mirror of
https://github.com/ansible-collections/community.general.git
synced 2024-09-14 20:13:21 +02:00
626 lines
21 KiB
Python
Executable file
626 lines
21 KiB
Python
Executable file
#!/usr/bin/python
|
|
#
|
|
# Copyright (c) 2016 Thomas Stringer, <tomstr@microsoft.com>
|
|
#
|
|
# This file is part of Ansible
|
|
#
|
|
# Ansible is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation, either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# Ansible is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with Ansible. If not, see <http://www.gnu.org/licenses/>.
|
|
#
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
__metaclass__ = type
|
|
|
|
|
|
ANSIBLE_METADATA = {'metadata_version': '1.1',
|
|
'status': ['preview'],
|
|
'supported_by': 'community'}
|
|
|
|
|
|
DOCUMENTATION = '''
|
|
---
|
|
module: azure_rm_loadbalancer
|
|
|
|
version_added: "2.4"
|
|
|
|
short_description: Manage Azure load balancers.
|
|
|
|
description:
|
|
- Create, update and delete Azure load balancers
|
|
|
|
options:
|
|
resource_group:
|
|
description:
|
|
- Name of a resource group where the load balancer exists or will be created.
|
|
required: true
|
|
name:
|
|
description:
|
|
- Name of the load balancer.
|
|
required: true
|
|
state:
|
|
description:
|
|
- Assert the state of the load balancer. Use 'present' to create or update a load balancer and
|
|
'absent' to delete a load balancer.
|
|
default: present
|
|
choices:
|
|
- absent
|
|
- present
|
|
required: false
|
|
location:
|
|
description:
|
|
- Valid azure location. Defaults to location of the resource group.
|
|
default: resource_group location
|
|
required: false
|
|
public_ip_address_name:
|
|
description:
|
|
- Name of an existing public IP address object to associate with the security group.
|
|
aliases:
|
|
- public_ip_address
|
|
- public_ip_name
|
|
- public_ip
|
|
required: false
|
|
probe_port:
|
|
description:
|
|
- The port that the health probe will use.
|
|
required: false
|
|
probe_protocol:
|
|
description:
|
|
- The protocol to use for the health probe.
|
|
required: false
|
|
choices:
|
|
- Tcp
|
|
- Http
|
|
probe_interval:
|
|
description:
|
|
- How much time (in seconds) to probe the endpoint for health.
|
|
default: 15
|
|
required: false
|
|
probe_fail_count:
|
|
description:
|
|
- The amount of probe failures for the load balancer to make a health determination.
|
|
default: 3
|
|
required: false
|
|
probe_request_path:
|
|
description:
|
|
- The URL that an HTTP probe will use (only relevant if probe_protocol is set to Http).
|
|
required: false
|
|
protocol:
|
|
description:
|
|
- The protocol (TCP or UDP) that the load balancer will use.
|
|
required: false
|
|
choices:
|
|
- Tcp
|
|
- Udp
|
|
load_distribution:
|
|
description:
|
|
- The type of load distribution that the load balancer will employ.
|
|
required: false
|
|
choices:
|
|
- Default
|
|
- SourceIP
|
|
- SourceIPProtocol
|
|
frontend_port:
|
|
description:
|
|
- Frontend port that will be exposed for the load balancer.
|
|
required: false
|
|
backend_port:
|
|
description:
|
|
- Backend port that will be exposed for the load balancer.
|
|
required: false
|
|
idle_timeout:
|
|
description:
|
|
- Timeout for TCP idle connection in minutes.
|
|
default: 4
|
|
required: false
|
|
natpool_frontend_port_start:
|
|
description:
|
|
- Start of the port range for a NAT pool.
|
|
required: false
|
|
natpool_frontend_port_end:
|
|
description:
|
|
- End of the port range for a NAT pool.
|
|
required: false
|
|
natpool_backend_port:
|
|
description:
|
|
- Backend port used by the NAT pool.
|
|
required: false
|
|
natpool_protocol:
|
|
description:
|
|
- The protocol for the NAT pool.
|
|
required: false
|
|
extends_documentation_fragment:
|
|
- azure
|
|
- azure_tags
|
|
|
|
author:
|
|
- "Thomas Stringer (@tstringer)"
|
|
'''
|
|
|
|
EXAMPLES = '''
|
|
- name: Create a load balancer
|
|
azure_rm_loadbalancer:
|
|
name: myloadbalancer
|
|
location: eastus
|
|
resource_group: my-rg
|
|
public_ip: mypublicip
|
|
probe_protocol: Tcp
|
|
probe_port: 80
|
|
probe_interval: 10
|
|
probe_fail_count: 3
|
|
protocol: Tcp
|
|
load_distribution: Default
|
|
frontend_port: 80
|
|
backend_port: 8080
|
|
idle_timeout: 4
|
|
natpool_frontend_port_start: 1030
|
|
natpool_frontend_port_end: 1040
|
|
natpool_backend_port: 80
|
|
natpool_protocol: Tcp
|
|
'''
|
|
|
|
RETURN = '''
|
|
state:
|
|
description: Current state of the load balancer
|
|
returned: always
|
|
type: dict
|
|
changed:
|
|
description: Whether or not the resource has changed
|
|
returned: always
|
|
type: bool
|
|
'''
|
|
|
|
import random
|
|
from ansible.module_utils.azure_rm_common import AzureRMModuleBase
|
|
|
|
try:
|
|
from msrestazure.azure_exceptions import CloudError
|
|
except ImportError:
|
|
# This is handled in azure_rm_common
|
|
pass
|
|
|
|
|
|
class AzureRMLoadBalancer(AzureRMModuleBase):
|
|
"""Configuration class for an Azure RM load balancer resource"""
|
|
|
|
def __init__(self):
|
|
self.module_args = dict(
|
|
resource_group=dict(
|
|
type='str',
|
|
required=True
|
|
),
|
|
name=dict(
|
|
type='str',
|
|
required=True
|
|
),
|
|
state=dict(
|
|
type='str',
|
|
required=False,
|
|
default='present',
|
|
choices=['present', 'absent']
|
|
),
|
|
location=dict(
|
|
type='str',
|
|
required=False
|
|
),
|
|
public_ip_address_name=dict(
|
|
type='str',
|
|
required=False,
|
|
aliases=['public_ip_address', 'public_ip_name', 'public_ip']
|
|
),
|
|
probe_port=dict(
|
|
type='int',
|
|
required=False
|
|
),
|
|
probe_protocol=dict(
|
|
type='str',
|
|
required=False,
|
|
choices=['Tcp', 'Http']
|
|
),
|
|
probe_interval=dict(
|
|
type='int',
|
|
default=15
|
|
),
|
|
probe_fail_count=dict(
|
|
type='int',
|
|
default=3
|
|
),
|
|
probe_request_path=dict(
|
|
type='str',
|
|
required=False
|
|
),
|
|
protocol=dict(
|
|
type='str',
|
|
required=False,
|
|
choices=['Tcp', 'Udp']
|
|
),
|
|
load_distribution=dict(
|
|
type='str',
|
|
required=False,
|
|
choices=['Default', 'SourceIP', 'SourceIPProtocol']
|
|
),
|
|
frontend_port=dict(
|
|
type='int',
|
|
required=False
|
|
),
|
|
backend_port=dict(
|
|
type='int',
|
|
required=False
|
|
),
|
|
idle_timeout=dict(
|
|
type='int',
|
|
default=4
|
|
),
|
|
natpool_frontend_port_start=dict(
|
|
type='int'
|
|
),
|
|
natpool_frontend_port_end=dict(
|
|
type='int'
|
|
),
|
|
natpool_backend_port=dict(
|
|
type='int'
|
|
),
|
|
natpool_protocol=dict(
|
|
type='str'
|
|
)
|
|
)
|
|
|
|
self.resource_group = None
|
|
self.name = None
|
|
self.location = None
|
|
self.public_ip_address_name = None
|
|
self.state = None
|
|
self.probe_port = None
|
|
self.probe_protocol = None
|
|
self.probe_interval = None
|
|
self.probe_fail_count = None
|
|
self.probe_request_path = None
|
|
self.protocol = None
|
|
self.load_distribution = None
|
|
self.frontend_port = None
|
|
self.backend_port = None
|
|
self.idle_timeout = None
|
|
self.natpool_frontend_port_start = None
|
|
self.natpool_frontend_port_end = None
|
|
self.natpool_backend_port = None
|
|
self.natpool_protocol = None
|
|
|
|
self.results = dict(changed=False, state=dict())
|
|
|
|
required_if = [('state', 'present', ['public_ip_address_name'])]
|
|
|
|
super(AzureRMLoadBalancer, self).__init__(
|
|
derived_arg_spec=self.module_args,
|
|
supports_check_mode=True,
|
|
required_if=required_if
|
|
)
|
|
|
|
def exec_module(self, **kwargs):
|
|
"""Main module execution method"""
|
|
for key in self.module_args.keys():
|
|
setattr(self, key, kwargs[key])
|
|
|
|
results = dict()
|
|
changed = False
|
|
pip = None
|
|
load_balancer_props = dict()
|
|
|
|
resource_group = self.get_resource_group(self.resource_group)
|
|
if not self.location:
|
|
self.location = resource_group.location
|
|
load_balancer_props['location'] = self.location
|
|
|
|
if self.state == 'present':
|
|
# handle present status
|
|
|
|
frontend_ip_config_name = random_name('feipconfig')
|
|
frontend_ip_config_id = frontend_ip_configuration_id(
|
|
subscription_id=self.subscription_id,
|
|
resource_group_name=self.resource_group,
|
|
load_balancer_name=self.name,
|
|
name=frontend_ip_config_name
|
|
)
|
|
if self.public_ip_address_name:
|
|
pip = self.get_public_ip_address(self.public_ip_address_name)
|
|
load_balancer_props['frontend_ip_configurations'] = [
|
|
self.network_models.FrontendIPConfiguration(
|
|
name=frontend_ip_config_name,
|
|
public_ip_address=pip
|
|
)
|
|
]
|
|
elif self.state == 'absent':
|
|
try:
|
|
self.network_client.load_balancers.delete(
|
|
resource_group_name=self.resource_group,
|
|
load_balancer_name=self.name
|
|
).wait()
|
|
changed = True
|
|
except CloudError:
|
|
changed = False
|
|
|
|
self.results['changed'] = changed
|
|
return self.results
|
|
|
|
try:
|
|
# before we do anything, we need to attempt to retrieve the load balancer
|
|
# knowing whether or not it exists will tell us what to do in the future
|
|
self.log('Fetching load balancer {}'.format(self.name))
|
|
load_balancer = self.network_client.load_balancers.get(self.resource_group, self.name)
|
|
|
|
self.log('Load balancer {} exists'.format(self.name))
|
|
self.check_provisioning_state(load_balancer, self.state)
|
|
results = load_balancer_to_dict(load_balancer)
|
|
self.log(results, pretty_print=True)
|
|
|
|
if self.state == 'present':
|
|
update_tags, results['tags'] = self.update_tags(results['tags'])
|
|
|
|
if update_tags:
|
|
changed = True
|
|
except CloudError:
|
|
self.log('Load balancer {} does not exist'.format(self.name))
|
|
if self.state == 'present':
|
|
self.log(
|
|
'CHANGED: load balancer {} does not exist but requested status \'present\''
|
|
.format(self.name)
|
|
)
|
|
changed = True
|
|
|
|
backend_address_pool_name = random_name('beap')
|
|
backend_addr_pool_id = backend_address_pool_id(
|
|
subscription_id=self.subscription_id,
|
|
resource_group_name=self.resource_group,
|
|
load_balancer_name=self.name,
|
|
name=backend_address_pool_name
|
|
)
|
|
load_balancer_props['backend_address_pools'] = [self.network_models.BackendAddressPool(name=backend_address_pool_name)]
|
|
|
|
probe_name = random_name('probe')
|
|
prb_id = probe_id(
|
|
subscription_id=self.subscription_id,
|
|
resource_group_name=self.resource_group,
|
|
load_balancer_name=self.name,
|
|
name=probe_name
|
|
)
|
|
|
|
if self.probe_protocol:
|
|
load_balancer_props['probes'] = [
|
|
self.network_models.Probe(
|
|
name=probe_name,
|
|
protocol=self.probe_protocol,
|
|
port=self.probe_port,
|
|
interval_in_seconds=self.probe_interval,
|
|
number_of_probes=self.probe_fail_count,
|
|
request_path=self.probe_request_path
|
|
)
|
|
]
|
|
|
|
load_balancing_rule_name = random_name('lbr')
|
|
if self.protocol:
|
|
load_balancer_props['load_balancing_rules'] = [
|
|
self.network_models.LoadBalancingRule(
|
|
name=load_balancing_rule_name,
|
|
frontend_ip_configuration=self.network_models.SubResource(id=frontend_ip_config_id),
|
|
backend_address_pool=self.network_models.SubResource(id=backend_addr_pool_id),
|
|
probe=self.network_models.SubResource(id=prb_id),
|
|
protocol=self.protocol,
|
|
load_distribution=self.load_distribution,
|
|
frontend_port=self.frontend_port,
|
|
backend_port=self.backend_port,
|
|
idle_timeout_in_minutes=self.idle_timeout,
|
|
enable_floating_ip=False
|
|
)
|
|
]
|
|
|
|
inbound_nat_pool_name = random_name('inp')
|
|
if frontend_ip_config_id and self.natpool_protocol:
|
|
load_balancer_props['inbound_nat_pools'] = [
|
|
self.network_models.InboundNatPool(
|
|
name=inbound_nat_pool_name,
|
|
frontend_ip_configuration=self.network_models.Subnet(id=frontend_ip_config_id),
|
|
protocol=self.natpool_protocol,
|
|
frontend_port_range_start=self.natpool_frontend_port_start,
|
|
frontend_port_range_end=self.natpool_frontend_port_end,
|
|
backend_port=self.natpool_backend_port
|
|
)
|
|
]
|
|
|
|
self.results['changed'] = changed
|
|
self.results['state'] = (
|
|
results if results
|
|
else load_balancer_to_dict(self.network_models.LoadBalancer(**load_balancer_props))
|
|
)
|
|
|
|
if self.check_mode:
|
|
return self.results
|
|
|
|
try:
|
|
self.network_client.load_balancers.create_or_update(
|
|
resource_group_name=self.resource_group,
|
|
load_balancer_name=self.name,
|
|
parameters=self.network_models.LoadBalancer(**load_balancer_props)
|
|
).wait()
|
|
except CloudError as err:
|
|
self.fail('Error creating load balancer {}'.format(err))
|
|
|
|
return self.results
|
|
|
|
def get_public_ip_address(self, name):
|
|
"""Get a reference to the public ip address resource"""
|
|
|
|
self.log('Fetching public ip address {}'.format(name))
|
|
try:
|
|
public_ip = self.network_client.public_ip_addresses.get(self.resource_group, name)
|
|
except CloudError as err:
|
|
self.fail('Error fetching public ip address {} - {}'.format(name, str(err)))
|
|
return public_ip
|
|
|
|
|
|
def load_balancer_to_dict(load_balancer):
|
|
"""Seralialize a LoadBalancer object to a dict"""
|
|
|
|
result = dict(
|
|
id=load_balancer.id,
|
|
name=load_balancer.name,
|
|
location=load_balancer.location,
|
|
tags=load_balancer.tags,
|
|
provisioning_state=load_balancer.provisioning_state,
|
|
etag=load_balancer.etag,
|
|
frontend_ip_configurations=[],
|
|
backend_address_pools=[],
|
|
load_balancing_rules=[],
|
|
probes=[],
|
|
inbound_nat_rules=[],
|
|
inbound_nat_pools=[],
|
|
outbound_nat_rules=[]
|
|
)
|
|
|
|
if load_balancer.frontend_ip_configurations:
|
|
result['frontend_ip_configurations'] = [dict(
|
|
id=_.id,
|
|
name=_.name,
|
|
etag=_.etag,
|
|
provisioning_state=_.provisioning_state,
|
|
private_ip_address=_.private_ip_address,
|
|
private_ip_allocation_method=_.private_ip_allocation_method,
|
|
subnet=dict(
|
|
id=_.subnet.id,
|
|
name=_.subnet.name,
|
|
address_prefix=_.subnet.address_prefix
|
|
) if _.subnet else None,
|
|
public_ip_address=dict(
|
|
id=_.public_ip_address.id,
|
|
location=_.public_ip_address.location,
|
|
public_ip_allocation_method=_.public_ip_address.public_ip_allocation_method,
|
|
ip_address=_.public_ip_address.ip_address
|
|
) if _.public_ip_address else None
|
|
) for _ in load_balancer.frontend_ip_configurations]
|
|
|
|
if load_balancer.backend_address_pools:
|
|
result['backend_address_pools'] = [dict(
|
|
id=_.id,
|
|
name=_.name,
|
|
provisioning_state=_.provisioning_state,
|
|
etag=_.etag
|
|
) for _ in load_balancer.backend_address_pools]
|
|
|
|
if load_balancer.load_balancing_rules:
|
|
result['load_balancing_rules'] = [dict(
|
|
id=_.id,
|
|
name=_.name,
|
|
protocol=_.protocol,
|
|
frontend_ip_configuration_id=_.frontend_ip_configuration.id,
|
|
backend_address_pool_id=_.backend_address_pool.id,
|
|
probe_id=_.probe.id,
|
|
load_distribution=_.load_distribution,
|
|
frontend_port=_.frontend_port,
|
|
backend_port=_.backend_port,
|
|
idle_timeout_in_minutes=_.idle_timeout_in_minutes,
|
|
enable_floating_ip=_.enable_floating_ip,
|
|
provisioning_state=_.provisioning_state,
|
|
etag=_.etag
|
|
) for _ in load_balancer.load_balancing_rules]
|
|
|
|
if load_balancer.probes:
|
|
result['probes'] = [dict(
|
|
id=_.id,
|
|
name=_.name,
|
|
protocol=_.protocol,
|
|
port=_.port,
|
|
interval_in_seconds=_.interval_in_seconds,
|
|
number_of_probes=_.number_of_probes,
|
|
request_path=_.request_path,
|
|
provisioning_state=_.provisioning_state
|
|
) for _ in load_balancer.probes]
|
|
|
|
if load_balancer.inbound_nat_rules:
|
|
result['inbound_nat_rules'] = [dict(
|
|
id=_.id,
|
|
name=_.name,
|
|
frontend_ip_configuration_id=_.frontend_ip_configuration.id,
|
|
protocol=_.protocol,
|
|
frontend_port=_.frontend_port,
|
|
backend_port=_.backend_port,
|
|
idle_timeout_in_minutes=_.idle_timeout_in_minutes,
|
|
enable_floating_point_ip=_.enable_floating_point_ip,
|
|
provisioning_state=_.provisioning_state,
|
|
etag=_.etag
|
|
) for _ in load_balancer.inbound_nat_rules]
|
|
|
|
if load_balancer.inbound_nat_pools:
|
|
result['inbound_nat_pools'] = [dict(
|
|
id=_.id,
|
|
name=_.name,
|
|
frontend_ip_configuration_id=_.frontend_ip_configuration.id,
|
|
protocol=_.protocol,
|
|
frontend_port_range_start=_.frontend_port_range_start,
|
|
frontend_port_range_end=_.frontend_port_range_end,
|
|
backend_port=_.backend_port,
|
|
provisioning_state=_.provisioning_state,
|
|
etag=_.etag
|
|
) for _ in load_balancer.inbound_nat_pools]
|
|
|
|
if load_balancer.outbound_nat_rules:
|
|
result['outbound_nat_rules'] = [dict(
|
|
id=_.id,
|
|
name=_.name,
|
|
allocated_outbound_ports=_.allocated_outbound_ports,
|
|
frontend_ip_configuration_id=_.frontend_ip_configuration.id,
|
|
backend_address_pool=_.backend_address_pool.id,
|
|
provisioning_state=_.provisioning_state,
|
|
etag=_.etag
|
|
) for _ in load_balancer.outbound_nat_rules]
|
|
|
|
return result
|
|
|
|
|
|
def random_name(prefix):
|
|
"""Generate a random name with a specific prefix"""
|
|
return '{}{}'.format(prefix, random.randint(10000, 99999))
|
|
|
|
|
|
def frontend_ip_configuration_id(subscription_id, resource_group_name, load_balancer_name, name):
|
|
"""Generate the id for a frontend ip configuration"""
|
|
return '/subscriptions/{}/resourceGroups/{}/providers/Microsoft.Network/loadBalancers/{}/frontendIPConfigurations/{}'.format(
|
|
subscription_id,
|
|
resource_group_name,
|
|
load_balancer_name,
|
|
name
|
|
)
|
|
|
|
|
|
def backend_address_pool_id(subscription_id, resource_group_name, load_balancer_name, name):
|
|
"""Generate the id for a backend address pool"""
|
|
return '/subscriptions/{}/resourceGroups/{}/providers/Microsoft.Network/loadBalancers/{}/backendAddressPools/{}'.format(
|
|
subscription_id,
|
|
resource_group_name,
|
|
load_balancer_name,
|
|
name
|
|
)
|
|
|
|
|
|
def probe_id(subscription_id, resource_group_name, load_balancer_name, name):
|
|
"""Generate the id for a probe"""
|
|
return '/subscriptions/{}/resourceGroups/{}/providers/Microsoft.Network/loadBalancers/{}/probes/{}'.format(
|
|
subscription_id,
|
|
resource_group_name,
|
|
load_balancer_name,
|
|
name
|
|
)
|
|
|
|
|
|
def main():
|
|
"""Main execution"""
|
|
AzureRMLoadBalancer()
|
|
|
|
if __name__ == '__main__':
|
|
main()
|