2020-03-09 09:11:07 +00:00
|
|
|
#!/usr/bin/python
|
|
|
|
#
|
|
|
|
# Copyright (c) 2015 CenturyLink
|
|
|
|
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
|
|
__metaclass__ = type
|
|
|
|
|
|
|
|
|
|
|
|
DOCUMENTATION = '''
|
|
|
|
module: clc_publicip
|
|
|
|
short_description: Add and Delete public ips on servers in CenturyLink Cloud.
|
|
|
|
description:
|
|
|
|
- An Ansible module to add or delete public ip addresses on an existing server or servers in CenturyLink Cloud.
|
|
|
|
options:
|
|
|
|
protocol:
|
|
|
|
description:
|
|
|
|
- The protocol that the public IP will listen for.
|
|
|
|
default: TCP
|
|
|
|
choices: ['TCP', 'UDP', 'ICMP']
|
|
|
|
ports:
|
|
|
|
description:
|
|
|
|
- A list of ports to expose. This is required when state is 'present'
|
|
|
|
server_ids:
|
|
|
|
description:
|
|
|
|
- A list of servers to create public ips on.
|
|
|
|
required: True
|
|
|
|
state:
|
|
|
|
description:
|
|
|
|
- Determine whether to create or delete public IPs. If present module will not create a second public ip if one
|
|
|
|
already exists.
|
|
|
|
default: present
|
|
|
|
choices: ['present', 'absent']
|
|
|
|
wait:
|
|
|
|
description:
|
|
|
|
- Whether to wait for the tasks to finish before returning.
|
|
|
|
type: bool
|
|
|
|
default: 'yes'
|
|
|
|
requirements:
|
|
|
|
- python = 2.7
|
|
|
|
- requests >= 2.5.0
|
|
|
|
- clc-sdk
|
|
|
|
author: "CLC Runner (@clc-runner)"
|
|
|
|
notes:
|
|
|
|
- To use this module, it is required to set the below environment variables which enables access to the
|
|
|
|
Centurylink Cloud
|
|
|
|
- CLC_V2_API_USERNAME, the account login id for the centurylink cloud
|
|
|
|
- CLC_V2_API_PASSWORD, the account password for the centurylink cloud
|
|
|
|
- Alternatively, the module accepts the API token and account alias. The API token can be generated using the
|
|
|
|
CLC account login and password via the HTTP api call @ https://api.ctl.io/v2/authentication/login
|
|
|
|
- CLC_V2_API_TOKEN, the API token generated from https://api.ctl.io/v2/authentication/login
|
|
|
|
- CLC_ACCT_ALIAS, the account alias associated with the centurylink cloud
|
|
|
|
- Users can set CLC_V2_API_URL to specify an endpoint for pointing to a different CLC environment.
|
|
|
|
'''
|
|
|
|
|
|
|
|
EXAMPLES = '''
|
|
|
|
# Note - You must set the CLC_V2_API_USERNAME And CLC_V2_API_PASSWD Environment variables before running these examples
|
|
|
|
|
|
|
|
- name: Add Public IP to Server
|
|
|
|
hosts: localhost
|
|
|
|
gather_facts: False
|
|
|
|
connection: local
|
|
|
|
tasks:
|
|
|
|
- name: Create Public IP For Servers
|
2020-07-13 22:50:31 +03:00
|
|
|
community.general.clc_publicip:
|
2020-03-09 09:11:07 +00:00
|
|
|
protocol: TCP
|
|
|
|
ports:
|
|
|
|
- 80
|
|
|
|
server_ids:
|
|
|
|
- UC1TEST-SVR01
|
|
|
|
- UC1TEST-SVR02
|
|
|
|
state: present
|
|
|
|
register: clc
|
|
|
|
|
2020-05-16 16:07:51 +03:00
|
|
|
- name: Debug
|
2020-07-14 18:28:08 +03:00
|
|
|
ansible.builtin.debug:
|
2020-03-09 09:11:07 +00:00
|
|
|
var: clc
|
|
|
|
|
|
|
|
- name: Delete Public IP from Server
|
|
|
|
hosts: localhost
|
|
|
|
gather_facts: False
|
|
|
|
connection: local
|
|
|
|
tasks:
|
|
|
|
- name: Create Public IP For Servers
|
2020-07-13 22:50:31 +03:00
|
|
|
community.general.clc_publicip:
|
2020-03-09 09:11:07 +00:00
|
|
|
server_ids:
|
|
|
|
- UC1TEST-SVR01
|
|
|
|
- UC1TEST-SVR02
|
|
|
|
state: absent
|
|
|
|
register: clc
|
|
|
|
|
2020-05-16 16:07:51 +03:00
|
|
|
- name: Debug
|
2020-07-14 18:28:08 +03:00
|
|
|
ansible.builtin.debug:
|
2020-03-09 09:11:07 +00:00
|
|
|
var: clc
|
|
|
|
'''
|
|
|
|
|
|
|
|
RETURN = '''
|
|
|
|
server_ids:
|
|
|
|
description: The list of server ids that are changed
|
|
|
|
returned: success
|
|
|
|
type: list
|
|
|
|
sample:
|
|
|
|
[
|
|
|
|
"UC1TEST-SVR01",
|
|
|
|
"UC1TEST-SVR02"
|
|
|
|
]
|
|
|
|
'''
|
|
|
|
|
|
|
|
__version__ = '${version}'
|
|
|
|
|
|
|
|
import os
|
|
|
|
import traceback
|
|
|
|
from distutils.version import LooseVersion
|
|
|
|
|
|
|
|
REQUESTS_IMP_ERR = None
|
|
|
|
try:
|
|
|
|
import requests
|
|
|
|
except ImportError:
|
|
|
|
REQUESTS_IMP_ERR = traceback.format_exc()
|
|
|
|
REQUESTS_FOUND = False
|
|
|
|
else:
|
|
|
|
REQUESTS_FOUND = True
|
|
|
|
|
|
|
|
#
|
|
|
|
# Requires the clc-python-sdk.
|
|
|
|
# sudo pip install clc-sdk
|
|
|
|
#
|
|
|
|
CLC_IMP_ERR = None
|
|
|
|
try:
|
|
|
|
import clc as clc_sdk
|
|
|
|
from clc import CLCException
|
|
|
|
except ImportError:
|
|
|
|
CLC_IMP_ERR = traceback.format_exc()
|
|
|
|
CLC_FOUND = False
|
|
|
|
clc_sdk = None
|
|
|
|
else:
|
|
|
|
CLC_FOUND = True
|
|
|
|
|
|
|
|
from ansible.module_utils.basic import AnsibleModule, missing_required_lib
|
|
|
|
|
|
|
|
|
|
|
|
class ClcPublicIp(object):
|
|
|
|
clc = clc_sdk
|
|
|
|
module = None
|
|
|
|
|
|
|
|
def __init__(self, module):
|
|
|
|
"""
|
|
|
|
Construct module
|
|
|
|
"""
|
|
|
|
self.module = module
|
|
|
|
if not CLC_FOUND:
|
|
|
|
self.module.fail_json(msg=missing_required_lib('clc-sdk'), exception=CLC_IMP_ERR)
|
|
|
|
if not REQUESTS_FOUND:
|
|
|
|
self.module.fail_json(msg=missing_required_lib('requests'), exception=REQUESTS_IMP_ERR)
|
|
|
|
if requests.__version__ and LooseVersion(requests.__version__) < LooseVersion('2.5.0'):
|
|
|
|
self.module.fail_json(
|
|
|
|
msg='requests library version should be >= 2.5.0')
|
|
|
|
|
|
|
|
self._set_user_agent(self.clc)
|
|
|
|
|
|
|
|
def process_request(self):
|
|
|
|
"""
|
|
|
|
Process the request - Main Code Path
|
|
|
|
:return: Returns with either an exit_json or fail_json
|
|
|
|
"""
|
|
|
|
self._set_clc_credentials_from_env()
|
|
|
|
params = self.module.params
|
|
|
|
server_ids = params['server_ids']
|
|
|
|
ports = params['ports']
|
|
|
|
protocol = params['protocol']
|
|
|
|
state = params['state']
|
|
|
|
|
|
|
|
if state == 'present':
|
|
|
|
changed, changed_server_ids, requests = self.ensure_public_ip_present(
|
|
|
|
server_ids=server_ids, protocol=protocol, ports=ports)
|
|
|
|
elif state == 'absent':
|
|
|
|
changed, changed_server_ids, requests = self.ensure_public_ip_absent(
|
|
|
|
server_ids=server_ids)
|
|
|
|
else:
|
|
|
|
return self.module.fail_json(msg="Unknown State: " + state)
|
|
|
|
self._wait_for_requests_to_complete(requests)
|
|
|
|
return self.module.exit_json(changed=changed,
|
|
|
|
server_ids=changed_server_ids)
|
|
|
|
|
|
|
|
@staticmethod
|
|
|
|
def _define_module_argument_spec():
|
|
|
|
"""
|
|
|
|
Define the argument spec for the ansible module
|
|
|
|
:return: argument spec dictionary
|
|
|
|
"""
|
|
|
|
argument_spec = dict(
|
|
|
|
server_ids=dict(type='list', required=True),
|
|
|
|
protocol=dict(default='TCP', choices=['TCP', 'UDP', 'ICMP']),
|
|
|
|
ports=dict(type='list'),
|
|
|
|
wait=dict(type='bool', default=True),
|
|
|
|
state=dict(default='present', choices=['present', 'absent']),
|
|
|
|
)
|
|
|
|
return argument_spec
|
|
|
|
|
|
|
|
def ensure_public_ip_present(self, server_ids, protocol, ports):
|
|
|
|
"""
|
|
|
|
Ensures the given server ids having the public ip available
|
|
|
|
:param server_ids: the list of server ids
|
|
|
|
:param protocol: the ip protocol
|
|
|
|
:param ports: the list of ports to expose
|
|
|
|
:return: (changed, changed_server_ids, results)
|
|
|
|
changed: A flag indicating if there is any change
|
|
|
|
changed_server_ids : the list of server ids that are changed
|
|
|
|
results: The result list from clc public ip call
|
|
|
|
"""
|
|
|
|
changed = False
|
|
|
|
results = []
|
|
|
|
changed_server_ids = []
|
|
|
|
servers = self._get_servers_from_clc(
|
|
|
|
server_ids,
|
|
|
|
'Failed to obtain server list from the CLC API')
|
|
|
|
servers_to_change = [
|
|
|
|
server for server in servers if len(
|
|
|
|
server.PublicIPs().public_ips) == 0]
|
|
|
|
ports_to_expose = [{'protocol': protocol, 'port': port}
|
|
|
|
for port in ports]
|
|
|
|
for server in servers_to_change:
|
|
|
|
if not self.module.check_mode:
|
|
|
|
result = self._add_publicip_to_server(server, ports_to_expose)
|
|
|
|
results.append(result)
|
|
|
|
changed_server_ids.append(server.id)
|
|
|
|
changed = True
|
|
|
|
return changed, changed_server_ids, results
|
|
|
|
|
|
|
|
def _add_publicip_to_server(self, server, ports_to_expose):
|
|
|
|
result = None
|
|
|
|
try:
|
|
|
|
result = server.PublicIPs().Add(ports_to_expose)
|
|
|
|
except CLCException as ex:
|
|
|
|
self.module.fail_json(msg='Failed to add public ip to the server : {0}. {1}'.format(
|
|
|
|
server.id, ex.response_text
|
|
|
|
))
|
|
|
|
return result
|
|
|
|
|
|
|
|
def ensure_public_ip_absent(self, server_ids):
|
|
|
|
"""
|
|
|
|
Ensures the given server ids having the public ip removed if there is any
|
|
|
|
:param server_ids: the list of server ids
|
|
|
|
:return: (changed, changed_server_ids, results)
|
|
|
|
changed: A flag indicating if there is any change
|
|
|
|
changed_server_ids : the list of server ids that are changed
|
|
|
|
results: The result list from clc public ip call
|
|
|
|
"""
|
|
|
|
changed = False
|
|
|
|
results = []
|
|
|
|
changed_server_ids = []
|
|
|
|
servers = self._get_servers_from_clc(
|
|
|
|
server_ids,
|
|
|
|
'Failed to obtain server list from the CLC API')
|
|
|
|
servers_to_change = [
|
|
|
|
server for server in servers if len(
|
|
|
|
server.PublicIPs().public_ips) > 0]
|
|
|
|
for server in servers_to_change:
|
|
|
|
if not self.module.check_mode:
|
|
|
|
result = self._remove_publicip_from_server(server)
|
|
|
|
results.append(result)
|
|
|
|
changed_server_ids.append(server.id)
|
|
|
|
changed = True
|
|
|
|
return changed, changed_server_ids, results
|
|
|
|
|
|
|
|
def _remove_publicip_from_server(self, server):
|
|
|
|
result = None
|
|
|
|
try:
|
|
|
|
for ip_address in server.PublicIPs().public_ips:
|
|
|
|
result = ip_address.Delete()
|
|
|
|
except CLCException as ex:
|
|
|
|
self.module.fail_json(msg='Failed to remove public ip from the server : {0}. {1}'.format(
|
|
|
|
server.id, ex.response_text
|
|
|
|
))
|
|
|
|
return result
|
|
|
|
|
|
|
|
def _wait_for_requests_to_complete(self, requests_lst):
|
|
|
|
"""
|
|
|
|
Waits until the CLC requests are complete if the wait argument is True
|
|
|
|
:param requests_lst: The list of CLC request objects
|
|
|
|
:return: none
|
|
|
|
"""
|
|
|
|
if not self.module.params['wait']:
|
|
|
|
return
|
|
|
|
for request in requests_lst:
|
|
|
|
request.WaitUntilComplete()
|
|
|
|
for request_details in request.requests:
|
|
|
|
if request_details.Status() != 'succeeded':
|
|
|
|
self.module.fail_json(
|
|
|
|
msg='Unable to process public ip request')
|
|
|
|
|
|
|
|
def _set_clc_credentials_from_env(self):
|
|
|
|
"""
|
|
|
|
Set the CLC Credentials on the sdk by reading environment variables
|
|
|
|
:return: none
|
|
|
|
"""
|
|
|
|
env = os.environ
|
|
|
|
v2_api_token = env.get('CLC_V2_API_TOKEN', False)
|
|
|
|
v2_api_username = env.get('CLC_V2_API_USERNAME', False)
|
|
|
|
v2_api_passwd = env.get('CLC_V2_API_PASSWD', False)
|
|
|
|
clc_alias = env.get('CLC_ACCT_ALIAS', False)
|
|
|
|
api_url = env.get('CLC_V2_API_URL', False)
|
|
|
|
|
|
|
|
if api_url:
|
|
|
|
self.clc.defaults.ENDPOINT_URL_V2 = api_url
|
|
|
|
|
|
|
|
if v2_api_token and clc_alias:
|
|
|
|
self.clc._LOGIN_TOKEN_V2 = v2_api_token
|
|
|
|
self.clc._V2_ENABLED = True
|
|
|
|
self.clc.ALIAS = clc_alias
|
|
|
|
elif v2_api_username and v2_api_passwd:
|
|
|
|
self.clc.v2.SetCredentials(
|
|
|
|
api_username=v2_api_username,
|
|
|
|
api_passwd=v2_api_passwd)
|
|
|
|
else:
|
|
|
|
return self.module.fail_json(
|
|
|
|
msg="You must set the CLC_V2_API_USERNAME and CLC_V2_API_PASSWD "
|
|
|
|
"environment variables")
|
|
|
|
|
|
|
|
def _get_servers_from_clc(self, server_ids, message):
|
|
|
|
"""
|
|
|
|
Gets list of servers form CLC api
|
|
|
|
"""
|
|
|
|
try:
|
|
|
|
return self.clc.v2.Servers(server_ids).servers
|
|
|
|
except CLCException as exception:
|
|
|
|
self.module.fail_json(msg=message + ': %s' % exception)
|
|
|
|
|
|
|
|
@staticmethod
|
|
|
|
def _set_user_agent(clc):
|
|
|
|
if hasattr(clc, 'SetRequestsSession'):
|
|
|
|
agent_string = "ClcAnsibleModule/" + __version__
|
|
|
|
ses = requests.Session()
|
|
|
|
ses.headers.update({"Api-Client": agent_string})
|
|
|
|
ses.headers['User-Agent'] += " " + agent_string
|
|
|
|
clc.SetRequestsSession(ses)
|
|
|
|
|
|
|
|
|
|
|
|
def main():
|
|
|
|
"""
|
|
|
|
The main function. Instantiates the module and calls process_request.
|
|
|
|
:return: none
|
|
|
|
"""
|
|
|
|
module = AnsibleModule(
|
|
|
|
argument_spec=ClcPublicIp._define_module_argument_spec(),
|
|
|
|
supports_check_mode=True
|
|
|
|
)
|
|
|
|
clc_public_ip = ClcPublicIp(module)
|
|
|
|
clc_public_ip.process_request()
|
|
|
|
|
|
|
|
|
|
|
|
if __name__ == '__main__':
|
|
|
|
main()
|