add security groups to elb_lb

This commit is contained in:
Isao Jonas 2014-02-13 10:14:13 -06:00
parent 1602a80d76
commit 6f44e7b039

View file

@ -51,6 +51,11 @@ options:
- Purge existing availability zones on ELB that are not found in zones - Purge existing availability zones on ELB that are not found in zones
required: false required: false
default: false default: false
security_group_ids:
description:
- A list of security groups to apply to the elb
require: false
default: None
health_check: health_check:
description: description:
- An associative array of health check configuration settigs (see example) - An associative array of health check configuration settigs (see example)
@ -175,7 +180,7 @@ class ElbManager(object):
"""Handles ELB creation and destruction""" """Handles ELB creation and destruction"""
def __init__(self, module, name, listeners=None, purge_listeners=None, def __init__(self, module, name, listeners=None, purge_listeners=None,
zones=None, purge_zones=None, health_check=None, zones=None, purge_zones=None, security_group_ids=None, health_check=None,
aws_access_key=None, aws_secret_key=None, region=None): aws_access_key=None, aws_secret_key=None, region=None):
self.module = module self.module = module
self.name = name self.name = name
@ -183,6 +188,7 @@ class ElbManager(object):
self.purge_listeners = purge_listeners self.purge_listeners = purge_listeners
self.zones = zones self.zones = zones
self.purge_zones = purge_zones self.purge_zones = purge_zones
self.security_group_ids = security_group_ids
self.health_check = health_check self.health_check = health_check
self.aws_access_key = aws_access_key self.aws_access_key = aws_access_key
@ -201,6 +207,7 @@ class ElbManager(object):
self._create_elb() self._create_elb()
else: else:
self._set_zones() self._set_zones()
self._set_security_groups()
self._set_elb_listeners() self._set_elb_listeners()
self._set_health_check() self._set_health_check()
@ -220,6 +227,7 @@ class ElbManager(object):
'name': self.elb.name, 'name': self.elb.name,
'dns_name': self.elb.dns_name, 'dns_name': self.elb.dns_name,
'zones': self.elb.availability_zones, 'zones': self.elb.availability_zones,
'security_group_ids': self.elb.security_groups,
'status': self.status 'status': self.status
} }
@ -273,6 +281,7 @@ class ElbManager(object):
listeners = [self._listener_as_tuple(l) for l in self.listeners] listeners = [self._listener_as_tuple(l) for l in self.listeners]
self.elb = self.elb_conn.create_load_balancer(name=self.name, self.elb = self.elb_conn.create_load_balancer(name=self.name,
zones=self.zones, zones=self.zones,
security_groups=self.security_group_ids,
complex_listeners=listeners) complex_listeners=listeners)
if self.elb: if self.elb:
self.changed = True self.changed = True
@ -397,6 +406,11 @@ class ElbManager(object):
if zones_to_disable: if zones_to_disable:
self._disable_zones(zones_to_disable) self._disable_zones(zones_to_disable)
def _set_security_groups(self):
if self.security_group_ids != None and set(self.elb.security_groups) != set(self.security_group_ids):
self.elb_conn.apply_security_groups_to_lb(self.name, self.security_group_ids)
self.Changed = True
def _set_health_check(self): def _set_health_check(self):
"""Set health check values on ELB as needed""" """Set health check values on ELB as needed"""
if self.health_check: if self.health_check:
@ -449,6 +463,7 @@ def main():
zones={'default': None, 'required': False, 'type': 'list'}, zones={'default': None, 'required': False, 'type': 'list'},
purge_zones={'default': False, 'required': False, purge_zones={'default': False, 'required': False,
'choices': BOOLEANS, 'type': 'bool'}, 'choices': BOOLEANS, 'type': 'bool'},
security_group_ids={'default': None, 'required': False, 'type': 'list'},
health_check={'default': None, 'required': False, 'type': 'dict'}, health_check={'default': None, 'required': False, 'type': 'dict'},
ec2_secret_key={'default': None, ec2_secret_key={'default': None,
'aliases': ['aws_secret_key', 'secret_key'], 'aliases': ['aws_secret_key', 'secret_key'],
@ -471,6 +486,7 @@ def main():
purge_listeners = module.params['purge_listeners'] purge_listeners = module.params['purge_listeners']
zones = module.params['zones'] zones = module.params['zones']
purge_zones = module.params['purge_zones'] purge_zones = module.params['purge_zones']
security_group_ids = module.params['security_group_ids']
health_check = module.params['health_check'] health_check = module.params['health_check']
if state == 'present' and not listeners: if state == 'present' and not listeners:
@ -480,7 +496,7 @@ def main():
module.fail_json(msg="At least one availability zone is required for ELB creation") module.fail_json(msg="At least one availability zone is required for ELB creation")
elb_man = ElbManager(module, name, listeners, purge_listeners, zones, elb_man = ElbManager(module, name, listeners, purge_listeners, zones,
purge_zones, health_check, aws_access_key, purge_zones, security_group_ids, health_check, aws_access_key,
aws_secret_key, region=region) aws_secret_key, region=region)
if state == 'present': if state == 'present':