Bug fixes for GCP modules (as of 2019-01-09T15:35:45-08:00) (#50785)

2025-04-23 03:11:22 -07:00 · 2019-01-16 11:15:03 -08:00 · 2019-01-16 11:15:03 -08:00 · d856bd0c29
commit d856bd0c29
parent 899cc535cf
32 changed files with 282 additions and 188 deletions
--- a/plugins/modules/gcp_compute_target_https_proxy.py
+++ b/plugins/modules/gcp_compute_target_https_proxy.py
@ -81,15 +81,25 @@ options:
      between users and the load balancer. Currently, exactly one SSL certificate
      must be specified.
    required: true
+  ssl_policy:
+    description:
+    - A reference to the SslPolicy resource that will be associated with the TargetHttpsProxy
+      resource. If not set, the TargetHttpsProxy resource will not have any SSL policy
+      configured.
+    - 'This field represents a link to a SslPolicy resource in GCP. It can be specified
+      in two ways. First, you can place in the selfLink of the resource here as a
+      string Alternatively, you can add `register: name-of-resource` to a gcp_compute_ssl_policy
+      task and then set this ssl_policy field to "{{ name-of-resource }}"'
+    required: false
+    version_added: 2.8
  url_map:
    description:
    - A reference to the UrlMap resource that defines the mapping from URL to the
      BackendService.
    - 'This field represents a link to a UrlMap resource in GCP. It can be specified
-      in two ways. You can add `register: name-of-resource` to a gcp_compute_url_map
-      task and then set this url_map field to "{{ name-of-resource }}" Alternatively,
-      you can set this url_map to a dictionary with the selfLink key where the value
-      is the selfLink of your UrlMap'
+      in two ways. First, you can place in the selfLink of the resource here as a
+      string Alternatively, you can add `register: name-of-resource` to a gcp_compute_url_map
+      task and then set this url_map field to "{{ name-of-resource }}"'
    required: true
 extends_documentation_fragment: gcp
 notes:
@ -232,11 +242,18 @@ sslCertificates:
    users and the load balancer. Currently, exactly one SSL certificate must be specified.
  returned: success
  type: list
+sslPolicy:
+  description:
+  - A reference to the SslPolicy resource that will be associated with the TargetHttpsProxy
+    resource. If not set, the TargetHttpsProxy resource will not have any SSL policy
+    configured.
+  returned: success
+  type: str
 urlMap:
  description:
  - A reference to the UrlMap resource that defines the mapping from URL to the BackendService.
  returned: success
-  type: dict
+  type: str
 '''

 ################################################################################
@ -261,8 +278,9 @@ def main():
            description=dict(type='str'),
            name=dict(required=True, type='str'),
            quic_override=dict(type='str', choices=['NONE', 'ENABLE', 'DISABLE']),
-            ssl_certificates=dict(required=True, type='list', elements='dict'),
-            url_map=dict(required=True, type='dict')
+            ssl_certificates=dict(required=True, type='list'),
+            ssl_policy=dict(),
+            url_map=dict(required=True)
        )
    )

@ -313,6 +331,8 @@ def update_fields(module, request, response):
        quic_override_update(module, request, response)
    if response.get('sslCertificates') != request.get('sslCertificates'):
        ssl_certificates_update(module, request, response)
+    if response.get('sslPolicy') != request.get('sslPolicy'):
+        ssl_policy_update(module, request, response)
    if response.get('urlMap') != request.get('urlMap'):
        url_map_update(module, request, response)

@ -343,6 +363,19 @@ def ssl_certificates_update(module, request, response):
    )


+def ssl_policy_update(module, request, response):
+    auth = GcpSession(module, 'compute')
+    auth.post(
+        ''.join([
+            "https://www.googleapis.com/compute/v1/",
+            "projects/{project}/global/targetHttpsProxies/{name}/setSslPolicy"
+        ]).format(**module.params),
+        {
+            u'sslPolicy': replace_resource_dict(module.params.get(u'ssl_policy', {}), 'selfLink')
+        }
+    )
+
+
 def url_map_update(module, request, response):
    auth = GcpSession(module, 'compute')
    auth.post(
@ -368,6 +401,7 @@ def resource_to_request(module):
        u'name': module.params.get('name'),
        u'quicOverride': module.params.get('quic_override'),
        u'sslCertificates': replace_resource_dict(module.params.get('ssl_certificates', []), 'selfLink'),
+        u'sslPolicy': replace_resource_dict(module.params.get(u'ssl_policy', {}), 'selfLink'),
        u'urlMap': replace_resource_dict(module.params.get(u'url_map', {}), 'selfLink')
    }
    return_vals = {}
@ -440,6 +474,7 @@ def response_to_hash(module, response):
        u'name': module.params.get('name'),
        u'quicOverride': response.get(u'quicOverride'),
        u'sslCertificates': response.get(u'sslCertificates'),
+        u'sslPolicy': response.get(u'sslPolicy'),
        u'urlMap': response.get(u'urlMap')
    }