From 4f34afbc1d80ac5c759c1beccdc5bb09b57d557e Mon Sep 17 00:00:00 2001 From: Matt Hite Date: Thu, 8 Aug 2013 13:50:44 -0700 Subject: [PATCH 1/3] New module to manipulate BIG-IP pool members and their attributes --- library/net_infrastructure/bigip_pool_member | 334 +++++++++++++++++++ 1 file changed, 334 insertions(+) create mode 100644 library/net_infrastructure/bigip_pool_member diff --git a/library/net_infrastructure/bigip_pool_member b/library/net_infrastructure/bigip_pool_member new file mode 100644 index 0000000000..082e565a2f --- /dev/null +++ b/library/net_infrastructure/bigip_pool_member @@ -0,0 +1,334 @@ +#!/usr/bin/python +# -*- coding: utf-8 -*- + +# (c) 2013, Matt Hite +# +# This file is part of Ansible +# +# Ansible is free software: you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation, either version 3 of the License, or +# (at your option) any later version. +# +# Ansible is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with Ansible. If not, see . + +DOCUMENTATION = ''' +--- +module: bigip_pool_member +short_description: "Manages F5 BIG-IP LTM pool members" +description: + - "Manages F5 BIG-IP LTM pool members via iControl SOAP API" +version_added: "TBD" +author: Matt Hite +notes: + - "Requires BIG-IP software version >= 11" + - "F5 developed module 'bigsuds' required (see http://devcentral.f5.com)" + - "Best run as a local_action in your playbook" +requirements: + - bigsuds +options: + server: + description: + - BIG-IP host + required: true + default: null + choices: [] + aliases: [] + user: + description: + - BIG-IP username + required: true + default: null + choices: [] + aliases: [] + password: + description: + - BIG-IP password + required: true + default: null + choices: [] + aliases: [] + state: + description: + - Pool member state + required: true + default: present + choices: ['present', 'absent'] + aliases: [] + name: + description: + - Pool name. This pool must exist. + required: true + default: null + choices: [] + aliases: ['pool'] + partition: + description: + - Partition + required: false + default: 'Common' + choices: [] + aliases: [] + host: + description: + - "Pool member IP" + required: true + default: null + choices: [] + aliases: ['address'] + port: + description: + - "Pool member port" + required: true + default: null + choices: [] + aliases: [] + connection_limit: + description: + - Sets the connection limit for a set of pool member. Setting this to 0 disables the limit. + required: false + default: null + choices: [] + aliases: [] + description: + description: + - Sets the description for a pool member. This is an arbitrary field which can be used for any purpose. + required: false + default: null + choices: [] + aliases: [] + rate_limit: + description: + - Sets the rate limit for a pool member. This value should be a positive integer representing connections-per-second. Setting this to 0 disables the limit. + required: false + default: null + choices: [] + aliases: [] + ratio: + description: + - Sets the ratio weight for a pool member. Valid values range from 1 through 100. New pool members -- unless overriden with this value -- default to 1. + required: false + default: null + choices: [] + aliases: [] +''' + +EXAMPLES = ''' + +TBD +TBD +TBD +TBD + +''' + +try: + import bigsuds +except ImportError: + bigsuds_found = False +else: + bigsuds_found = True + +# =========================================== +# bigip_pool_member module specific support methods. +# + +def bigip_api(bigip, user, password): + api = bigsuds.BIGIP(hostname=bigip, username=user, password=password) + return api + +def pool_exists(api, pool): + # hack to determine if pool exists + result = False + try: + api.LocalLB.Pool.get_object_status(pool_names=[pool]) + result = True + except bigsuds.OperationFailed, e: + if "was not found" in str(e): + result = False + else: + # genuine exception + raise + return result + +def member_exists(api, pool, address, port): + # hack to determine if member exists + result = False + try: + members = [{'address': address, 'port': port}] + api.LocalLB.Pool.get_member_object_status(pool_names=[pool], + members=[members]) + result = True + except bigsuds.OperationFailed, e: + if "was not found" in str(e): + result = False + else: + # genuine exception + raise + return result + +def delete_node_address(api, address): + result = False + try: + api.LocalLB.NodeAddressV2.delete_node_address(nodes=[address]) + result = True + except bigsuds.OperationFailed, e: + if "is referenced by a member of pool" in str(e): + result = False + else: + # genuine exception + raise + return result + +def remove_pool_member(api, pool, address, port): + members = [{'address': address, 'port': port}] + api.LocalLB.Pool.remove_member_v2(pool_names=[pool], members=[members]) + +def add_pool_member(api, pool, address, port): + members = [{'address': address, 'port': port}] + api.LocalLB.Pool.add_member_v2(pool_names=[pool], members=[members]) + +def get_connection_limit(api, pool, address, port): + members = [{'address': address, 'port': port}] + result = api.LocalLB.Pool.get_member_connection_limit(pool_names=[pool], members=[members])[0][0] + return result + +def set_connection_limit(api, pool, address, port, limit): + members = [{'address': address, 'port': port}] + api.LocalLB.Pool.set_member_connection_limit(pool_names=[pool], members=[members], limits=[[limit]]) + +def get_description(api, pool, address, port): + members = [{'address': address, 'port': port}] + result = api.LocalLB.Pool.get_member_description(pool_names=[pool], members=[members])[0][0] + return result + +def set_description(api, pool, address, port, description): + members = [{'address': address, 'port': port}] + api.LocalLB.Pool.set_member_description(pool_names=[pool], members=[members], descriptions=[[description]]) + +def get_rate_limit(api, pool, address, port): + members = [{'address': address, 'port': port}] + result = api.LocalLB.Pool.get_member_rate_limit(pool_names=[pool], members=[members])[0][0] + return result + +def set_rate_limit(api, pool, address, port, limit): + members = [{'address': address, 'port': port}] + api.LocalLB.Pool.set_member_rate_limit(pool_names=[pool], members=[members], limits=[[limit]]) + +def get_ratio(api, pool, address, port): + members = [{'address': address, 'port': port}] + result = api.LocalLB.Pool.get_member_ratio(pool_names=[pool], members=[members])[0][0] + return result + +def set_ratio(api, pool, address, port, ratio): + members = [{'address': address, 'port': port}] + api.LocalLB.Pool.set_member_ratio(pool_names=[pool], members=[members], ratios=[[ratio]]) + +def main(): + + module = AnsibleModule( + argument_spec = dict( + server = dict(type='str', required=True), + user = dict(type='str', required=True), + password = dict(type='str', required=True), + state = dict(type='str', default='present', choices=['present', 'absent']), + name = dict(type='str', required=True, aliases=['pool']), + partition = dict(type='str', default='Common'), + host = dict(type='str', required=True, aliases=['address']), + port = dict(type='int', required=True), + connection_limit = dict(type='int'), + description = dict(type='str'), + rate_limit = dict(type='int'), + ratio = dict(type='int') + ), + supports_check_mode=True + ) + + if not bigsuds_found: + module.fail_json(msg="the python bigsuds module is required") + + server = module.params['server'] + user = module.params['user'] + password = module.params['password'] + state = module.params['state'] + name = module.params['name'] + partition = module.params['partition'] + pool = "/%s/%s" % (partition, name) + connection_limit = module.params['connection_limit'] + description = module.params['description'] + rate_limit = module.params['rate_limit'] + ratio = module.params['ratio'] + host = module.params['host'] + address = "/%s/%s" % (partition, host) + port = module.params['port'] + + # sanity check user supplied values + + if (host and not port) or (port and not host): + module.fail_json(msg="both host and port must be supplied") + + if 1 > port > 65535: + module.fail_json(msg="valid ports must be in range 1 - 65535") + + try: + api = bigip_api(server, user, password) + if not pool_exists(api, pool): + module.fail_json(msg="pool does not exist") + result = {'changed': False} # default + + if state == 'absent': + if member_exists(api, pool, address, port): + if not module.check_mode: + remove_pool_member(api, pool, address, port) + deleted = delete_node_address(api, address) + result = {'changed': True, 'deleted': deleted} + else: + result = {'changed': True} + + elif state == 'present': + if not member_exists(api, pool, address, port): + if not module.check_mode: + add_pool_member(api, pool, address, port) + if connection_limit is not None: + set_connection_limit(api, pool, address, port, connection_limit) + if description is not None: + set_description(api, pool, address, port, description) + if rate_limit is not None: + set_rate_limit(api, pool, address, port, rate_limit) + if ratio is not None: + set_ratio(api, pool, address, port, ratio) + result = {'changed': True} + else: + # pool member exists -- potentially modify attributes + if connection_limit is not None and connection_limit != get_connection_limit(api, pool, address, port): + if not module.check_mode: + set_connection_limit(api, pool, address, port, connection_limit) + result = {'changed': True} + if description is not None and description != get_description(api, pool, address, port): + if not module.check_mode: + set_description(api, pool, address, port, description) + result = {'changed': True} + if rate_limit is not None and rate_limit != get_rate_limit(api, pool, address, port): + if not module.check_mode: + set_rate_limit(api, pool, address, port, rate_limit) + result = {'changed': True} + if ratio is not None and ratio != get_ratio(api, pool, address, port): + if not module.check_mode: + set_ratio(api, pool, address, port, ratio) + result = {'changed': True} + + except Exception, e: + module.fail_json(msg="received exception: %s" % e) + + module.exit_json(**result) + +# include magic from lib/ansible/module_common.py +#<> +main() + From 33007e75dedafe834c389212e95c8a4e8f454bad Mon Sep 17 00:00:00 2001 From: Matt Hite Date: Thu, 8 Aug 2013 19:19:20 -0700 Subject: [PATCH 2/3] Fixed parameter names --- library/net_infrastructure/bigip_pool_member | 21 ++++++++++---------- 1 file changed, 10 insertions(+), 11 deletions(-) diff --git a/library/net_infrastructure/bigip_pool_member b/library/net_infrastructure/bigip_pool_member index 082e565a2f..e9db4ee355 100644 --- a/library/net_infrastructure/bigip_pool_member +++ b/library/net_infrastructure/bigip_pool_member @@ -61,13 +61,13 @@ options: default: present choices: ['present', 'absent'] aliases: [] - name: + pool: description: - Pool name. This pool must exist. required: true default: null choices: [] - aliases: ['pool'] + aliases: [] partition: description: - Partition @@ -81,7 +81,7 @@ options: required: true default: null choices: [] - aliases: ['address'] + aliases: ['address', 'name'] port: description: - "Pool member port" @@ -91,28 +91,28 @@ options: aliases: [] connection_limit: description: - - Sets the connection limit for a set of pool member. Setting this to 0 disables the limit. + - Pool member connection limit. Setting this to 0 disables the limit. required: false default: null choices: [] aliases: [] description: description: - - Sets the description for a pool member. This is an arbitrary field which can be used for any purpose. + - Pool member description required: false default: null choices: [] aliases: [] rate_limit: description: - - Sets the rate limit for a pool member. This value should be a positive integer representing connections-per-second. Setting this to 0 disables the limit. + - Pool member rate limit (connections-per-second). Setting this to 0 disables the limit. required: false default: null choices: [] aliases: [] ratio: description: - - Sets the ratio weight for a pool member. Valid values range from 1 through 100. New pool members -- unless overriden with this value -- default to 1. + - Pool member ratio weight. Valid values range from 1 through 100. New pool members -- unless overriden with this value -- default to 1. required: false default: null choices: [] @@ -238,9 +238,9 @@ def main(): user = dict(type='str', required=True), password = dict(type='str', required=True), state = dict(type='str', default='present', choices=['present', 'absent']), - name = dict(type='str', required=True, aliases=['pool']), + pool = dict(type='str', required=True), partition = dict(type='str', default='Common'), - host = dict(type='str', required=True, aliases=['address']), + host = dict(type='str', required=True, aliases=['address', 'name']), port = dict(type='int', required=True), connection_limit = dict(type='int'), description = dict(type='str'), @@ -257,9 +257,8 @@ def main(): user = module.params['user'] password = module.params['password'] state = module.params['state'] - name = module.params['name'] partition = module.params['partition'] - pool = "/%s/%s" % (partition, name) + pool = "/%s/%s" % (partition, module.params['pool']) connection_limit = module.params['connection_limit'] description = module.params['description'] rate_limit = module.params['rate_limit'] From 46b32478d2c7baf82009ed06b9cf3af9f2d34bf8 Mon Sep 17 00:00:00 2001 From: Matt Hite Date: Fri, 6 Sep 2013 10:06:56 -0700 Subject: [PATCH 3/3] Documentation additions --- library/net_infrastructure/bigip_pool_member | 63 +++++++++++++++++--- 1 file changed, 54 insertions(+), 9 deletions(-) diff --git a/library/net_infrastructure/bigip_pool_member b/library/net_infrastructure/bigip_pool_member index e9db4ee355..bc58288ff7 100644 --- a/library/net_infrastructure/bigip_pool_member +++ b/library/net_infrastructure/bigip_pool_member @@ -24,12 +24,14 @@ module: bigip_pool_member short_description: "Manages F5 BIG-IP LTM pool members" description: - "Manages F5 BIG-IP LTM pool members via iControl SOAP API" -version_added: "TBD" +version_added: "1.3" author: Matt Hite notes: - "Requires BIG-IP software version >= 11" - "F5 developed module 'bigsuds' required (see http://devcentral.f5.com)" - "Best run as a local_action in your playbook" + - "Supersedes bigip_pool for managing pool members" + requirements: - bigsuds options: @@ -77,14 +79,14 @@ options: aliases: [] host: description: - - "Pool member IP" + - Pool member IP required: true default: null choices: [] aliases: ['address', 'name'] port: description: - - "Pool member port" + - Pool member port required: true default: null choices: [] @@ -121,10 +123,54 @@ options: EXAMPLES = ''' -TBD -TBD -TBD -TBD +## playbook task examples: + +--- +# file bigip-test.yml +# ... +- hosts: bigip-test + tasks: + - name: Add pool member + local_action: > + bigip_pool_member + server=lb.mydomain.com + user=admin + password=mysecret + state=present + pool=matthite-pool + partition=matthite + host="{{ ansible_default_ipv4["address"] }}" + port=80 + description="web server" + connection_limit=100 + rate_limit=50 + ratio=2 + + - name: Modify pool member ratio and description + local_action: > + bigip_pool_member + server=lb.mydomain.com + user=admin + password=mysecret + state=present + pool=matthite-pool + partition=matthite + host="{{ ansible_default_ipv4["address"] }}" + port=80 + ratio=1 + description="nginx server" + + - name: Remove pool member from pool + local_action: > + bigip_pool_member + server=lb.mydomain.com + user=admin + password=mysecret + state=absent + pool=matthite-pool + partition=matthite + host="{{ ansible_default_ipv4["address"] }}" + port=80 ''' @@ -231,7 +277,6 @@ def set_ratio(api, pool, address, port, ratio): api.LocalLB.Pool.set_member_ratio(pool_names=[pool], members=[members], ratios=[[ratio]]) def main(): - module = AnsibleModule( argument_spec = dict( server = dict(type='str', required=True), @@ -278,7 +323,7 @@ def main(): try: api = bigip_api(server, user, password) if not pool_exists(api, pool): - module.fail_json(msg="pool does not exist") + module.fail_json(msg="pool %s does not exist" % pool) result = {'changed': False} # default if state == 'absent':