Update for latest shade API
Shade version 0.7.0 introduces new API methods for creating, deleting, and updating security groups. Let's use those and clean up the module.
This commit is contained in:
David Shrewsbury
Matt Clay
parent
5ffb677b00
commit
640dbee643
1 changed files with 61 additions and 38 deletions
|
|
@ -18,8 +18,9 @@
|
||||||
|
|
||||||
try:
|
try:
|
||||||
import shade
|
import shade
|
||||||
|
HAS_SHADE = True
|
||||||
except ImportError:
|
except ImportError:
|
||||||
print("failed=True msg='shade is required for this module'")
|
HAS_SHADE = False
|
||||||
|
|
||||||
|
|
||||||
DOCUMENTATION = '''
|
DOCUMENTATION = '''
|
||||||
|
|
@ -51,58 +52,80 @@ requirements: ["shade"]
|
||||||
|
|
||||||
EXAMPLES = '''
|
EXAMPLES = '''
|
||||||
# Create a security group
|
# Create a security group
|
||||||
- os_security_group: cloud=mordred name=foo
|
- os_security_group:
|
||||||
|
cloud=mordred
|
||||||
|
name=foo
|
||||||
description=security group for foo servers
|
description=security group for foo servers
|
||||||
'''
|
'''
|
||||||
|
|
||||||
|
|
||||||
def _security_group(module, nova_client, action='create', **kwargs):
|
def _needs_update(module, secgroup):
|
||||||
f = getattr(nova_client.security_groups, action)
|
"""Check for differences in the updatable values.
|
||||||
try:
|
|
||||||
secgroup = f(**kwargs)
|
NOTE: We don't currently allow name updates.
|
||||||
except Exception, e:
|
"""
|
||||||
module.fail_json(msg='Failed to %s security group %s: %s' %
|
if secgroup['description'] != module.params['description']:
|
||||||
(action, module.params['name'], e.message))
|
return True
|
||||||
|
return False
|
||||||
|
|
||||||
|
|
||||||
|
def _system_state_change(module, secgroup):
|
||||||
|
state = module.params['state']
|
||||||
|
if state == 'present':
|
||||||
|
if not secgroup:
|
||||||
|
return True
|
||||||
|
return _needs_update(module, secgroup)
|
||||||
|
if state == 'absent' and secgroup:
|
||||||
|
return True
|
||||||
|
return False
|
||||||
|
|
||||||
|
|
||||||
def main():
|
def main():
|
||||||
|
|
||||||
argument_spec = openstack_full_argument_spec(
|
argument_spec = openstack_full_argument_spec(
|
||||||
name = dict(required=True),
|
name=dict(required=True),
|
||||||
description = dict(default=None),
|
description=dict(default=None),
|
||||||
state = dict(default='present', choices=['absent', 'present']),
|
state=dict(default='present', choices=['absent', 'present']),
|
||||||
)
|
)
|
||||||
|
|
||||||
module_kwargs = openstack_module_kwargs()
|
module_kwargs = openstack_module_kwargs()
|
||||||
module = AnsibleModule(argument_spec, **module_kwargs)
|
module = AnsibleModule(argument_spec,
|
||||||
|
supports_check_mode=True,
|
||||||
|
**module_kwargs)
|
||||||
|
|
||||||
|
if not HAS_SHADE:
|
||||||
|
module.fail_json(msg='shade is required for this module')
|
||||||
|
|
||||||
|
name = module.params['name']
|
||||||
|
state = module.params['state']
|
||||||
|
description = module.params['description']
|
||||||
|
|
||||||
try:
|
try:
|
||||||
cloud = shade.openstack_cloud(**module.params)
|
cloud = shade.openstack_cloud(**module.params)
|
||||||
nova_client = cloud.nova_client
|
secgroup = cloud.get_security_group(name)
|
||||||
changed = False
|
|
||||||
secgroup = cloud.get_security_group(module.params['name'])
|
|
||||||
|
|
||||||
if module.params['state'] == 'present':
|
if module.check_mode:
|
||||||
secgroup = cloud.get_security_group(module.params['name'])
|
module.exit_json(changed=_system_state_change(module, secgroup))
|
||||||
|
|
||||||
|
if state == 'present':
|
||||||
if not secgroup:
|
if not secgroup:
|
||||||
_security_group(module, nova_client, action='create',
|
secgroup = cloud.create_security_group(name, description)
|
||||||
name=module.params['name'],
|
module.exit_json(changed=True, result='created',
|
||||||
description=module.params['description'])
|
id=secgroup['id'])
|
||||||
changed = True
|
else:
|
||||||
|
if _needs_update(module, secgroup):
|
||||||
|
secgroup = cloud.update_security_group(
|
||||||
|
secgroup['id'], description=description)
|
||||||
|
module.exit_json(changed=True, result='updated',
|
||||||
|
id=secgroup['id'])
|
||||||
|
else:
|
||||||
|
module.exit_json(changed=False, result='success')
|
||||||
|
|
||||||
if secgroup and secgroup.description != module.params['description']:
|
if state == 'absent':
|
||||||
_security_group(module, nova_client, action='update',
|
if not secgroup:
|
||||||
group=secgroup.id,
|
module.exit_json(changed=False, result='success')
|
||||||
name=module.params['name'],
|
else:
|
||||||
description=module.params['description'])
|
cloud.delete_security_group(secgroup['id'])
|
||||||
changed = True
|
module.exit_json(changed=True, result='deleted')
|
||||||
|
|
||||||
if module.params['state'] == 'absent':
|
|
||||||
if secgroup:
|
|
||||||
_security_group(module, nova_client, action='delete',
|
|
||||||
group=secgroup.id)
|
|
||||||
changed = True
|
|
||||||
|
|
||||||
module.exit_json(changed=changed, id=module.params['name'], result="success")
|
|
||||||
|
|
||||||
except shade.OpenStackCloudException as e:
|
except shade.OpenStackCloudException as e:
|
||||||
module.fail_json(msg=e.message)
|
module.fail_json(msg=e.message)
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue