mirror of
https://github.com/ansible-collections/community.general.git
synced 2024-09-14 20:13:21 +02:00
67736d796a
* Fix consul_token usage without accessor_id. * Update changelogs/fragments/8091-consul-token-fixes.yaml Co-authored-by: Felix Fontein <felix@fontein.de> * Update plugins/modules/consul_token.py Co-authored-by: Felix Fontein <felix@fontein.de> --------- Co-authored-by: Felix Fontein <felix@fontein.de>
88 lines
2.2 KiB
YAML
88 lines
2.2 KiB
YAML
---
|
|
# Copyright (c) 2024, Florian Apolloner (@apollo13)
|
|
# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
# SPDX-License-Identifier: GPL-3.0-or-later
|
|
|
|
- name: Create a policy with rules
|
|
community.general.consul_policy:
|
|
name: "{{ item }}"
|
|
rules: |
|
|
key "foo" {
|
|
policy = "read"
|
|
}
|
|
loop:
|
|
- foo-access
|
|
- foo-access2
|
|
|
|
- name: Create token without accessor
|
|
community.general.consul_token:
|
|
state: present
|
|
register: simple_create_result
|
|
|
|
- assert:
|
|
that:
|
|
- simple_create_result is changed
|
|
- simple_create_result.token.AccessorID
|
|
- simple_create_result.operation == 'create'
|
|
|
|
- name: Create token
|
|
community.general.consul_token:
|
|
state: present
|
|
accessor_id: 07a7de84-c9c7-448a-99cc-beaf682efd21
|
|
service_identities:
|
|
- service_name: test
|
|
datacenters: [test1, test2]
|
|
node_identities:
|
|
- node_name: test
|
|
datacenter: test
|
|
policies:
|
|
- name: foo-access
|
|
- name: foo-access2
|
|
expiration_ttl: 1h
|
|
register: create_result
|
|
|
|
- assert:
|
|
that:
|
|
- create_result is changed
|
|
- create_result.token.AccessorID == "07a7de84-c9c7-448a-99cc-beaf682efd21"
|
|
- create_result.operation == 'create'
|
|
|
|
- name: Update token
|
|
community.general.consul_token:
|
|
state: present
|
|
accessor_id: 07a7de84-c9c7-448a-99cc-beaf682efd21
|
|
description: Testing
|
|
policies:
|
|
- id: "{{ create_result.token.Policies[-1].ID }}"
|
|
service_identities: []
|
|
register: result
|
|
|
|
- assert:
|
|
that:
|
|
- result is changed
|
|
- result.operation == 'update'
|
|
|
|
- name: Update token (noop)
|
|
community.general.consul_token:
|
|
state: present
|
|
accessor_id: 07a7de84-c9c7-448a-99cc-beaf682efd21
|
|
policies:
|
|
- id: "{{ create_result.token.Policies[-1].ID }}"
|
|
register: result
|
|
|
|
- assert:
|
|
that:
|
|
- result is not changed
|
|
- result.operation is not defined
|
|
|
|
- name: Remove token
|
|
community.general.consul_token:
|
|
state: absent
|
|
accessor_id: 07a7de84-c9c7-448a-99cc-beaf682efd21
|
|
register: result
|
|
|
|
- assert:
|
|
that:
|
|
- result is changed
|
|
- not result.token
|
|
- result.operation == 'remove'
|