2020-03-09 10:11:07 +01:00
|
|
|
#!/usr/bin/python
|
|
|
|
# -*- coding: utf-8 -*-
|
|
|
|
|
|
|
|
# Copyright: (c) 2016, Gregory Shulov (gregory.shulov@gmail.com)
|
|
|
|
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
|
|
__metaclass__ = type
|
|
|
|
|
|
|
|
|
|
|
|
DOCUMENTATION = '''
|
|
|
|
---
|
|
|
|
module: infini_export_client
|
|
|
|
short_description: Create, Delete or Modify NFS Client(s) for existing exports on Infinibox
|
|
|
|
description:
|
|
|
|
- This module creates, deletes or modifys NFS client(s) for existing exports on Infinibox.
|
|
|
|
author: Gregory Shulov (@GR360RY)
|
|
|
|
options:
|
|
|
|
client:
|
|
|
|
description:
|
|
|
|
- Client IP or Range. Ranges can be defined as follows
|
|
|
|
192.168.0.1-192.168.0.254.
|
|
|
|
aliases: ['name']
|
|
|
|
required: true
|
|
|
|
state:
|
|
|
|
description:
|
|
|
|
- Creates/Modifies client when present and removes when absent.
|
|
|
|
required: false
|
|
|
|
default: "present"
|
|
|
|
choices: [ "present", "absent" ]
|
|
|
|
access_mode:
|
|
|
|
description:
|
|
|
|
- Read Write or Read Only Access.
|
|
|
|
choices: [ "RW", "RO" ]
|
|
|
|
default: RW
|
|
|
|
required: false
|
|
|
|
no_root_squash:
|
|
|
|
description:
|
|
|
|
- Don't squash root user to anonymous. Will be set to "no" on creation if not specified explicitly.
|
|
|
|
type: bool
|
|
|
|
default: no
|
|
|
|
required: false
|
|
|
|
export:
|
|
|
|
description:
|
|
|
|
- Name of the export.
|
|
|
|
required: true
|
|
|
|
extends_documentation_fragment:
|
|
|
|
- community.general.infinibox
|
|
|
|
|
|
|
|
requirements:
|
|
|
|
- munch
|
|
|
|
'''
|
|
|
|
|
|
|
|
EXAMPLES = '''
|
|
|
|
- name: Make sure nfs client 10.0.0.1 is configured for export. Allow root access
|
|
|
|
infini_export_client:
|
|
|
|
client: 10.0.0.1
|
|
|
|
access_mode: RW
|
|
|
|
no_root_squash: yes
|
|
|
|
export: /data
|
|
|
|
user: admin
|
|
|
|
password: secret
|
|
|
|
system: ibox001
|
|
|
|
|
|
|
|
- name: Add multiple clients with RO access. Squash root privileges
|
|
|
|
infini_export_client:
|
|
|
|
client: "{{ item }}"
|
|
|
|
access_mode: RO
|
|
|
|
no_root_squash: no
|
|
|
|
export: /data
|
|
|
|
user: admin
|
|
|
|
password: secret
|
|
|
|
system: ibox001
|
|
|
|
with_items:
|
|
|
|
- 10.0.0.2
|
|
|
|
- 10.0.0.3
|
|
|
|
'''
|
|
|
|
|
|
|
|
RETURN = '''
|
|
|
|
'''
|
|
|
|
import traceback
|
|
|
|
|
|
|
|
MUNCH_IMP_ERR = None
|
|
|
|
try:
|
|
|
|
from munch import Munch, unmunchify
|
|
|
|
HAS_MUNCH = True
|
|
|
|
except ImportError:
|
|
|
|
MUNCH_IMP_ERR = traceback.format_exc()
|
|
|
|
HAS_MUNCH = False
|
|
|
|
|
|
|
|
from ansible.module_utils.basic import AnsibleModule, missing_required_lib
|
|
|
|
from ansible_collections.community.general.plugins.module_utils.infinibox import HAS_INFINISDK, api_wrapper, get_system, infinibox_argument_spec
|
|
|
|
|
|
|
|
|
|
|
|
def transform(d):
|
|
|
|
return frozenset(d.items())
|
|
|
|
|
|
|
|
|
|
|
|
@api_wrapper
|
|
|
|
def get_export(module, system):
|
|
|
|
"""Return export if found. Fail module if not found"""
|
|
|
|
|
|
|
|
try:
|
|
|
|
export = system.exports.get(export_path=module.params['export'])
|
|
|
|
except Exception:
|
|
|
|
module.fail_json(msg="Export with export path {0} not found".format(module.params['export']))
|
|
|
|
|
|
|
|
return export
|
|
|
|
|
|
|
|
|
|
|
|
@api_wrapper
|
|
|
|
def update_client(module, export):
|
|
|
|
"""Update export client list"""
|
|
|
|
|
|
|
|
changed = False
|
|
|
|
|
|
|
|
client = module.params['client']
|
|
|
|
access_mode = module.params['access_mode']
|
|
|
|
no_root_squash = module.params['no_root_squash']
|
|
|
|
|
|
|
|
client_list = export.get_permissions()
|
|
|
|
client_not_in_list = True
|
|
|
|
|
|
|
|
for index, item in enumerate(client_list):
|
|
|
|
if item.client == client:
|
|
|
|
client_not_in_list = False
|
|
|
|
if item.access != access_mode:
|
|
|
|
item.access = access_mode
|
|
|
|
changed = True
|
|
|
|
if item.no_root_squash is not no_root_squash:
|
|
|
|
item.no_root_squash = no_root_squash
|
|
|
|
changed = True
|
|
|
|
|
|
|
|
# If access_mode and/or no_root_squash not passed as arguments to the module,
|
|
|
|
# use access_mode with RW value and set no_root_squash to False
|
|
|
|
if client_not_in_list:
|
|
|
|
changed = True
|
|
|
|
client_list.append(Munch(client=client, access=access_mode, no_root_squash=no_root_squash))
|
|
|
|
|
|
|
|
if changed:
|
|
|
|
for index, item in enumerate(client_list):
|
|
|
|
client_list[index] = unmunchify(item)
|
|
|
|
if not module.check_mode:
|
|
|
|
export.update_permissions(client_list)
|
|
|
|
|
|
|
|
module.exit_json(changed=changed)
|
|
|
|
|
|
|
|
|
|
|
|
@api_wrapper
|
|
|
|
def delete_client(module, export):
|
|
|
|
"""Update export client list"""
|
|
|
|
|
|
|
|
changed = False
|
|
|
|
|
|
|
|
client = module.params['client']
|
|
|
|
client_list = export.get_permissions()
|
|
|
|
|
|
|
|
for index, item in enumerate(client_list):
|
|
|
|
if item.client == client:
|
|
|
|
changed = True
|
|
|
|
del client_list[index]
|
|
|
|
|
|
|
|
if changed:
|
|
|
|
for index, item in enumerate(client_list):
|
|
|
|
client_list[index] = unmunchify(item)
|
|
|
|
if not module.check_mode:
|
|
|
|
export.update_permissions(client_list)
|
|
|
|
|
|
|
|
module.exit_json(changed=changed)
|
|
|
|
|
|
|
|
|
|
|
|
def main():
|
|
|
|
argument_spec = infinibox_argument_spec()
|
|
|
|
argument_spec.update(
|
|
|
|
dict(
|
|
|
|
client=dict(required=True),
|
|
|
|
access_mode=dict(choices=['RO', 'RW'], default='RW'),
|
2020-06-22 15:56:35 +02:00
|
|
|
no_root_squash=dict(type='bool', default=False),
|
2020-03-09 10:11:07 +01:00
|
|
|
state=dict(default='present', choices=['present', 'absent']),
|
|
|
|
export=dict(required=True)
|
|
|
|
)
|
|
|
|
)
|
|
|
|
|
|
|
|
module = AnsibleModule(argument_spec, supports_check_mode=True)
|
|
|
|
|
|
|
|
if not HAS_INFINISDK:
|
|
|
|
module.fail_json(msg=missing_required_lib('infinisdk'))
|
|
|
|
if not HAS_MUNCH:
|
|
|
|
module.fail_json(msg=missing_required_lib('munch'), exception=MUNCH_IMP_ERR)
|
|
|
|
|
|
|
|
system = get_system(module)
|
|
|
|
export = get_export(module, system)
|
|
|
|
|
|
|
|
if module.params['state'] == 'present':
|
|
|
|
update_client(module, export)
|
|
|
|
else:
|
|
|
|
delete_client(module, export)
|
|
|
|
|
|
|
|
|
|
|
|
if __name__ == '__main__':
|
|
|
|
main()
|