - The number of seconds that the autoscaler should wait before it starts collecting + information from a new instance. This prevents the autoscaler from collecting + information when the instance is initializing, during which the collected + usage would not be reliable. The default time autoscaler waits is 60 seconds. + - Virtual machine initialization times might vary because of numerous factors. + We recommend that you test how long an instance may take to initialize. To + do this, create an instance and time the startup process. + returned: success + type: int + cpuUtilization: + description: + - Defines the CPU utilization policy that allows the autoscaler to scale based + on the average CPU utilization of a managed instance group. + returned: success + type: complex + contains: + utilizationTarget: + description: + - The target CPU utilization that the autoscaler should maintain. + - Must be a float value in the range (0, 1]. If not specified, the default + is 0.6. + - If the CPU level is below the target utilization, the autoscaler scales + down the number of instances until it reaches the minimum number of instances + you specified or until the average CPU of your instances reaches the target + utilization. + - If the average CPU is above the target utilization, the autoscaler scales + up until it reaches the maximum number of instances you specified or until + the average utilization reaches the target utilization. + returned: success + type: str + customMetricUtilizations: + description: + - Configuration parameters of autoscaling based on a custom metric. + returned: success + type: complex + contains: + metric: + description: + - The identifier (type) of the Stackdriver Monitoring metric. + - The metric cannot have negative values. + - The metric must have a value type of INT64 or DOUBLE. + returned: success + type: str + utilizationTarget: + description: + - The target value of the metric that autoscaler should maintain. This must + be a positive value. A utilization metric scales number of virtual machines + handling requests to increase or decrease proportionally to the metric. + - For example, a good metric to use as a utilizationTarget is U(www.googleapis.com/compute/instance/network/received_bytes_count). + - The autoscaler will work to keep this value constant for each of the instances. + returned: success + type: str + utilizationTargetType: + description: + - Defines how target utilization value is expressed for a Stackdriver Monitoring + metric. Either GAUGE, DELTA_PER_SECOND, or DELTA_PER_MINUTE. + returned: success + type: str + loadBalancingUtilization: + description: + - Configuration parameters of autoscaling based on a load balancer. + returned: success + type: complex + contains: + utilizationTarget: + description: + - Fraction of backend capacity utilization (set in HTTP(s) load balancing + configuration) that autoscaler should maintain. Must be a positive float + value. If not defined, the default is 0.8. + returned: success + type: str +target: + description: + - URL of the managed instance group that this autoscaler will scale. + returned: success + type: str +region: + description: + - URL of the region where the instance group resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ + +from ansible_collections.google.cloud.plugins.module_utils.gcp_utils import ( + navigate_hash, + GcpSession, + GcpModule, + GcpRequest, + remove_nones_from_dict, + replace_resource_dict, +) +import json +import time + +################################################################################ +# Main +################################################################################ + + +def main(): + """Main function""" + + module = GcpModule( + argument_spec=dict( + state=dict(default='present', choices=['present', 'absent'], type='str'), + name=dict(required=True, type='str'), + description=dict(type='str'), + autoscaling_policy=dict( + required=True, + type='dict', + options=dict( + min_num_replicas=dict(type='int'), + max_num_replicas=dict(required=True, type='int'), + cool_down_period_sec=dict(default=60, type='int'), + cpu_utilization=dict(type='dict', options=dict(utilization_target=dict(type='str'))), + custom_metric_utilizations=dict( + type='list', + elements='dict', + options=dict(metric=dict(required=True, type='str'), utilization_target=dict(type='str'), utilization_target_type=dict(type='str')), + ), + load_balancing_utilization=dict(type='dict', options=dict(utilization_target=dict(type='str'))), + ), + ), + target=dict(required=True, type='str'), + region=dict(required=True, type='str'), + ) + ) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + state = module.params['state'] + kind = 'compute#autoscaler' + + fetch = fetch_resource(module, self_link(module), kind) + changed = False + + if fetch: + if state == 'present': + if is_different(module, fetch): + update(module, self_link(module), kind) + fetch = fetch_resource(module, self_link(module), kind) + changed = True + else: + delete(module, self_link(module), kind) + fetch = {} + changed = True + else: + if state == 'present': + fetch = create(module, collection(module), kind) + changed = True + else: + fetch = {} + + fetch.update({'changed': changed}) + + module.exit_json(**fetch) + + +def create(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.post(link, resource_to_request(module))) + + +def update(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.put(link, resource_to_request(module))) + + +def delete(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.delete(link)) + + +def resource_to_request(module): + request = { + u'kind': 'compute#autoscaler', + u'region': module.params.get('region'), + u'name': module.params.get('name'), + u'description': module.params.get('description'), + u'autoscalingPolicy': RegionAutoscalerAutoscalingpolicy(module.params.get('autoscaling_policy', {}), module).to_request(), + u'target': module.params.get('target'), + } + return_vals = {} + for k, v in request.items(): + if v or v is False: + return_vals[k] = v + + return return_vals + + +def fetch_resource(module, link, kind, allow_not_found=True): + auth = GcpSession(module, 'compute') + return return_if_object(module, auth.get(link), kind, allow_not_found) + + +def self_link(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/autoscalers/{name}".format(**module.params) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/autoscalers".format(**module.params) + + +def return_if_object(module, response, kind, allow_not_found=False): + # If not found, return nothing. + if allow_not_found and response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError): + module.fail_json(msg="Invalid JSON response with error: %s" % response.text) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +def is_different(module, response): + request = resource_to_request(module) + response = response_to_hash(module, response) + + # Remove all output-only from response. + response_vals = {} + for k, v in response.items(): + if k in request: + response_vals[k] = v + + request_vals = {} + for k, v in request.items(): + if k in response: + request_vals[k] = v + + return GcpRequest(request_vals) != GcpRequest(response_vals) + + +# Remove unnecessary properties from the response. +# This is for doing comparisons with Ansible's current parameters. +def response_to_hash(module, response): + return { + u'id': response.get(u'id'), + u'creationTimestamp': response.get(u'creationTimestamp'), + u'name': module.params.get('name'), + u'description': response.get(u'description'), + u'autoscalingPolicy': RegionAutoscalerAutoscalingpolicy(response.get(u'autoscalingPolicy', {}), module).from_response(), + u'target': response.get(u'target'), + } + + +def async_op_url(module, extra_data=None): + if extra_data is None: + extra_data = {} + url = "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/operations/{op_id}" + combined = extra_data.copy() + combined.update(module.params) + return url.format(**combined) + + +def wait_for_operation(module, response): + op_result = return_if_object(module, response, 'compute#operation') + if op_result is None: + return {} + status = navigate_hash(op_result, ['status']) + wait_done = wait_for_completion(status, op_result, module) + return fetch_resource(module, navigate_hash(wait_done, ['targetLink']), 'compute#autoscaler') + + +def wait_for_completion(status, op_result, module): + op_id = navigate_hash(op_result, ['name']) + op_uri = async_op_url(module, {'op_id': op_id}) + while status != 'DONE': + raise_if_errors(op_result, ['error', 'errors'], module) + time.sleep(1.0) + op_result = fetch_resource(module, op_uri, 'compute#operation', False) + status = navigate_hash(op_result, ['status']) + return op_result + + +def raise_if_errors(response, err_path, module): + errors = navigate_hash(response, err_path) + if errors is not None: + module.fail_json(msg=errors) + + +class RegionAutoscalerAutoscalingpolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'minNumReplicas': self.request.get('min_num_replicas'), + u'maxNumReplicas': self.request.get('max_num_replicas'), + u'coolDownPeriodSec': self.request.get('cool_down_period_sec'), + u'cpuUtilization': RegionAutoscalerCpuutilization(self.request.get('cpu_utilization', {}), self.module).to_request(), + u'customMetricUtilizations': RegionAutoscalerCustommetricutilizationsArray( + self.request.get('custom_metric_utilizations', []), self.module + ).to_request(), + u'loadBalancingUtilization': RegionAutoscalerLoadbalancingutilization( + self.request.get('load_balancing_utilization', {}), self.module + ).to_request(), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'minNumReplicas': self.request.get(u'minNumReplicas'), + u'maxNumReplicas': self.request.get(u'maxNumReplicas'), + u'coolDownPeriodSec': self.request.get(u'coolDownPeriodSec'), + u'cpuUtilization': RegionAutoscalerCpuutilization(self.request.get(u'cpuUtilization', {}), self.module).from_response(), + u'customMetricUtilizations': RegionAutoscalerCustommetricutilizationsArray( + self.request.get(u'customMetricUtilizations', []), self.module + ).from_response(), + u'loadBalancingUtilization': RegionAutoscalerLoadbalancingutilization( + self.request.get(u'loadBalancingUtilization', {}), self.module + ).from_response(), + } + ) + + +class RegionAutoscalerCpuutilization(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'utilizationTarget': self.request.get('utilization_target')}) + + def from_response(self): + return remove_nones_from_dict({u'utilizationTarget': self.request.get(u'utilizationTarget')}) + + +class RegionAutoscalerCustommetricutilizationsArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + {u'metric': item.get('metric'), u'utilizationTarget': item.get('utilization_target'), u'utilizationTargetType': item.get('utilization_target_type')} + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + {u'metric': item.get(u'metric'), u'utilizationTarget': item.get(u'utilizationTarget'), u'utilizationTargetType': item.get(u'utilizationTargetType')} + ) + + +class RegionAutoscalerLoadbalancingutilization(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'utilizationTarget': self.request.get('utilization_target')}) + + def from_response(self): + return remove_nones_from_dict({u'utilizationTarget': self.request.get(u'utilizationTarget')}) + + +if __name__ == '__main__': + main() diff --git a/plugins/modules/gcp_compute_region_autoscaler_info.py b/plugins/modules/gcp_compute_region_autoscaler_info.py new file mode 100644 index 0000000..bc90fa2 --- /dev/null +++ b/plugins/modules/gcp_compute_region_autoscaler_info.py @@ -0,0 +1,326 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_autoscaler_info +description: +- Gather info for GCP RegionAutoscaler +short_description: Gather info for GCP RegionAutoscaler +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + filters: + description: + - A list of filter value pairs. Available filters are listed here U(https://cloud.google.com/sdk/gcloud/reference/topic/filters). + - Each additional filter in the list will act be added as an AND condition (filter1 + and filter2) . + type: list + region: + description: + - URL of the region where the instance group resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +notes: +- for authentication, you can set service_account_file using the C(gcp_service_account_file) + env variable. +- for authentication, you can set service_account_contents using the C(GCP_SERVICE_ACCOUNT_CONTENTS) + env variable. +- For authentication, you can set service_account_email using the C(GCP_SERVICE_ACCOUNT_EMAIL) + env variable. +- For authentication, you can set auth_kind using the C(GCP_AUTH_KIND) env variable. +- For authentication, you can set scopes using the C(GCP_SCOPES) env variable. +- Environment variables values will only be used if the playbook values are not set. +- The I(service_account_email) and I(service_account_file) options are mutually exclusive. +''' + +EXAMPLES = ''' +- name: get info on a region autoscaler + gcp_compute_region_autoscaler_info: + region: us-central1 + filters: + - name = test_object + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" +''' + +RETURN = ''' +resources: + description: List of resources + returned: always + type: complex + contains: + id: + description: + - Unique identifier for the resource. + returned: success + type: int + creationTimestamp: + description: + - Creation timestamp in RFC3339 text format. + returned: success + type: str + name: + description: + - Name of the resource. The name must be 1-63 characters long and match the + regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` which means the first character + must be a lowercase letter, and all following characters must be a dash, lowercase + letter, or digit, except the last character, which cannot be a dash. + returned: success + type: str + description: + description: + - An optional description of this resource. + returned: success + type: str + autoscalingPolicy: + description: + - 'The configuration parameters for the autoscaling algorithm. You can define + one or more of the policies for an autoscaler: cpuUtilization, customMetricUtilizations, + and loadBalancingUtilization.' + - If none of these are specified, the default will be to autoscale based on + cpuUtilization to 0.6 or 60%. + returned: success + type: complex + contains: + minNumReplicas: + description: + - The minimum number of replicas that the autoscaler can scale down to. + This cannot be less than 0. If not provided, autoscaler will choose a + default value depending on maximum number of instances allowed. + returned: success + type: int + maxNumReplicas: + description: + - The maximum number of instances that the autoscaler can scale up to. This + is required when creating or updating an autoscaler. The maximum number + of replicas should not be lower than minimal number of replicas. + returned: success + type: int + coolDownPeriodSec: + description: + - The number of seconds that the autoscaler should wait before it starts + collecting information from a new instance. This prevents the autoscaler + from collecting information when the instance is initializing, during + which the collected usage would not be reliable. The default time autoscaler + waits is 60 seconds. + - Virtual machine initialization times might vary because of numerous factors. + We recommend that you test how long an instance may take to initialize. + To do this, create an instance and time the startup process. + returned: success + type: int + cpuUtilization: + description: + - Defines the CPU utilization policy that allows the autoscaler to scale + based on the average CPU utilization of a managed instance group. + returned: success + type: complex + contains: + utilizationTarget: + description: + - The target CPU utilization that the autoscaler should maintain. + - Must be a float value in the range (0, 1]. If not specified, the default + is 0.6. + - If the CPU level is below the target utilization, the autoscaler scales + down the number of instances until it reaches the minimum number of + instances you specified or until the average CPU of your instances + reaches the target utilization. + - If the average CPU is above the target utilization, the autoscaler + scales up until it reaches the maximum number of instances you specified + or until the average utilization reaches the target utilization. + returned: success + type: str + customMetricUtilizations: + description: + - Configuration parameters of autoscaling based on a custom metric. + returned: success + type: complex + contains: + metric: + description: + - The identifier (type) of the Stackdriver Monitoring metric. + - The metric cannot have negative values. + - The metric must have a value type of INT64 or DOUBLE. + returned: success + type: str + utilizationTarget: + description: + - The target value of the metric that autoscaler should maintain. This + must be a positive value. A utilization metric scales number of virtual + machines handling requests to increase or decrease proportionally + to the metric. + - For example, a good metric to use as a utilizationTarget is U(www.googleapis.com/compute/instance/network/received_bytes_count). + - The autoscaler will work to keep this value constant for each of the + instances. + returned: success + type: str + utilizationTargetType: + description: + - Defines how target utilization value is expressed for a Stackdriver + Monitoring metric. Either GAUGE, DELTA_PER_SECOND, or DELTA_PER_MINUTE. + returned: success + type: str + loadBalancingUtilization: + description: + - Configuration parameters of autoscaling based on a load balancer. + returned: success + type: complex + contains: + utilizationTarget: + description: + - Fraction of backend capacity utilization (set in HTTP(s) load balancing + configuration) that autoscaler should maintain. Must be a positive + float value. If not defined, the default is 0.8. + returned: success + type: str + target: + description: + - URL of the managed instance group that this autoscaler will scale. + returned: success + type: str + region: + description: + - URL of the region where the instance group resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ +from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest +import json + +################################################################################ +# Main +################################################################################ + + +def main(): + module = GcpModule(argument_spec=dict(filters=dict(type='list', elements='str'), region=dict(required=True, type='str'))) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + return_value = {'resources': fetch_list(module, collection(module), query_options(module.params['filters']))} + module.exit_json(**return_value) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/autoscalers".format(**module.params) + + +def fetch_list(module, link, query): + auth = GcpSession(module, 'compute') + return auth.list(link, return_if_object, array_name='items', params={'filter': query}) + + +def query_options(filters): + if not filters: + return '' + + if len(filters) == 1: + return filters[0] + else: + queries = [] + for f in filters: + # For multiple queries, all queries should have () + if f[0] != '(' and f[-1] != ')': + queries.append("(%s)" % ''.join(f)) + else: + queries.append(f) + + return ' '.join(queries) + + +def return_if_object(module, response): + # If not found, return nothing. + if response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError) as inst: + module.fail_json(msg="Invalid JSON response with error: %s" % inst) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +if __name__ == "__main__": + main() diff --git a/plugins/modules/gcp_compute_region_instance_group_manager.py b/plugins/modules/gcp_compute_region_instance_group_manager.py new file mode 100644 index 0000000..5a09173 --- /dev/null +++ b/plugins/modules/gcp_compute_region_instance_group_manager.py @@ -0,0 +1,679 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_instance_group_manager +description: +- Creates a managed instance group using the information that you specify in the request. + After the group is created, it schedules an action to create instances in the group + using the specified instance template. This operation is marked as DONE when the + group is created even if the instances in the group have not yet been created. You + must separately verify the status of the individual instances. +- A managed instance group can have up to 1000 VM instances per group. +short_description: Creates a GCP RegionInstanceGroupManager +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + state: + description: + - Whether the given object should exist in GCP + choices: + - present + - absent + default: present + type: str + base_instance_name: + description: + - The base instance name to use for instances in this group. The value must be + 1-58 characters long. Instances are named by appending a hyphen and a random + four-character string to the base instance name. + - The base instance name must comply with RFC1035. + required: true + type: str + description: + description: + - An optional description of this resource. Provide this property when you create + the resource. + required: false + type: str + instance_template: + description: + - The instance template that is specified for this managed instance group. The + group uses this template to create all new instances in the managed instance + group. + - 'This field represents a link to a InstanceTemplate resource in GCP. It can + be specified in two ways. First, you can place a dictionary with key ''selfLink'' + and value of your resource''s selfLink Alternatively, you can add `register: + name-of-resource` to a gcp_compute_instance_template task and then set this + instance_template field to "{{ name-of-resource }}"' + required: true + type: dict + name: + description: + - The name of the managed instance group. The name must be 1-63 characters long, + and comply with RFC1035. + required: true + type: str + named_ports: + description: + - Named ports configured for the Instance Groups complementary to this Instance + Group Manager. + elements: dict + required: false + type: list + suboptions: + name: + description: + - The name for this named port. The name must be 1-63 characters long, and + comply with RFC1035. + required: false + type: str + port: + description: + - The port number, which can be a value between 1 and 65535. + required: false + type: int + target_pools: + description: + - TargetPool resources to which instances in the instanceGroup field are added. + The target pools automatically apply to all of the instances in the managed + instance group. + elements: dict + required: false + type: list + target_size: + description: + - The target number of running instances for this managed instance group. Deleting + or abandoning instances reduces this number. Resizing the group changes this + number. + required: false + type: int + auto_healing_policies: + description: + - The autohealing policy for this managed instance group . + elements: dict + required: false + type: list + suboptions: + health_check: + description: + - The URL for the health check that signals autohealing. + required: false + type: str + initial_delay_sec: + description: + - The number of seconds that the managed instance group waits before it applies + autohealing policies to new instances or recently recreated instances . + required: false + type: int + region: + description: + - The region the managed instance group resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +''' + +EXAMPLES = ''' +- name: create a network + google.cloud.gcp_compute_network: + name: network-instancetemplate + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: network + +- name: create a address + google.cloud.gcp_compute_address: + name: address-instancetemplate + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: address + +- name: create a instance template + google.cloud.gcp_compute_instance_template: + name: "{{ resource_name }}" + properties: + disks: + - auto_delete: 'true' + boot: 'true' + initialize_params: + source_image: projects/ubuntu-os-cloud/global/images/family/ubuntu-1604-lts + machine_type: n1-standard-1 + network_interfaces: + - network: "{{ network }}" + access_configs: + - name: test-config + type: ONE_TO_ONE_NAT + nat_ip: "{{ address }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: instancetemplate + +- name: create a region instance group manager + google.cloud.gcp_compute_region_instance_group_manager: + name: test_object + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" + state: present +''' + +RETURN = ''' +baseInstanceName: + description: + - The base instance name to use for instances in this group. The value must be 1-58 + characters long. Instances are named by appending a hyphen and a random four-character + string to the base instance name. + - The base instance name must comply with RFC1035. + returned: success + type: str +creationTimestamp: + description: + - The creation timestamp for this managed instance group in RFC3339 text format. + returned: success + type: str +currentActions: + description: + - The list of instance actions and the number of instances in this managed instance + group that are scheduled for each of those actions. + returned: success + type: complex + contains: + abandoning: + description: + - The total number of instances in the managed instance group that are scheduled + to be abandoned. Abandoning an instance removes it from the managed instance + group without deleting it. + returned: success + type: int + creating: + description: + - The number of instances in the managed instance group that are scheduled to + be created or are currently being created. If the group fails to create any + of these instances, it tries again until it creates the instance successfully. + - If you have disabled creation retries, this field will not be populated; instead, + the creatingWithoutRetries field will be populated. + returned: success + type: int + creatingWithoutRetries: + description: + - The number of instances that the managed instance group will attempt to create. + The group attempts to create each instance only once. If the group fails to + create any of these instances, it decreases the group's targetSize value accordingly. + returned: success + type: int + deleting: + description: + - The number of instances in the managed instance group that are scheduled to + be deleted or are currently being deleted. + returned: success + type: int + none: + description: + - The number of instances in the managed instance group that are running and + have no scheduled actions. + returned: success + type: int + recreating: + description: + - The number of instances in the managed instance group that are scheduled to + be recreated or are currently being being recreated. + - Recreating an instance deletes the existing root persistent disk and creates + a new disk from the image that is defined in the instance template. + returned: success + type: int + refreshing: + description: + - The number of instances in the managed instance group that are being reconfigured + with properties that do not require a restart or a recreate action. For example, + setting or removing target pools for the instance. + returned: success + type: int + restarting: + description: + - The number of instances in the managed instance group that are scheduled to + be restarted or are currently being restarted. + returned: success + type: int +description: + description: + - An optional description of this resource. Provide this property when you create + the resource. + returned: success + type: str +id: + description: + - A unique identifier for this resource. + returned: success + type: int +instanceGroup: + description: + - The instance group being managed. + returned: success + type: dict +instanceTemplate: + description: + - The instance template that is specified for this managed instance group. The group + uses this template to create all new instances in the managed instance group. + returned: success + type: dict +name: + description: + - The name of the managed instance group. The name must be 1-63 characters long, + and comply with RFC1035. + returned: success + type: str +namedPorts: + description: + - Named ports configured for the Instance Groups complementary to this Instance + Group Manager. + returned: success + type: complex + contains: + name: + description: + - The name for this named port. The name must be 1-63 characters long, and comply + with RFC1035. + returned: success + type: str + port: + description: + - The port number, which can be a value between 1 and 65535. + returned: success + type: int +targetPools: + description: + - TargetPool resources to which instances in the instanceGroup field are added. + The target pools automatically apply to all of the instances in the managed instance + group. + returned: success + type: list +targetSize: + description: + - The target number of running instances for this managed instance group. Deleting + or abandoning instances reduces this number. Resizing the group changes this number. + returned: success + type: int +autoHealingPolicies: + description: + - The autohealing policy for this managed instance group . + returned: success + type: complex + contains: + healthCheck: + description: + - The URL for the health check that signals autohealing. + returned: success + type: str + initialDelaySec: + description: + - The number of seconds that the managed instance group waits before it applies + autohealing policies to new instances or recently recreated instances . + returned: success + type: int +region: + description: + - The region the managed instance group resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ + +from ansible_collections.google.cloud.plugins.module_utils.gcp_utils import ( + navigate_hash, + GcpSession, + GcpModule, + GcpRequest, + remove_nones_from_dict, + replace_resource_dict, +) +import json +import time + +################################################################################ +# Main +################################################################################ + + +def main(): + """Main function""" + + module = GcpModule( + argument_spec=dict( + state=dict(default='present', choices=['present', 'absent'], type='str'), + base_instance_name=dict(required=True, type='str'), + description=dict(type='str'), + instance_template=dict(required=True, type='dict'), + name=dict(required=True, type='str'), + named_ports=dict(type='list', elements='dict', options=dict(name=dict(type='str'), port=dict(type='int'))), + target_pools=dict(type='list', elements='dict'), + target_size=dict(type='int'), + auto_healing_policies=dict(type='list', elements='dict', options=dict(health_check=dict(type='str'), initial_delay_sec=dict(type='int'))), + region=dict(required=True, type='str'), + ) + ) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + state = module.params['state'] + kind = 'compute#instanceGroupManager' + + fetch = fetch_resource(module, self_link(module), kind) + changed = False + + if fetch: + if state == 'present': + if is_different(module, fetch): + update(module, self_link(module), kind) + fetch = fetch_resource(module, self_link(module), kind) + changed = True + else: + delete(module, self_link(module), kind) + fetch = {} + changed = True + else: + if state == 'present': + fetch = create(module, collection(module), kind) + changed = True + else: + fetch = {} + + fetch.update({'changed': changed}) + + module.exit_json(**fetch) + + +def create(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.post(link, resource_to_request(module))) + + +def update(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.put(link, resource_to_request(module))) + + +def delete(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.delete(link)) + + +def resource_to_request(module): + request = { + u'kind': 'compute#instanceGroupManager', + u'baseInstanceName': module.params.get('base_instance_name'), + u'description': module.params.get('description'), + u'instanceTemplate': replace_resource_dict(module.params.get(u'instance_template', {}), 'selfLink'), + u'name': module.params.get('name'), + u'namedPorts': RegionInstanceGroupManagerNamedportsArray(module.params.get('named_ports', []), module).to_request(), + u'targetPools': replace_resource_dict(module.params.get('target_pools', []), 'selfLink'), + u'targetSize': module.params.get('target_size'), + u'autoHealingPolicies': RegionInstanceGroupManagerAutohealingpoliciesArray(module.params.get('auto_healing_policies', []), module).to_request(), + } + return_vals = {} + for k, v in request.items(): + if v or v is False: + return_vals[k] = v + + return return_vals + + +def fetch_resource(module, link, kind, allow_not_found=True): + auth = GcpSession(module, 'compute') + return return_if_object(module, auth.get(link), kind, allow_not_found) + + +def self_link(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/instanceGroupManagers/{name}".format(**module.params) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/instanceGroupManagers".format(**module.params) + + +def return_if_object(module, response, kind, allow_not_found=False): + # If not found, return nothing. + if allow_not_found and response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError): + module.fail_json(msg="Invalid JSON response with error: %s" % response.text) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +def is_different(module, response): + request = resource_to_request(module) + response = response_to_hash(module, response) + + # Remove all output-only from response. + response_vals = {} + for k, v in response.items(): + if k in request: + response_vals[k] = v + + request_vals = {} + for k, v in request.items(): + if k in response: + request_vals[k] = v + + return GcpRequest(request_vals) != GcpRequest(response_vals) + + +# Remove unnecessary properties from the response. +# This is for doing comparisons with Ansible's current parameters. +def response_to_hash(module, response): + return { + u'baseInstanceName': response.get(u'baseInstanceName'), + u'creationTimestamp': response.get(u'creationTimestamp'), + u'currentActions': RegionInstanceGroupManagerCurrentactions(response.get(u'currentActions', {}), module).from_response(), + u'description': module.params.get('description'), + u'id': response.get(u'id'), + u'instanceGroup': response.get(u'instanceGroup'), + u'instanceTemplate': response.get(u'instanceTemplate'), + u'name': response.get(u'name'), + u'namedPorts': RegionInstanceGroupManagerNamedportsArray(response.get(u'namedPorts', []), module).from_response(), + u'targetPools': response.get(u'targetPools'), + u'targetSize': response.get(u'targetSize'), + u'autoHealingPolicies': RegionInstanceGroupManagerAutohealingpoliciesArray(response.get(u'autoHealingPolicies', []), module).from_response(), + } + + +def async_op_url(module, extra_data=None): + if extra_data is None: + extra_data = {} + url = "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/operations/{op_id}" + combined = extra_data.copy() + combined.update(module.params) + return url.format(**combined) + + +def wait_for_operation(module, response): + op_result = return_if_object(module, response, 'compute#operation') + if op_result is None: + return {} + status = navigate_hash(op_result, ['status']) + wait_done = wait_for_completion(status, op_result, module) + return fetch_resource(module, navigate_hash(wait_done, ['targetLink']), 'compute#instanceGroupManager') + + +def wait_for_completion(status, op_result, module): + op_id = navigate_hash(op_result, ['name']) + op_uri = async_op_url(module, {'op_id': op_id}) + while status != 'DONE': + raise_if_errors(op_result, ['error', 'errors'], module) + time.sleep(1.0) + op_result = fetch_resource(module, op_uri, 'compute#operation', False) + status = navigate_hash(op_result, ['status']) + return op_result + + +def raise_if_errors(response, err_path, module): + errors = navigate_hash(response, err_path) + if errors is not None: + module.fail_json(msg=errors) + + +class RegionInstanceGroupManagerCurrentactions(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({}) + + def from_response(self): + return remove_nones_from_dict({}) + + +class RegionInstanceGroupManagerNamedportsArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'name': item.get('name'), u'port': item.get('port')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'name': item.get(u'name'), u'port': item.get(u'port')}) + + +class RegionInstanceGroupManagerAutohealingpoliciesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'healthCheck': item.get('health_check'), u'initialDelaySec': item.get('initial_delay_sec')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'healthCheck': item.get(u'healthCheck'), u'initialDelaySec': item.get(u'initialDelaySec')}) + + +if __name__ == '__main__': + main() diff --git a/plugins/modules/gcp_compute_region_instance_group_manager_info.py b/plugins/modules/gcp_compute_region_instance_group_manager_info.py new file mode 100644 index 0000000..f181835 --- /dev/null +++ b/plugins/modules/gcp_compute_region_instance_group_manager_info.py @@ -0,0 +1,354 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_instance_group_manager_info +description: +- Gather info for GCP RegionInstanceGroupManager +short_description: Gather info for GCP RegionInstanceGroupManager +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + filters: + description: + - A list of filter value pairs. Available filters are listed here U(https://cloud.google.com/sdk/gcloud/reference/topic/filters). + - Each additional filter in the list will act be added as an AND condition (filter1 + and filter2) . + type: list + region: + description: + - The region the managed instance group resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +notes: +- for authentication, you can set service_account_file using the C(gcp_service_account_file) + env variable. +- for authentication, you can set service_account_contents using the C(GCP_SERVICE_ACCOUNT_CONTENTS) + env variable. +- For authentication, you can set service_account_email using the C(GCP_SERVICE_ACCOUNT_EMAIL) + env variable. +- For authentication, you can set auth_kind using the C(GCP_AUTH_KIND) env variable. +- For authentication, you can set scopes using the C(GCP_SCOPES) env variable. +- Environment variables values will only be used if the playbook values are not set. +- The I(service_account_email) and I(service_account_file) options are mutually exclusive. +''' + +EXAMPLES = ''' +- name: get info on a region instance group manager + gcp_compute_region_instance_group_manager_info: + region: us-central1 + filters: + - name = test_object + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" +''' + +RETURN = ''' +resources: + description: List of resources + returned: always + type: complex + contains: + baseInstanceName: + description: + - The base instance name to use for instances in this group. The value must + be 1-58 characters long. Instances are named by appending a hyphen and a random + four-character string to the base instance name. + - The base instance name must comply with RFC1035. + returned: success + type: str + creationTimestamp: + description: + - The creation timestamp for this managed instance group in RFC3339 text format. + returned: success + type: str + currentActions: + description: + - The list of instance actions and the number of instances in this managed instance + group that are scheduled for each of those actions. + returned: success + type: complex + contains: + abandoning: + description: + - The total number of instances in the managed instance group that are scheduled + to be abandoned. Abandoning an instance removes it from the managed instance + group without deleting it. + returned: success + type: int + creating: + description: + - The number of instances in the managed instance group that are scheduled + to be created or are currently being created. If the group fails to create + any of these instances, it tries again until it creates the instance successfully. + - If you have disabled creation retries, this field will not be populated; + instead, the creatingWithoutRetries field will be populated. + returned: success + type: int + creatingWithoutRetries: + description: + - The number of instances that the managed instance group will attempt to + create. The group attempts to create each instance only once. If the group + fails to create any of these instances, it decreases the group's targetSize + value accordingly. + returned: success + type: int + deleting: + description: + - The number of instances in the managed instance group that are scheduled + to be deleted or are currently being deleted. + returned: success + type: int + none: + description: + - The number of instances in the managed instance group that are running + and have no scheduled actions. + returned: success + type: int + recreating: + description: + - The number of instances in the managed instance group that are scheduled + to be recreated or are currently being being recreated. + - Recreating an instance deletes the existing root persistent disk and creates + a new disk from the image that is defined in the instance template. + returned: success + type: int + refreshing: + description: + - The number of instances in the managed instance group that are being reconfigured + with properties that do not require a restart or a recreate action. For + example, setting or removing target pools for the instance. + returned: success + type: int + restarting: + description: + - The number of instances in the managed instance group that are scheduled + to be restarted or are currently being restarted. + returned: success + type: int + description: + description: + - An optional description of this resource. Provide this property when you create + the resource. + returned: success + type: str + id: + description: + - A unique identifier for this resource. + returned: success + type: int + instanceGroup: + description: + - The instance group being managed. + returned: success + type: dict + instanceTemplate: + description: + - The instance template that is specified for this managed instance group. The + group uses this template to create all new instances in the managed instance + group. + returned: success + type: dict + name: + description: + - The name of the managed instance group. The name must be 1-63 characters long, + and comply with RFC1035. + returned: success + type: str + namedPorts: + description: + - Named ports configured for the Instance Groups complementary to this Instance + Group Manager. + returned: success + type: complex + contains: + name: + description: + - The name for this named port. The name must be 1-63 characters long, and + comply with RFC1035. + returned: success + type: str + port: + description: + - The port number, which can be a value between 1 and 65535. + returned: success + type: int + targetPools: + description: + - TargetPool resources to which instances in the instanceGroup field are added. + The target pools automatically apply to all of the instances in the managed + instance group. + returned: success + type: list + targetSize: + description: + - The target number of running instances for this managed instance group. Deleting + or abandoning instances reduces this number. Resizing the group changes this + number. + returned: success + type: int + autoHealingPolicies: + description: + - The autohealing policy for this managed instance group . + returned: success + type: complex + contains: + healthCheck: + description: + - The URL for the health check that signals autohealing. + returned: success + type: str + initialDelaySec: + description: + - The number of seconds that the managed instance group waits before it + applies autohealing policies to new instances or recently recreated instances + . + returned: success + type: int + region: + description: + - The region the managed instance group resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ +from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest +import json + +################################################################################ +# Main +################################################################################ + + +def main(): + module = GcpModule(argument_spec=dict(filters=dict(type='list', elements='str'), region=dict(required=True, type='str'))) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + return_value = {'resources': fetch_list(module, collection(module), query_options(module.params['filters']))} + module.exit_json(**return_value) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/instanceGroupManagers".format(**module.params) + + +def fetch_list(module, link, query): + auth = GcpSession(module, 'compute') + return auth.list(link, return_if_object, array_name='items', params={'filter': query}) + + +def query_options(filters): + if not filters: + return '' + + if len(filters) == 1: + return filters[0] + else: + queries = [] + for f in filters: + # For multiple queries, all queries should have () + if f[0] != '(' and f[-1] != ')': + queries.append("(%s)" % ''.join(f)) + else: + queries.append(f) + + return ' '.join(queries) + + +def return_if_object(module, response): + # If not found, return nothing. + if response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError) as inst: + module.fail_json(msg="Invalid JSON response with error: %s" % inst) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +if __name__ == "__main__": + main() diff --git a/plugins/modules/gcp_compute_region_target_http_proxy.py b/plugins/modules/gcp_compute_region_target_http_proxy.py new file mode 100644 index 0000000..7a464b4 --- /dev/null +++ b/plugins/modules/gcp_compute_region_target_http_proxy.py @@ -0,0 +1,434 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_target_http_proxy +description: +- Represents a RegionTargetHttpProxy resource, which is used by one or more forwarding + rules to route incoming HTTP requests to a URL map. +short_description: Creates a GCP RegionTargetHttpProxy +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + state: + description: + - Whether the given object should exist in GCP + choices: + - present + - absent + default: present + type: str + description: + description: + - An optional description of this resource. + required: false + type: str + name: + description: + - Name of the resource. Provided by the client when the resource is created. The + name must be 1-63 characters long, and comply with RFC1035. Specifically, the + name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + required: true + type: str + url_map: + description: + - A reference to the RegionUrlMap resource that defines the mapping from URL to + the BackendService. + - 'This field represents a link to a RegionUrlMap resource in GCP. It can be specified + in two ways. First, you can place a dictionary with key ''selfLink'' and value + of your resource''s selfLink Alternatively, you can add `register: name-of-resource` + to a gcp_compute_region_url_map task and then set this url_map field to "{{ + name-of-resource }}"' + required: true + type: dict + region: + description: + - The region where the regional proxy resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +notes: +- 'API Reference: U(https://cloud.google.com/compute/docs/reference/rest/beta/regionTargetHttpProxies)' +- 'Official Documentation: U(https://cloud.google.com/compute/docs/load-balancing/http/target-proxies)' +- for authentication, you can set service_account_file using the C(gcp_service_account_file) + env variable. +- for authentication, you can set service_account_contents using the C(GCP_SERVICE_ACCOUNT_CONTENTS) + env variable. +- For authentication, you can set service_account_email using the C(GCP_SERVICE_ACCOUNT_EMAIL) + env variable. +- For authentication, you can set auth_kind using the C(GCP_AUTH_KIND) env variable. +- For authentication, you can set scopes using the C(GCP_SCOPES) env variable. +- Environment variables values will only be used if the playbook values are not set. +- The I(service_account_email) and I(service_account_file) options are mutually exclusive. +''' + +EXAMPLES = ''' +- name: create a instance group + google.cloud.gcp_compute_instance_group: + name: instancegroup-targethttpproxy + zone: us-central1-a + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: instancegroup + +- name: create a HTTP health check + google.cloud.gcp_compute_http_health_check: + name: httphealthcheck-targethttpproxy + healthy_threshold: 10 + port: 8080 + timeout_sec: 2 + unhealthy_threshold: 5 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: healthcheck + +- name: create a backend service + google.cloud.gcp_compute_backend_service: + name: backendservice-targethttpproxy + backends: + - group: "{{ instancegroup.selfLink }}" + health_checks: + - "{{ healthcheck.selfLink }}" + enable_cdn: 'true' + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: backendservice + +- name: create a URL map + google.cloud.gcp_compute_url_map: + name: urlmap-targethttpproxy + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: urlmap + +- name: create a region target HTTP proxy + google.cloud.gcp_compute_region_target_http_proxy: + name: test_object + region: us-central1 + url_map: "{{ urlmap }}" + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" + state: present +''' + +RETURN = ''' +creationTimestamp: + description: + - Creation timestamp in RFC3339 text format. + returned: success + type: str +description: + description: + - An optional description of this resource. + returned: success + type: str +id: + description: + - The unique identifier for the resource. + returned: success + type: int +name: + description: + - Name of the resource. Provided by the client when the resource is created. The + name must be 1-63 characters long, and comply with RFC1035. Specifically, the + name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + returned: success + type: str +urlMap: + description: + - A reference to the RegionUrlMap resource that defines the mapping from URL to + the BackendService. + returned: success + type: dict +region: + description: + - The region where the regional proxy resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ + +from ansible_collections.google.cloud.plugins.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest, replace_resource_dict +import json +import time + +################################################################################ +# Main +################################################################################ + + +def main(): + """Main function""" + + module = GcpModule( + argument_spec=dict( + state=dict(default='present', choices=['present', 'absent'], type='str'), + description=dict(type='str'), + name=dict(required=True, type='str'), + url_map=dict(required=True, type='dict'), + region=dict(required=True, type='str'), + ) + ) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + state = module.params['state'] + kind = 'compute#targetHttpProxy' + + fetch = fetch_resource(module, self_link(module), kind) + changed = False + + if fetch: + if state == 'present': + if is_different(module, fetch): + update(module, self_link(module), kind, fetch) + fetch = fetch_resource(module, self_link(module), kind) + changed = True + else: + delete(module, self_link(module), kind) + fetch = {} + changed = True + else: + if state == 'present': + fetch = create(module, collection(module), kind) + changed = True + else: + fetch = {} + + fetch.update({'changed': changed}) + + module.exit_json(**fetch) + + +def create(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.post(link, resource_to_request(module))) + + +def update(module, link, kind, fetch): + update_fields(module, resource_to_request(module), response_to_hash(module, fetch)) + return fetch_resource(module, self_link(module), kind) + + +def update_fields(module, request, response): + if response.get('urlMap') != request.get('urlMap'): + url_map_update(module, request, response) + + +def url_map_update(module, request, response): + auth = GcpSession(module, 'compute') + auth.post( + ''.join(["https://www.googleapis.com/compute/v1/", "projects/{project}/regions/{region}/targetHttpProxies/{name}/setUrlMap"]).format(**module.params), + {u'urlMap': replace_resource_dict(module.params.get(u'url_map', {}), 'selfLink')}, + ) + + +def delete(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.delete(link)) + + +def resource_to_request(module): + request = { + u'kind': 'compute#targetHttpProxy', + u'region': module.params.get('region'), + u'description': module.params.get('description'), + u'name': module.params.get('name'), + u'urlMap': replace_resource_dict(module.params.get(u'url_map', {}), 'selfLink'), + } + return_vals = {} + for k, v in request.items(): + if v or v is False: + return_vals[k] = v + + return return_vals + + +def fetch_resource(module, link, kind, allow_not_found=True): + auth = GcpSession(module, 'compute') + return return_if_object(module, auth.get(link), kind, allow_not_found) + + +def self_link(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/targetHttpProxies/{name}".format(**module.params) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/targetHttpProxies".format(**module.params) + + +def return_if_object(module, response, kind, allow_not_found=False): + # If not found, return nothing. + if allow_not_found and response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError): + module.fail_json(msg="Invalid JSON response with error: %s" % response.text) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +def is_different(module, response): + request = resource_to_request(module) + response = response_to_hash(module, response) + + # Remove all output-only from response. + response_vals = {} + for k, v in response.items(): + if k in request: + response_vals[k] = v + + request_vals = {} + for k, v in request.items(): + if k in response: + request_vals[k] = v + + return GcpRequest(request_vals) != GcpRequest(response_vals) + + +# Remove unnecessary properties from the response. +# This is for doing comparisons with Ansible's current parameters. +def response_to_hash(module, response): + return { + u'creationTimestamp': response.get(u'creationTimestamp'), + u'description': response.get(u'description'), + u'id': response.get(u'id'), + u'name': response.get(u'name'), + u'urlMap': response.get(u'urlMap'), + } + + +def async_op_url(module, extra_data=None): + if extra_data is None: + extra_data = {} + url = "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/operations/{op_id}" + combined = extra_data.copy() + combined.update(module.params) + return url.format(**combined) + + +def wait_for_operation(module, response): + op_result = return_if_object(module, response, 'compute#operation') + if op_result is None: + return {} + status = navigate_hash(op_result, ['status']) + wait_done = wait_for_completion(status, op_result, module) + return fetch_resource(module, navigate_hash(wait_done, ['targetLink']), 'compute#targetHttpProxy') + + +def wait_for_completion(status, op_result, module): + op_id = navigate_hash(op_result, ['name']) + op_uri = async_op_url(module, {'op_id': op_id}) + while status != 'DONE': + raise_if_errors(op_result, ['error', 'errors'], module) + time.sleep(1.0) + op_result = fetch_resource(module, op_uri, 'compute#operation', False) + status = navigate_hash(op_result, ['status']) + return op_result + + +def raise_if_errors(response, err_path, module): + errors = navigate_hash(response, err_path) + if errors is not None: + module.fail_json(msg=errors) + + +if __name__ == '__main__': + main() diff --git a/plugins/modules/gcp_compute_region_target_http_proxy_info.py b/plugins/modules/gcp_compute_region_target_http_proxy_info.py new file mode 100644 index 0000000..c25edd6 --- /dev/null +++ b/plugins/modules/gcp_compute_region_target_http_proxy_info.py @@ -0,0 +1,229 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_target_http_proxy_info +description: +- Gather info for GCP RegionTargetHttpProxy +short_description: Gather info for GCP RegionTargetHttpProxy +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + filters: + description: + - A list of filter value pairs. Available filters are listed here U(https://cloud.google.com/sdk/gcloud/reference/topic/filters). + - Each additional filter in the list will act be added as an AND condition (filter1 + and filter2) . + type: list + region: + description: + - The region where the regional proxy resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +notes: +- for authentication, you can set service_account_file using the C(gcp_service_account_file) + env variable. +- for authentication, you can set service_account_contents using the C(GCP_SERVICE_ACCOUNT_CONTENTS) + env variable. +- For authentication, you can set service_account_email using the C(GCP_SERVICE_ACCOUNT_EMAIL) + env variable. +- For authentication, you can set auth_kind using the C(GCP_AUTH_KIND) env variable. +- For authentication, you can set scopes using the C(GCP_SCOPES) env variable. +- Environment variables values will only be used if the playbook values are not set. +- The I(service_account_email) and I(service_account_file) options are mutually exclusive. +''' + +EXAMPLES = ''' +- name: get info on a region target HTTP proxy + gcp_compute_region_target_http_proxy_info: + region: us-central1 + filters: + - name = test_object + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" +''' + +RETURN = ''' +resources: + description: List of resources + returned: always + type: complex + contains: + creationTimestamp: + description: + - Creation timestamp in RFC3339 text format. + returned: success + type: str + description: + description: + - An optional description of this resource. + returned: success + type: str + id: + description: + - The unique identifier for the resource. + returned: success + type: int + name: + description: + - Name of the resource. Provided by the client when the resource is created. + The name must be 1-63 characters long, and comply with RFC1035. Specifically, + the name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + returned: success + type: str + urlMap: + description: + - A reference to the RegionUrlMap resource that defines the mapping from URL + to the BackendService. + returned: success + type: dict + region: + description: + - The region where the regional proxy resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ +from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest +import json + +################################################################################ +# Main +################################################################################ + + +def main(): + module = GcpModule(argument_spec=dict(filters=dict(type='list', elements='str'), region=dict(required=True, type='str'))) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + return_value = {'resources': fetch_list(module, collection(module), query_options(module.params['filters']))} + module.exit_json(**return_value) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/targetHttpProxies".format(**module.params) + + +def fetch_list(module, link, query): + auth = GcpSession(module, 'compute') + return auth.list(link, return_if_object, array_name='items', params={'filter': query}) + + +def query_options(filters): + if not filters: + return '' + + if len(filters) == 1: + return filters[0] + else: + queries = [] + for f in filters: + # For multiple queries, all queries should have () + if f[0] != '(' and f[-1] != ')': + queries.append("(%s)" % ''.join(f)) + else: + queries.append(f) + + return ' '.join(queries) + + +def return_if_object(module, response): + # If not found, return nothing. + if response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError) as inst: + module.fail_json(msg="Invalid JSON response with error: %s" % inst) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +if __name__ == "__main__": + main() diff --git a/plugins/modules/gcp_compute_region_target_https_proxy.py b/plugins/modules/gcp_compute_region_target_https_proxy.py new file mode 100644 index 0000000..0ccf6b3 --- /dev/null +++ b/plugins/modules/gcp_compute_region_target_https_proxy.py @@ -0,0 +1,502 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_target_https_proxy +description: +- Represents a RegionTargetHttpsProxy resource, which is used by one or more forwarding + rules to route incoming HTTPS requests to a URL map. +short_description: Creates a GCP RegionTargetHttpsProxy +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + state: + description: + - Whether the given object should exist in GCP + choices: + - present + - absent + default: present + type: str + description: + description: + - An optional description of this resource. + required: false + type: str + name: + description: + - Name of the resource. Provided by the client when the resource is created. The + name must be 1-63 characters long, and comply with RFC1035. Specifically, the + name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + required: true + type: str + ssl_certificates: + description: + - A list of RegionSslCertificate resources that are used to authenticate connections + between users and the load balancer. Currently, exactly one SSL certificate + must be specified. + elements: dict + required: true + type: list + url_map: + description: + - A reference to the RegionUrlMap resource that defines the mapping from URL to + the RegionBackendService. + - 'This field represents a link to a RegionUrlMap resource in GCP. It can be specified + in two ways. First, you can place a dictionary with key ''selfLink'' and value + of your resource''s selfLink Alternatively, you can add `register: name-of-resource` + to a gcp_compute_region_url_map task and then set this url_map field to "{{ + name-of-resource }}"' + required: true + type: dict + region: + description: + - The region where the regional proxy resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +notes: +- 'API Reference: U(https://cloud.google.com/compute/docs/reference/rest/beta/regionTargetHttpsProxies)' +- 'Official Documentation: U(https://cloud.google.com/compute/docs/load-balancing/http/target-proxies)' +- for authentication, you can set service_account_file using the C(gcp_service_account_file) + env variable. +- for authentication, you can set service_account_contents using the C(GCP_SERVICE_ACCOUNT_CONTENTS) + env variable. +- For authentication, you can set service_account_email using the C(GCP_SERVICE_ACCOUNT_EMAIL) + env variable. +- For authentication, you can set auth_kind using the C(GCP_AUTH_KIND) env variable. +- For authentication, you can set scopes using the C(GCP_SCOPES) env variable. +- Environment variables values will only be used if the playbook values are not set. +- The I(service_account_email) and I(service_account_file) options are mutually exclusive. +''' + +EXAMPLES = ''' +- name: create a instance group + google.cloud.gcp_compute_instance_group: + name: instancegroup-targethttpsproxy + zone: us-central1-a + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: instancegroup + +- name: create a region health check + google.cloud.gcp_compute_region_health_check: + name: "{{ resource_name }}" + type: HTTPS + healthy_threshold: 10 + timeout_sec: 2 + unhealthy_threshold: 5 + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: healthcheck + +- name: create a region backend service + google.cloud.gcp_compute_region_backend_service: + name: backendservice-targethttpsproxy + region: us-central1 + backends: + - group: "{{ instancegroup.selfLink }}" + healthchecks: + - "{{ healthcheck.selfLink }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: backendservice + +- name: create a region URL map + google.cloud.gcp_compute_region_url_map: + name: urlmap-targethttpsproxy + region: us-central1 + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: urlmap + +- name: create a SSL certificate + google.cloud.gcp_compute_ssl_certificate: + name: sslcert-targethttpsproxy + description: A certificate for testing. Do not use this certificate in production + certificate: |- + -----BEGIN CERTIFICATE----- + MIICqjCCAk+gAwIBAgIJAIuJ+0352Kq4MAoGCCqGSM49BAMCMIGwMQswCQYDVQQG + EwJVUzETMBEGA1UECAwKV2FzaGluZ3RvbjERMA8GA1UEBwwIS2lya2xhbmQxFTAT + BgNVBAoMDEdvb2dsZSwgSW5jLjEeMBwGA1UECwwVR29vZ2xlIENsb3VkIFBsYXRm + b3JtMR8wHQYDVQQDDBZ3d3cubXktc2VjdXJlLXNpdGUuY29tMSEwHwYJKoZIhvcN + AQkBFhJuZWxzb25hQGdvb2dsZS5jb20wHhcNMTcwNjI4MDQ1NjI2WhcNMjcwNjI2 + MDQ1NjI2WjCBsDELMAkGA1UEBhMCVVMxEzARBgNVBAgMCldhc2hpbmd0b24xETAP + BgNVBAcMCEtpcmtsYW5kMRUwEwYDVQQKDAxHb29nbGUsIEluYy4xHjAcBgNVBAsM + FUdvb2dsZSBDbG91ZCBQbGF0Zm9ybTEfMB0GA1UEAwwWd3d3Lm15LXNlY3VyZS1z + aXRlLmNvbTEhMB8GCSqGSIb3DQEJARYSbmVsc29uYUBnb29nbGUuY29tMFkwEwYH + KoZIzj0CAQYIKoZIzj0DAQcDQgAEHGzpcRJ4XzfBJCCPMQeXQpTXwlblimODQCuQ + 4mzkzTv0dXyB750fOGN02HtkpBOZzzvUARTR10JQoSe2/5PIwaNQME4wHQYDVR0O + BBYEFKIQC3A2SDpxcdfn0YLKineDNq/BMB8GA1UdIwQYMBaAFKIQC3A2SDpxcdfn + 0YLKineDNq/BMAwGA1UdEwQFMAMBAf8wCgYIKoZIzj0EAwIDSQAwRgIhALs4vy+O + M3jcqgA4fSW/oKw6UJxp+M6a+nGMX+UJR3YgAiEAvvl39QRVAiv84hdoCuyON0lJ + zqGNhIPGq2ULqXKK8BY= + -----END CERTIFICATE----- + private_key: |- + -----BEGIN EC PRIVATE KEY----- + MHcCAQEEIObtRo8tkUqoMjeHhsOh2ouPpXCgBcP+EDxZCB/tws15oAoGCCqGSM49 + AwEHoUQDQgAEHGzpcRJ4XzfBJCCPMQeXQpTXwlblimODQCuQ4mzkzTv0dXyB750f + OGN02HtkpBOZzzvUARTR10JQoSe2/5PIwQ== + -----END EC PRIVATE KEY----- + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: sslcert + +- name: create a region target HTTPS proxy + google.cloud.gcp_compute_region_target_https_proxy: + name: test_object + region: us-central1 + ssl_certificates: + - "{{ sslcert }}" + url_map: "{{ urlmap }}" + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" + state: present +''' + +RETURN = ''' +creationTimestamp: + description: + - Creation timestamp in RFC3339 text format. + returned: success + type: str +description: + description: + - An optional description of this resource. + returned: success + type: str +id: + description: + - The unique identifier for the resource. + returned: success + type: int +name: + description: + - Name of the resource. Provided by the client when the resource is created. The + name must be 1-63 characters long, and comply with RFC1035. Specifically, the + name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + returned: success + type: str +sslCertificates: + description: + - A list of RegionSslCertificate resources that are used to authenticate connections + between users and the load balancer. Currently, exactly one SSL certificate must + be specified. + returned: success + type: list +urlMap: + description: + - A reference to the RegionUrlMap resource that defines the mapping from URL to + the RegionBackendService. + returned: success + type: dict +region: + description: + - The region where the regional proxy resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ + +from ansible_collections.google.cloud.plugins.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest, replace_resource_dict +import json +import time + +################################################################################ +# Main +################################################################################ + + +def main(): + """Main function""" + + module = GcpModule( + argument_spec=dict( + state=dict(default='present', choices=['present', 'absent'], type='str'), + description=dict(type='str'), + name=dict(required=True, type='str'), + ssl_certificates=dict(required=True, type='list', elements='dict'), + url_map=dict(required=True, type='dict'), + region=dict(required=True, type='str'), + ) + ) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + state = module.params['state'] + kind = 'compute#targetHttpsProxy' + + fetch = fetch_resource(module, self_link(module), kind) + changed = False + + if fetch: + if state == 'present': + if is_different(module, fetch): + update(module, self_link(module), kind, fetch) + fetch = fetch_resource(module, self_link(module), kind) + changed = True + else: + delete(module, self_link(module), kind) + fetch = {} + changed = True + else: + if state == 'present': + fetch = create(module, collection(module), kind) + changed = True + else: + fetch = {} + + fetch.update({'changed': changed}) + + module.exit_json(**fetch) + + +def create(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.post(link, resource_to_request(module))) + + +def update(module, link, kind, fetch): + update_fields(module, resource_to_request(module), response_to_hash(module, fetch)) + return fetch_resource(module, self_link(module), kind) + + +def update_fields(module, request, response): + if response.get('sslCertificates') != request.get('sslCertificates'): + ssl_certificates_update(module, request, response) + if response.get('urlMap') != request.get('urlMap'): + url_map_update(module, request, response) + + +def ssl_certificates_update(module, request, response): + auth = GcpSession(module, 'compute') + auth.post( + ''.join(["https://www.googleapis.com/compute/v1/", "projects/{project}/regions/{region}/targetHttpsProxies/{name}/setSslCertificates"]).format( + **module.params + ), + {u'sslCertificates': replace_resource_dict(module.params.get('ssl_certificates', []), 'selfLink')}, + ) + + +def url_map_update(module, request, response): + auth = GcpSession(module, 'compute') + auth.post( + ''.join(["https://www.googleapis.com/compute/v1/", "projects/{project}/regions/{region}/targetHttpsProxies/{name}/setUrlMap"]).format(**module.params), + {u'urlMap': replace_resource_dict(module.params.get(u'url_map', {}), 'selfLink')}, + ) + + +def delete(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.delete(link)) + + +def resource_to_request(module): + request = { + u'kind': 'compute#targetHttpsProxy', + u'region': module.params.get('region'), + u'description': module.params.get('description'), + u'name': module.params.get('name'), + u'sslCertificates': replace_resource_dict(module.params.get('ssl_certificates', []), 'selfLink'), + u'urlMap': replace_resource_dict(module.params.get(u'url_map', {}), 'selfLink'), + } + return_vals = {} + for k, v in request.items(): + if v or v is False: + return_vals[k] = v + + return return_vals + + +def fetch_resource(module, link, kind, allow_not_found=True): + auth = GcpSession(module, 'compute') + return return_if_object(module, auth.get(link), kind, allow_not_found) + + +def self_link(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/targetHttpsProxies/{name}".format(**module.params) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/targetHttpsProxies".format(**module.params) + + +def return_if_object(module, response, kind, allow_not_found=False): + # If not found, return nothing. + if allow_not_found and response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError): + module.fail_json(msg="Invalid JSON response with error: %s" % response.text) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +def is_different(module, response): + request = resource_to_request(module) + response = response_to_hash(module, response) + + # Remove all output-only from response. + response_vals = {} + for k, v in response.items(): + if k in request: + response_vals[k] = v + + request_vals = {} + for k, v in request.items(): + if k in response: + request_vals[k] = v + + return GcpRequest(request_vals) != GcpRequest(response_vals) + + +# Remove unnecessary properties from the response. +# This is for doing comparisons with Ansible's current parameters. +def response_to_hash(module, response): + return { + u'creationTimestamp': response.get(u'creationTimestamp'), + u'description': module.params.get('description'), + u'id': response.get(u'id'), + u'name': module.params.get('name'), + u'sslCertificates': response.get(u'sslCertificates'), + u'urlMap': response.get(u'urlMap'), + } + + +def async_op_url(module, extra_data=None): + if extra_data is None: + extra_data = {} + url = "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/operations/{op_id}" + combined = extra_data.copy() + combined.update(module.params) + return url.format(**combined) + + +def wait_for_operation(module, response): + op_result = return_if_object(module, response, 'compute#operation') + if op_result is None: + return {} + status = navigate_hash(op_result, ['status']) + wait_done = wait_for_completion(status, op_result, module) + return fetch_resource(module, navigate_hash(wait_done, ['targetLink']), 'compute#targetHttpsProxy') + + +def wait_for_completion(status, op_result, module): + op_id = navigate_hash(op_result, ['name']) + op_uri = async_op_url(module, {'op_id': op_id}) + while status != 'DONE': + raise_if_errors(op_result, ['error', 'errors'], module) + time.sleep(1.0) + op_result = fetch_resource(module, op_uri, 'compute#operation', False) + status = navigate_hash(op_result, ['status']) + return op_result + + +def raise_if_errors(response, err_path, module): + errors = navigate_hash(response, err_path) + if errors is not None: + module.fail_json(msg=errors) + + +if __name__ == '__main__': + main() diff --git a/plugins/modules/gcp_compute_region_target_https_proxy_info.py b/plugins/modules/gcp_compute_region_target_https_proxy_info.py new file mode 100644 index 0000000..31068a5 --- /dev/null +++ b/plugins/modules/gcp_compute_region_target_https_proxy_info.py @@ -0,0 +1,236 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_target_https_proxy_info +description: +- Gather info for GCP RegionTargetHttpsProxy +short_description: Gather info for GCP RegionTargetHttpsProxy +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + filters: + description: + - A list of filter value pairs. Available filters are listed here U(https://cloud.google.com/sdk/gcloud/reference/topic/filters). + - Each additional filter in the list will act be added as an AND condition (filter1 + and filter2) . + type: list + region: + description: + - The region where the regional proxy resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +notes: +- for authentication, you can set service_account_file using the C(gcp_service_account_file) + env variable. +- for authentication, you can set service_account_contents using the C(GCP_SERVICE_ACCOUNT_CONTENTS) + env variable. +- For authentication, you can set service_account_email using the C(GCP_SERVICE_ACCOUNT_EMAIL) + env variable. +- For authentication, you can set auth_kind using the C(GCP_AUTH_KIND) env variable. +- For authentication, you can set scopes using the C(GCP_SCOPES) env variable. +- Environment variables values will only be used if the playbook values are not set. +- The I(service_account_email) and I(service_account_file) options are mutually exclusive. +''' + +EXAMPLES = ''' +- name: get info on a region target HTTPS proxy + gcp_compute_region_target_https_proxy_info: + region: us-central1 + filters: + - name = test_object + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" +''' + +RETURN = ''' +resources: + description: List of resources + returned: always + type: complex + contains: + creationTimestamp: + description: + - Creation timestamp in RFC3339 text format. + returned: success + type: str + description: + description: + - An optional description of this resource. + returned: success + type: str + id: + description: + - The unique identifier for the resource. + returned: success + type: int + name: + description: + - Name of the resource. Provided by the client when the resource is created. + The name must be 1-63 characters long, and comply with RFC1035. Specifically, + the name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + returned: success + type: str + sslCertificates: + description: + - A list of RegionSslCertificate resources that are used to authenticate connections + between users and the load balancer. Currently, exactly one SSL certificate + must be specified. + returned: success + type: list + urlMap: + description: + - A reference to the RegionUrlMap resource that defines the mapping from URL + to the RegionBackendService. + returned: success + type: dict + region: + description: + - The region where the regional proxy resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ +from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest +import json + +################################################################################ +# Main +################################################################################ + + +def main(): + module = GcpModule(argument_spec=dict(filters=dict(type='list', elements='str'), region=dict(required=True, type='str'))) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + return_value = {'resources': fetch_list(module, collection(module), query_options(module.params['filters']))} + module.exit_json(**return_value) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/targetHttpsProxies".format(**module.params) + + +def fetch_list(module, link, query): + auth = GcpSession(module, 'compute') + return auth.list(link, return_if_object, array_name='items', params={'filter': query}) + + +def query_options(filters): + if not filters: + return '' + + if len(filters) == 1: + return filters[0] + else: + queries = [] + for f in filters: + # For multiple queries, all queries should have () + if f[0] != '(' and f[-1] != ')': + queries.append("(%s)" % ''.join(f)) + else: + queries.append(f) + + return ' '.join(queries) + + +def return_if_object(module, response): + # If not found, return nothing. + if response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError) as inst: + module.fail_json(msg="Invalid JSON response with error: %s" % inst) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +if __name__ == "__main__": + main() diff --git a/plugins/modules/gcp_compute_region_url_map.py b/plugins/modules/gcp_compute_region_url_map.py new file mode 100644 index 0000000..6622a9f --- /dev/null +++ b/plugins/modules/gcp_compute_region_url_map.py @@ -0,0 +1,4598 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_url_map +description: +- UrlMaps are used to route requests to a backend service based on rules that you + define for the host and path of an incoming URL. +short_description: Creates a GCP RegionUrlMap +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + state: + description: + - Whether the given object should exist in GCP + choices: + - present + - absent + default: present + type: str + default_service: + description: + - A reference to RegionBackendService resource if none of the hostRules match. + - 'This field represents a link to a RegionBackendService resource in GCP. It + can be specified in two ways. First, you can place a dictionary with key ''selfLink'' + and value of your resource''s selfLink Alternatively, you can add `register: + name-of-resource` to a gcp_compute_region_backend_service task and then set + this default_service field to "{{ name-of-resource }}"' + required: true + type: dict + description: + description: + - An optional description of this resource. Provide this property when you create + the resource. + required: false + type: str + host_rules: + description: + - The list of HostRules to use against the URL. + elements: dict + required: false + type: list + suboptions: + description: + description: + - An optional description of this HostRule. Provide this property when you + create the resource. + required: false + type: str + hosts: + description: + - The list of host patterns to match. They must be valid hostnames, except + * will match any string of ([a-z0-9-.]*). In that case, * must be the first + character and must be followed in the pattern by either - or . + elements: str + required: true + type: list + path_matcher: + description: + - The name of the PathMatcher to use to match the path portion of the URL + if the hostRule matches the URL's host portion. + required: true + type: str + name: + description: + - Name of the resource. Provided by the client when the resource is created. The + name must be 1-63 characters long, and comply with RFC1035. Specifically, the + name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + required: true + type: str + path_matchers: + description: + - The list of named PathMatchers to use against the URL. + elements: dict + required: false + type: list + suboptions: + default_service: + description: + - A reference to a RegionBackendService resource. This will be used if none + of the pathRules defined by this PathMatcher is matched by the URL's path + portion. + - 'This field represents a link to a RegionBackendService resource in GCP. + It can be specified in two ways. First, you can place a dictionary with + key ''selfLink'' and value of your resource''s selfLink Alternatively, you + can add `register: name-of-resource` to a gcp_compute_region_backend_service + task and then set this default_service field to "{{ name-of-resource }}"' + required: true + type: dict + description: + description: + - An optional description of this resource. + required: false + type: str + name: + description: + - The name to which this PathMatcher is referred by the HostRule. + required: true + type: str + route_rules: + description: + - 'The list of ordered HTTP route rules. Use this list instead of pathRules + when advanced route matching and routing actions are desired. The order + of specifying routeRules matters: the first rule that matches will cause + its specified routing action to take effect. Within a given pathMatcher, + only one of pathRules or routeRules must be set. routeRules are not supported + in UrlMaps intended for External load balancers.' + elements: dict + required: false + type: list + suboptions: + priority: + description: + - For routeRules within a given pathMatcher, priority determines the order + in which load balancer will interpret routeRules. RouteRules are evaluated + in order of priority, from the lowest to highest number. The priority + of a rule decreases as its number increases (1, 2, 3, N+1). The first + rule that matches the request is applied. + - You cannot configure two or more routeRules with the same priority. + - Priority for each rule must be set to a number between 0 and 2147483647 + inclusive. + - Priority numbers can have gaps, which enable you to add or remove rules + in the future without affecting the rest of the rules. For example, + 1, 2, 3, 4, 5, 9, 12, 16 is a valid series of priority numbers to which + you could add rules numbered from 6 to 8, 10 to 11, and 13 to 15 in + the future without any impact on existing rules. + required: true + type: int + service: + description: + - The region backend service resource to which traffic is directed if + this rule is matched. If routeAction is additionally specified, advanced + routing actions like URL Rewrites, etc. take effect prior to sending + the request to the backend. However, if service is specified, routeAction + cannot contain any weightedBackendService s. Conversely, if routeAction + specifies any weightedBackendServices, service must not be specified. + Only one of urlRedirect, service or routeAction.weightedBackendService + must be set. + - 'This field represents a link to a RegionBackendService resource in + GCP. It can be specified in two ways. First, you can place a dictionary + with key ''selfLink'' and value of your resource''s selfLink Alternatively, + you can add `register: name-of-resource` to a gcp_compute_region_backend_service + task and then set this service field to "{{ name-of-resource }}"' + required: false + type: dict + header_action: + description: + - Specifies changes to request and response headers that need to take + effect for the selected backendService. The headerAction specified here + are applied before the matching pathMatchers[].headerAction and after + pathMatchers[].routeRules[].r outeAction.weightedBackendService.backendServiceWeightAction[].headerAction + . + required: false + type: dict + suboptions: + request_headers_to_add: + description: + - Headers to add to a matching request prior to forwarding the request + to the backendService. + elements: dict + required: false + type: list + suboptions: + header_name: + description: + - The name of the header. + required: true + type: str + header_value: + description: + - The value of the header to add. + required: true + type: str + replace: + description: + - If false, headerValue is appended to any values that already + exist for the header. If true, headerValue is set for the header, + discarding any values that were set for that header. + required: true + type: bool + request_headers_to_remove: + description: + - A list of header names for headers that need to be removed from + the request prior to forwarding the request to the backendService. + elements: str + required: false + type: list + response_headers_to_add: + description: + - Headers to add the response prior to sending the response back to + the client. + elements: dict + required: false + type: list + suboptions: + header_name: + description: + - The name of the header. + required: true + type: str + header_value: + description: + - The value of the header to add. + required: true + type: str + replace: + description: + - If false, headerValue is appended to any values that already + exist for the header. If true, headerValue is set for the header, + discarding any values that were set for that header. + required: true + type: bool + response_headers_to_remove: + description: + - A list of header names for headers that need to be removed from + the response prior to sending the response back to the client. + elements: str + required: false + type: list + match_rules: + description: + - The rules for determining a match. + elements: dict + required: false + type: list + suboptions: + full_path_match: + description: + - For satifying the matchRule condition, the path of the request must + exactly match the value specified in fullPathMatch after removing + any query parameters and anchor that may be part of the original + URL. FullPathMatch must be between 1 and 1024 characters. Only one + of prefixMatch, fullPathMatch or regexMatch must be specified. + required: false + type: str + header_matches: + description: + - Specifies a list of header match criteria, all of which must match + corresponding headers in the request. + elements: dict + required: false + type: list + suboptions: + exact_match: + description: + - The value should exactly match contents of exactMatch. Only + one of exactMatch, prefixMatch, suffixMatch, regexMatch, presentMatch + or rangeMatch must be set. + required: false + type: str + header_name: + description: + - The name of the HTTP header to match. For matching against the + HTTP request's authority, use a headerMatch with the header + name ":authority". For matching a request's method, use the + headerName ":method". + required: true + type: str + invert_match: + description: + - If set to false, the headerMatch is considered a match if the + match criteria above are met. If set to true, the headerMatch + is considered a match if the match criteria above are NOT met. + Defaults to false. + required: false + default: 'false' + type: bool + prefix_match: + description: + - The value of the header must start with the contents of prefixMatch. + Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + required: false + type: str + present_match: + description: + - A header with the contents of headerName must exist. The match + takes place whether or not the request's header has a value + or not. Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + required: false + type: bool + range_match: + description: + - The header value must be an integer and its value must be in + the range specified in rangeMatch. If the header does not contain + an integer, number or is empty, the match fails. For example + for a range [-5, 0] - -3 will match. - 0 will not match. - 0.25 + will not match. - -3someString will not match. Only one of exactMatch, + prefixMatch, suffixMatch, regexMatch, presentMatch or rangeMatch + must be set. + required: false + type: dict + suboptions: + range_end: + description: + - The end of the range (exclusive). + required: true + type: int + range_start: + description: + - The start of the range (inclusive). + required: true + type: int + regex_match: + description: + - 'The value of the header must match the regualar expression + specified in regexMatch. For regular expression grammar, please + see: en.cppreference.com/w/cpp/regex/ecmascript For matching + against a port specified in the HTTP request, use a headerMatch + with headerName set to PORT and a regular expression that satisfies + the RFC2616 Host header''s port specifier.' + - Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + required: false + type: str + suffix_match: + description: + - The value of the header must end with the contents of suffixMatch. + Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + required: false + type: str + ignore_case: + description: + - Specifies that prefixMatch and fullPathMatch matches are case sensitive. + - Defaults to false. + required: false + default: 'false' + type: bool + metadata_filters: + description: + - Opaque filter criteria used by Loadbalancer to restrict routing + configuration to a limited set xDS compliant clients. In their xDS + requests to Loadbalancer, xDS clients present node metadata. If + a match takes place, the relevant routing configuration is made + available to those proxies. For each metadataFilter in this list, + if its filterMatchCriteria is set to MATCH_ANY, at least one of + the filterLabels must match the corresponding label provided in + the metadata. If its filterMatchCriteria is set to MATCH_ALL, then + all of its filterLabels must match with corresponding labels in + the provided metadata. metadataFilters specified here can be overrides + those specified in ForwardingRule that refers to this UrlMap. metadataFilters + only applies to Loadbalancers that have their loadBalancingScheme + set to INTERNAL_SELF_MANAGED. + elements: dict + required: false + type: list + suboptions: + filter_labels: + description: + - The list of label value pairs that must match labels in the + provided metadata based on filterMatchCriteria This list must + not be empty and can have at the most 64 entries. + elements: dict + required: true + type: list + suboptions: + name: + description: + - Name of metadata label. The name can have a maximum length + of 1024 characters and must be at least 1 character long. + required: true + type: str + value: + description: + - The value of the label must match the specified value. value + can have a maximum length of 1024 characters. + required: true + type: str + filter_match_criteria: + description: + - 'Specifies how individual filterLabel matches within the list + of filterLabels contribute towards the overall metadataFilter + match. Supported values are: - MATCH_ANY: At least one of the + filterLabels must have a matching label in the provided metadata.' + - "- MATCH_ALL: All filterLabels must have matching labels in + the provided metadata." + - 'Some valid choices include: "MATCH_ALL", "MATCH_ANY"' + required: true + type: str + prefix_match: + description: + - For satifying the matchRule condition, the request's path must begin + with the specified prefixMatch. prefixMatch must begin with a /. + The value must be between 1 and 1024 characters. Only one of prefixMatch, + fullPathMatch or regexMatch must be specified. + required: false + type: str + query_parameter_matches: + description: + - Specifies a list of query parameter match criteria, all of which + must match corresponding query parameters in the request. + elements: dict + required: false + type: list + suboptions: + exact_match: + description: + - The queryParameterMatch matches if the value of the parameter + exactly matches the contents of exactMatch. Only one of presentMatch, + exactMatch and regexMatch must be set. + required: false + type: str + name: + description: + - The name of the query parameter to match. The query parameter + must exist in the request, in the absence of which the request + match fails. + required: true + type: str + present_match: + description: + - Specifies that the queryParameterMatch matches if the request + contains the query parameter, irrespective of whether the parameter + has a value or not. Only one of presentMatch, exactMatch and + regexMatch must be set. + required: false + type: bool + regex_match: + description: + - The queryParameterMatch matches if the value of the parameter + matches the regular expression specified by regexMatch. For + the regular expression grammar, please see en.cppreference.com/w/cpp/regex/ecmascript + Only one of presentMatch, exactMatch and regexMatch must be + set. + required: false + type: str + regex_match: + description: + - For satifying the matchRule condition, the path of the request must + satisfy the regular expression specified in regexMatch after removing + any query parameters and anchor supplied with the original URL. + For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + Only one of prefixMatch, fullPathMatch or regexMatch must be specified. + required: false + type: str + route_action: + description: + - In response to a matching matchRule, the load balancer performs advanced + routing actions like URL rewrites, header transformations, etc. prior + to forwarding the request to the selected backend. If routeAction specifies + any weightedBackendServices, service must not be set. Conversely if + service is set, routeAction cannot contain any weightedBackendServices. + Only one of routeAction or urlRedirect must be set. + required: false + type: dict + suboptions: + cors_policy: + description: + - The specification for allowing client side cross-origin requests. + Please see W3C Recommendation for Cross Origin Resource Sharing + . + required: false + type: dict + suboptions: + allow_credentials: + description: + - In response to a preflight request, setting this to true indicates + that the actual request can include user credentials. This translates + to the Access- Control-Allow-Credentials header. Defaults to + false. + required: false + default: 'false' + type: bool + allow_headers: + description: + - Specifies the content for the Access-Control-Allow-Headers header. + elements: str + required: false + type: list + allow_methods: + description: + - Specifies the content for the Access-Control-Allow-Methods header. + elements: str + required: false + type: list + allow_origin_regexes: + description: + - Specifies the regualar expression patterns that match allowed + origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + An origin is allowed if it matches either allow_origins or allow_origin_regex. + elements: str + required: false + type: list + allow_origins: + description: + - Specifies the list of origins that will be allowed to do CORS + requests. An origin is allowed if it matches either allow_origins + or allow_origin_regex. + elements: str + required: false + type: list + disabled: + description: + - If true, specifies the CORS policy is disabled. + - which indicates that the CORS policy is in effect. Defaults + to false. + required: false + default: 'false' + type: bool + expose_headers: + description: + - Specifies the content for the Access-Control-Expose-Headers + header. + elements: str + required: false + type: list + max_age: + description: + - Specifies how long the results of a preflight request can be + cached. This translates to the content for the Access-Control-Max-Age + header. + required: false + type: int + fault_injection_policy: + description: + - The specification for fault injection introduced into traffic to + test the resiliency of clients to backend service failure. As part + of fault injection, when clients send requests to a backend service, + delays can be introduced by Loadbalancer on a percentage of requests + before sending those request to the backend service. Similarly requests + from clients can be aborted by the Loadbalancer for a percentage + of requests. timeout and retry_policy will be ignored by clients + that are configured with a fault_injection_policy. + required: false + type: dict + suboptions: + abort: + description: + - The specification for how client requests are aborted as part + of fault injection. + required: false + type: dict + suboptions: + http_status: + description: + - The HTTP status code used to abort the request. The value + must be between 200 and 599 inclusive. + required: false + type: int + percentage: + description: + - The percentage of traffic (connections/operations/requests) + which will be aborted as part of fault injection. The value + must be between 0.0 and 100.0 inclusive. + required: false + type: str + delay: + description: + - The specification for how client requests are delayed as part + of fault injection, before being sent to a backend service. + required: false + type: dict + suboptions: + fixed_delay: + description: + - Specifies the value of the fixed delay interval. + required: false + type: dict + suboptions: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. + Must be from 0 to 999,999,999 inclusive. + required: false + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from + 0 to 315,576,000,000 inclusive. + required: true + type: str + percentage: + description: + - The percentage of traffic (connections/operations/requests) + on which delay will be introduced as part of fault injection. + The value must be between 0.0 and 100.0 inclusive. + required: false + type: str + request_mirror_policy: + description: + - Specifies the policy on how requests intended for the route's backends + are shadowed to a separate mirrored backend service. Loadbalancer + does not wait for responses from the shadow service. Prior to sending + traffic to the shadow service, the host / authority header is suffixed + with -shadow. + required: false + type: dict + suboptions: + backend_service: + description: + - The RegionBackendService resource being mirrored to. + - 'This field represents a link to a RegionBackendService resource + in GCP. It can be specified in two ways. First, you can place + a dictionary with key ''selfLink'' and value of your resource''s + selfLink Alternatively, you can add `register: name-of-resource` + to a gcp_compute_region_backend_service task and then set this + backend_service field to "{{ name-of-resource }}"' + required: true + type: dict + retry_policy: + description: + - Specifies the retry policy associated with this route. + required: false + type: dict + suboptions: + num_retries: + description: + - Specifies the allowed number retries. This number must be > + 0. + required: true + type: int + per_try_timeout: + description: + - Specifies a non-zero timeout per retry attempt. + required: false + type: dict + suboptions: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. Must + be from 0 to 999,999,999 inclusive. + required: false + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 + to 315,576,000,000 inclusive. + required: true + type: str + retry_conditions: + description: + - 'Specfies one or more conditions when this retry rule applies. + Valid values are: - 5xx: Loadbalancer will attempt a retry if + the backend service responds with any 5xx response code, or + if the backend service does not respond at all, example: disconnects, + reset, read timeout, connection failure, and refused streams.' + - "- gateway-error: Similar to 5xx, but only applies to response + codes 502, 503 or 504." + - "- connect-failure: Loadbalancer will retry on failures connecting + to backend services, for example due to connection timeouts." + - "- retriable-4xx: Loadbalancer will retry for retriable 4xx + response codes." + - Currently the only retriable error supported is 409. + - "- refused-stream: Loadbalancer will retry if the backend service + resets the stream with a REFUSED_STREAM error code. This reset + type indicates that it is safe to retry." + - "- cancelled: Loadbalancer will retry if the gRPC status code + in the response header is set to cancelled - deadline-exceeded: + Loadbalancer will retry if the gRPC status code in the response + header is set to deadline-exceeded - resource-exhausted: Loadbalancer + will retry if the gRPC status code in the response header is + set to resource-exhausted - unavailable: Loadbalancer will retry + if the gRPC status code in the response header is set to unavailable + ." + elements: str + required: false + type: list + timeout: + description: + - Specifies the timeout for the selected route. Timeout is computed + from the time the request is has been fully processed (i.e. end-of-stream) + up until the response has been completely processed. Timeout includes + all retries. If not specified, the default value is 15 seconds. + required: false + type: dict + suboptions: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond resolution. + Durations less than one second are represented with a 0 `seconds` + field and a positive `nanos` field. Must be from 0 to 999,999,999 + inclusive. + required: false + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 to + 315,576,000,000 inclusive. + required: true + type: str + url_rewrite: + description: + - The spec to modify the URL of the request, prior to forwarding the + request to the matched service . + required: false + type: dict + suboptions: + host_rewrite: + description: + - Prior to forwarding the request to the selected service, the + request's host header is replaced with contents of hostRewrite. + The value must be between 1 and 255 characters. + required: false + type: str + path_prefix_rewrite: + description: + - Prior to forwarding the request to the selected backend service, + the matching portion of the request's path is replaced by pathPrefixRewrite. + The value must be between 1 and 1024 characters. + required: false + type: str + weighted_backend_services: + description: + - A list of weighted backend services to send traffic to when a route + match occurs. The weights determine the fraction of traffic that + flows to their corresponding backend service. If all traffic needs + to go to a single backend service, there must be one weightedBackendService + with weight set to a non 0 number. Once a backendService is identified + and before forwarding the request to the backend service, advanced + routing actions like Url rewrites and header transformations are + applied depending on additional settings specified in this HttpRouteAction. + elements: dict + required: false + type: list + suboptions: + backend_service: + description: + - The default RegionBackendService resource. Before forwarding + the request to backendService, the loadbalancer applies any + relevant headerActions specified as part of this backendServiceWeight. + - 'This field represents a link to a RegionBackendService resource + in GCP. It can be specified in two ways. First, you can place + a dictionary with key ''selfLink'' and value of your resource''s + selfLink Alternatively, you can add `register: name-of-resource` + to a gcp_compute_region_backend_service task and then set this + backend_service field to "{{ name-of-resource }}"' + required: true + type: dict + header_action: + description: + - Specifies changes to request and response headers that need + to take effect for the selected backendService. headerAction + specified here take effect before headerAction in the enclosing + HttpRouteRule, PathMatcher and UrlMap. + required: false + type: dict + suboptions: + request_headers_to_add: + description: + - Headers to add to a matching request prior to forwarding + the request to the backendService. + elements: dict + required: false + type: list + suboptions: + header_name: + description: + - The name of the header. + required: true + type: str + header_value: + description: + - The value of the header to add. + required: true + type: str + replace: + description: + - If false, headerValue is appended to any values that + already exist for the header. If true, headerValue is + set for the header, discarding any values that were + set for that header. + required: true + type: bool + request_headers_to_remove: + description: + - A list of header names for headers that need to be removed + from the request prior to forwarding the request to the + backendService. + elements: str + required: false + type: list + response_headers_to_add: + description: + - Headers to add the response prior to sending the response + back to the client. + elements: dict + required: false + type: list + suboptions: + header_name: + description: + - The name of the header. + required: true + type: str + header_value: + description: + - The value of the header to add. + required: true + type: str + replace: + description: + - If false, headerValue is appended to any values that + already exist for the header. If true, headerValue is + set for the header, discarding any values that were + set for that header. + required: true + type: bool + response_headers_to_remove: + description: + - A list of header names for headers that need to be removed + from the response prior to sending the response back to + the client. + elements: str + required: false + type: list + weight: + description: + - Specifies the fraction of traffic sent to backendService, computed + as weight / (sum of all weightedBackendService weights in routeAction) + . The selection of a backend service is determined only for + new traffic. Once a user's request has been directed to a backendService, + subsequent requests will be sent to the same backendService + as determined by the BackendService's session affinity policy. + - The value must be between 0 and 1000 . + required: true + type: int + url_redirect: + description: + - When this rule is matched, the request is redirected to a URL specified + by urlRedirect. If urlRedirect is specified, service or routeAction + must not be set. + required: false + type: dict + suboptions: + host_redirect: + description: + - The host that will be used in the redirect response instead of the + one that was supplied in the request. The value must be between + 1 and 255 characters. + required: false + type: str + https_redirect: + description: + - If set to true, the URL scheme in the redirected request is set + to https. If set to false, the URL scheme of the redirected request + will remain the same as that of the request. This must only be set + for UrlMaps used in TargetHttpProxys. + - Setting this true for TargetHttpsProxy is not permitted. Defaults + to false. + required: false + default: 'false' + type: bool + path_redirect: + description: + - The path that will be used in the redirect response instead of the + one that was supplied in the request. Only one of pathRedirect or + prefixRedirect must be specified. The value must be between 1 and + 1024 characters. + required: false + type: str + prefix_redirect: + description: + - The prefix that replaces the prefixMatch specified in the HttpRouteRuleMatch, + retaining the remaining portion of the URL before redirecting the + request. + required: false + type: str + redirect_response_code: + description: + - 'The HTTP Status code to use for this RedirectAction. Supported + values are: - MOVED_PERMANENTLY_DEFAULT, which is the default value + and corresponds to 301. - FOUND, which corresponds to 302. - SEE_OTHER + which corresponds to 303. - TEMPORARY_REDIRECT, which corresponds + to 307. In this case, the request method will be retained. - PERMANENT_REDIRECT, + which corresponds to 308. In this case, the request method will + be retained.' + - 'Some valid choices include: "FOUND", "MOVED_PERMANENTLY_DEFAULT", + "PERMANENT_REDIRECT", "SEE_OTHER", "TEMPORARY_REDIRECT"' + required: false + type: str + strip_query: + description: + - If set to true, any accompanying query portion of the original URL + is removed prior to redirecting the request. If set to false, the + query portion of the original URL is retained. Defaults to false. + required: false + default: 'false' + type: bool + path_rules: + description: + - 'The list of path rules. Use this list instead of routeRules when routing + based on simple path matching is all that''s required. The order by which + path rules are specified does not matter. Matches are always done on the + longest-path-first basis. For example: a pathRule with a path /a/b/c/* will + match before /a/b/* irrespective of the order in which those paths appear + in this list. Within a given pathMatcher, only one of pathRules or routeRules + must be set.' + elements: dict + required: false + type: list + suboptions: + service: + description: + - The region backend service resource to which traffic is directed if + this rule is matched. If routeAction is additionally specified, advanced + routing actions like URL Rewrites, etc. take effect prior to sending + the request to the backend. However, if service is specified, routeAction + cannot contain any weightedBackendService s. Conversely, if routeAction + specifies any weightedBackendServices, service must not be specified. + Only one of urlRedirect, service or routeAction.weightedBackendService + must be set. + - 'This field represents a link to a RegionBackendService resource in + GCP. It can be specified in two ways. First, you can place a dictionary + with key ''selfLink'' and value of your resource''s selfLink Alternatively, + you can add `register: name-of-resource` to a gcp_compute_region_backend_service + task and then set this service field to "{{ name-of-resource }}"' + required: false + type: dict + paths: + description: + - 'The list of path patterns to match. Each must start with / and the + only place a * is allowed is at the end following a /. The string fed + to the path matcher does not include any text after the first ? or #, + and those chars are not allowed here.' + elements: str + required: true + type: list + route_action: + description: + - In response to a matching path, the load balancer performs advanced + routing actions like URL rewrites, header transformations, etc. prior + to forwarding the request to the selected backend. If routeAction specifies + any weightedBackendServices, service must not be set. Conversely if + service is set, routeAction cannot contain any weightedBackendServices. + Only one of routeAction or urlRedirect must be set. + required: false + type: dict + suboptions: + cors_policy: + description: + - The specification for allowing client side cross-origin requests. + Please see W3C Recommendation for Cross Origin Resource Sharing + . + required: false + type: dict + suboptions: + allow_credentials: + description: + - In response to a preflight request, setting this to true indicates + that the actual request can include user credentials. This translates + to the Access- Control-Allow-Credentials header. Defaults to + false. + required: false + default: 'false' + type: bool + allow_headers: + description: + - Specifies the content for the Access-Control-Allow-Headers header. + elements: str + required: false + type: list + allow_methods: + description: + - Specifies the content for the Access-Control-Allow-Methods header. + elements: str + required: false + type: list + allow_origin_regexes: + description: + - Specifies the regualar expression patterns that match allowed + origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + An origin is allowed if it matches either allow_origins or allow_origin_regex. + elements: str + required: false + type: list + allow_origins: + description: + - Specifies the list of origins that will be allowed to do CORS + requests. An origin is allowed if it matches either allow_origins + or allow_origin_regex. + elements: str + required: false + type: list + disabled: + description: + - If true, specifies the CORS policy is disabled. + required: true + type: bool + expose_headers: + description: + - Specifies the content for the Access-Control-Expose-Headers + header. + elements: str + required: false + type: list + max_age: + description: + - Specifies how long the results of a preflight request can be + cached. This translates to the content for the Access-Control-Max-Age + header. + required: false + type: int + fault_injection_policy: + description: + - The specification for fault injection introduced into traffic to + test the resiliency of clients to backend service failure. As part + of fault injection, when clients send requests to a backend service, + delays can be introduced by Loadbalancer on a percentage of requests + before sending those request to the backend service. Similarly requests + from clients can be aborted by the Loadbalancer for a percentage + of requests. timeout and retry_policy will be ignored by clients + that are configured with a fault_injection_policy. + required: false + type: dict + suboptions: + abort: + description: + - The specification for how client requests are aborted as part + of fault injection. + required: false + type: dict + suboptions: + http_status: + description: + - The HTTP status code used to abort the request. The value + must be between 200 and 599 inclusive. + required: true + type: int + percentage: + description: + - The percentage of traffic (connections/operations/requests) + which will be aborted as part of fault injection. The value + must be between 0.0 and 100.0 inclusive. + required: true + type: str + delay: + description: + - The specification for how client requests are delayed as part + of fault injection, before being sent to a backend service. + required: false + type: dict + suboptions: + fixed_delay: + description: + - Specifies the value of the fixed delay interval. + required: true + type: dict + suboptions: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. + Must be from 0 to 999,999,999 inclusive. + required: false + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from + 0 to 315,576,000,000 inclusive. + required: true + type: str + percentage: + description: + - The percentage of traffic (connections/operations/requests) + on which delay will be introduced as part of fault injection. + The value must be between 0.0 and 100.0 inclusive. + required: true + type: str + request_mirror_policy: + description: + - Specifies the policy on how requests intended for the route's backends + are shadowed to a separate mirrored backend service. Loadbalancer + does not wait for responses from the shadow service. Prior to sending + traffic to the shadow service, the host / authority header is suffixed + with -shadow. + required: false + type: dict + suboptions: + backend_service: + description: + - The RegionBackendService resource being mirrored to. + - 'This field represents a link to a RegionBackendService resource + in GCP. It can be specified in two ways. First, you can place + a dictionary with key ''selfLink'' and value of your resource''s + selfLink Alternatively, you can add `register: name-of-resource` + to a gcp_compute_region_backend_service task and then set this + backend_service field to "{{ name-of-resource }}"' + required: true + type: dict + retry_policy: + description: + - Specifies the retry policy associated with this route. + required: false + type: dict + suboptions: + num_retries: + description: + - Specifies the allowed number retries. This number must be > + 0. + required: false + type: int + per_try_timeout: + description: + - Specifies a non-zero timeout per retry attempt. + required: false + type: dict + suboptions: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. Must + be from 0 to 999,999,999 inclusive. + required: false + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 + to 315,576,000,000 inclusive. + required: true + type: str + retry_conditions: + description: + - 'Specifies one or more conditions when this retry rule applies. + Valid values are: - 5xx: Loadbalancer will attempt a retry if + the backend service responds with any 5xx response code, or + if the backend service does not respond at all, example: disconnects, + reset, read timeout, connection failure, and refused streams.' + - "- gateway-error: Similar to 5xx, but only applies to response + codes 502, 503 or 504." + - "- connect-failure: Loadbalancer will retry on failures connecting + to backend services, for example due to connection timeouts." + - "- retriable-4xx: Loadbalancer will retry for retriable 4xx + response codes." + - Currently the only retriable error supported is 409. + - "- refused-stream: Loadbalancer will retry if the backend service + resets the stream with a REFUSED_STREAM error code. This reset + type indicates that it is safe to retry." + - "- cancelled: Loadbalancer will retry if the gRPC status code + in the response header is set to cancelled - deadline-exceeded: + Loadbalancer will retry if the gRPC status code in the response + header is set to deadline-exceeded - resource-exhausted: Loadbalancer + will retry if the gRPC status code in the response header is + set to resource-exhausted - unavailable: Loadbalancer will retry + if the gRPC status code in the response header is set to unavailable + ." + elements: str + required: false + type: list + timeout: + description: + - Specifies the timeout for the selected route. Timeout is computed + from the time the request is has been fully processed (i.e. end-of-stream) + up until the response has been completely processed. Timeout includes + all retries. If not specified, the default value is 15 seconds. + required: false + type: dict + suboptions: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond resolution. + Durations less than one second are represented with a 0 `seconds` + field and a positive `nanos` field. Must be from 0 to 999,999,999 + inclusive. + required: false + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 to + 315,576,000,000 inclusive. + required: true + type: str + url_rewrite: + description: + - The spec to modify the URL of the request, prior to forwarding the + request to the matched service . + required: false + type: dict + suboptions: + host_rewrite: + description: + - Prior to forwarding the request to the selected service, the + request's host header is replaced with contents of hostRewrite. + The value must be between 1 and 255 characters. + required: false + type: str + path_prefix_rewrite: + description: + - Prior to forwarding the request to the selected backend service, + the matching portion of the request's path is replaced by pathPrefixRewrite. + The value must be between 1 and 1024 characters. + required: false + type: str + weighted_backend_services: + description: + - A list of weighted backend services to send traffic to when a route + match occurs. The weights determine the fraction of traffic that + flows to their corresponding backend service. If all traffic needs + to go to a single backend service, there must be one weightedBackendService + with weight set to a non 0 number. Once a backendService is identified + and before forwarding the request to the backend service, advanced + routing actions like Url rewrites and header transformations are + applied depending on additional settings specified in this HttpRouteAction. + elements: dict + required: false + type: list + suboptions: + backend_service: + description: + - The default RegionBackendService resource. Before forwarding + the request to backendService, the loadbalancer applies any + relevant headerActions specified as part of this backendServiceWeight. + - 'This field represents a link to a RegionBackendService resource + in GCP. It can be specified in two ways. First, you can place + a dictionary with key ''selfLink'' and value of your resource''s + selfLink Alternatively, you can add `register: name-of-resource` + to a gcp_compute_region_backend_service task and then set this + backend_service field to "{{ name-of-resource }}"' + required: true + type: dict + header_action: + description: + - Specifies changes to request and response headers that need + to take effect for the selected backendService. headerAction + specified here take effect before headerAction in the enclosing + HttpRouteRule, PathMatcher and UrlMap. + required: false + type: dict + suboptions: + request_headers_to_add: + description: + - Headers to add to a matching request prior to forwarding + the request to the backendService. + elements: dict + required: false + type: list + suboptions: + header_name: + description: + - The name of the header. + required: true + type: str + header_value: + description: + - The value of the header to add. + required: true + type: str + replace: + description: + - If false, headerValue is appended to any values that + already exist for the header. If true, headerValue is + set for the header, discarding any values that were + set for that header. + required: true + type: bool + request_headers_to_remove: + description: + - A list of header names for headers that need to be removed + from the request prior to forwarding the request to the + backendService. + elements: str + required: false + type: list + response_headers_to_add: + description: + - Headers to add the response prior to sending the response + back to the client. + elements: dict + required: false + type: list + suboptions: + header_name: + description: + - The name of the header. + required: true + type: str + header_value: + description: + - The value of the header to add. + required: true + type: str + replace: + description: + - If false, headerValue is appended to any values that + already exist for the header. If true, headerValue is + set for the header, discarding any values that were + set for that header. + required: true + type: bool + response_headers_to_remove: + description: + - A list of header names for headers that need to be removed + from the response prior to sending the response back to + the client. + elements: str + required: false + type: list + weight: + description: + - Specifies the fraction of traffic sent to backendService, computed + as weight / (sum of all weightedBackendService weights in routeAction) + . The selection of a backend service is determined only for + new traffic. Once a user's request has been directed to a backendService, + subsequent requests will be sent to the same backendService + as determined by the BackendService's session affinity policy. + - The value must be between 0 and 1000 . + required: true + type: int + url_redirect: + description: + - When a path pattern is matched, the request is redirected to a URL specified + by urlRedirect. If urlRedirect is specified, service or routeAction + must not be set. + required: false + type: dict + suboptions: + host_redirect: + description: + - The host that will be used in the redirect response instead of the + one that was supplied in the request. The value must be between + 1 and 255 characters. + required: false + type: str + https_redirect: + description: + - If set to true, the URL scheme in the redirected request is set + to https. If set to false, the URL scheme of the redirected request + will remain the same as that of the request. This must only be set + for UrlMaps used in TargetHttpProxys. + - Setting this true for TargetHttpsProxy is not permitted. Defaults + to false. + required: false + default: 'false' + type: bool + path_redirect: + description: + - The path that will be used in the redirect response instead of the + one that was supplied in the request. Only one of pathRedirect or + prefixRedirect must be specified. The value must be between 1 and + 1024 characters. + required: false + type: str + prefix_redirect: + description: + - The prefix that replaces the prefixMatch specified in the HttpRouteRuleMatch, + retaining the remaining portion of the URL before redirecting the + request. + required: false + type: str + redirect_response_code: + description: + - 'The HTTP Status code to use for this RedirectAction. Supported + values are: - MOVED_PERMANENTLY_DEFAULT, which is the default value + and corresponds to 301.' + - "- FOUND, which corresponds to 302." + - "- SEE_OTHER which corresponds to 303." + - "- TEMPORARY_REDIRECT, which corresponds to 307. In this case, the + request method will be retained." + - "- PERMANENT_REDIRECT, which corresponds to 308. In this case, the + request method will be retained." + - 'Some valid choices include: "FOUND", "MOVED_PERMANENTLY_DEFAULT", + "PERMANENT_REDIRECT", "SEE_OTHER", "TEMPORARY_REDIRECT"' + required: false + type: str + strip_query: + description: + - If set to true, any accompanying query portion of the original URL + is removed prior to redirecting the request. If set to false, the + query portion of the original URL is retained. + required: true + type: bool + tests: + description: + - The list of expected URL mappings. Requests to update this UrlMap will succeed + only if all of the test cases pass. + elements: dict + required: false + type: list + suboptions: + description: + description: + - Description of this test case. + required: false + type: str + host: + description: + - Host portion of the URL. + required: true + type: str + path: + description: + - Path portion of the URL. + required: true + type: str + service: + description: + - A reference to expected RegionBackendService resource the given URL should + be mapped to. + - 'This field represents a link to a RegionBackendService resource in GCP. + It can be specified in two ways. First, you can place a dictionary with + key ''selfLink'' and value of your resource''s selfLink Alternatively, you + can add `register: name-of-resource` to a gcp_compute_region_backend_service + task and then set this service field to "{{ name-of-resource }}"' + required: true + type: dict + region: + description: + - A reference to the region where the url map resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +''' + +EXAMPLES = ''' +- name: create a health check + google.cloud.gcp_compute_health_check: + name: "{{ resource_name }}" + type: HTTP + http_health_check: + port: 80 + check_interval_sec: 1 + timeout_sec: 1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: healthcheck + +- name: create a region backend service + google.cloud.gcp_compute_region_backend_service: + name: "{{ resource_name }}" + region: us-central1 + health_checks: + - "{{ healthcheck.selfLink }}" + protocol: HTTP + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: backendservice + +- name: create a region URL map + google.cloud.gcp_compute_region_url_map: + name: test_object + region: us-central1 + default_service: "{{ backendservice }}" + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" + state: present +''' + +RETURN = ''' +creationTimestamp: + description: + - Creation timestamp in RFC3339 text format. + returned: success + type: str +defaultService: + description: + - A reference to RegionBackendService resource if none of the hostRules match. + returned: success + type: dict +description: + description: + - An optional description of this resource. Provide this property when you create + the resource. + returned: success + type: str +hostRules: + description: + - The list of HostRules to use against the URL. + returned: success + type: complex + contains: + description: + description: + - An optional description of this HostRule. Provide this property when you create + the resource. + returned: success + type: str + hosts: + description: + - The list of host patterns to match. They must be valid hostnames, except * + will match any string of ([a-z0-9-.]*). In that case, * must be the first + character and must be followed in the pattern by either - or . + returned: success + type: list + pathMatcher: + description: + - The name of the PathMatcher to use to match the path portion of the URL if + the hostRule matches the URL's host portion. + returned: success + type: str +id: + description: + - The unique identifier for the resource. + returned: success + type: int +fingerprint: + description: + - Fingerprint of this resource. This field is used internally during updates of + this resource. + returned: success + type: str +name: + description: + - Name of the resource. Provided by the client when the resource is created. The + name must be 1-63 characters long, and comply with RFC1035. Specifically, the + name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + returned: success + type: str +pathMatchers: + description: + - The list of named PathMatchers to use against the URL. + returned: success + type: complex + contains: + defaultService: + description: + - A reference to a RegionBackendService resource. This will be used if none + of the pathRules defined by this PathMatcher is matched by the URL's path + portion. + returned: success + type: dict + description: + description: + - An optional description of this resource. + returned: success + type: str + name: + description: + - The name to which this PathMatcher is referred by the HostRule. + returned: success + type: str + routeRules: + description: + - 'The list of ordered HTTP route rules. Use this list instead of pathRules + when advanced route matching and routing actions are desired. The order of + specifying routeRules matters: the first rule that matches will cause its + specified routing action to take effect. Within a given pathMatcher, only + one of pathRules or routeRules must be set. routeRules are not supported in + UrlMaps intended for External load balancers.' + returned: success + type: complex + contains: + priority: + description: + - For routeRules within a given pathMatcher, priority determines the order + in which load balancer will interpret routeRules. RouteRules are evaluated + in order of priority, from the lowest to highest number. The priority + of a rule decreases as its number increases (1, 2, 3, N+1). The first + rule that matches the request is applied. + - You cannot configure two or more routeRules with the same priority. + - Priority for each rule must be set to a number between 0 and 2147483647 + inclusive. + - Priority numbers can have gaps, which enable you to add or remove rules + in the future without affecting the rest of the rules. For example, 1, + 2, 3, 4, 5, 9, 12, 16 is a valid series of priority numbers to which you + could add rules numbered from 6 to 8, 10 to 11, and 13 to 15 in the future + without any impact on existing rules. + returned: success + type: int + service: + description: + - The region backend service resource to which traffic is directed if this + rule is matched. If routeAction is additionally specified, advanced routing + actions like URL Rewrites, etc. take effect prior to sending the request + to the backend. However, if service is specified, routeAction cannot contain + any weightedBackendService s. Conversely, if routeAction specifies any + weightedBackendServices, service must not be specified. Only one of urlRedirect, + service or routeAction.weightedBackendService must be set. + returned: success + type: dict + headerAction: + description: + - Specifies changes to request and response headers that need to take effect + for the selected backendService. The headerAction specified here are applied + before the matching pathMatchers[].headerAction and after pathMatchers[].routeRules[].r + outeAction.weightedBackendService.backendServiceWeightAction[].headerAction + . + returned: success + type: complex + contains: + requestHeadersToAdd: + description: + - Headers to add to a matching request prior to forwarding the request + to the backendService. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that already exist + for the header. If true, headerValue is set for the header, discarding + any values that were set for that header. + returned: success + type: bool + requestHeadersToRemove: + description: + - A list of header names for headers that need to be removed from the + request prior to forwarding the request to the backendService. + returned: success + type: list + responseHeadersToAdd: + description: + - Headers to add the response prior to sending the response back to + the client. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that already exist + for the header. If true, headerValue is set for the header, discarding + any values that were set for that header. + returned: success + type: bool + responseHeadersToRemove: + description: + - A list of header names for headers that need to be removed from the + response prior to sending the response back to the client. + returned: success + type: list + matchRules: + description: + - The rules for determining a match. + returned: success + type: complex + contains: + fullPathMatch: + description: + - For satifying the matchRule condition, the path of the request must + exactly match the value specified in fullPathMatch after removing + any query parameters and anchor that may be part of the original URL. + FullPathMatch must be between 1 and 1024 characters. Only one of prefixMatch, + fullPathMatch or regexMatch must be specified. + returned: success + type: str + headerMatches: + description: + - Specifies a list of header match criteria, all of which must match + corresponding headers in the request. + returned: success + type: complex + contains: + exactMatch: + description: + - The value should exactly match contents of exactMatch. Only one + of exactMatch, prefixMatch, suffixMatch, regexMatch, presentMatch + or rangeMatch must be set. + returned: success + type: str + headerName: + description: + - The name of the HTTP header to match. For matching against the + HTTP request's authority, use a headerMatch with the header name + ":authority". For matching a request's method, use the headerName + ":method". + returned: success + type: str + invertMatch: + description: + - If set to false, the headerMatch is considered a match if the + match criteria above are met. If set to true, the headerMatch + is considered a match if the match criteria above are NOT met. + Defaults to false. + returned: success + type: bool + prefixMatch: + description: + - The value of the header must start with the contents of prefixMatch. + Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + returned: success + type: str + presentMatch: + description: + - A header with the contents of headerName must exist. The match + takes place whether or not the request's header has a value or + not. Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + returned: success + type: bool + rangeMatch: + description: + - The header value must be an integer and its value must be in the + range specified in rangeMatch. If the header does not contain + an integer, number or is empty, the match fails. For example for + a range [-5, 0] - -3 will match. - 0 will not match. - 0.25 will + not match. - -3someString will not match. Only one of exactMatch, + prefixMatch, suffixMatch, regexMatch, presentMatch or rangeMatch + must be set. + returned: success + type: complex + contains: + rangeEnd: + description: + - The end of the range (exclusive). + returned: success + type: int + rangeStart: + description: + - The start of the range (inclusive). + returned: success + type: int + regexMatch: + description: + - 'The value of the header must match the regualar expression specified + in regexMatch. For regular expression grammar, please see: en.cppreference.com/w/cpp/regex/ecmascript + For matching against a port specified in the HTTP request, use + a headerMatch with headerName set to PORT and a regular expression + that satisfies the RFC2616 Host header''s port specifier.' + - Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + returned: success + type: str + suffixMatch: + description: + - The value of the header must end with the contents of suffixMatch. + Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + returned: success + type: str + ignoreCase: + description: + - Specifies that prefixMatch and fullPathMatch matches are case sensitive. + - Defaults to false. + returned: success + type: bool + metadataFilters: + description: + - Opaque filter criteria used by Loadbalancer to restrict routing configuration + to a limited set xDS compliant clients. In their xDS requests to Loadbalancer, + xDS clients present node metadata. If a match takes place, the relevant + routing configuration is made available to those proxies. For each + metadataFilter in this list, if its filterMatchCriteria is set to + MATCH_ANY, at least one of the filterLabels must match the corresponding + label provided in the metadata. If its filterMatchCriteria is set + to MATCH_ALL, then all of its filterLabels must match with corresponding + labels in the provided metadata. metadataFilters specified here can + be overrides those specified in ForwardingRule that refers to this + UrlMap. metadataFilters only applies to Loadbalancers that have their + loadBalancingScheme set to INTERNAL_SELF_MANAGED. + returned: success + type: complex + contains: + filterLabels: + description: + - The list of label value pairs that must match labels in the provided + metadata based on filterMatchCriteria This list must not be empty + and can have at the most 64 entries. + returned: success + type: complex + contains: + name: + description: + - Name of metadata label. The name can have a maximum length + of 1024 characters and must be at least 1 character long. + returned: success + type: str + value: + description: + - The value of the label must match the specified value. value + can have a maximum length of 1024 characters. + returned: success + type: str + filterMatchCriteria: + description: + - 'Specifies how individual filterLabel matches within the list + of filterLabels contribute towards the overall metadataFilter + match. Supported values are: - MATCH_ANY: At least one of the + filterLabels must have a matching label in the provided metadata.' + - "- MATCH_ALL: All filterLabels must have matching labels in the + provided metadata." + returned: success + type: str + prefixMatch: + description: + - For satifying the matchRule condition, the request's path must begin + with the specified prefixMatch. prefixMatch must begin with a /. The + value must be between 1 and 1024 characters. Only one of prefixMatch, + fullPathMatch or regexMatch must be specified. + returned: success + type: str + queryParameterMatches: + description: + - Specifies a list of query parameter match criteria, all of which must + match corresponding query parameters in the request. + returned: success + type: complex + contains: + exactMatch: + description: + - The queryParameterMatch matches if the value of the parameter + exactly matches the contents of exactMatch. Only one of presentMatch, + exactMatch and regexMatch must be set. + returned: success + type: str + name: + description: + - The name of the query parameter to match. The query parameter + must exist in the request, in the absence of which the request + match fails. + returned: success + type: str + presentMatch: + description: + - Specifies that the queryParameterMatch matches if the request + contains the query parameter, irrespective of whether the parameter + has a value or not. Only one of presentMatch, exactMatch and regexMatch + must be set. + returned: success + type: bool + regexMatch: + description: + - The queryParameterMatch matches if the value of the parameter + matches the regular expression specified by regexMatch. For the + regular expression grammar, please see en.cppreference.com/w/cpp/regex/ecmascript + Only one of presentMatch, exactMatch and regexMatch must be set. + returned: success + type: str + regexMatch: + description: + - For satifying the matchRule condition, the path of the request must + satisfy the regular expression specified in regexMatch after removing + any query parameters and anchor supplied with the original URL. For + regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + Only one of prefixMatch, fullPathMatch or regexMatch must be specified. + returned: success + type: str + routeAction: + description: + - In response to a matching matchRule, the load balancer performs advanced + routing actions like URL rewrites, header transformations, etc. prior + to forwarding the request to the selected backend. If routeAction specifies + any weightedBackendServices, service must not be set. Conversely if service + is set, routeAction cannot contain any weightedBackendServices. Only one + of routeAction or urlRedirect must be set. + returned: success + type: complex + contains: + corsPolicy: + description: + - The specification for allowing client side cross-origin requests. + Please see W3C Recommendation for Cross Origin Resource Sharing . + returned: success + type: complex + contains: + allowCredentials: + description: + - In response to a preflight request, setting this to true indicates + that the actual request can include user credentials. This translates + to the Access- Control-Allow-Credentials header. Defaults to false. + returned: success + type: bool + allowHeaders: + description: + - Specifies the content for the Access-Control-Allow-Headers header. + returned: success + type: list + allowMethods: + description: + - Specifies the content for the Access-Control-Allow-Methods header. + returned: success + type: list + allowOriginRegexes: + description: + - Specifies the regualar expression patterns that match allowed + origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + An origin is allowed if it matches either allow_origins or allow_origin_regex. + returned: success + type: list + allowOrigins: + description: + - Specifies the list of origins that will be allowed to do CORS + requests. An origin is allowed if it matches either allow_origins + or allow_origin_regex. + returned: success + type: list + disabled: + description: + - If true, specifies the CORS policy is disabled. + - which indicates that the CORS policy is in effect. Defaults to + false. + returned: success + type: bool + exposeHeaders: + description: + - Specifies the content for the Access-Control-Expose-Headers header. + returned: success + type: list + maxAge: + description: + - Specifies how long the results of a preflight request can be cached. + This translates to the content for the Access-Control-Max-Age + header. + returned: success + type: int + faultInjectionPolicy: + description: + - The specification for fault injection introduced into traffic to test + the resiliency of clients to backend service failure. As part of fault + injection, when clients send requests to a backend service, delays + can be introduced by Loadbalancer on a percentage of requests before + sending those request to the backend service. Similarly requests from + clients can be aborted by the Loadbalancer for a percentage of requests. + timeout and retry_policy will be ignored by clients that are configured + with a fault_injection_policy. + returned: success + type: complex + contains: + abort: + description: + - The specification for how client requests are aborted as part + of fault injection. + returned: success + type: complex + contains: + httpStatus: + description: + - The HTTP status code used to abort the request. The value + must be between 200 and 599 inclusive. + returned: success + type: int + percentage: + description: + - The percentage of traffic (connections/operations/requests) + which will be aborted as part of fault injection. The value + must be between 0.0 and 100.0 inclusive. + returned: success + type: str + delay: + description: + - The specification for how client requests are delayed as part + of fault injection, before being sent to a backend service. + returned: success + type: complex + contains: + fixedDelay: + description: + - Specifies the value of the fixed delay interval. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. + Must be from 0 to 999,999,999 inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from + 0 to 315,576,000,000 inclusive. + returned: success + type: str + percentage: + description: + - The percentage of traffic (connections/operations/requests) + on which delay will be introduced as part of fault injection. + The value must be between 0.0 and 100.0 inclusive. + returned: success + type: str + requestMirrorPolicy: + description: + - Specifies the policy on how requests intended for the route's backends + are shadowed to a separate mirrored backend service. Loadbalancer + does not wait for responses from the shadow service. Prior to sending + traffic to the shadow service, the host / authority header is suffixed + with -shadow. + returned: success + type: complex + contains: + backendService: + description: + - The RegionBackendService resource being mirrored to. + returned: success + type: dict + retryPolicy: + description: + - Specifies the retry policy associated with this route. + returned: success + type: complex + contains: + numRetries: + description: + - Specifies the allowed number retries. This number must be > 0. + returned: success + type: int + perTryTimeout: + description: + - Specifies a non-zero timeout per retry attempt. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond resolution. + Durations less than one second are represented with a 0 `seconds` + field and a positive `nanos` field. Must be from 0 to 999,999,999 + inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 to + 315,576,000,000 inclusive. + returned: success + type: str + retryConditions: + description: + - 'Specfies one or more conditions when this retry rule applies. + Valid values are: - 5xx: Loadbalancer will attempt a retry if + the backend service responds with any 5xx response code, or if + the backend service does not respond at all, example: disconnects, + reset, read timeout, connection failure, and refused streams.' + - "- gateway-error: Similar to 5xx, but only applies to response + codes 502, 503 or 504." + - "- connect-failure: Loadbalancer will retry on failures connecting + to backend services, for example due to connection timeouts." + - "- retriable-4xx: Loadbalancer will retry for retriable 4xx response + codes." + - Currently the only retriable error supported is 409. + - "- refused-stream: Loadbalancer will retry if the backend service + resets the stream with a REFUSED_STREAM error code. This reset + type indicates that it is safe to retry." + - "- cancelled: Loadbalancer will retry if the gRPC status code + in the response header is set to cancelled - deadline-exceeded: + Loadbalancer will retry if the gRPC status code in the response + header is set to deadline-exceeded - resource-exhausted: Loadbalancer + will retry if the gRPC status code in the response header is set + to resource-exhausted - unavailable: Loadbalancer will retry if + the gRPC status code in the response header is set to unavailable + ." + returned: success + type: list + timeout: + description: + - Specifies the timeout for the selected route. Timeout is computed + from the time the request is has been fully processed (i.e. end-of-stream) + up until the response has been completely processed. Timeout includes + all retries. If not specified, the default value is 15 seconds. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond resolution. + Durations less than one second are represented with a 0 `seconds` + field and a positive `nanos` field. Must be from 0 to 999,999,999 + inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 to 315,576,000,000 + inclusive. + returned: success + type: str + urlRewrite: + description: + - The spec to modify the URL of the request, prior to forwarding the + request to the matched service . + returned: success + type: complex + contains: + hostRewrite: + description: + - Prior to forwarding the request to the selected service, the request's + host header is replaced with contents of hostRewrite. The value + must be between 1 and 255 characters. + returned: success + type: str + pathPrefixRewrite: + description: + - Prior to forwarding the request to the selected backend service, + the matching portion of the request's path is replaced by pathPrefixRewrite. + The value must be between 1 and 1024 characters. + returned: success + type: str + weightedBackendServices: + description: + - A list of weighted backend services to send traffic to when a route + match occurs. The weights determine the fraction of traffic that flows + to their corresponding backend service. If all traffic needs to go + to a single backend service, there must be one weightedBackendService + with weight set to a non 0 number. Once a backendService is identified + and before forwarding the request to the backend service, advanced + routing actions like Url rewrites and header transformations are applied + depending on additional settings specified in this HttpRouteAction. + returned: success + type: complex + contains: + backendService: + description: + - The default RegionBackendService resource. Before forwarding the + request to backendService, the loadbalancer applies any relevant + headerActions specified as part of this backendServiceWeight. + returned: success + type: dict + headerAction: + description: + - Specifies changes to request and response headers that need to + take effect for the selected backendService. headerAction specified + here take effect before headerAction in the enclosing HttpRouteRule, + PathMatcher and UrlMap. + returned: success + type: complex + contains: + requestHeadersToAdd: + description: + - Headers to add to a matching request prior to forwarding the + request to the backendService. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that already + exist for the header. If true, headerValue is set for + the header, discarding any values that were set for that + header. + returned: success + type: bool + requestHeadersToRemove: + description: + - A list of header names for headers that need to be removed + from the request prior to forwarding the request to the backendService. + returned: success + type: list + responseHeadersToAdd: + description: + - Headers to add the response prior to sending the response + back to the client. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that already + exist for the header. If true, headerValue is set for + the header, discarding any values that were set for that + header. + returned: success + type: bool + responseHeadersToRemove: + description: + - A list of header names for headers that need to be removed + from the response prior to sending the response back to the + client. + returned: success + type: list + weight: + description: + - Specifies the fraction of traffic sent to backendService, computed + as weight / (sum of all weightedBackendService weights in routeAction) + . The selection of a backend service is determined only for new + traffic. Once a user's request has been directed to a backendService, + subsequent requests will be sent to the same backendService as + determined by the BackendService's session affinity policy. + - The value must be between 0 and 1000 . + returned: success + type: int + urlRedirect: + description: + - When this rule is matched, the request is redirected to a URL specified + by urlRedirect. If urlRedirect is specified, service or routeAction must + not be set. + returned: success + type: complex + contains: + hostRedirect: + description: + - The host that will be used in the redirect response instead of the + one that was supplied in the request. The value must be between 1 + and 255 characters. + returned: success + type: str + httpsRedirect: + description: + - If set to true, the URL scheme in the redirected request is set to + https. If set to false, the URL scheme of the redirected request will + remain the same as that of the request. This must only be set for + UrlMaps used in TargetHttpProxys. + - Setting this true for TargetHttpsProxy is not permitted. Defaults + to false. + returned: success + type: bool + pathRedirect: + description: + - The path that will be used in the redirect response instead of the + one that was supplied in the request. Only one of pathRedirect or + prefixRedirect must be specified. The value must be between 1 and + 1024 characters. + returned: success + type: str + prefixRedirect: + description: + - The prefix that replaces the prefixMatch specified in the HttpRouteRuleMatch, + retaining the remaining portion of the URL before redirecting the + request. + returned: success + type: str + redirectResponseCode: + description: + - 'The HTTP Status code to use for this RedirectAction. Supported values + are: - MOVED_PERMANENTLY_DEFAULT, which is the default value and corresponds + to 301. - FOUND, which corresponds to 302. - SEE_OTHER which corresponds + to 303. - TEMPORARY_REDIRECT, which corresponds to 307. In this case, + the request method will be retained. - PERMANENT_REDIRECT, which corresponds + to 308. In this case, the request method will be retained.' + returned: success + type: str + stripQuery: + description: + - If set to true, any accompanying query portion of the original URL + is removed prior to redirecting the request. If set to false, the + query portion of the original URL is retained. Defaults to false. + returned: success + type: bool + pathRules: + description: + - 'The list of path rules. Use this list instead of routeRules when routing + based on simple path matching is all that''s required. The order by which + path rules are specified does not matter. Matches are always done on the longest-path-first + basis. For example: a pathRule with a path /a/b/c/* will match before /a/b/* + irrespective of the order in which those paths appear in this list. Within + a given pathMatcher, only one of pathRules or routeRules must be set.' + returned: success + type: complex + contains: + service: + description: + - The region backend service resource to which traffic is directed if this + rule is matched. If routeAction is additionally specified, advanced routing + actions like URL Rewrites, etc. take effect prior to sending the request + to the backend. However, if service is specified, routeAction cannot contain + any weightedBackendService s. Conversely, if routeAction specifies any + weightedBackendServices, service must not be specified. Only one of urlRedirect, + service or routeAction.weightedBackendService must be set. + returned: success + type: dict + paths: + description: + - 'The list of path patterns to match. Each must start with / and the only + place a * is allowed is at the end following a /. The string fed to the + path matcher does not include any text after the first ? or #, and those + chars are not allowed here.' + returned: success + type: list + routeAction: + description: + - In response to a matching path, the load balancer performs advanced routing + actions like URL rewrites, header transformations, etc. prior to forwarding + the request to the selected backend. If routeAction specifies any weightedBackendServices, + service must not be set. Conversely if service is set, routeAction cannot + contain any weightedBackendServices. Only one of routeAction or urlRedirect + must be set. + returned: success + type: complex + contains: + corsPolicy: + description: + - The specification for allowing client side cross-origin requests. + Please see W3C Recommendation for Cross Origin Resource Sharing . + returned: success + type: complex + contains: + allowCredentials: + description: + - In response to a preflight request, setting this to true indicates + that the actual request can include user credentials. This translates + to the Access- Control-Allow-Credentials header. Defaults to false. + returned: success + type: bool + allowHeaders: + description: + - Specifies the content for the Access-Control-Allow-Headers header. + returned: success + type: list + allowMethods: + description: + - Specifies the content for the Access-Control-Allow-Methods header. + returned: success + type: list + allowOriginRegexes: + description: + - Specifies the regualar expression patterns that match allowed + origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + An origin is allowed if it matches either allow_origins or allow_origin_regex. + returned: success + type: list + allowOrigins: + description: + - Specifies the list of origins that will be allowed to do CORS + requests. An origin is allowed if it matches either allow_origins + or allow_origin_regex. + returned: success + type: list + disabled: + description: + - If true, specifies the CORS policy is disabled. + returned: success + type: bool + exposeHeaders: + description: + - Specifies the content for the Access-Control-Expose-Headers header. + returned: success + type: list + maxAge: + description: + - Specifies how long the results of a preflight request can be cached. + This translates to the content for the Access-Control-Max-Age + header. + returned: success + type: int + faultInjectionPolicy: + description: + - The specification for fault injection introduced into traffic to test + the resiliency of clients to backend service failure. As part of fault + injection, when clients send requests to a backend service, delays + can be introduced by Loadbalancer on a percentage of requests before + sending those request to the backend service. Similarly requests from + clients can be aborted by the Loadbalancer for a percentage of requests. + timeout and retry_policy will be ignored by clients that are configured + with a fault_injection_policy. + returned: success + type: complex + contains: + abort: + description: + - The specification for how client requests are aborted as part + of fault injection. + returned: success + type: complex + contains: + httpStatus: + description: + - The HTTP status code used to abort the request. The value + must be between 200 and 599 inclusive. + returned: success + type: int + percentage: + description: + - The percentage of traffic (connections/operations/requests) + which will be aborted as part of fault injection. The value + must be between 0.0 and 100.0 inclusive. + returned: success + type: str + delay: + description: + - The specification for how client requests are delayed as part + of fault injection, before being sent to a backend service. + returned: success + type: complex + contains: + fixedDelay: + description: + - Specifies the value of the fixed delay interval. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. + Must be from 0 to 999,999,999 inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from + 0 to 315,576,000,000 inclusive. + returned: success + type: str + percentage: + description: + - The percentage of traffic (connections/operations/requests) + on which delay will be introduced as part of fault injection. + The value must be between 0.0 and 100.0 inclusive. + returned: success + type: str + requestMirrorPolicy: + description: + - Specifies the policy on how requests intended for the route's backends + are shadowed to a separate mirrored backend service. Loadbalancer + does not wait for responses from the shadow service. Prior to sending + traffic to the shadow service, the host / authority header is suffixed + with -shadow. + returned: success + type: complex + contains: + backendService: + description: + - The RegionBackendService resource being mirrored to. + returned: success + type: dict + retryPolicy: + description: + - Specifies the retry policy associated with this route. + returned: success + type: complex + contains: + numRetries: + description: + - Specifies the allowed number retries. This number must be > 0. + returned: success + type: int + perTryTimeout: + description: + - Specifies a non-zero timeout per retry attempt. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond resolution. + Durations less than one second are represented with a 0 `seconds` + field and a positive `nanos` field. Must be from 0 to 999,999,999 + inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 to + 315,576,000,000 inclusive. + returned: success + type: str + retryConditions: + description: + - 'Specifies one or more conditions when this retry rule applies. + Valid values are: - 5xx: Loadbalancer will attempt a retry if + the backend service responds with any 5xx response code, or if + the backend service does not respond at all, example: disconnects, + reset, read timeout, connection failure, and refused streams.' + - "- gateway-error: Similar to 5xx, but only applies to response + codes 502, 503 or 504." + - "- connect-failure: Loadbalancer will retry on failures connecting + to backend services, for example due to connection timeouts." + - "- retriable-4xx: Loadbalancer will retry for retriable 4xx response + codes." + - Currently the only retriable error supported is 409. + - "- refused-stream: Loadbalancer will retry if the backend service + resets the stream with a REFUSED_STREAM error code. This reset + type indicates that it is safe to retry." + - "- cancelled: Loadbalancer will retry if the gRPC status code + in the response header is set to cancelled - deadline-exceeded: + Loadbalancer will retry if the gRPC status code in the response + header is set to deadline-exceeded - resource-exhausted: Loadbalancer + will retry if the gRPC status code in the response header is set + to resource-exhausted - unavailable: Loadbalancer will retry if + the gRPC status code in the response header is set to unavailable + ." + returned: success + type: list + timeout: + description: + - Specifies the timeout for the selected route. Timeout is computed + from the time the request is has been fully processed (i.e. end-of-stream) + up until the response has been completely processed. Timeout includes + all retries. If not specified, the default value is 15 seconds. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond resolution. + Durations less than one second are represented with a 0 `seconds` + field and a positive `nanos` field. Must be from 0 to 999,999,999 + inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 to 315,576,000,000 + inclusive. + returned: success + type: str + urlRewrite: + description: + - The spec to modify the URL of the request, prior to forwarding the + request to the matched service . + returned: success + type: complex + contains: + hostRewrite: + description: + - Prior to forwarding the request to the selected service, the request's + host header is replaced with contents of hostRewrite. The value + must be between 1 and 255 characters. + returned: success + type: str + pathPrefixRewrite: + description: + - Prior to forwarding the request to the selected backend service, + the matching portion of the request's path is replaced by pathPrefixRewrite. + The value must be between 1 and 1024 characters. + returned: success + type: str + weightedBackendServices: + description: + - A list of weighted backend services to send traffic to when a route + match occurs. The weights determine the fraction of traffic that flows + to their corresponding backend service. If all traffic needs to go + to a single backend service, there must be one weightedBackendService + with weight set to a non 0 number. Once a backendService is identified + and before forwarding the request to the backend service, advanced + routing actions like Url rewrites and header transformations are applied + depending on additional settings specified in this HttpRouteAction. + returned: success + type: complex + contains: + backendService: + description: + - The default RegionBackendService resource. Before forwarding the + request to backendService, the loadbalancer applies any relevant + headerActions specified as part of this backendServiceWeight. + returned: success + type: dict + headerAction: + description: + - Specifies changes to request and response headers that need to + take effect for the selected backendService. headerAction specified + here take effect before headerAction in the enclosing HttpRouteRule, + PathMatcher and UrlMap. + returned: success + type: complex + contains: + requestHeadersToAdd: + description: + - Headers to add to a matching request prior to forwarding the + request to the backendService. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that already + exist for the header. If true, headerValue is set for + the header, discarding any values that were set for that + header. + returned: success + type: bool + requestHeadersToRemove: + description: + - A list of header names for headers that need to be removed + from the request prior to forwarding the request to the backendService. + returned: success + type: list + responseHeadersToAdd: + description: + - Headers to add the response prior to sending the response + back to the client. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that already + exist for the header. If true, headerValue is set for + the header, discarding any values that were set for that + header. + returned: success + type: bool + responseHeadersToRemove: + description: + - A list of header names for headers that need to be removed + from the response prior to sending the response back to the + client. + returned: success + type: list + weight: + description: + - Specifies the fraction of traffic sent to backendService, computed + as weight / (sum of all weightedBackendService weights in routeAction) + . The selection of a backend service is determined only for new + traffic. Once a user's request has been directed to a backendService, + subsequent requests will be sent to the same backendService as + determined by the BackendService's session affinity policy. + - The value must be between 0 and 1000 . + returned: success + type: int + urlRedirect: + description: + - When a path pattern is matched, the request is redirected to a URL specified + by urlRedirect. If urlRedirect is specified, service or routeAction must + not be set. + returned: success + type: complex + contains: + hostRedirect: + description: + - The host that will be used in the redirect response instead of the + one that was supplied in the request. The value must be between 1 + and 255 characters. + returned: success + type: str + httpsRedirect: + description: + - If set to true, the URL scheme in the redirected request is set to + https. If set to false, the URL scheme of the redirected request will + remain the same as that of the request. This must only be set for + UrlMaps used in TargetHttpProxys. + - Setting this true for TargetHttpsProxy is not permitted. Defaults + to false. + returned: success + type: bool + pathRedirect: + description: + - The path that will be used in the redirect response instead of the + one that was supplied in the request. Only one of pathRedirect or + prefixRedirect must be specified. The value must be between 1 and + 1024 characters. + returned: success + type: str + prefixRedirect: + description: + - The prefix that replaces the prefixMatch specified in the HttpRouteRuleMatch, + retaining the remaining portion of the URL before redirecting the + request. + returned: success + type: str + redirectResponseCode: + description: + - 'The HTTP Status code to use for this RedirectAction. Supported values + are: - MOVED_PERMANENTLY_DEFAULT, which is the default value and corresponds + to 301.' + - "- FOUND, which corresponds to 302." + - "- SEE_OTHER which corresponds to 303." + - "- TEMPORARY_REDIRECT, which corresponds to 307. In this case, the + request method will be retained." + - "- PERMANENT_REDIRECT, which corresponds to 308. In this case, the + request method will be retained." + returned: success + type: str + stripQuery: + description: + - If set to true, any accompanying query portion of the original URL + is removed prior to redirecting the request. If set to false, the + query portion of the original URL is retained. + returned: success + type: bool +tests: + description: + - The list of expected URL mappings. Requests to update this UrlMap will succeed + only if all of the test cases pass. + returned: success + type: complex + contains: + description: + description: + - Description of this test case. + returned: success + type: str + host: + description: + - Host portion of the URL. + returned: success + type: str + path: + description: + - Path portion of the URL. + returned: success + type: str + service: + description: + - A reference to expected RegionBackendService resource the given URL should + be mapped to. + returned: success + type: dict +region: + description: + - A reference to the region where the url map resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ + +from ansible_collections.google.cloud.plugins.module_utils.gcp_utils import ( + navigate_hash, + GcpSession, + GcpModule, + GcpRequest, + remove_nones_from_dict, + replace_resource_dict, +) +import json +import time + +################################################################################ +# Main +################################################################################ + + +def main(): + """Main function""" + + module = GcpModule( + argument_spec=dict( + state=dict(default='present', choices=['present', 'absent'], type='str'), + default_service=dict(required=True, type='dict'), + description=dict(type='str'), + host_rules=dict( + type='list', + elements='dict', + options=dict( + description=dict(type='str'), hosts=dict(required=True, type='list', elements='str'), path_matcher=dict(required=True, type='str') + ), + ), + name=dict(required=True, type='str'), + path_matchers=dict( + type='list', + elements='dict', + options=dict( + default_service=dict(required=True, type='dict'), + description=dict(type='str'), + name=dict(required=True, type='str'), + route_rules=dict( + type='list', + elements='dict', + options=dict( + priority=dict(required=True, type='int'), + service=dict(type='dict'), + header_action=dict( + type='dict', + options=dict( + request_headers_to_add=dict( + type='list', + elements='dict', + options=dict( + header_name=dict(required=True, type='str'), + header_value=dict(required=True, type='str'), + replace=dict(required=True, type='bool'), + ), + ), + request_headers_to_remove=dict(type='list', elements='str'), + response_headers_to_add=dict( + type='list', + elements='dict', + options=dict( + header_name=dict(required=True, type='str'), + header_value=dict(required=True, type='str'), + replace=dict(required=True, type='bool'), + ), + ), + response_headers_to_remove=dict(type='list', elements='str'), + ), + ), + match_rules=dict( + type='list', + elements='dict', + options=dict( + full_path_match=dict(type='str'), + header_matches=dict( + type='list', + elements='dict', + options=dict( + exact_match=dict(type='str'), + header_name=dict(required=True, type='str'), + invert_match=dict(type='bool'), + prefix_match=dict(type='str'), + present_match=dict(type='bool'), + range_match=dict( + type='dict', + options=dict(range_end=dict(required=True, type='int'), range_start=dict(required=True, type='int')), + ), + regex_match=dict(type='str'), + suffix_match=dict(type='str'), + ), + ), + ignore_case=dict(type='bool'), + metadata_filters=dict( + type='list', + elements='dict', + options=dict( + filter_labels=dict( + required=True, + type='list', + elements='dict', + options=dict(name=dict(required=True, type='str'), value=dict(required=True, type='str')), + ), + filter_match_criteria=dict(required=True, type='str'), + ), + ), + prefix_match=dict(type='str'), + query_parameter_matches=dict( + type='list', + elements='dict', + options=dict( + exact_match=dict(type='str'), + name=dict(required=True, type='str'), + present_match=dict(type='bool'), + regex_match=dict(type='str'), + ), + ), + regex_match=dict(type='str'), + ), + ), + route_action=dict( + type='dict', + options=dict( + cors_policy=dict( + type='dict', + options=dict( + allow_credentials=dict(type='bool'), + allow_headers=dict(type='list', elements='str'), + allow_methods=dict(type='list', elements='str'), + allow_origin_regexes=dict(type='list', elements='str'), + allow_origins=dict(type='list', elements='str'), + disabled=dict(type='bool'), + expose_headers=dict(type='list', elements='str'), + max_age=dict(type='int'), + ), + ), + fault_injection_policy=dict( + type='dict', + options=dict( + abort=dict(type='dict', options=dict(http_status=dict(type='int'), percentage=dict(type='str'))), + delay=dict( + type='dict', + options=dict( + fixed_delay=dict( + type='dict', options=dict(nanos=dict(type='int'), seconds=dict(required=True, type='str')) + ), + percentage=dict(type='str'), + ), + ), + ), + ), + request_mirror_policy=dict(type='dict', options=dict(backend_service=dict(required=True, type='dict'))), + retry_policy=dict( + type='dict', + options=dict( + num_retries=dict(required=True, type='int'), + per_try_timeout=dict(type='dict', options=dict(nanos=dict(type='int'), seconds=dict(required=True, type='str'))), + retry_conditions=dict(type='list', elements='str'), + ), + ), + timeout=dict(type='dict', options=dict(nanos=dict(type='int'), seconds=dict(required=True, type='str'))), + url_rewrite=dict(type='dict', options=dict(host_rewrite=dict(type='str'), path_prefix_rewrite=dict(type='str'))), + weighted_backend_services=dict( + type='list', + elements='dict', + options=dict( + backend_service=dict(required=True, type='dict'), + header_action=dict( + type='dict', + options=dict( + request_headers_to_add=dict( + type='list', + elements='dict', + options=dict( + header_name=dict(required=True, type='str'), + header_value=dict(required=True, type='str'), + replace=dict(required=True, type='bool'), + ), + ), + request_headers_to_remove=dict(type='list', elements='str'), + response_headers_to_add=dict( + type='list', + elements='dict', + options=dict( + header_name=dict(required=True, type='str'), + header_value=dict(required=True, type='str'), + replace=dict(required=True, type='bool'), + ), + ), + response_headers_to_remove=dict(type='list', elements='str'), + ), + ), + weight=dict(required=True, type='int'), + ), + ), + ), + ), + url_redirect=dict( + type='dict', + options=dict( + host_redirect=dict(type='str'), + https_redirect=dict(type='bool'), + path_redirect=dict(type='str'), + prefix_redirect=dict(type='str'), + redirect_response_code=dict(type='str'), + strip_query=dict(type='bool'), + ), + ), + ), + ), + path_rules=dict( + type='list', + elements='dict', + options=dict( + service=dict(type='dict'), + paths=dict(required=True, type='list', elements='str'), + route_action=dict( + type='dict', + options=dict( + cors_policy=dict( + type='dict', + options=dict( + allow_credentials=dict(type='bool'), + allow_headers=dict(type='list', elements='str'), + allow_methods=dict(type='list', elements='str'), + allow_origin_regexes=dict(type='list', elements='str'), + allow_origins=dict(type='list', elements='str'), + disabled=dict(required=True, type='bool'), + expose_headers=dict(type='list', elements='str'), + max_age=dict(type='int'), + ), + ), + fault_injection_policy=dict( + type='dict', + options=dict( + abort=dict( + type='dict', + options=dict(http_status=dict(required=True, type='int'), percentage=dict(required=True, type='str')), + ), + delay=dict( + type='dict', + options=dict( + fixed_delay=dict( + required=True, + type='dict', + options=dict(nanos=dict(type='int'), seconds=dict(required=True, type='str')), + ), + percentage=dict(required=True, type='str'), + ), + ), + ), + ), + request_mirror_policy=dict(type='dict', options=dict(backend_service=dict(required=True, type='dict'))), + retry_policy=dict( + type='dict', + options=dict( + num_retries=dict(type='int'), + per_try_timeout=dict(type='dict', options=dict(nanos=dict(type='int'), seconds=dict(required=True, type='str'))), + retry_conditions=dict(type='list', elements='str'), + ), + ), + timeout=dict(type='dict', options=dict(nanos=dict(type='int'), seconds=dict(required=True, type='str'))), + url_rewrite=dict(type='dict', options=dict(host_rewrite=dict(type='str'), path_prefix_rewrite=dict(type='str'))), + weighted_backend_services=dict( + type='list', + elements='dict', + options=dict( + backend_service=dict(required=True, type='dict'), + header_action=dict( + type='dict', + options=dict( + request_headers_to_add=dict( + type='list', + elements='dict', + options=dict( + header_name=dict(required=True, type='str'), + header_value=dict(required=True, type='str'), + replace=dict(required=True, type='bool'), + ), + ), + request_headers_to_remove=dict(type='list', elements='str'), + response_headers_to_add=dict( + type='list', + elements='dict', + options=dict( + header_name=dict(required=True, type='str'), + header_value=dict(required=True, type='str'), + replace=dict(required=True, type='bool'), + ), + ), + response_headers_to_remove=dict(type='list', elements='str'), + ), + ), + weight=dict(required=True, type='int'), + ), + ), + ), + ), + url_redirect=dict( + type='dict', + options=dict( + host_redirect=dict(type='str'), + https_redirect=dict(type='bool'), + path_redirect=dict(type='str'), + prefix_redirect=dict(type='str'), + redirect_response_code=dict(type='str'), + strip_query=dict(required=True, type='bool'), + ), + ), + ), + ), + ), + ), + tests=dict( + type='list', + elements='dict', + options=dict( + description=dict(type='str'), + host=dict(required=True, type='str'), + path=dict(required=True, type='str'), + service=dict(required=True, type='dict'), + ), + ), + region=dict(required=True, type='str'), + ) + ) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + state = module.params['state'] + kind = 'compute#urlMap' + + fetch = fetch_resource(module, self_link(module), kind) + changed = False + + if fetch: + if state == 'present': + if is_different(module, fetch): + update(module, self_link(module), kind) + fetch = fetch_resource(module, self_link(module), kind) + changed = True + else: + delete(module, self_link(module), kind) + fetch = {} + changed = True + else: + if state == 'present': + fetch = create(module, collection(module), kind) + changed = True + else: + fetch = {} + + fetch.update({'changed': changed}) + + module.exit_json(**fetch) + + +def create(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.post(link, resource_to_request(module))) + + +def update(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.put(link, resource_to_request(module))) + + +def delete(module, link, kind): + auth = GcpSession(module, 'compute') + return wait_for_operation(module, auth.delete(link)) + + +def resource_to_request(module): + request = { + u'kind': 'compute#urlMap', + u'defaultService': replace_resource_dict(module.params.get(u'default_service', {}), 'selfLink'), + u'description': module.params.get('description'), + u'hostRules': RegionUrlMapHostrulesArray(module.params.get('host_rules', []), module).to_request(), + u'name': module.params.get('name'), + u'pathMatchers': RegionUrlMapPathmatchersArray(module.params.get('path_matchers', []), module).to_request(), + u'tests': RegionUrlMapTestsArray(module.params.get('tests', []), module).to_request(), + } + return_vals = {} + for k, v in request.items(): + if v or v is False: + return_vals[k] = v + + return return_vals + + +def fetch_resource(module, link, kind, allow_not_found=True): + auth = GcpSession(module, 'compute') + return return_if_object(module, auth.get(link), kind, allow_not_found) + + +def self_link(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/urlMaps/{name}".format(**module.params) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/urlMaps".format(**module.params) + + +def return_if_object(module, response, kind, allow_not_found=False): + # If not found, return nothing. + if allow_not_found and response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError): + module.fail_json(msg="Invalid JSON response with error: %s" % response.text) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +def is_different(module, response): + request = resource_to_request(module) + response = response_to_hash(module, response) + + # Remove all output-only from response. + response_vals = {} + for k, v in response.items(): + if k in request: + response_vals[k] = v + + request_vals = {} + for k, v in request.items(): + if k in response: + request_vals[k] = v + + return GcpRequest(request_vals) != GcpRequest(response_vals) + + +# Remove unnecessary properties from the response. +# This is for doing comparisons with Ansible's current parameters. +def response_to_hash(module, response): + return { + u'creationTimestamp': response.get(u'creationTimestamp'), + u'defaultService': response.get(u'defaultService'), + u'description': response.get(u'description'), + u'hostRules': RegionUrlMapHostrulesArray(response.get(u'hostRules', []), module).from_response(), + u'id': response.get(u'id'), + u'fingerprint': response.get(u'fingerprint'), + u'name': module.params.get('name'), + u'pathMatchers': RegionUrlMapPathmatchersArray(response.get(u'pathMatchers', []), module).from_response(), + u'tests': RegionUrlMapTestsArray(response.get(u'tests', []), module).from_response(), + } + + +def async_op_url(module, extra_data=None): + if extra_data is None: + extra_data = {} + url = "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/operations/{op_id}" + combined = extra_data.copy() + combined.update(module.params) + return url.format(**combined) + + +def wait_for_operation(module, response): + op_result = return_if_object(module, response, 'compute#operation') + if op_result is None: + return {} + status = navigate_hash(op_result, ['status']) + wait_done = wait_for_completion(status, op_result, module) + return fetch_resource(module, navigate_hash(wait_done, ['targetLink']), 'compute#urlMap') + + +def wait_for_completion(status, op_result, module): + op_id = navigate_hash(op_result, ['name']) + op_uri = async_op_url(module, {'op_id': op_id}) + while status != 'DONE': + raise_if_errors(op_result, ['error', 'errors'], module) + time.sleep(1.0) + op_result = fetch_resource(module, op_uri, 'compute#operation', False) + status = navigate_hash(op_result, ['status']) + return op_result + + +def raise_if_errors(response, err_path, module): + errors = navigate_hash(response, err_path) + if errors is not None: + module.fail_json(msg=errors) + + +class RegionUrlMapHostrulesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'description': item.get('description'), u'hosts': item.get('hosts'), u'pathMatcher': item.get('path_matcher')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'description': item.get(u'description'), u'hosts': item.get(u'hosts'), u'pathMatcher': item.get(u'pathMatcher')}) + + +class RegionUrlMapPathmatchersArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'defaultService': replace_resource_dict(item.get(u'default_service', {}), 'selfLink'), + u'description': item.get('description'), + u'name': item.get('name'), + u'routeRules': RegionUrlMapRouterulesArray(item.get('route_rules', []), self.module).to_request(), + u'pathRules': RegionUrlMapPathrulesArray(item.get('path_rules', []), self.module).to_request(), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'defaultService': item.get(u'defaultService'), + u'description': item.get(u'description'), + u'name': item.get(u'name'), + u'routeRules': RegionUrlMapRouterulesArray(item.get(u'routeRules', []), self.module).from_response(), + u'pathRules': RegionUrlMapPathrulesArray(item.get(u'pathRules', []), self.module).from_response(), + } + ) + + +class RegionUrlMapRouterulesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'priority': item.get('priority'), + u'service': replace_resource_dict(item.get(u'service', {}), 'selfLink'), + u'headerAction': RegionUrlMapHeaderaction(item.get('header_action', {}), self.module).to_request(), + u'matchRules': RegionUrlMapMatchrulesArray(item.get('match_rules', []), self.module).to_request(), + u'routeAction': RegionUrlMapRouteaction(item.get('route_action', {}), self.module).to_request(), + u'urlRedirect': RegionUrlMapUrlredirect(item.get('url_redirect', {}), self.module).to_request(), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'priority': item.get(u'priority'), + u'service': item.get(u'service'), + u'headerAction': RegionUrlMapHeaderaction(item.get(u'headerAction', {}), self.module).from_response(), + u'matchRules': RegionUrlMapMatchrulesArray(item.get(u'matchRules', []), self.module).from_response(), + u'routeAction': RegionUrlMapRouteaction(item.get(u'routeAction', {}), self.module).from_response(), + u'urlRedirect': RegionUrlMapUrlredirect(item.get(u'urlRedirect', {}), self.module).from_response(), + } + ) + + +class RegionUrlMapHeaderaction(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'requestHeadersToAdd': RegionUrlMapRequestheaderstoaddArray(self.request.get('request_headers_to_add', []), self.module).to_request(), + u'requestHeadersToRemove': self.request.get('request_headers_to_remove'), + u'responseHeadersToAdd': RegionUrlMapResponseheaderstoaddArray(self.request.get('response_headers_to_add', []), self.module).to_request(), + u'responseHeadersToRemove': self.request.get('response_headers_to_remove'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'requestHeadersToAdd': RegionUrlMapRequestheaderstoaddArray(self.request.get(u'requestHeadersToAdd', []), self.module).from_response(), + u'requestHeadersToRemove': self.request.get(u'requestHeadersToRemove'), + u'responseHeadersToAdd': RegionUrlMapResponseheaderstoaddArray(self.request.get(u'responseHeadersToAdd', []), self.module).from_response(), + u'responseHeadersToRemove': self.request.get(u'responseHeadersToRemove'), + } + ) + + +class RegionUrlMapRequestheaderstoaddArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'headerName': item.get('header_name'), u'headerValue': item.get('header_value'), u'replace': item.get('replace')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'headerName': item.get(u'headerName'), u'headerValue': item.get(u'headerValue'), u'replace': item.get(u'replace')}) + + +class RegionUrlMapResponseheaderstoaddArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'headerName': item.get('header_name'), u'headerValue': item.get('header_value'), u'replace': item.get('replace')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'headerName': item.get(u'headerName'), u'headerValue': item.get(u'headerValue'), u'replace': item.get(u'replace')}) + + +class RegionUrlMapMatchrulesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'fullPathMatch': item.get('full_path_match'), + u'headerMatches': RegionUrlMapHeadermatchesArray(item.get('header_matches', []), self.module).to_request(), + u'ignoreCase': item.get('ignore_case'), + u'metadataFilters': RegionUrlMapMetadatafiltersArray(item.get('metadata_filters', []), self.module).to_request(), + u'prefixMatch': item.get('prefix_match'), + u'queryParameterMatches': RegionUrlMapQueryparametermatchesArray(item.get('query_parameter_matches', []), self.module).to_request(), + u'regexMatch': item.get('regex_match'), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'fullPathMatch': item.get(u'fullPathMatch'), + u'headerMatches': RegionUrlMapHeadermatchesArray(item.get(u'headerMatches', []), self.module).from_response(), + u'ignoreCase': item.get(u'ignoreCase'), + u'metadataFilters': RegionUrlMapMetadatafiltersArray(item.get(u'metadataFilters', []), self.module).from_response(), + u'prefixMatch': item.get(u'prefixMatch'), + u'queryParameterMatches': RegionUrlMapQueryparametermatchesArray(item.get(u'queryParameterMatches', []), self.module).from_response(), + u'regexMatch': item.get(u'regexMatch'), + } + ) + + +class RegionUrlMapHeadermatchesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'exactMatch': item.get('exact_match'), + u'headerName': item.get('header_name'), + u'invertMatch': item.get('invert_match'), + u'prefixMatch': item.get('prefix_match'), + u'presentMatch': item.get('present_match'), + u'rangeMatch': RegionUrlMapRangematch(item.get('range_match', {}), self.module).to_request(), + u'regexMatch': item.get('regex_match'), + u'suffixMatch': item.get('suffix_match'), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'exactMatch': item.get(u'exactMatch'), + u'headerName': item.get(u'headerName'), + u'invertMatch': item.get(u'invertMatch'), + u'prefixMatch': item.get(u'prefixMatch'), + u'presentMatch': item.get(u'presentMatch'), + u'rangeMatch': RegionUrlMapRangematch(item.get(u'rangeMatch', {}), self.module).from_response(), + u'regexMatch': item.get(u'regexMatch'), + u'suffixMatch': item.get(u'suffixMatch'), + } + ) + + +class RegionUrlMapRangematch(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'rangeEnd': self.request.get('range_end'), u'rangeStart': self.request.get('range_start')}) + + def from_response(self): + return remove_nones_from_dict({u'rangeEnd': self.request.get(u'rangeEnd'), u'rangeStart': self.request.get(u'rangeStart')}) + + +class RegionUrlMapMetadatafiltersArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'filterLabels': RegionUrlMapFilterlabelsArray(item.get('filter_labels', []), self.module).to_request(), + u'filterMatchCriteria': item.get('filter_match_criteria'), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'filterLabels': RegionUrlMapFilterlabelsArray(item.get(u'filterLabels', []), self.module).from_response(), + u'filterMatchCriteria': item.get(u'filterMatchCriteria'), + } + ) + + +class RegionUrlMapFilterlabelsArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'name': item.get('name'), u'value': item.get('value')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'name': item.get(u'name'), u'value': item.get(u'value')}) + + +class RegionUrlMapQueryparametermatchesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'exactMatch': item.get('exact_match'), + u'name': item.get('name'), + u'presentMatch': item.get('present_match'), + u'regexMatch': item.get('regex_match'), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'exactMatch': item.get(u'exactMatch'), + u'name': item.get(u'name'), + u'presentMatch': item.get(u'presentMatch'), + u'regexMatch': item.get(u'regexMatch'), + } + ) + + +class RegionUrlMapRouteaction(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'corsPolicy': RegionUrlMapCorspolicy(self.request.get('cors_policy', {}), self.module).to_request(), + u'faultInjectionPolicy': RegionUrlMapFaultinjectionpolicy(self.request.get('fault_injection_policy', {}), self.module).to_request(), + u'requestMirrorPolicy': RegionUrlMapRequestmirrorpolicy(self.request.get('request_mirror_policy', {}), self.module).to_request(), + u'retryPolicy': RegionUrlMapRetrypolicy(self.request.get('retry_policy', {}), self.module).to_request(), + u'timeout': RegionUrlMapTimeout(self.request.get('timeout', {}), self.module).to_request(), + u'urlRewrite': RegionUrlMapUrlrewrite(self.request.get('url_rewrite', {}), self.module).to_request(), + u'weightedBackendServices': RegionUrlMapWeightedbackendservicesArray( + self.request.get('weighted_backend_services', []), self.module + ).to_request(), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'corsPolicy': RegionUrlMapCorspolicy(self.request.get(u'corsPolicy', {}), self.module).from_response(), + u'faultInjectionPolicy': RegionUrlMapFaultinjectionpolicy(self.request.get(u'faultInjectionPolicy', {}), self.module).from_response(), + u'requestMirrorPolicy': RegionUrlMapRequestmirrorpolicy(self.request.get(u'requestMirrorPolicy', {}), self.module).from_response(), + u'retryPolicy': RegionUrlMapRetrypolicy(self.request.get(u'retryPolicy', {}), self.module).from_response(), + u'timeout': RegionUrlMapTimeout(self.request.get(u'timeout', {}), self.module).from_response(), + u'urlRewrite': RegionUrlMapUrlrewrite(self.request.get(u'urlRewrite', {}), self.module).from_response(), + u'weightedBackendServices': RegionUrlMapWeightedbackendservicesArray( + self.request.get(u'weightedBackendServices', []), self.module + ).from_response(), + } + ) + + +class RegionUrlMapCorspolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'allowCredentials': self.request.get('allow_credentials'), + u'allowHeaders': self.request.get('allow_headers'), + u'allowMethods': self.request.get('allow_methods'), + u'allowOriginRegexes': self.request.get('allow_origin_regexes'), + u'allowOrigins': self.request.get('allow_origins'), + u'disabled': self.request.get('disabled'), + u'exposeHeaders': self.request.get('expose_headers'), + u'maxAge': self.request.get('max_age'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'allowCredentials': self.request.get(u'allowCredentials'), + u'allowHeaders': self.request.get(u'allowHeaders'), + u'allowMethods': self.request.get(u'allowMethods'), + u'allowOriginRegexes': self.request.get(u'allowOriginRegexes'), + u'allowOrigins': self.request.get(u'allowOrigins'), + u'disabled': self.request.get(u'disabled'), + u'exposeHeaders': self.request.get(u'exposeHeaders'), + u'maxAge': self.request.get(u'maxAge'), + } + ) + + +class RegionUrlMapFaultinjectionpolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'abort': RegionUrlMapAbort(self.request.get('abort', {}), self.module).to_request(), + u'delay': RegionUrlMapDelay(self.request.get('delay', {}), self.module).to_request(), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'abort': RegionUrlMapAbort(self.request.get(u'abort', {}), self.module).from_response(), + u'delay': RegionUrlMapDelay(self.request.get(u'delay', {}), self.module).from_response(), + } + ) + + +class RegionUrlMapAbort(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'httpStatus': self.request.get('http_status'), u'percentage': self.request.get('percentage')}) + + def from_response(self): + return remove_nones_from_dict({u'httpStatus': self.request.get(u'httpStatus'), u'percentage': self.request.get(u'percentage')}) + + +class RegionUrlMapDelay(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'fixedDelay': RegionUrlMapFixeddelay(self.request.get('fixed_delay', {}), self.module).to_request(), + u'percentage': self.request.get('percentage'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'fixedDelay': RegionUrlMapFixeddelay(self.request.get(u'fixedDelay', {}), self.module).from_response(), + u'percentage': self.request.get(u'percentage'), + } + ) + + +class RegionUrlMapFixeddelay(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'nanos': self.request.get('nanos'), u'seconds': self.request.get('seconds')}) + + def from_response(self): + return remove_nones_from_dict({u'nanos': self.request.get(u'nanos'), u'seconds': self.request.get(u'seconds')}) + + +class RegionUrlMapRequestmirrorpolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'backendService': replace_resource_dict(self.request.get(u'backend_service', {}), 'selfLink')}) + + def from_response(self): + return remove_nones_from_dict({u'backendService': self.request.get(u'backendService')}) + + +class RegionUrlMapRetrypolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'numRetries': self.request.get('num_retries'), + u'perTryTimeout': RegionUrlMapPertrytimeout(self.request.get('per_try_timeout', {}), self.module).to_request(), + u'retryConditions': self.request.get('retry_conditions'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'numRetries': self.request.get(u'numRetries'), + u'perTryTimeout': RegionUrlMapPertrytimeout(self.request.get(u'perTryTimeout', {}), self.module).from_response(), + u'retryConditions': self.request.get(u'retryConditions'), + } + ) + + +class RegionUrlMapPertrytimeout(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'nanos': self.request.get('nanos'), u'seconds': self.request.get('seconds')}) + + def from_response(self): + return remove_nones_from_dict({u'nanos': self.request.get(u'nanos'), u'seconds': self.request.get(u'seconds')}) + + +class RegionUrlMapTimeout(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'nanos': self.request.get('nanos'), u'seconds': self.request.get('seconds')}) + + def from_response(self): + return remove_nones_from_dict({u'nanos': self.request.get(u'nanos'), u'seconds': self.request.get(u'seconds')}) + + +class RegionUrlMapUrlrewrite(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'hostRewrite': self.request.get('host_rewrite'), u'pathPrefixRewrite': self.request.get('path_prefix_rewrite')}) + + def from_response(self): + return remove_nones_from_dict({u'hostRewrite': self.request.get(u'hostRewrite'), u'pathPrefixRewrite': self.request.get(u'pathPrefixRewrite')}) + + +class RegionUrlMapWeightedbackendservicesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'backendService': replace_resource_dict(item.get(u'backend_service', {}), 'selfLink'), + u'headerAction': RegionUrlMapHeaderaction(item.get('header_action', {}), self.module).to_request(), + u'weight': item.get('weight'), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'backendService': item.get(u'backendService'), + u'headerAction': RegionUrlMapHeaderaction(item.get(u'headerAction', {}), self.module).from_response(), + u'weight': item.get(u'weight'), + } + ) + + +class RegionUrlMapHeaderaction(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'requestHeadersToAdd': RegionUrlMapRequestheaderstoaddArray(self.request.get('request_headers_to_add', []), self.module).to_request(), + u'requestHeadersToRemove': self.request.get('request_headers_to_remove'), + u'responseHeadersToAdd': RegionUrlMapResponseheaderstoaddArray(self.request.get('response_headers_to_add', []), self.module).to_request(), + u'responseHeadersToRemove': self.request.get('response_headers_to_remove'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'requestHeadersToAdd': RegionUrlMapRequestheaderstoaddArray(self.request.get(u'requestHeadersToAdd', []), self.module).from_response(), + u'requestHeadersToRemove': self.request.get(u'requestHeadersToRemove'), + u'responseHeadersToAdd': RegionUrlMapResponseheaderstoaddArray(self.request.get(u'responseHeadersToAdd', []), self.module).from_response(), + u'responseHeadersToRemove': self.request.get(u'responseHeadersToRemove'), + } + ) + + +class RegionUrlMapRequestheaderstoaddArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'headerName': item.get('header_name'), u'headerValue': item.get('header_value'), u'replace': item.get('replace')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'headerName': item.get(u'headerName'), u'headerValue': item.get(u'headerValue'), u'replace': item.get(u'replace')}) + + +class RegionUrlMapResponseheaderstoaddArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'headerName': item.get('header_name'), u'headerValue': item.get('header_value'), u'replace': item.get('replace')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'headerName': item.get(u'headerName'), u'headerValue': item.get(u'headerValue'), u'replace': item.get(u'replace')}) + + +class RegionUrlMapUrlredirect(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'hostRedirect': self.request.get('host_redirect'), + u'httpsRedirect': self.request.get('https_redirect'), + u'pathRedirect': self.request.get('path_redirect'), + u'prefixRedirect': self.request.get('prefix_redirect'), + u'redirectResponseCode': self.request.get('redirect_response_code'), + u'stripQuery': self.request.get('strip_query'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'hostRedirect': self.request.get(u'hostRedirect'), + u'httpsRedirect': self.request.get(u'httpsRedirect'), + u'pathRedirect': self.request.get(u'pathRedirect'), + u'prefixRedirect': self.request.get(u'prefixRedirect'), + u'redirectResponseCode': self.request.get(u'redirectResponseCode'), + u'stripQuery': self.request.get(u'stripQuery'), + } + ) + + +class RegionUrlMapPathrulesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'service': replace_resource_dict(item.get(u'service', {}), 'selfLink'), + u'paths': item.get('paths'), + u'routeAction': RegionUrlMapRouteaction(item.get('route_action', {}), self.module).to_request(), + u'urlRedirect': RegionUrlMapUrlredirect(item.get('url_redirect', {}), self.module).to_request(), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'service': item.get(u'service'), + u'paths': item.get(u'paths'), + u'routeAction': RegionUrlMapRouteaction(item.get(u'routeAction', {}), self.module).from_response(), + u'urlRedirect': RegionUrlMapUrlredirect(item.get(u'urlRedirect', {}), self.module).from_response(), + } + ) + + +class RegionUrlMapRouteaction(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'corsPolicy': RegionUrlMapCorspolicy(self.request.get('cors_policy', {}), self.module).to_request(), + u'faultInjectionPolicy': RegionUrlMapFaultinjectionpolicy(self.request.get('fault_injection_policy', {}), self.module).to_request(), + u'requestMirrorPolicy': RegionUrlMapRequestmirrorpolicy(self.request.get('request_mirror_policy', {}), self.module).to_request(), + u'retryPolicy': RegionUrlMapRetrypolicy(self.request.get('retry_policy', {}), self.module).to_request(), + u'timeout': RegionUrlMapTimeout(self.request.get('timeout', {}), self.module).to_request(), + u'urlRewrite': RegionUrlMapUrlrewrite(self.request.get('url_rewrite', {}), self.module).to_request(), + u'weightedBackendServices': RegionUrlMapWeightedbackendservicesArray( + self.request.get('weighted_backend_services', []), self.module + ).to_request(), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'corsPolicy': RegionUrlMapCorspolicy(self.request.get(u'corsPolicy', {}), self.module).from_response(), + u'faultInjectionPolicy': RegionUrlMapFaultinjectionpolicy(self.request.get(u'faultInjectionPolicy', {}), self.module).from_response(), + u'requestMirrorPolicy': RegionUrlMapRequestmirrorpolicy(self.request.get(u'requestMirrorPolicy', {}), self.module).from_response(), + u'retryPolicy': RegionUrlMapRetrypolicy(self.request.get(u'retryPolicy', {}), self.module).from_response(), + u'timeout': RegionUrlMapTimeout(self.request.get(u'timeout', {}), self.module).from_response(), + u'urlRewrite': RegionUrlMapUrlrewrite(self.request.get(u'urlRewrite', {}), self.module).from_response(), + u'weightedBackendServices': RegionUrlMapWeightedbackendservicesArray( + self.request.get(u'weightedBackendServices', []), self.module + ).from_response(), + } + ) + + +class RegionUrlMapCorspolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'allowCredentials': self.request.get('allow_credentials'), + u'allowHeaders': self.request.get('allow_headers'), + u'allowMethods': self.request.get('allow_methods'), + u'allowOriginRegexes': self.request.get('allow_origin_regexes'), + u'allowOrigins': self.request.get('allow_origins'), + u'disabled': self.request.get('disabled'), + u'exposeHeaders': self.request.get('expose_headers'), + u'maxAge': self.request.get('max_age'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'allowCredentials': self.request.get(u'allowCredentials'), + u'allowHeaders': self.request.get(u'allowHeaders'), + u'allowMethods': self.request.get(u'allowMethods'), + u'allowOriginRegexes': self.request.get(u'allowOriginRegexes'), + u'allowOrigins': self.request.get(u'allowOrigins'), + u'disabled': self.request.get(u'disabled'), + u'exposeHeaders': self.request.get(u'exposeHeaders'), + u'maxAge': self.request.get(u'maxAge'), + } + ) + + +class RegionUrlMapFaultinjectionpolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'abort': RegionUrlMapAbort(self.request.get('abort', {}), self.module).to_request(), + u'delay': RegionUrlMapDelay(self.request.get('delay', {}), self.module).to_request(), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'abort': RegionUrlMapAbort(self.request.get(u'abort', {}), self.module).from_response(), + u'delay': RegionUrlMapDelay(self.request.get(u'delay', {}), self.module).from_response(), + } + ) + + +class RegionUrlMapAbort(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'httpStatus': self.request.get('http_status'), u'percentage': self.request.get('percentage')}) + + def from_response(self): + return remove_nones_from_dict({u'httpStatus': self.request.get(u'httpStatus'), u'percentage': self.request.get(u'percentage')}) + + +class RegionUrlMapDelay(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'fixedDelay': RegionUrlMapFixeddelay(self.request.get('fixed_delay', {}), self.module).to_request(), + u'percentage': self.request.get('percentage'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'fixedDelay': RegionUrlMapFixeddelay(self.request.get(u'fixedDelay', {}), self.module).from_response(), + u'percentage': self.request.get(u'percentage'), + } + ) + + +class RegionUrlMapFixeddelay(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'nanos': self.request.get('nanos'), u'seconds': self.request.get('seconds')}) + + def from_response(self): + return remove_nones_from_dict({u'nanos': self.request.get(u'nanos'), u'seconds': self.request.get(u'seconds')}) + + +class RegionUrlMapRequestmirrorpolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'backendService': replace_resource_dict(self.request.get(u'backend_service', {}), 'selfLink')}) + + def from_response(self): + return remove_nones_from_dict({u'backendService': self.request.get(u'backendService')}) + + +class RegionUrlMapRetrypolicy(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'numRetries': self.request.get('num_retries'), + u'perTryTimeout': RegionUrlMapPertrytimeout(self.request.get('per_try_timeout', {}), self.module).to_request(), + u'retryConditions': self.request.get('retry_conditions'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'numRetries': self.request.get(u'numRetries'), + u'perTryTimeout': RegionUrlMapPertrytimeout(self.request.get(u'perTryTimeout', {}), self.module).from_response(), + u'retryConditions': self.request.get(u'retryConditions'), + } + ) + + +class RegionUrlMapPertrytimeout(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'nanos': self.request.get('nanos'), u'seconds': self.request.get('seconds')}) + + def from_response(self): + return remove_nones_from_dict({u'nanos': self.request.get(u'nanos'), u'seconds': self.request.get(u'seconds')}) + + +class RegionUrlMapTimeout(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'nanos': self.request.get('nanos'), u'seconds': self.request.get('seconds')}) + + def from_response(self): + return remove_nones_from_dict({u'nanos': self.request.get(u'nanos'), u'seconds': self.request.get(u'seconds')}) + + +class RegionUrlMapUrlrewrite(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict({u'hostRewrite': self.request.get('host_rewrite'), u'pathPrefixRewrite': self.request.get('path_prefix_rewrite')}) + + def from_response(self): + return remove_nones_from_dict({u'hostRewrite': self.request.get(u'hostRewrite'), u'pathPrefixRewrite': self.request.get(u'pathPrefixRewrite')}) + + +class RegionUrlMapWeightedbackendservicesArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'backendService': replace_resource_dict(item.get(u'backend_service', {}), 'selfLink'), + u'headerAction': RegionUrlMapHeaderaction(item.get('header_action', {}), self.module).to_request(), + u'weight': item.get('weight'), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + { + u'backendService': item.get(u'backendService'), + u'headerAction': RegionUrlMapHeaderaction(item.get(u'headerAction', {}), self.module).from_response(), + u'weight': item.get(u'weight'), + } + ) + + +class RegionUrlMapHeaderaction(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'requestHeadersToAdd': RegionUrlMapRequestheaderstoaddArray(self.request.get('request_headers_to_add', []), self.module).to_request(), + u'requestHeadersToRemove': self.request.get('request_headers_to_remove'), + u'responseHeadersToAdd': RegionUrlMapResponseheaderstoaddArray(self.request.get('response_headers_to_add', []), self.module).to_request(), + u'responseHeadersToRemove': self.request.get('response_headers_to_remove'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'requestHeadersToAdd': RegionUrlMapRequestheaderstoaddArray(self.request.get(u'requestHeadersToAdd', []), self.module).from_response(), + u'requestHeadersToRemove': self.request.get(u'requestHeadersToRemove'), + u'responseHeadersToAdd': RegionUrlMapResponseheaderstoaddArray(self.request.get(u'responseHeadersToAdd', []), self.module).from_response(), + u'responseHeadersToRemove': self.request.get(u'responseHeadersToRemove'), + } + ) + + +class RegionUrlMapRequestheaderstoaddArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'headerName': item.get('header_name'), u'headerValue': item.get('header_value'), u'replace': item.get('replace')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'headerName': item.get(u'headerName'), u'headerValue': item.get(u'headerValue'), u'replace': item.get(u'replace')}) + + +class RegionUrlMapResponseheaderstoaddArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict({u'headerName': item.get('header_name'), u'headerValue': item.get('header_value'), u'replace': item.get('replace')}) + + def _response_from_item(self, item): + return remove_nones_from_dict({u'headerName': item.get(u'headerName'), u'headerValue': item.get(u'headerValue'), u'replace': item.get(u'replace')}) + + +class RegionUrlMapUrlredirect(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = {} + + def to_request(self): + return remove_nones_from_dict( + { + u'hostRedirect': self.request.get('host_redirect'), + u'httpsRedirect': self.request.get('https_redirect'), + u'pathRedirect': self.request.get('path_redirect'), + u'prefixRedirect': self.request.get('prefix_redirect'), + u'redirectResponseCode': self.request.get('redirect_response_code'), + u'stripQuery': self.request.get('strip_query'), + } + ) + + def from_response(self): + return remove_nones_from_dict( + { + u'hostRedirect': self.request.get(u'hostRedirect'), + u'httpsRedirect': self.request.get(u'httpsRedirect'), + u'pathRedirect': self.request.get(u'pathRedirect'), + u'prefixRedirect': self.request.get(u'prefixRedirect'), + u'redirectResponseCode': self.request.get(u'redirectResponseCode'), + u'stripQuery': self.request.get(u'stripQuery'), + } + ) + + +class RegionUrlMapTestsArray(object): + def __init__(self, request, module): + self.module = module + if request: + self.request = request + else: + self.request = [] + + def to_request(self): + items = [] + for item in self.request: + items.append(self._request_for_item(item)) + return items + + def from_response(self): + items = [] + for item in self.request: + items.append(self._response_from_item(item)) + return items + + def _request_for_item(self, item): + return remove_nones_from_dict( + { + u'description': item.get('description'), + u'host': item.get('host'), + u'path': item.get('path'), + u'service': replace_resource_dict(item.get(u'service', {}), 'selfLink'), + } + ) + + def _response_from_item(self, item): + return remove_nones_from_dict( + {u'description': item.get(u'description'), u'host': item.get(u'host'), u'path': item.get(u'path'), u'service': item.get(u'service')} + ) + + +if __name__ == '__main__': + main() diff --git a/plugins/modules/gcp_compute_region_url_map_info.py b/plugins/modules/gcp_compute_region_url_map_info.py new file mode 100644 index 0000000..d134872 --- /dev/null +++ b/plugins/modules/gcp_compute_region_url_map_info.py @@ -0,0 +1,1512 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- +# +# Copyright (C) 2017 Google +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- + +from __future__ import absolute_import, division, print_function + +__metaclass__ = type + +################################################################################ +# Documentation +################################################################################ + +ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ["preview"], 'supported_by': 'community'} + +DOCUMENTATION = ''' +--- +module: gcp_compute_region_url_map_info +description: +- Gather info for GCP RegionUrlMap +short_description: Gather info for GCP RegionUrlMap +version_added: '2.10' +author: Google Inc. (@googlecloudplatform) +requirements: +- python >= 2.6 +- requests >= 2.18.4 +- google-auth >= 1.3.0 +options: + filters: + description: + - A list of filter value pairs. Available filters are listed here U(https://cloud.google.com/sdk/gcloud/reference/topic/filters). + - Each additional filter in the list will act be added as an AND condition (filter1 + and filter2) . + type: list + region: + description: + - A reference to the region where the url map resides. + required: true + type: str + project: + description: + - The Google Cloud Platform project to use. + type: str + auth_kind: + description: + - The type of credential used. + type: str + required: true + choices: + - application + - machineaccount + - serviceaccount + service_account_contents: + description: + - The contents of a Service Account JSON file, either in a dictionary or as a + JSON string that represents it. + type: jsonarg + service_account_file: + description: + - The path of a Service Account JSON file if serviceaccount is selected as type. + type: path + service_account_email: + description: + - An optional service account email address if machineaccount is selected and + the user does not wish to use the default email. + type: str + scopes: + description: + - Array of scopes to be used + type: list + env_type: + description: + - Specifies which Ansible environment you're running this module within. + - This should not be set unless you know what you're doing. + - This only alters the User Agent string for any API requests. + type: str +notes: +- for authentication, you can set service_account_file using the C(gcp_service_account_file) + env variable. +- for authentication, you can set service_account_contents using the C(GCP_SERVICE_ACCOUNT_CONTENTS) + env variable. +- For authentication, you can set service_account_email using the C(GCP_SERVICE_ACCOUNT_EMAIL) + env variable. +- For authentication, you can set auth_kind using the C(GCP_AUTH_KIND) env variable. +- For authentication, you can set scopes using the C(GCP_SCOPES) env variable. +- Environment variables values will only be used if the playbook values are not set. +- The I(service_account_email) and I(service_account_file) options are mutually exclusive. +''' + +EXAMPLES = ''' +- name: get info on a region URL map + gcp_compute_region_url_map_info: + region: us-central1 + filters: + - name = test_object + project: test_project + auth_kind: serviceaccount + service_account_file: "/tmp/auth.pem" +''' + +RETURN = ''' +resources: + description: List of resources + returned: always + type: complex + contains: + creationTimestamp: + description: + - Creation timestamp in RFC3339 text format. + returned: success + type: str + defaultService: + description: + - A reference to RegionBackendService resource if none of the hostRules match. + returned: success + type: dict + description: + description: + - An optional description of this resource. Provide this property when you create + the resource. + returned: success + type: str + hostRules: + description: + - The list of HostRules to use against the URL. + returned: success + type: complex + contains: + description: + description: + - An optional description of this HostRule. Provide this property when you + create the resource. + returned: success + type: str + hosts: + description: + - The list of host patterns to match. They must be valid hostnames, except + * will match any string of ([a-z0-9-.]*). In that case, * must be the + first character and must be followed in the pattern by either - or . + returned: success + type: list + pathMatcher: + description: + - The name of the PathMatcher to use to match the path portion of the URL + if the hostRule matches the URL's host portion. + returned: success + type: str + id: + description: + - The unique identifier for the resource. + returned: success + type: int + fingerprint: + description: + - Fingerprint of this resource. This field is used internally during updates + of this resource. + returned: success + type: str + name: + description: + - Name of the resource. Provided by the client when the resource is created. + The name must be 1-63 characters long, and comply with RFC1035. Specifically, + the name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` + which means the first character must be a lowercase letter, and all following + characters must be a dash, lowercase letter, or digit, except the last character, + which cannot be a dash. + returned: success + type: str + pathMatchers: + description: + - The list of named PathMatchers to use against the URL. + returned: success + type: complex + contains: + defaultService: + description: + - A reference to a RegionBackendService resource. This will be used if none + of the pathRules defined by this PathMatcher is matched by the URL's path + portion. + returned: success + type: dict + description: + description: + - An optional description of this resource. + returned: success + type: str + name: + description: + - The name to which this PathMatcher is referred by the HostRule. + returned: success + type: str + routeRules: + description: + - 'The list of ordered HTTP route rules. Use this list instead of pathRules + when advanced route matching and routing actions are desired. The order + of specifying routeRules matters: the first rule that matches will cause + its specified routing action to take effect. Within a given pathMatcher, + only one of pathRules or routeRules must be set. routeRules are not supported + in UrlMaps intended for External load balancers.' + returned: success + type: complex + contains: + priority: + description: + - For routeRules within a given pathMatcher, priority determines the + order in which load balancer will interpret routeRules. RouteRules + are evaluated in order of priority, from the lowest to highest number. + The priority of a rule decreases as its number increases (1, 2, 3, + N+1). The first rule that matches the request is applied. + - You cannot configure two or more routeRules with the same priority. + - Priority for each rule must be set to a number between 0 and 2147483647 + inclusive. + - Priority numbers can have gaps, which enable you to add or remove + rules in the future without affecting the rest of the rules. For example, + 1, 2, 3, 4, 5, 9, 12, 16 is a valid series of priority numbers to + which you could add rules numbered from 6 to 8, 10 to 11, and 13 to + 15 in the future without any impact on existing rules. + returned: success + type: int + service: + description: + - The region backend service resource to which traffic is directed if + this rule is matched. If routeAction is additionally specified, advanced + routing actions like URL Rewrites, etc. take effect prior to sending + the request to the backend. However, if service is specified, routeAction + cannot contain any weightedBackendService s. Conversely, if routeAction + specifies any weightedBackendServices, service must not be specified. + Only one of urlRedirect, service or routeAction.weightedBackendService + must be set. + returned: success + type: dict + headerAction: + description: + - Specifies changes to request and response headers that need to take + effect for the selected backendService. The headerAction specified + here are applied before the matching pathMatchers[].headerAction and + after pathMatchers[].routeRules[].r outeAction.weightedBackendService.backendServiceWeightAction[].headerAction + . + returned: success + type: complex + contains: + requestHeadersToAdd: + description: + - Headers to add to a matching request prior to forwarding the request + to the backendService. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that already + exist for the header. If true, headerValue is set for the + header, discarding any values that were set for that header. + returned: success + type: bool + requestHeadersToRemove: + description: + - A list of header names for headers that need to be removed from + the request prior to forwarding the request to the backendService. + returned: success + type: list + responseHeadersToAdd: + description: + - Headers to add the response prior to sending the response back + to the client. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that already + exist for the header. If true, headerValue is set for the + header, discarding any values that were set for that header. + returned: success + type: bool + responseHeadersToRemove: + description: + - A list of header names for headers that need to be removed from + the response prior to sending the response back to the client. + returned: success + type: list + matchRules: + description: + - The rules for determining a match. + returned: success + type: complex + contains: + fullPathMatch: + description: + - For satifying the matchRule condition, the path of the request + must exactly match the value specified in fullPathMatch after + removing any query parameters and anchor that may be part of the + original URL. FullPathMatch must be between 1 and 1024 characters. + Only one of prefixMatch, fullPathMatch or regexMatch must be specified. + returned: success + type: str + headerMatches: + description: + - Specifies a list of header match criteria, all of which must match + corresponding headers in the request. + returned: success + type: complex + contains: + exactMatch: + description: + - The value should exactly match contents of exactMatch. Only + one of exactMatch, prefixMatch, suffixMatch, regexMatch, presentMatch + or rangeMatch must be set. + returned: success + type: str + headerName: + description: + - The name of the HTTP header to match. For matching against + the HTTP request's authority, use a headerMatch with the header + name ":authority". For matching a request's method, use the + headerName ":method". + returned: success + type: str + invertMatch: + description: + - If set to false, the headerMatch is considered a match if + the match criteria above are met. If set to true, the headerMatch + is considered a match if the match criteria above are NOT + met. Defaults to false. + returned: success + type: bool + prefixMatch: + description: + - The value of the header must start with the contents of prefixMatch. + Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + returned: success + type: str + presentMatch: + description: + - A header with the contents of headerName must exist. The match + takes place whether or not the request's header has a value + or not. Only one of exactMatch, prefixMatch, suffixMatch, + regexMatch, presentMatch or rangeMatch must be set. + returned: success + type: bool + rangeMatch: + description: + - The header value must be an integer and its value must be + in the range specified in rangeMatch. If the header does not + contain an integer, number or is empty, the match fails. For + example for a range [-5, 0] - -3 will match. - 0 will not + match. - 0.25 will not match. - -3someString will not match. + Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + returned: success + type: complex + contains: + rangeEnd: + description: + - The end of the range (exclusive). + returned: success + type: int + rangeStart: + description: + - The start of the range (inclusive). + returned: success + type: int + regexMatch: + description: + - 'The value of the header must match the regualar expression + specified in regexMatch. For regular expression grammar, please + see: en.cppreference.com/w/cpp/regex/ecmascript For matching + against a port specified in the HTTP request, use a headerMatch + with headerName set to PORT and a regular expression that + satisfies the RFC2616 Host header''s port specifier.' + - Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + returned: success + type: str + suffixMatch: + description: + - The value of the header must end with the contents of suffixMatch. + Only one of exactMatch, prefixMatch, suffixMatch, regexMatch, + presentMatch or rangeMatch must be set. + returned: success + type: str + ignoreCase: + description: + - Specifies that prefixMatch and fullPathMatch matches are case + sensitive. + - Defaults to false. + returned: success + type: bool + metadataFilters: + description: + - Opaque filter criteria used by Loadbalancer to restrict routing + configuration to a limited set xDS compliant clients. In their + xDS requests to Loadbalancer, xDS clients present node metadata. + If a match takes place, the relevant routing configuration is + made available to those proxies. For each metadataFilter in this + list, if its filterMatchCriteria is set to MATCH_ANY, at least + one of the filterLabels must match the corresponding label provided + in the metadata. If its filterMatchCriteria is set to MATCH_ALL, + then all of its filterLabels must match with corresponding labels + in the provided metadata. metadataFilters specified here can be + overrides those specified in ForwardingRule that refers to this + UrlMap. metadataFilters only applies to Loadbalancers that have + their loadBalancingScheme set to INTERNAL_SELF_MANAGED. + returned: success + type: complex + contains: + filterLabels: + description: + - The list of label value pairs that must match labels in the + provided metadata based on filterMatchCriteria This list must + not be empty and can have at the most 64 entries. + returned: success + type: complex + contains: + name: + description: + - Name of metadata label. The name can have a maximum length + of 1024 characters and must be at least 1 character long. + returned: success + type: str + value: + description: + - The value of the label must match the specified value. + value can have a maximum length of 1024 characters. + returned: success + type: str + filterMatchCriteria: + description: + - 'Specifies how individual filterLabel matches within the list + of filterLabels contribute towards the overall metadataFilter + match. Supported values are: - MATCH_ANY: At least one of + the filterLabels must have a matching label in the provided + metadata.' + - "- MATCH_ALL: All filterLabels must have matching labels in + the provided metadata." + returned: success + type: str + prefixMatch: + description: + - For satifying the matchRule condition, the request's path must + begin with the specified prefixMatch. prefixMatch must begin with + a /. The value must be between 1 and 1024 characters. Only one + of prefixMatch, fullPathMatch or regexMatch must be specified. + returned: success + type: str + queryParameterMatches: + description: + - Specifies a list of query parameter match criteria, all of which + must match corresponding query parameters in the request. + returned: success + type: complex + contains: + exactMatch: + description: + - The queryParameterMatch matches if the value of the parameter + exactly matches the contents of exactMatch. Only one of presentMatch, + exactMatch and regexMatch must be set. + returned: success + type: str + name: + description: + - The name of the query parameter to match. The query parameter + must exist in the request, in the absence of which the request + match fails. + returned: success + type: str + presentMatch: + description: + - Specifies that the queryParameterMatch matches if the request + contains the query parameter, irrespective of whether the + parameter has a value or not. Only one of presentMatch, exactMatch + and regexMatch must be set. + returned: success + type: bool + regexMatch: + description: + - The queryParameterMatch matches if the value of the parameter + matches the regular expression specified by regexMatch. For + the regular expression grammar, please see en.cppreference.com/w/cpp/regex/ecmascript + Only one of presentMatch, exactMatch and regexMatch must be + set. + returned: success + type: str + regexMatch: + description: + - For satifying the matchRule condition, the path of the request + must satisfy the regular expression specified in regexMatch after + removing any query parameters and anchor supplied with the original + URL. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + Only one of prefixMatch, fullPathMatch or regexMatch must be specified. + returned: success + type: str + routeAction: + description: + - In response to a matching matchRule, the load balancer performs advanced + routing actions like URL rewrites, header transformations, etc. prior + to forwarding the request to the selected backend. If routeAction + specifies any weightedBackendServices, service must not be set. Conversely + if service is set, routeAction cannot contain any weightedBackendServices. + Only one of routeAction or urlRedirect must be set. + returned: success + type: complex + contains: + corsPolicy: + description: + - The specification for allowing client side cross-origin requests. + Please see W3C Recommendation for Cross Origin Resource Sharing + . + returned: success + type: complex + contains: + allowCredentials: + description: + - In response to a preflight request, setting this to true indicates + that the actual request can include user credentials. This + translates to the Access- Control-Allow-Credentials header. + Defaults to false. + returned: success + type: bool + allowHeaders: + description: + - Specifies the content for the Access-Control-Allow-Headers + header. + returned: success + type: list + allowMethods: + description: + - Specifies the content for the Access-Control-Allow-Methods + header. + returned: success + type: list + allowOriginRegexes: + description: + - Specifies the regualar expression patterns that match allowed + origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + An origin is allowed if it matches either allow_origins or + allow_origin_regex. + returned: success + type: list + allowOrigins: + description: + - Specifies the list of origins that will be allowed to do CORS + requests. An origin is allowed if it matches either allow_origins + or allow_origin_regex. + returned: success + type: list + disabled: + description: + - If true, specifies the CORS policy is disabled. + - which indicates that the CORS policy is in effect. Defaults + to false. + returned: success + type: bool + exposeHeaders: + description: + - Specifies the content for the Access-Control-Expose-Headers + header. + returned: success + type: list + maxAge: + description: + - Specifies how long the results of a preflight request can + be cached. This translates to the content for the Access-Control-Max-Age + header. + returned: success + type: int + faultInjectionPolicy: + description: + - The specification for fault injection introduced into traffic + to test the resiliency of clients to backend service failure. + As part of fault injection, when clients send requests to a backend + service, delays can be introduced by Loadbalancer on a percentage + of requests before sending those request to the backend service. + Similarly requests from clients can be aborted by the Loadbalancer + for a percentage of requests. timeout and retry_policy will be + ignored by clients that are configured with a fault_injection_policy. + returned: success + type: complex + contains: + abort: + description: + - The specification for how client requests are aborted as part + of fault injection. + returned: success + type: complex + contains: + httpStatus: + description: + - The HTTP status code used to abort the request. The value + must be between 200 and 599 inclusive. + returned: success + type: int + percentage: + description: + - The percentage of traffic (connections/operations/requests) + which will be aborted as part of fault injection. The + value must be between 0.0 and 100.0 inclusive. + returned: success + type: str + delay: + description: + - The specification for how client requests are delayed as part + of fault injection, before being sent to a backend service. + returned: success + type: complex + contains: + fixedDelay: + description: + - Specifies the value of the fixed delay interval. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. + Must be from 0 to 999,999,999 inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be + from 0 to 315,576,000,000 inclusive. + returned: success + type: str + percentage: + description: + - The percentage of traffic (connections/operations/requests) + on which delay will be introduced as part of fault injection. + The value must be between 0.0 and 100.0 inclusive. + returned: success + type: str + requestMirrorPolicy: + description: + - Specifies the policy on how requests intended for the route's + backends are shadowed to a separate mirrored backend service. + Loadbalancer does not wait for responses from the shadow service. + Prior to sending traffic to the shadow service, the host / authority + header is suffixed with -shadow. + returned: success + type: complex + contains: + backendService: + description: + - The RegionBackendService resource being mirrored to. + returned: success + type: dict + retryPolicy: + description: + - Specifies the retry policy associated with this route. + returned: success + type: complex + contains: + numRetries: + description: + - Specifies the allowed number retries. This number must be + > 0. + returned: success + type: int + perTryTimeout: + description: + - Specifies a non-zero timeout per retry attempt. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. + Must be from 0 to 999,999,999 inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from + 0 to 315,576,000,000 inclusive. + returned: success + type: str + retryConditions: + description: + - 'Specfies one or more conditions when this retry rule applies. + Valid values are: - 5xx: Loadbalancer will attempt a retry + if the backend service responds with any 5xx response code, + or if the backend service does not respond at all, example: + disconnects, reset, read timeout, connection failure, and + refused streams.' + - "- gateway-error: Similar to 5xx, but only applies to response + codes 502, 503 or 504." + - "- connect-failure: Loadbalancer will retry on failures connecting + to backend services, for example due to connection timeouts." + - "- retriable-4xx: Loadbalancer will retry for retriable 4xx + response codes." + - Currently the only retriable error supported is 409. + - "- refused-stream: Loadbalancer will retry if the backend + service resets the stream with a REFUSED_STREAM error code. + This reset type indicates that it is safe to retry." + - "- cancelled: Loadbalancer will retry if the gRPC status code + in the response header is set to cancelled - deadline-exceeded: + Loadbalancer will retry if the gRPC status code in the response + header is set to deadline-exceeded - resource-exhausted: Loadbalancer + will retry if the gRPC status code in the response header + is set to resource-exhausted - unavailable: Loadbalancer will + retry if the gRPC status code in the response header is set + to unavailable ." + returned: success + type: list + timeout: + description: + - Specifies the timeout for the selected route. Timeout is computed + from the time the request is has been fully processed (i.e. end-of-stream) + up until the response has been completely processed. Timeout includes + all retries. If not specified, the default value is 15 seconds. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond resolution. + Durations less than one second are represented with a 0 `seconds` + field and a positive `nanos` field. Must be from 0 to 999,999,999 + inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 to + 315,576,000,000 inclusive. + returned: success + type: str + urlRewrite: + description: + - The spec to modify the URL of the request, prior to forwarding + the request to the matched service . + returned: success + type: complex + contains: + hostRewrite: + description: + - Prior to forwarding the request to the selected service, the + request's host header is replaced with contents of hostRewrite. + The value must be between 1 and 255 characters. + returned: success + type: str + pathPrefixRewrite: + description: + - Prior to forwarding the request to the selected backend service, + the matching portion of the request's path is replaced by + pathPrefixRewrite. The value must be between 1 and 1024 characters. + returned: success + type: str + weightedBackendServices: + description: + - A list of weighted backend services to send traffic to when a + route match occurs. The weights determine the fraction of traffic + that flows to their corresponding backend service. If all traffic + needs to go to a single backend service, there must be one weightedBackendService + with weight set to a non 0 number. Once a backendService is identified + and before forwarding the request to the backend service, advanced + routing actions like Url rewrites and header transformations are + applied depending on additional settings specified in this HttpRouteAction. + returned: success + type: complex + contains: + backendService: + description: + - The default RegionBackendService resource. Before forwarding + the request to backendService, the loadbalancer applies any + relevant headerActions specified as part of this backendServiceWeight. + returned: success + type: dict + headerAction: + description: + - Specifies changes to request and response headers that need + to take effect for the selected backendService. headerAction + specified here take effect before headerAction in the enclosing + HttpRouteRule, PathMatcher and UrlMap. + returned: success + type: complex + contains: + requestHeadersToAdd: + description: + - Headers to add to a matching request prior to forwarding + the request to the backendService. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that + already exist for the header. If true, headerValue + is set for the header, discarding any values that + were set for that header. + returned: success + type: bool + requestHeadersToRemove: + description: + - A list of header names for headers that need to be removed + from the request prior to forwarding the request to the + backendService. + returned: success + type: list + responseHeadersToAdd: + description: + - Headers to add the response prior to sending the response + back to the client. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that + already exist for the header. If true, headerValue + is set for the header, discarding any values that + were set for that header. + returned: success + type: bool + responseHeadersToRemove: + description: + - A list of header names for headers that need to be removed + from the response prior to sending the response back to + the client. + returned: success + type: list + weight: + description: + - Specifies the fraction of traffic sent to backendService, + computed as weight / (sum of all weightedBackendService weights + in routeAction) . The selection of a backend service is determined + only for new traffic. Once a user's request has been directed + to a backendService, subsequent requests will be sent to the + same backendService as determined by the BackendService's + session affinity policy. + - The value must be between 0 and 1000 . + returned: success + type: int + urlRedirect: + description: + - When this rule is matched, the request is redirected to a URL specified + by urlRedirect. If urlRedirect is specified, service or routeAction + must not be set. + returned: success + type: complex + contains: + hostRedirect: + description: + - The host that will be used in the redirect response instead of + the one that was supplied in the request. The value must be between + 1 and 255 characters. + returned: success + type: str + httpsRedirect: + description: + - If set to true, the URL scheme in the redirected request is set + to https. If set to false, the URL scheme of the redirected request + will remain the same as that of the request. This must only be + set for UrlMaps used in TargetHttpProxys. + - Setting this true for TargetHttpsProxy is not permitted. Defaults + to false. + returned: success + type: bool + pathRedirect: + description: + - The path that will be used in the redirect response instead of + the one that was supplied in the request. Only one of pathRedirect + or prefixRedirect must be specified. The value must be between + 1 and 1024 characters. + returned: success + type: str + prefixRedirect: + description: + - The prefix that replaces the prefixMatch specified in the HttpRouteRuleMatch, + retaining the remaining portion of the URL before redirecting + the request. + returned: success + type: str + redirectResponseCode: + description: + - 'The HTTP Status code to use for this RedirectAction. Supported + values are: - MOVED_PERMANENTLY_DEFAULT, which is the default + value and corresponds to 301. - FOUND, which corresponds to 302. + - SEE_OTHER which corresponds to 303. - TEMPORARY_REDIRECT, which + corresponds to 307. In this case, the request method will be retained. + - PERMANENT_REDIRECT, which corresponds to 308. In this case, + the request method will be retained.' + returned: success + type: str + stripQuery: + description: + - If set to true, any accompanying query portion of the original + URL is removed prior to redirecting the request. If set to false, + the query portion of the original URL is retained. Defaults to + false. + returned: success + type: bool + pathRules: + description: + - 'The list of path rules. Use this list instead of routeRules when routing + based on simple path matching is all that''s required. The order by which + path rules are specified does not matter. Matches are always done on the + longest-path-first basis. For example: a pathRule with a path /a/b/c/* + will match before /a/b/* irrespective of the order in which those paths + appear in this list. Within a given pathMatcher, only one of pathRules + or routeRules must be set.' + returned: success + type: complex + contains: + service: + description: + - The region backend service resource to which traffic is directed if + this rule is matched. If routeAction is additionally specified, advanced + routing actions like URL Rewrites, etc. take effect prior to sending + the request to the backend. However, if service is specified, routeAction + cannot contain any weightedBackendService s. Conversely, if routeAction + specifies any weightedBackendServices, service must not be specified. + Only one of urlRedirect, service or routeAction.weightedBackendService + must be set. + returned: success + type: dict + paths: + description: + - 'The list of path patterns to match. Each must start with / and the + only place a * is allowed is at the end following a /. The string + fed to the path matcher does not include any text after the first + ? or #, and those chars are not allowed here.' + returned: success + type: list + routeAction: + description: + - In response to a matching path, the load balancer performs advanced + routing actions like URL rewrites, header transformations, etc. prior + to forwarding the request to the selected backend. If routeAction + specifies any weightedBackendServices, service must not be set. Conversely + if service is set, routeAction cannot contain any weightedBackendServices. + Only one of routeAction or urlRedirect must be set. + returned: success + type: complex + contains: + corsPolicy: + description: + - The specification for allowing client side cross-origin requests. + Please see W3C Recommendation for Cross Origin Resource Sharing + . + returned: success + type: complex + contains: + allowCredentials: + description: + - In response to a preflight request, setting this to true indicates + that the actual request can include user credentials. This + translates to the Access- Control-Allow-Credentials header. + Defaults to false. + returned: success + type: bool + allowHeaders: + description: + - Specifies the content for the Access-Control-Allow-Headers + header. + returned: success + type: list + allowMethods: + description: + - Specifies the content for the Access-Control-Allow-Methods + header. + returned: success + type: list + allowOriginRegexes: + description: + - Specifies the regualar expression patterns that match allowed + origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript + An origin is allowed if it matches either allow_origins or + allow_origin_regex. + returned: success + type: list + allowOrigins: + description: + - Specifies the list of origins that will be allowed to do CORS + requests. An origin is allowed if it matches either allow_origins + or allow_origin_regex. + returned: success + type: list + disabled: + description: + - If true, specifies the CORS policy is disabled. + returned: success + type: bool + exposeHeaders: + description: + - Specifies the content for the Access-Control-Expose-Headers + header. + returned: success + type: list + maxAge: + description: + - Specifies how long the results of a preflight request can + be cached. This translates to the content for the Access-Control-Max-Age + header. + returned: success + type: int + faultInjectionPolicy: + description: + - The specification for fault injection introduced into traffic + to test the resiliency of clients to backend service failure. + As part of fault injection, when clients send requests to a backend + service, delays can be introduced by Loadbalancer on a percentage + of requests before sending those request to the backend service. + Similarly requests from clients can be aborted by the Loadbalancer + for a percentage of requests. timeout and retry_policy will be + ignored by clients that are configured with a fault_injection_policy. + returned: success + type: complex + contains: + abort: + description: + - The specification for how client requests are aborted as part + of fault injection. + returned: success + type: complex + contains: + httpStatus: + description: + - The HTTP status code used to abort the request. The value + must be between 200 and 599 inclusive. + returned: success + type: int + percentage: + description: + - The percentage of traffic (connections/operations/requests) + which will be aborted as part of fault injection. The + value must be between 0.0 and 100.0 inclusive. + returned: success + type: str + delay: + description: + - The specification for how client requests are delayed as part + of fault injection, before being sent to a backend service. + returned: success + type: complex + contains: + fixedDelay: + description: + - Specifies the value of the fixed delay interval. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. + Must be from 0 to 999,999,999 inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be + from 0 to 315,576,000,000 inclusive. + returned: success + type: str + percentage: + description: + - The percentage of traffic (connections/operations/requests) + on which delay will be introduced as part of fault injection. + The value must be between 0.0 and 100.0 inclusive. + returned: success + type: str + requestMirrorPolicy: + description: + - Specifies the policy on how requests intended for the route's + backends are shadowed to a separate mirrored backend service. + Loadbalancer does not wait for responses from the shadow service. + Prior to sending traffic to the shadow service, the host / authority + header is suffixed with -shadow. + returned: success + type: complex + contains: + backendService: + description: + - The RegionBackendService resource being mirrored to. + returned: success + type: dict + retryPolicy: + description: + - Specifies the retry policy associated with this route. + returned: success + type: complex + contains: + numRetries: + description: + - Specifies the allowed number retries. This number must be + > 0. + returned: success + type: int + perTryTimeout: + description: + - Specifies a non-zero timeout per retry attempt. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond + resolution. Durations less than one second are represented + with a 0 `seconds` field and a positive `nanos` field. + Must be from 0 to 999,999,999 inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from + 0 to 315,576,000,000 inclusive. + returned: success + type: str + retryConditions: + description: + - 'Specifies one or more conditions when this retry rule applies. + Valid values are: - 5xx: Loadbalancer will attempt a retry + if the backend service responds with any 5xx response code, + or if the backend service does not respond at all, example: + disconnects, reset, read timeout, connection failure, and + refused streams.' + - "- gateway-error: Similar to 5xx, but only applies to response + codes 502, 503 or 504." + - "- connect-failure: Loadbalancer will retry on failures connecting + to backend services, for example due to connection timeouts." + - "- retriable-4xx: Loadbalancer will retry for retriable 4xx + response codes." + - Currently the only retriable error supported is 409. + - "- refused-stream: Loadbalancer will retry if the backend + service resets the stream with a REFUSED_STREAM error code. + This reset type indicates that it is safe to retry." + - "- cancelled: Loadbalancer will retry if the gRPC status code + in the response header is set to cancelled - deadline-exceeded: + Loadbalancer will retry if the gRPC status code in the response + header is set to deadline-exceeded - resource-exhausted: Loadbalancer + will retry if the gRPC status code in the response header + is set to resource-exhausted - unavailable: Loadbalancer will + retry if the gRPC status code in the response header is set + to unavailable ." + returned: success + type: list + timeout: + description: + - Specifies the timeout for the selected route. Timeout is computed + from the time the request is has been fully processed (i.e. end-of-stream) + up until the response has been completely processed. Timeout includes + all retries. If not specified, the default value is 15 seconds. + returned: success + type: complex + contains: + nanos: + description: + - Span of time that's a fraction of a second at nanosecond resolution. + Durations less than one second are represented with a 0 `seconds` + field and a positive `nanos` field. Must be from 0 to 999,999,999 + inclusive. + returned: success + type: int + seconds: + description: + - Span of time at a resolution of a second. Must be from 0 to + 315,576,000,000 inclusive. + returned: success + type: str + urlRewrite: + description: + - The spec to modify the URL of the request, prior to forwarding + the request to the matched service . + returned: success + type: complex + contains: + hostRewrite: + description: + - Prior to forwarding the request to the selected service, the + request's host header is replaced with contents of hostRewrite. + The value must be between 1 and 255 characters. + returned: success + type: str + pathPrefixRewrite: + description: + - Prior to forwarding the request to the selected backend service, + the matching portion of the request's path is replaced by + pathPrefixRewrite. The value must be between 1 and 1024 characters. + returned: success + type: str + weightedBackendServices: + description: + - A list of weighted backend services to send traffic to when a + route match occurs. The weights determine the fraction of traffic + that flows to their corresponding backend service. If all traffic + needs to go to a single backend service, there must be one weightedBackendService + with weight set to a non 0 number. Once a backendService is identified + and before forwarding the request to the backend service, advanced + routing actions like Url rewrites and header transformations are + applied depending on additional settings specified in this HttpRouteAction. + returned: success + type: complex + contains: + backendService: + description: + - The default RegionBackendService resource. Before forwarding + the request to backendService, the loadbalancer applies any + relevant headerActions specified as part of this backendServiceWeight. + returned: success + type: dict + headerAction: + description: + - Specifies changes to request and response headers that need + to take effect for the selected backendService. headerAction + specified here take effect before headerAction in the enclosing + HttpRouteRule, PathMatcher and UrlMap. + returned: success + type: complex + contains: + requestHeadersToAdd: + description: + - Headers to add to a matching request prior to forwarding + the request to the backendService. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that + already exist for the header. If true, headerValue + is set for the header, discarding any values that + were set for that header. + returned: success + type: bool + requestHeadersToRemove: + description: + - A list of header names for headers that need to be removed + from the request prior to forwarding the request to the + backendService. + returned: success + type: list + responseHeadersToAdd: + description: + - Headers to add the response prior to sending the response + back to the client. + returned: success + type: complex + contains: + headerName: + description: + - The name of the header. + returned: success + type: str + headerValue: + description: + - The value of the header to add. + returned: success + type: str + replace: + description: + - If false, headerValue is appended to any values that + already exist for the header. If true, headerValue + is set for the header, discarding any values that + were set for that header. + returned: success + type: bool + responseHeadersToRemove: + description: + - A list of header names for headers that need to be removed + from the response prior to sending the response back to + the client. + returned: success + type: list + weight: + description: + - Specifies the fraction of traffic sent to backendService, + computed as weight / (sum of all weightedBackendService weights + in routeAction) . The selection of a backend service is determined + only for new traffic. Once a user's request has been directed + to a backendService, subsequent requests will be sent to the + same backendService as determined by the BackendService's + session affinity policy. + - The value must be between 0 and 1000 . + returned: success + type: int + urlRedirect: + description: + - When a path pattern is matched, the request is redirected to a URL + specified by urlRedirect. If urlRedirect is specified, service or + routeAction must not be set. + returned: success + type: complex + contains: + hostRedirect: + description: + - The host that will be used in the redirect response instead of + the one that was supplied in the request. The value must be between + 1 and 255 characters. + returned: success + type: str + httpsRedirect: + description: + - If set to true, the URL scheme in the redirected request is set + to https. If set to false, the URL scheme of the redirected request + will remain the same as that of the request. This must only be + set for UrlMaps used in TargetHttpProxys. + - Setting this true for TargetHttpsProxy is not permitted. Defaults + to false. + returned: success + type: bool + pathRedirect: + description: + - The path that will be used in the redirect response instead of + the one that was supplied in the request. Only one of pathRedirect + or prefixRedirect must be specified. The value must be between + 1 and 1024 characters. + returned: success + type: str + prefixRedirect: + description: + - The prefix that replaces the prefixMatch specified in the HttpRouteRuleMatch, + retaining the remaining portion of the URL before redirecting + the request. + returned: success + type: str + redirectResponseCode: + description: + - 'The HTTP Status code to use for this RedirectAction. Supported + values are: - MOVED_PERMANENTLY_DEFAULT, which is the default + value and corresponds to 301.' + - "- FOUND, which corresponds to 302." + - "- SEE_OTHER which corresponds to 303." + - "- TEMPORARY_REDIRECT, which corresponds to 307. In this case, + the request method will be retained." + - "- PERMANENT_REDIRECT, which corresponds to 308. In this case, + the request method will be retained." + returned: success + type: str + stripQuery: + description: + - If set to true, any accompanying query portion of the original + URL is removed prior to redirecting the request. If set to false, + the query portion of the original URL is retained. + returned: success + type: bool + tests: + description: + - The list of expected URL mappings. Requests to update this UrlMap will succeed + only if all of the test cases pass. + returned: success + type: complex + contains: + description: + description: + - Description of this test case. + returned: success + type: str + host: + description: + - Host portion of the URL. + returned: success + type: str + path: + description: + - Path portion of the URL. + returned: success + type: str + service: + description: + - A reference to expected RegionBackendService resource the given URL should + be mapped to. + returned: success + type: dict + region: + description: + - A reference to the region where the url map resides. + returned: success + type: str +''' + +################################################################################ +# Imports +################################################################################ +from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest +import json + +################################################################################ +# Main +################################################################################ + + +def main(): + module = GcpModule(argument_spec=dict(filters=dict(type='list', elements='str'), region=dict(required=True, type='str'))) + + if not module.params['scopes']: + module.params['scopes'] = ['https://www.googleapis.com/auth/compute'] + + return_value = {'resources': fetch_list(module, collection(module), query_options(module.params['filters']))} + module.exit_json(**return_value) + + +def collection(module): + return "https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/urlMaps".format(**module.params) + + +def fetch_list(module, link, query): + auth = GcpSession(module, 'compute') + return auth.list(link, return_if_object, array_name='items', params={'filter': query}) + + +def query_options(filters): + if not filters: + return '' + + if len(filters) == 1: + return filters[0] + else: + queries = [] + for f in filters: + # For multiple queries, all queries should have () + if f[0] != '(' and f[-1] != ')': + queries.append("(%s)" % ''.join(f)) + else: + queries.append(f) + + return ' '.join(queries) + + +def return_if_object(module, response): + # If not found, return nothing. + if response.status_code == 404: + return None + + # If no content, return nothing. + if response.status_code == 204: + return None + + try: + module.raise_for_status(response) + result = response.json() + except getattr(json.decoder, 'JSONDecodeError', ValueError) as inst: + module.fail_json(msg="Invalid JSON response with error: %s" % inst) + + if navigate_hash(result, ['error', 'errors']): + module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) + + return result + + +if __name__ == "__main__": + main() diff --git a/tests/integration/targets/gcp_compute_region_autoscaler/aliases b/tests/integration/targets/gcp_compute_region_autoscaler/aliases new file mode 100644 index 0000000..9812f01 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_autoscaler/aliases @@ -0,0 +1,2 @@ +cloud/gcp +unsupported diff --git a/tests/integration/targets/gcp_compute_region_autoscaler/defaults/main.yml b/tests/integration/targets/gcp_compute_region_autoscaler/defaults/main.yml new file mode 100644 index 0000000..ba66644 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_autoscaler/defaults/main.yml @@ -0,0 +1,2 @@ +--- +resource_name: "{{ resource_prefix }}" diff --git a/tests/integration/targets/gcp_compute_region_autoscaler/meta/main.yml b/tests/integration/targets/gcp_compute_region_autoscaler/meta/main.yml new file mode 100644 index 0000000..e69de29 diff --git a/tests/integration/targets/gcp_compute_region_autoscaler/tasks/autogen.yml b/tests/integration/targets/gcp_compute_region_autoscaler/tasks/autogen.yml new file mode 100644 index 0000000..3b92451 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_autoscaler/tasks/autogen.yml @@ -0,0 +1,251 @@ +--- +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- +# Pre-test setup +- name: create a network + google.cloud.gcp_compute_network: + name: network-instancetemplate + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: network +- name: create a address + google.cloud.gcp_compute_address: + name: address-instancetemplate + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: address +- name: create a instance template + google.cloud.gcp_compute_instance_template: + name: "{{ resource_name }}" + properties: + disks: + - auto_delete: 'true' + boot: 'true' + initialize_params: + source_image: projects/ubuntu-os-cloud/global/images/family/ubuntu-1604-lts + machine_type: n1-standard-1 + network_interfaces: + - network: "{{ network }}" + access_configs: + - name: test-config + type: ONE_TO_ONE_NAT + nat_ip: "{{ address }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: instancetemplate +- name: create a region instance group manager + google.cloud.gcp_compute_region_instance_group_manager: + name: "{{ resource_name }}" + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: igrm +- name: delete a region autoscaler + google.cloud.gcp_compute_region_autoscaler: + name: my-region-autoscaler + region: us-central1 + autoscaling_policy: + min_num_replicas: 1 + max_num_replicas: 5 + cool_down_period_sec: 60 + cpu_utilization: + utilization_target: 0.5 + target: "{{igrm.selfLink}}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent +#---------------------------------------------------------- +- name: create a region autoscaler + google.cloud.gcp_compute_region_autoscaler: + name: my-region-autoscaler + region: us-central1 + autoscaling_policy: + min_num_replicas: 1 + max_num_replicas: 5 + cool_down_period_sec: 60 + cpu_utilization: + utilization_target: 0.5 + target: "{{igrm.selfLink}}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_autoscaler was created + google.cloud.gcp_compute_region_autoscaler_info: + filters: + - name = my-region-autoscaler + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 1 +# ---------------------------------------------------------------------------- +- name: create a region autoscaler that already exists + google.cloud.gcp_compute_region_autoscaler: + name: my-region-autoscaler + region: us-central1 + autoscaling_policy: + min_num_replicas: 1 + max_num_replicas: 5 + cool_down_period_sec: 60 + cpu_utilization: + utilization_target: 0.5 + target: "{{igrm.selfLink}}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#---------------------------------------------------------- +- name: delete a region autoscaler + google.cloud.gcp_compute_region_autoscaler: + name: my-region-autoscaler + region: us-central1 + autoscaling_policy: + min_num_replicas: 1 + max_num_replicas: 5 + cool_down_period_sec: 60 + cpu_utilization: + utilization_target: 0.5 + target: "{{igrm.selfLink}}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_autoscaler was deleted + google.cloud.gcp_compute_region_autoscaler_info: + filters: + - name = my-region-autoscaler + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 0 +# ---------------------------------------------------------------------------- +- name: delete a region autoscaler that does not exist + google.cloud.gcp_compute_region_autoscaler: + name: my-region-autoscaler + region: us-central1 + autoscaling_policy: + min_num_replicas: 1 + max_num_replicas: 5 + cool_down_period_sec: 60 + cpu_utilization: + utilization_target: 0.5 + target: "{{igrm.selfLink}}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#--------------------------------------------------------- +# Post-test teardown +# If errors happen, don't crash the playbook! +- name: delete a region instance group manager + google.cloud.gcp_compute_region_instance_group_manager: + name: "{{ resource_name }}" + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: igrm + ignore_errors: true +- name: delete a instance template + google.cloud.gcp_compute_instance_template: + name: "{{ resource_name }}" + properties: + disks: + - auto_delete: 'true' + boot: 'true' + initialize_params: + source_image: projects/ubuntu-os-cloud/global/images/family/ubuntu-1604-lts + machine_type: n1-standard-1 + network_interfaces: + - network: "{{ network }}" + access_configs: + - name: test-config + type: ONE_TO_ONE_NAT + nat_ip: "{{ address }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: instancetemplate + ignore_errors: true +- name: delete a address + google.cloud.gcp_compute_address: + name: address-instancetemplate + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: address + ignore_errors: true +- name: delete a network + google.cloud.gcp_compute_network: + name: network-instancetemplate + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: network + ignore_errors: true diff --git a/tests/integration/targets/gcp_compute_region_autoscaler/tasks/main.yml b/tests/integration/targets/gcp_compute_region_autoscaler/tasks/main.yml new file mode 100644 index 0000000..45d6e49 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_autoscaler/tasks/main.yml @@ -0,0 +1,2 @@ +--- +- include_tasks: autogen.yml diff --git a/tests/integration/targets/gcp_compute_region_instance_group_manager/aliases b/tests/integration/targets/gcp_compute_region_instance_group_manager/aliases new file mode 100644 index 0000000..9812f01 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_instance_group_manager/aliases @@ -0,0 +1,2 @@ +cloud/gcp +unsupported diff --git a/tests/integration/targets/gcp_compute_region_instance_group_manager/defaults/main.yml b/tests/integration/targets/gcp_compute_region_instance_group_manager/defaults/main.yml new file mode 100644 index 0000000..ba66644 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_instance_group_manager/defaults/main.yml @@ -0,0 +1,2 @@ +--- +resource_name: "{{ resource_prefix }}" diff --git a/tests/integration/targets/gcp_compute_region_instance_group_manager/meta/main.yml b/tests/integration/targets/gcp_compute_region_instance_group_manager/meta/main.yml new file mode 100644 index 0000000..e69de29 diff --git a/tests/integration/targets/gcp_compute_region_instance_group_manager/tasks/autogen.yml b/tests/integration/targets/gcp_compute_region_instance_group_manager/tasks/autogen.yml new file mode 100644 index 0000000..8a78acf --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_instance_group_manager/tasks/autogen.yml @@ -0,0 +1,206 @@ +--- +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- +# Pre-test setup +- name: create a network + google.cloud.gcp_compute_network: + name: network-instancetemplate + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: network +- name: create a address + google.cloud.gcp_compute_address: + name: address-instancetemplate + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: address +- name: create a instance template + google.cloud.gcp_compute_instance_template: + name: "{{ resource_name }}" + properties: + disks: + - auto_delete: 'true' + boot: 'true' + initialize_params: + source_image: projects/ubuntu-os-cloud/global/images/family/ubuntu-1604-lts + machine_type: n1-standard-1 + network_interfaces: + - network: "{{ network }}" + access_configs: + - name: test-config + type: ONE_TO_ONE_NAT + nat_ip: "{{ address }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: instancetemplate +- name: delete a region instance group manager + google.cloud.gcp_compute_region_instance_group_manager: + name: "{{ resource_name }}" + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent +#---------------------------------------------------------- +- name: create a region instance group manager + google.cloud.gcp_compute_region_instance_group_manager: + name: "{{ resource_name }}" + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_instance_group_manager was created + google.cloud.gcp_compute_region_instance_group_manager_info: + filters: + - name = {{ resource_name }} + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 1 +# ---------------------------------------------------------------------------- +- name: create a region instance group manager that already exists + google.cloud.gcp_compute_region_instance_group_manager: + name: "{{ resource_name }}" + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#---------------------------------------------------------- +- name: delete a region instance group manager + google.cloud.gcp_compute_region_instance_group_manager: + name: "{{ resource_name }}" + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_instance_group_manager was deleted + google.cloud.gcp_compute_region_instance_group_manager_info: + filters: + - name = {{ resource_name }} + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 0 +# ---------------------------------------------------------------------------- +- name: delete a region instance group manager that does not exist + google.cloud.gcp_compute_region_instance_group_manager: + name: "{{ resource_name }}" + base_instance_name: test1-child + region: us-central1 + instance_template: "{{ instancetemplate }}" + target_size: 3 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#--------------------------------------------------------- +# Post-test teardown +# If errors happen, don't crash the playbook! +- name: delete a instance template + google.cloud.gcp_compute_instance_template: + name: "{{ resource_name }}" + properties: + disks: + - auto_delete: 'true' + boot: 'true' + initialize_params: + source_image: projects/ubuntu-os-cloud/global/images/family/ubuntu-1604-lts + machine_type: n1-standard-1 + network_interfaces: + - network: "{{ network }}" + access_configs: + - name: test-config + type: ONE_TO_ONE_NAT + nat_ip: "{{ address }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: instancetemplate + ignore_errors: true +- name: delete a address + google.cloud.gcp_compute_address: + name: address-instancetemplate + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: address + ignore_errors: true +- name: delete a network + google.cloud.gcp_compute_network: + name: network-instancetemplate + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: network + ignore_errors: true diff --git a/tests/integration/targets/gcp_compute_region_instance_group_manager/tasks/main.yml b/tests/integration/targets/gcp_compute_region_instance_group_manager/tasks/main.yml new file mode 100644 index 0000000..45d6e49 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_instance_group_manager/tasks/main.yml @@ -0,0 +1,2 @@ +--- +- include_tasks: autogen.yml diff --git a/tests/integration/targets/gcp_compute_region_target_http_proxy/aliases b/tests/integration/targets/gcp_compute_region_target_http_proxy/aliases new file mode 100644 index 0000000..9812f01 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_target_http_proxy/aliases @@ -0,0 +1,2 @@ +cloud/gcp +unsupported diff --git a/tests/integration/targets/gcp_compute_region_target_http_proxy/defaults/main.yml b/tests/integration/targets/gcp_compute_region_target_http_proxy/defaults/main.yml new file mode 100644 index 0000000..ba66644 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_target_http_proxy/defaults/main.yml @@ -0,0 +1,2 @@ +--- +resource_name: "{{ resource_prefix }}" diff --git a/tests/integration/targets/gcp_compute_region_target_http_proxy/meta/main.yml b/tests/integration/targets/gcp_compute_region_target_http_proxy/meta/main.yml new file mode 100644 index 0000000..e69de29 diff --git a/tests/integration/targets/gcp_compute_region_target_http_proxy/tasks/autogen.yml b/tests/integration/targets/gcp_compute_region_target_http_proxy/tasks/autogen.yml new file mode 100644 index 0000000..ccee592 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_target_http_proxy/tasks/autogen.yml @@ -0,0 +1,207 @@ +--- +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- +# Pre-test setup +- name: create a instance group + google.cloud.gcp_compute_instance_group: + name: instancegroup-targethttpproxy + zone: us-central1-a + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: instancegroup +- name: create a HTTP health check + google.cloud.gcp_compute_http_health_check: + name: httphealthcheck-targethttpproxy + healthy_threshold: 10 + port: 8080 + timeout_sec: 2 + unhealthy_threshold: 5 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: healthcheck +- name: create a backend service + google.cloud.gcp_compute_backend_service: + name: backendservice-targethttpproxy + backends: + - group: "{{ instancegroup.selfLink }}" + health_checks: + - "{{ healthcheck.selfLink }}" + enable_cdn: 'true' + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: backendservice +- name: create a URL map + google.cloud.gcp_compute_url_map: + name: urlmap-targethttpproxy + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: urlmap +- name: delete a region target HTTP proxy + google.cloud.gcp_compute_region_target_http_proxy: + name: "{{ resource_name }}" + region: us-central1 + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent +#---------------------------------------------------------- +- name: create a region target HTTP proxy + google.cloud.gcp_compute_region_target_http_proxy: + name: "{{ resource_name }}" + region: us-central1 + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_target_http_proxy was created + google.cloud.gcp_compute_region_target_http_proxy_info: + filters: + - name = {{ resource_name }} + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 1 +# ---------------------------------------------------------------------------- +- name: create a region target HTTP proxy that already exists + google.cloud.gcp_compute_region_target_http_proxy: + name: "{{ resource_name }}" + region: us-central1 + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#---------------------------------------------------------- +- name: delete a region target HTTP proxy + google.cloud.gcp_compute_region_target_http_proxy: + name: "{{ resource_name }}" + region: us-central1 + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_target_http_proxy was deleted + google.cloud.gcp_compute_region_target_http_proxy_info: + filters: + - name = {{ resource_name }} + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 0 +# ---------------------------------------------------------------------------- +- name: delete a region target HTTP proxy that does not exist + google.cloud.gcp_compute_region_target_http_proxy: + name: "{{ resource_name }}" + region: us-central1 + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#--------------------------------------------------------- +# Post-test teardown +# If errors happen, don't crash the playbook! +- name: delete a URL map + google.cloud.gcp_compute_url_map: + name: urlmap-targethttpproxy + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: urlmap + ignore_errors: true +- name: delete a backend service + google.cloud.gcp_compute_backend_service: + name: backendservice-targethttpproxy + backends: + - group: "{{ instancegroup.selfLink }}" + health_checks: + - "{{ healthcheck.selfLink }}" + enable_cdn: 'true' + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: backendservice + ignore_errors: true +- name: delete a HTTP health check + google.cloud.gcp_compute_http_health_check: + name: httphealthcheck-targethttpproxy + healthy_threshold: 10 + port: 8080 + timeout_sec: 2 + unhealthy_threshold: 5 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: healthcheck + ignore_errors: true +- name: delete a instance group + google.cloud.gcp_compute_instance_group: + name: instancegroup-targethttpproxy + zone: us-central1-a + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: instancegroup + ignore_errors: true diff --git a/tests/integration/targets/gcp_compute_region_target_http_proxy/tasks/main.yml b/tests/integration/targets/gcp_compute_region_target_http_proxy/tasks/main.yml new file mode 100644 index 0000000..45d6e49 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_target_http_proxy/tasks/main.yml @@ -0,0 +1,2 @@ +--- +- include_tasks: autogen.yml diff --git a/tests/integration/targets/gcp_compute_region_target_https_proxy/aliases b/tests/integration/targets/gcp_compute_region_target_https_proxy/aliases new file mode 100644 index 0000000..9812f01 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_target_https_proxy/aliases @@ -0,0 +1,2 @@ +cloud/gcp +unsupported diff --git a/tests/integration/targets/gcp_compute_region_target_https_proxy/defaults/main.yml b/tests/integration/targets/gcp_compute_region_target_https_proxy/defaults/main.yml new file mode 100644 index 0000000..ba66644 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_target_https_proxy/defaults/main.yml @@ -0,0 +1,2 @@ +--- +resource_name: "{{ resource_prefix }}" diff --git a/tests/integration/targets/gcp_compute_region_target_https_proxy/meta/main.yml b/tests/integration/targets/gcp_compute_region_target_https_proxy/meta/main.yml new file mode 100644 index 0000000..e69de29 diff --git a/tests/integration/targets/gcp_compute_region_target_https_proxy/tasks/autogen.yml b/tests/integration/targets/gcp_compute_region_target_https_proxy/tasks/autogen.yml new file mode 100644 index 0000000..1a22974 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_target_https_proxy/tasks/autogen.yml @@ -0,0 +1,288 @@ +--- +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- +# Pre-test setup +- name: create a instance group + google.cloud.gcp_compute_instance_group: + name: instancegroup-targethttpsproxy + zone: us-central1-a + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: instancegroup +- name: create a region health check + google.cloud.gcp_compute_region_health_check: + name: "{{ resource_name }}" + type: HTTPS + healthy_threshold: 10 + timeout_sec: 2 + unhealthy_threshold: 5 + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: healthcheck +- name: create a region backend service + google.cloud.gcp_compute_region_backend_service: + name: backendservice-targethttpsproxy + region: us-central1 + backends: + - group: "{{ instancegroup.selfLink }}" + healthchecks: + - "{{ healthcheck.selfLink }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: backendservice +- name: create a region URL map + google.cloud.gcp_compute_region_url_map: + name: urlmap-targethttpsproxy + region: us-central1 + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: urlmap +- name: create a SSL certificate + google.cloud.gcp_compute_ssl_certificate: + name: sslcert-targethttpsproxy + description: A certificate for testing. Do not use this certificate in production + certificate: |- + -----BEGIN CERTIFICATE----- + MIICqjCCAk+gAwIBAgIJAIuJ+0352Kq4MAoGCCqGSM49BAMCMIGwMQswCQYDVQQG + EwJVUzETMBEGA1UECAwKV2FzaGluZ3RvbjERMA8GA1UEBwwIS2lya2xhbmQxFTAT + BgNVBAoMDEdvb2dsZSwgSW5jLjEeMBwGA1UECwwVR29vZ2xlIENsb3VkIFBsYXRm + b3JtMR8wHQYDVQQDDBZ3d3cubXktc2VjdXJlLXNpdGUuY29tMSEwHwYJKoZIhvcN + AQkBFhJuZWxzb25hQGdvb2dsZS5jb20wHhcNMTcwNjI4MDQ1NjI2WhcNMjcwNjI2 + MDQ1NjI2WjCBsDELMAkGA1UEBhMCVVMxEzARBgNVBAgMCldhc2hpbmd0b24xETAP + BgNVBAcMCEtpcmtsYW5kMRUwEwYDVQQKDAxHb29nbGUsIEluYy4xHjAcBgNVBAsM + FUdvb2dsZSBDbG91ZCBQbGF0Zm9ybTEfMB0GA1UEAwwWd3d3Lm15LXNlY3VyZS1z + aXRlLmNvbTEhMB8GCSqGSIb3DQEJARYSbmVsc29uYUBnb29nbGUuY29tMFkwEwYH + KoZIzj0CAQYIKoZIzj0DAQcDQgAEHGzpcRJ4XzfBJCCPMQeXQpTXwlblimODQCuQ + 4mzkzTv0dXyB750fOGN02HtkpBOZzzvUARTR10JQoSe2/5PIwaNQME4wHQYDVR0O + BBYEFKIQC3A2SDpxcdfn0YLKineDNq/BMB8GA1UdIwQYMBaAFKIQC3A2SDpxcdfn + 0YLKineDNq/BMAwGA1UdEwQFMAMBAf8wCgYIKoZIzj0EAwIDSQAwRgIhALs4vy+O + M3jcqgA4fSW/oKw6UJxp+M6a+nGMX+UJR3YgAiEAvvl39QRVAiv84hdoCuyON0lJ + zqGNhIPGq2ULqXKK8BY= + -----END CERTIFICATE----- + private_key: |- + -----BEGIN EC PRIVATE KEY----- + MHcCAQEEIObtRo8tkUqoMjeHhsOh2ouPpXCgBcP+EDxZCB/tws15oAoGCCqGSM49 + AwEHoUQDQgAEHGzpcRJ4XzfBJCCPMQeXQpTXwlblimODQCuQ4mzkzTv0dXyB750f + OGN02HtkpBOZzzvUARTR10JQoSe2/5PIwQ== + -----END EC PRIVATE KEY----- + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: sslcert +- name: delete a region target HTTPS proxy + google.cloud.gcp_compute_region_target_https_proxy: + name: "{{ resource_name }}" + region: us-central1 + ssl_certificates: + - "{{ sslcert }}" + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent +#---------------------------------------------------------- +- name: create a region target HTTPS proxy + google.cloud.gcp_compute_region_target_https_proxy: + name: "{{ resource_name }}" + region: us-central1 + ssl_certificates: + - "{{ sslcert }}" + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_target_https_proxy was created + google.cloud.gcp_compute_region_target_https_proxy_info: + filters: + - name = {{ resource_name }} + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 1 +# ---------------------------------------------------------------------------- +- name: create a region target HTTPS proxy that already exists + google.cloud.gcp_compute_region_target_https_proxy: + name: "{{ resource_name }}" + region: us-central1 + ssl_certificates: + - "{{ sslcert }}" + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#---------------------------------------------------------- +- name: delete a region target HTTPS proxy + google.cloud.gcp_compute_region_target_https_proxy: + name: "{{ resource_name }}" + region: us-central1 + ssl_certificates: + - "{{ sslcert }}" + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_target_https_proxy was deleted + google.cloud.gcp_compute_region_target_https_proxy_info: + filters: + - name = {{ resource_name }} + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 0 +# ---------------------------------------------------------------------------- +- name: delete a region target HTTPS proxy that does not exist + google.cloud.gcp_compute_region_target_https_proxy: + name: "{{ resource_name }}" + region: us-central1 + ssl_certificates: + - "{{ sslcert }}" + url_map: "{{ urlmap }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#--------------------------------------------------------- +# Post-test teardown +# If errors happen, don't crash the playbook! +- name: delete a SSL certificate + google.cloud.gcp_compute_ssl_certificate: + name: sslcert-targethttpsproxy + description: A certificate for testing. Do not use this certificate in production + certificate: |- + -----BEGIN CERTIFICATE----- + MIICqjCCAk+gAwIBAgIJAIuJ+0352Kq4MAoGCCqGSM49BAMCMIGwMQswCQYDVQQG + EwJVUzETMBEGA1UECAwKV2FzaGluZ3RvbjERMA8GA1UEBwwIS2lya2xhbmQxFTAT + BgNVBAoMDEdvb2dsZSwgSW5jLjEeMBwGA1UECwwVR29vZ2xlIENsb3VkIFBsYXRm + b3JtMR8wHQYDVQQDDBZ3d3cubXktc2VjdXJlLXNpdGUuY29tMSEwHwYJKoZIhvcN + AQkBFhJuZWxzb25hQGdvb2dsZS5jb20wHhcNMTcwNjI4MDQ1NjI2WhcNMjcwNjI2 + MDQ1NjI2WjCBsDELMAkGA1UEBhMCVVMxEzARBgNVBAgMCldhc2hpbmd0b24xETAP + BgNVBAcMCEtpcmtsYW5kMRUwEwYDVQQKDAxHb29nbGUsIEluYy4xHjAcBgNVBAsM + FUdvb2dsZSBDbG91ZCBQbGF0Zm9ybTEfMB0GA1UEAwwWd3d3Lm15LXNlY3VyZS1z + aXRlLmNvbTEhMB8GCSqGSIb3DQEJARYSbmVsc29uYUBnb29nbGUuY29tMFkwEwYH + KoZIzj0CAQYIKoZIzj0DAQcDQgAEHGzpcRJ4XzfBJCCPMQeXQpTXwlblimODQCuQ + 4mzkzTv0dXyB750fOGN02HtkpBOZzzvUARTR10JQoSe2/5PIwaNQME4wHQYDVR0O + BBYEFKIQC3A2SDpxcdfn0YLKineDNq/BMB8GA1UdIwQYMBaAFKIQC3A2SDpxcdfn + 0YLKineDNq/BMAwGA1UdEwQFMAMBAf8wCgYIKoZIzj0EAwIDSQAwRgIhALs4vy+O + M3jcqgA4fSW/oKw6UJxp+M6a+nGMX+UJR3YgAiEAvvl39QRVAiv84hdoCuyON0lJ + zqGNhIPGq2ULqXKK8BY= + -----END CERTIFICATE----- + private_key: |- + -----BEGIN EC PRIVATE KEY----- + MHcCAQEEIObtRo8tkUqoMjeHhsOh2ouPpXCgBcP+EDxZCB/tws15oAoGCCqGSM49 + AwEHoUQDQgAEHGzpcRJ4XzfBJCCPMQeXQpTXwlblimODQCuQ4mzkzTv0dXyB750f + OGN02HtkpBOZzzvUARTR10JQoSe2/5PIwQ== + -----END EC PRIVATE KEY----- + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: sslcert + ignore_errors: true +- name: delete a region URL map + google.cloud.gcp_compute_region_url_map: + name: urlmap-targethttpsproxy + region: us-central1 + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: urlmap + ignore_errors: true +- name: delete a region backend service + google.cloud.gcp_compute_region_backend_service: + name: backendservice-targethttpsproxy + region: us-central1 + backends: + - group: "{{ instancegroup.selfLink }}" + healthchecks: + - "{{ healthcheck.selfLink }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: backendservice + ignore_errors: true +- name: delete a region health check + google.cloud.gcp_compute_region_health_check: + name: "{{ resource_name }}" + type: HTTPS + healthy_threshold: 10 + timeout_sec: 2 + unhealthy_threshold: 5 + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: healthcheck + ignore_errors: true +- name: delete a instance group + google.cloud.gcp_compute_instance_group: + name: instancegroup-targethttpsproxy + zone: us-central1-a + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: instancegroup + ignore_errors: true diff --git a/tests/integration/targets/gcp_compute_region_target_https_proxy/tasks/main.yml b/tests/integration/targets/gcp_compute_region_target_https_proxy/tasks/main.yml new file mode 100644 index 0000000..45d6e49 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_target_https_proxy/tasks/main.yml @@ -0,0 +1,2 @@ +--- +- include_tasks: autogen.yml diff --git a/tests/integration/targets/gcp_compute_region_url_map/aliases b/tests/integration/targets/gcp_compute_region_url_map/aliases new file mode 100644 index 0000000..9812f01 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_url_map/aliases @@ -0,0 +1,2 @@ +cloud/gcp +unsupported diff --git a/tests/integration/targets/gcp_compute_region_url_map/defaults/main.yml b/tests/integration/targets/gcp_compute_region_url_map/defaults/main.yml new file mode 100644 index 0000000..ba66644 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_url_map/defaults/main.yml @@ -0,0 +1,2 @@ +--- +resource_name: "{{ resource_prefix }}" diff --git a/tests/integration/targets/gcp_compute_region_url_map/meta/main.yml b/tests/integration/targets/gcp_compute_region_url_map/meta/main.yml new file mode 100644 index 0000000..e69de29 diff --git a/tests/integration/targets/gcp_compute_region_url_map/tasks/autogen.yml b/tests/integration/targets/gcp_compute_region_url_map/tasks/autogen.yml new file mode 100644 index 0000000..1a83e82 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_url_map/tasks/autogen.yml @@ -0,0 +1,169 @@ +--- +# ---------------------------------------------------------------------------- +# +# *** AUTO GENERATED CODE *** AUTO GENERATED CODE *** +# +# ---------------------------------------------------------------------------- +# +# This file is automatically generated by Magic Modules and manual +# changes will be clobbered when the file is regenerated. +# +# Please read more about how to change this file at +# https://www.github.com/GoogleCloudPlatform/magic-modules +# +# ---------------------------------------------------------------------------- +# Pre-test setup +- name: create a health check + google.cloud.gcp_compute_health_check: + name: "{{ resource_name }}" + type: HTTP + http_health_check: + port: 80 + check_interval_sec: 1 + timeout_sec: 1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: healthcheck +- name: create a region backend service + google.cloud.gcp_compute_region_backend_service: + name: "{{ resource_name }}" + region: us-central1 + health_checks: + - "{{ healthcheck.selfLink }}" + protocol: HTTP + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: backendservice +- name: delete a region URL map + google.cloud.gcp_compute_region_url_map: + name: "{{ resource_name }}" + region: us-central1 + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent +#---------------------------------------------------------- +- name: create a region URL map + google.cloud.gcp_compute_region_url_map: + name: "{{ resource_name }}" + region: us-central1 + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_url_map was created + google.cloud.gcp_compute_region_url_map_info: + filters: + - name = {{ resource_name }} + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 1 +# ---------------------------------------------------------------------------- +- name: create a region URL map that already exists + google.cloud.gcp_compute_region_url_map: + name: "{{ resource_name }}" + region: us-central1 + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: present + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#---------------------------------------------------------- +- name: delete a region URL map + google.cloud.gcp_compute_region_url_map: + name: "{{ resource_name }}" + region: us-central1 + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is true + assert: + that: + - result.changed == true +- name: verify that region_url_map was deleted + google.cloud.gcp_compute_region_url_map_info: + filters: + - name = {{ resource_name }} + region: us-central1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + scopes: + - https://www.googleapis.com/auth/compute + register: results +- name: verify that command succeeded + assert: + that: + - results['resources'] | length == 0 +# ---------------------------------------------------------------------------- +- name: delete a region URL map that does not exist + google.cloud.gcp_compute_region_url_map: + name: "{{ resource_name }}" + region: us-central1 + default_service: "{{ backendservice }}" + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: result +- name: assert changed is false + assert: + that: + - result.changed == false +#--------------------------------------------------------- +# Post-test teardown +# If errors happen, don't crash the playbook! +- name: delete a region backend service + google.cloud.gcp_compute_region_backend_service: + name: "{{ resource_name }}" + region: us-central1 + health_checks: + - "{{ healthcheck.selfLink }}" + protocol: HTTP + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: backendservice + ignore_errors: true +- name: delete a health check + google.cloud.gcp_compute_health_check: + name: "{{ resource_name }}" + type: HTTP + http_health_check: + port: 80 + check_interval_sec: 1 + timeout_sec: 1 + project: "{{ gcp_project }}" + auth_kind: "{{ gcp_cred_kind }}" + service_account_file: "{{ gcp_cred_file }}" + state: absent + register: healthcheck + ignore_errors: true diff --git a/tests/integration/targets/gcp_compute_region_url_map/tasks/main.yml b/tests/integration/targets/gcp_compute_region_url_map/tasks/main.yml new file mode 100644 index 0000000..45d6e49 --- /dev/null +++ b/tests/integration/targets/gcp_compute_region_url_map/tasks/main.yml @@ -0,0 +1,2 @@ +--- +- include_tasks: autogen.yml