ansible/network/asa/asa_command.py

225 lines
6.9 KiB
Python
Raw Normal View History

2016-07-11 18:55:45 +02:00
#!/usr/bin/python
#
# This file is part of Ansible
#
# Ansible is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# Ansible is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with Ansible. If not, see <http://www.gnu.org/licenses/>.
#
DOCUMENTATION = """
---
module: asa_command
version_added: "2.2"
author: "Peter Sprygada (@privateip), Patrick Ogenstad (@ogenstad)"
2016-07-11 18:55:45 +02:00
short_description: Run arbitrary commands on Cisco ASA devices.
description:
- Sends arbitrary commands to an ASA node and returns the results
read from the device. The M(asa_command) module includes an
argument that will cause the module to wait for a specific condition
before returning or timing out if the condition is not met.
extends_documentation_fragment: asa
options:
commands:
description:
- List of commands to send to the remote device over the
2016-07-11 18:55:45 +02:00
configured provider. The resulting output from the command
is returned. If the I(wait_for) argument is provided, the
2016-07-11 18:55:45 +02:00
module is not returned until the condition is satisfied or
the number of retires as expired.
required: true
wait_for:
2016-07-11 18:55:45 +02:00
description:
- List of conditions to evaluate against the output of the
command. The task will wait for each condition to be true
2016-07-11 18:55:45 +02:00
before moving forward. If the conditional is not true
within the configured number of retries, the task fails.
See examples.
required: false
default: null
aliases: ['waitfor']
match:
description:
- The I(match) argument is used in conjunction with the
I(wait_for) argument to specify the match policy. Valid
values are C(all) or C(any). If the value is set to C(all)
then all conditionals in the wait_for must be satisfied. If
the value is set to C(any) then only one of the values must be
satisfied.
required: false
default: all
choices: ['any', 'all']
2016-07-11 18:55:45 +02:00
retries:
description:
- Specifies the number of retries a command should by tried
before it is considered failed. The command is run on the
target device every retry and evaluated against the
I(wait_for) conditions.
2016-07-11 18:55:45 +02:00
required: false
default: 10
interval:
description:
- Configures the interval in seconds to wait between retries
of the command. If the command does not pass the specified
conditions, the interval indicates how long to wait before
trying the command again.
required: false
default: 1
"""
EXAMPLES = """
# Note: examples below use the following provider dict to handle
# transport and authentication to the node.
vars:
cli:
host: "{{ inventory_hostname }}"
username: cisco
password: cisco
authorize: yes
auth_pass: cisco
transport: cli
2016-07-11 18:55:45 +02:00
- asa_command:
commands:
- show version
provider: "{{ cli }}"
2016-07-11 18:55:45 +02:00
- asa_command:
commands:
- show asp drop
- show memory
provider: "{{ cli }}"
2016-07-11 18:55:45 +02:00
- asa_command:
commands:
- show version
provider: "{{ cli }}"
2016-07-11 18:55:45 +02:00
context: system
"""
RETURN = """
stdout:
description: the set of responses from the commands
returned: always
type: list
sample: ['...', '...']
stdout_lines:
description: The value of stdout split into a list
returned: always
type: list
sample: [['...', '...'], ['...'], ['...']]
failed_conditions:
description: the conditionals that failed
retured: failed
type: list
sample: ['...', '...']
"""
from ansible.module_utils.basic import get_exception
from ansible.module_utils.netcli import CommandRunner
from ansible.module_utils.netcli import AddCommandError, FailedConditionsError
from ansible.module_utils.asa import NetworkModule, NetworkError
2016-07-11 18:55:45 +02:00
VALID_KEYS = ['command', 'prompt', 'response']
2016-07-11 18:55:45 +02:00
def to_lines(stdout):
for item in stdout:
if isinstance(item, basestring):
item = str(item).split('\n')
yield item
def parse_commands(module):
for cmd in module.params['commands']:
if isinstance(cmd, basestring):
cmd = dict(command=cmd, output=None)
elif 'command' not in cmd:
module.fail_json(msg='command keyword argument is required')
elif not set(cmd.keys()).issubset(VALID_KEYS):
module.fail_json(msg='unknown keyword specified')
yield cmd
2016-07-11 18:55:45 +02:00
def main():
spec = dict(
# { command: <str>, prompt: <str>, response: <str> }
commands=dict(type='list', required=True),
wait_for=dict(type='list', aliases=['waitfor']),
match=dict(default='all', choices=['all', 'any']),
2016-07-11 18:55:45 +02:00
retries=dict(default=10, type='int'),
interval=dict(default=1, type='int')
)
module = NetworkModule(argument_spec=spec,
connect_on_load=False,
supports_check_mode=True)
2016-07-11 18:55:45 +02:00
commands = list(parse_commands(module))
conditionals = module.params['wait_for'] or list()
2016-07-11 18:55:45 +02:00
warnings = list()
2016-07-11 18:55:45 +02:00
runner = CommandRunner(module)
for cmd in commands:
if module.check_mode and not cmd['command'].startswith('show'):
warnings.append('only show commands are supported when using '
'check mode, not executing `%s`' % cmd['command'])
else:
if cmd['command'].startswith('conf'):
module.fail_json(msg='asa_command does not support running '
'config mode commands. Please use '
'asa_config instead')
try:
runner.add_command(**cmd)
except AddCommandError:
exc = get_exception()
warnings.append('duplicate command detected: %s' % cmd)
2016-07-11 18:55:45 +02:00
for item in conditionals:
runner.add_conditional(item)
2016-07-11 18:55:45 +02:00
runner.retries = module.params['retries']
runner.interval = module.params['interval']
runner.match = module.params['match']
2016-07-11 18:55:45 +02:00
try:
runner.run()
except FailedConditionsError:
exc = get_exception()
module.fail_json(msg=str(exc), failed_conditions=exc.failed_conditions)
except NetworkError:
exc = get_exception()
module.fail_json(msg=str(exc))
2016-07-11 18:55:45 +02:00
result = dict(changed=False, stdout=list())
2016-07-11 18:55:45 +02:00
for cmd in commands:
try:
output = runner.get_command(cmd['command'])
except ValueError:
output = 'command not executed due to check_mode, see warnings'
result['stdout'].append(output)
2016-07-11 18:55:45 +02:00
result['warnings'] = warnings
2016-07-11 18:55:45 +02:00
result['stdout_lines'] = list(to_lines(result['stdout']))
module.exit_json(**result)
2016-07-11 18:55:45 +02:00
if __name__ == '__main__':
main()