mirror of
https://github.com/ansible-collections/community.general.git
synced 2024-09-14 20:13:21 +02:00
5dc34829c4
Add attributes to manageiq, udm, utm, and webfaction modules (#5955)
Add attributes to manageiq, udm, utm, and webfaction modules.
(cherry picked from commit e944a67c18
)
Co-authored-by: Felix Fontein <felix@fontein.de>
168 lines
4.6 KiB
Python
168 lines
4.6 KiB
Python
#!/usr/bin/python
|
|
# -*- coding: utf-8 -*-
|
|
|
|
# Copyright (c) 2018, Stephan Schwarz <stearz@gmx.de>
|
|
# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
# SPDX-License-Identifier: GPL-3.0-or-later
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
|
|
__metaclass__ = type
|
|
|
|
DOCUMENTATION = '''
|
|
---
|
|
module: utm_ca_host_key_cert
|
|
|
|
author:
|
|
- Stephan Schwarz (@stearz)
|
|
|
|
short_description: Create, update or destroy ca host_key_cert entry in Sophos UTM
|
|
|
|
description:
|
|
- Create, update or destroy a ca host_key_cert entry in SOPHOS UTM.
|
|
- This module needs to have the REST Ability of the UTM to be activated.
|
|
|
|
attributes:
|
|
check_mode:
|
|
support: none
|
|
diff_mode:
|
|
support: none
|
|
|
|
options:
|
|
name:
|
|
description:
|
|
- The name of the object. Will be used to identify the entry.
|
|
required: true
|
|
type: str
|
|
ca:
|
|
description:
|
|
- A reference to an existing utm_ca_signing_ca or utm_ca_verification_ca object.
|
|
required: true
|
|
type: str
|
|
meta:
|
|
description:
|
|
- A reference to an existing utm_ca_meta_x509 object.
|
|
required: true
|
|
type: str
|
|
certificate:
|
|
description:
|
|
- The certificate in PEM format.
|
|
required: true
|
|
type: str
|
|
comment:
|
|
description:
|
|
- Optional comment string.
|
|
type: str
|
|
encrypted:
|
|
description:
|
|
- Optionally enable encryption.
|
|
default: false
|
|
type: bool
|
|
key:
|
|
description:
|
|
- Optional private key in PEM format.
|
|
type: str
|
|
|
|
extends_documentation_fragment:
|
|
- community.general.utm
|
|
- community.general.attributes
|
|
|
|
'''
|
|
|
|
EXAMPLES = """
|
|
- name: Create a ca_host_key_cert entry
|
|
community.general.utm_ca_host_key_cert:
|
|
utm_host: sophos.host.name
|
|
utm_token: abcdefghijklmno1234
|
|
name: TestHostKeyCertEntry
|
|
ca: REF_ca/signing_ca_OBJECT_STRING
|
|
meta: REF_ca/meta_x509_OBJECT_STRING
|
|
certificate: |
|
|
--- BEGIN CERTIFICATE ---
|
|
. . .
|
|
. . .
|
|
. . .
|
|
--- END CERTIFICATE ---
|
|
state: present
|
|
|
|
- name: Remove a ca_host_key_cert entry
|
|
community.general.utm_ca_host_key_cert:
|
|
utm_host: sophos.host.name
|
|
utm_token: abcdefghijklmno1234
|
|
name: TestHostKeyCertEntry
|
|
state: absent
|
|
|
|
- name: Read a ca_host_key_cert entry
|
|
community.general.utm_ca_host_key_cert:
|
|
utm_host: sophos.host.name
|
|
utm_token: abcdefghijklmno1234
|
|
name: TestHostKeyCertEntry
|
|
state: info
|
|
|
|
"""
|
|
|
|
RETURN = """
|
|
result:
|
|
description: The utm object that was created
|
|
returned: success
|
|
type: complex
|
|
contains:
|
|
_ref:
|
|
description: The reference name of the object
|
|
type: str
|
|
_locked:
|
|
description: Whether or not the object is currently locked
|
|
type: bool
|
|
_type:
|
|
description: The type of the object
|
|
type: str
|
|
name:
|
|
description: The name of the object
|
|
type: str
|
|
ca:
|
|
description: A reference to an existing utm_ca_signing_ca or utm_ca_verification_ca object.
|
|
type: str
|
|
meta:
|
|
description: A reference to an existing utm_ca_meta_x509 object.
|
|
type: str
|
|
certificate:
|
|
description: The certificate in PEM format
|
|
type: str
|
|
comment:
|
|
description: Comment string (may be empty string)
|
|
type: str
|
|
encrypted:
|
|
description: If encryption is enabled
|
|
type: bool
|
|
key:
|
|
description: Private key in PEM format (may be empty string)
|
|
type: str
|
|
"""
|
|
|
|
from ansible_collections.community.general.plugins.module_utils.utm_utils import UTM, UTMModule
|
|
from ansible.module_utils.common.text.converters import to_native
|
|
|
|
|
|
def main():
|
|
endpoint = "ca/host_key_cert"
|
|
key_to_check_for_changes = ["ca", "certificate", "comment", "encrypted", "key", "meta"]
|
|
module = UTMModule(
|
|
argument_spec=dict(
|
|
name=dict(type='str', required=True),
|
|
ca=dict(type='str', required=True),
|
|
meta=dict(type='str', required=True),
|
|
certificate=dict(type='str', required=True),
|
|
comment=dict(type='str', required=False),
|
|
encrypted=dict(type='bool', required=False, default=False),
|
|
key=dict(type='str', required=False, no_log=True),
|
|
)
|
|
)
|
|
try:
|
|
# This is needed because the bool value only accepts int values in the backend
|
|
UTM(module, endpoint, key_to_check_for_changes).execute()
|
|
except Exception as e:
|
|
module.fail_json(msg=to_native(e))
|
|
|
|
|
|
if __name__ == '__main__':
|
|
main()
|