2013-05-23 07:55:05 +05:30
|
|
|
#!/usr/bin/python
|
|
|
|
#coding: utf-8 -*-
|
|
|
|
|
2014-01-28 11:20:36 -05:00
|
|
|
# (c) 2013, Benno Joy <benno@ansible.com>
|
2013-11-22 21:37:47 -08:00
|
|
|
# (c) 2013, John Dewey <john@dewey.ws>
|
2013-05-23 07:55:05 +05:30
|
|
|
#
|
|
|
|
# This module is free software: you can redistribute it and/or modify
|
|
|
|
# it under the terms of the GNU General Public License as published by
|
|
|
|
# the Free Software Foundation, either version 3 of the License, or
|
|
|
|
# (at your option) any later version.
|
|
|
|
#
|
|
|
|
# This software is distributed in the hope that it will be useful,
|
|
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
# GNU General Public License for more details.
|
|
|
|
#
|
|
|
|
# You should have received a copy of the GNU General Public License
|
|
|
|
# along with this software. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
2015-05-11 13:21:17 -07:00
|
|
|
import time
|
2013-05-23 07:55:05 +05:30
|
|
|
try:
|
2014-03-04 18:46:42 -05:00
|
|
|
from novaclient.v1_1 import client as nova_client
|
2014-06-05 15:41:56 -05:00
|
|
|
from novaclient import exceptions as exc
|
2015-05-11 13:21:17 -07:00
|
|
|
HAS_NOVACLIENT = True
|
2013-05-23 07:55:05 +05:30
|
|
|
except ImportError:
|
2015-05-11 13:21:17 -07:00
|
|
|
HAS_NOVACLIENT = False
|
2013-05-23 07:55:05 +05:30
|
|
|
|
|
|
|
DOCUMENTATION = '''
|
|
|
|
---
|
|
|
|
module: nova_keypair
|
2013-11-18 18:55:49 -05:00
|
|
|
version_added: "1.2"
|
2015-06-15 14:41:22 -04:00
|
|
|
author:
|
|
|
|
- "Benno Joy (@bennojoy)"
|
|
|
|
- "Michael DeHaan"
|
2015-03-31 16:37:07 -04:00
|
|
|
deprecated: Deprecated in 2.0. Use os_keypair instead
|
2013-06-14 11:53:43 +02:00
|
|
|
short_description: Add/Delete key pair from nova
|
2013-05-23 07:55:05 +05:30
|
|
|
description:
|
2013-06-14 11:53:43 +02:00
|
|
|
- Add or Remove key pair from nova .
|
2013-05-23 07:55:05 +05:30
|
|
|
options:
|
|
|
|
login_username:
|
|
|
|
description:
|
|
|
|
- login username to authenticate to keystone
|
|
|
|
required: true
|
|
|
|
default: admin
|
|
|
|
login_password:
|
|
|
|
description:
|
|
|
|
- Password of login user
|
|
|
|
required: true
|
2013-06-01 11:52:28 -04:00
|
|
|
default: 'yes'
|
2013-05-23 07:55:05 +05:30
|
|
|
login_tenant_name:
|
|
|
|
description:
|
|
|
|
- The tenant name of the login user
|
|
|
|
required: true
|
2013-06-01 11:52:28 -04:00
|
|
|
default: 'yes'
|
2013-05-23 07:55:05 +05:30
|
|
|
auth_url:
|
|
|
|
description:
|
|
|
|
- The keystone url for authentication
|
|
|
|
required: false
|
|
|
|
default: 'http://127.0.0.1:35357/v2.0/'
|
|
|
|
region_name:
|
|
|
|
description:
|
|
|
|
- Name of the region
|
|
|
|
required: false
|
|
|
|
default: None
|
|
|
|
state:
|
|
|
|
description:
|
|
|
|
- Indicate desired state of the resource
|
|
|
|
choices: ['present', 'absent']
|
|
|
|
default: present
|
|
|
|
name:
|
|
|
|
description:
|
2013-06-14 11:53:43 +02:00
|
|
|
- Name that has to be given to the key pair
|
2013-05-23 07:55:05 +05:30
|
|
|
required: true
|
|
|
|
default: None
|
|
|
|
public_key:
|
|
|
|
description:
|
|
|
|
- The public key that would be uploaded to nova and injected to vm's upon creation
|
|
|
|
required: false
|
|
|
|
default: None
|
|
|
|
|
2015-05-11 13:21:17 -07:00
|
|
|
requirements:
|
|
|
|
- "python >= 2.6"
|
|
|
|
- "python-novaclient"
|
2013-05-23 07:55:05 +05:30
|
|
|
'''
|
2013-06-14 11:53:43 +02:00
|
|
|
EXAMPLES = '''
|
|
|
|
# Creates a key pair with the running users public key
|
|
|
|
- nova_keypair: state=present login_username=admin
|
|
|
|
login_password=admin login_tenant_name=admin name=ansible_key
|
|
|
|
public_key={{ lookup('file','~/.ssh/id_rsa.pub') }}
|
|
|
|
|
|
|
|
# Creates a new key pair and the private key returned after the run.
|
|
|
|
- nova_keypair: state=present login_username=admin login_password=admin
|
|
|
|
login_tenant_name=admin name=ansible_key
|
|
|
|
'''
|
2013-05-23 07:55:05 +05:30
|
|
|
|
|
|
|
def main():
|
2014-08-02 17:12:24 -07:00
|
|
|
argument_spec = openstack_argument_spec()
|
|
|
|
argument_spec.update(dict(
|
2013-05-24 23:34:48 -04:00
|
|
|
name = dict(required=True),
|
|
|
|
public_key = dict(default=None),
|
|
|
|
state = dict(default='present', choices=['absent', 'present'])
|
2014-08-02 17:12:24 -07:00
|
|
|
))
|
|
|
|
module = AnsibleModule(argument_spec=argument_spec)
|
2015-05-19 10:52:33 -04:00
|
|
|
if not HAS_NOVACLIENT:
|
2015-05-11 13:21:17 -07:00
|
|
|
module.fail_json(msg='python-novaclient is required for this module to work')
|
2013-11-22 21:37:47 -08:00
|
|
|
|
|
|
|
nova = nova_client.Client(module.params['login_username'],
|
|
|
|
module.params['login_password'],
|
|
|
|
module.params['login_tenant_name'],
|
|
|
|
module.params['auth_url'],
|
2014-08-03 10:43:39 -07:00
|
|
|
region_name=module.params['region_name'],
|
2013-11-22 21:37:47 -08:00
|
|
|
service_type='compute')
|
2013-05-23 07:55:05 +05:30
|
|
|
try:
|
2013-11-22 21:37:47 -08:00
|
|
|
nova.authenticate()
|
2014-02-02 21:33:27 +04:00
|
|
|
except exc.Unauthorized, e:
|
2013-11-22 21:37:47 -08:00
|
|
|
module.fail_json(msg = "Invalid OpenStack Nova credentials.: %s" % e.message)
|
2014-02-02 21:33:27 +04:00
|
|
|
except exc.AuthorizationFailure, e:
|
2013-11-22 21:37:47 -08:00
|
|
|
module.fail_json(msg = "Unable to authorize user: %s" % e.message)
|
|
|
|
|
2013-05-23 07:55:05 +05:30
|
|
|
if module.params['state'] == 'present':
|
2013-05-24 23:34:48 -04:00
|
|
|
for key in nova.keypairs.list():
|
|
|
|
if key.name == module.params['name']:
|
2014-05-02 11:09:54 -05:00
|
|
|
if module.params['public_key'] and (module.params['public_key'] != key.public_key ):
|
|
|
|
module.fail_json(msg = "name {} present but key hash not the same as offered. Delete key first.".format(key['name']))
|
|
|
|
else:
|
|
|
|
module.exit_json(changed = False, result = "Key present")
|
2013-05-24 23:34:48 -04:00
|
|
|
try:
|
|
|
|
key = nova.keypairs.create(module.params['name'], module.params['public_key'])
|
2014-02-02 21:33:27 +04:00
|
|
|
except Exception, e:
|
2013-05-24 23:34:48 -04:00
|
|
|
module.exit_json(msg = "Error in creating the keypair: %s" % e.message)
|
|
|
|
if not module.params['public_key']:
|
|
|
|
module.exit_json(changed = True, key = key.private_key)
|
|
|
|
module.exit_json(changed = True, key = None)
|
2013-05-23 07:55:05 +05:30
|
|
|
if module.params['state'] == 'absent':
|
2013-05-24 23:34:48 -04:00
|
|
|
for key in nova.keypairs.list():
|
|
|
|
if key.name == module.params['name']:
|
|
|
|
try:
|
|
|
|
nova.keypairs.delete(module.params['name'])
|
2014-02-02 21:33:27 +04:00
|
|
|
except Exception, e:
|
2013-05-24 23:34:48 -04:00
|
|
|
module.fail_json(msg = "The keypair deletion has failed: %s" % e.message)
|
|
|
|
module.exit_json( changed = True, result = "deleted")
|
2013-05-23 07:55:05 +05:30
|
|
|
module.exit_json(changed = False, result = "not present")
|
|
|
|
|
|
|
|
# this is magic, see lib/ansible/module.params['common.py
|
2013-12-02 15:11:23 -05:00
|
|
|
from ansible.module_utils.basic import *
|
2014-08-02 17:12:24 -07:00
|
|
|
from ansible.module_utils.openstack import *
|
2015-05-11 13:21:17 -07:00
|
|
|
if __name__ == '__main__':
|
|
|
|
main()
|
2013-05-23 07:55:05 +05:30
|
|
|
|