FortiAnalyzer Network Manager Hotfix (#62919)

* Hotfix for FortiAnalyzer HTTPAPI Plugin in response to connection issues introduced in Ansible 2.9. * Changed _connect behavior per Mr. Case. Co-authored-by: Luke Weighall <lweighall@users.noreply.github.com> Co-authored-by: Nathaniel Case <this.is@nathanielca.se>
2020-02-13 16:36:48 -08:00 · 2020-02-13 16:36:48 -08:00 · c1d8bdb87a
commit c1d8bdb87a
parent 4881af2e7e
1 changed files with 29 additions and 24 deletions
--- a/lib/ansible/plugins/httpapi/fortianalyzer.py
+++ b/lib/ansible/plugins/httpapi/fortianalyzer.py
@ -26,9 +26,9 @@ author:
    - Andrew Welsh (@Ghilli3)
    - Jim Huber (@p4r4n0y1ng)
 httpapi : fortianalyzer
-short_description: HttpApi Plugin for Fortinet FortiAnalyzer Appliance or VM
+short_description: HttpApi Plugin for Fortinet FortiAnalyzer Appliance or VM.
 description:
-  - This HttpApi plugin provides methods to connect to Fortinet FortiAnalyzer Appliance or VM via JSON RPC API
+  - This HttpApi plugin provides methods to connect to Fortinet FortiAnalyzer Appliance or VM via JSON RPC API.
 version_added: "2.9"

 """
@ -87,7 +87,7 @@ class HttpApi(HttpApiBase):
        :param username: Username of FortiAnalyzer Admin
        :param password: Password of FortiAnalyzer Admin

-        :return: Dictionary of status, if it logged in or not.
+        :return: Dictionary of status if it logged in or not.
        """

        self._logged_in_user = username
@ -95,11 +95,11 @@ class HttpApi(HttpApiBase):
                                                                      passwd=password, user=username,))

        if "FortiAnalyzer object connected to FortiAnalyzer" in self.__str__():
-            # If Login worked, then inspect the FortiAnalyzer for Workspace Mode, and it's system information.
+            # If Login worked then inspect the FortiAnalyzer for Workspace Mode, and it's system information.
            self.inspect_faz()
            return
        else:
-            raise FAZBaseException(msg="Unknown error while logging in...connection was lost during login operation...."
+            raise FAZBaseException(msg="Unknown error while logging in...connection was lost during login operation..."
                                       " Exiting")

    def inspect_faz(self):
@ -119,7 +119,7 @@ class HttpApi(HttpApiBase):
                    self.get_locked_adom_list()
                self._connected_faz = status[1]
                self._host = self._connected_faz["Hostname"]
-            except BaseException:
+            except Exception:
                pass
        return

@ -145,12 +145,17 @@ class HttpApi(HttpApiBase):
        :param method: The preferred API Request method (GET, ADD, POST, etc....)
        :type method: basestring

-        :return: Dictionary of status, if it logged in or not.
+        :return: Dictionary of status if it logged in or not.
        """

        try:
            if self.sid is None and params[0]["url"] != "sys/login/user":
-                raise FAZBaseException("An attempt was made to login with the SID None and URL != login url.")
+                try:
+                    self.connection._connect()
+                except Exception as err:
+                    raise FAZBaseException(
+                        msg="An problem happened with the httpapi plugin self-init connection process. "
+                            "Error: " + to_text(err))
        except IndexError:
            raise FAZBaseException("An attempt was made at communicating with a FAZ with "
                                   "no valid session and an incorrectly formatted request.")
@ -214,7 +219,7 @@ class HttpApi(HttpApiBase):
        try:
            if self._connected_faz:
                return self._connected_faz
-        except BaseException:
+        except Exception:
            raise FAZBaseException("Couldn't Retrieve Connected FAZ Stats")

    def get_system_status(self):
@ -254,7 +259,7 @@ class HttpApi(HttpApiBase):

    def __str__(self):
        if self.sid is not None and self.connection._url is not None:
-            return "FortiAnalyzer object connected to FortiAnalyzer: " + str(self.connection._url)
+            return "FortiAnalyzer object connected to FortiAnalyzer: " + to_text(self.connection._url)
        return "FortiAnalyzer object with no valid connection to a FortiAnalyzer appliance."

    ##################################
@ -301,7 +306,7 @@ class HttpApi(HttpApiBase):
                self.uses_workspace = False
        except KeyError:
            self.uses_workspace = False
-        except BaseException:
+        except Exception:
            raise FAZBaseException(msg="Couldn't determine workspace-mode in the plugin")
        try:
            if resp_obj["adom-status"] in [1, "enable"]:
@ -310,7 +315,7 @@ class HttpApi(HttpApiBase):
                self.uses_adoms = False
        except KeyError:
            self.uses_adoms = False
-        except BaseException:
+        except Exception:
            raise FAZBaseException(msg="Couldn't determine adom-status in the plugin")

    def run_unlock(self):
@ -386,12 +391,12 @@ class HttpApi(HttpApiBase):
        resp_obj = self.send_request(FAZMethods.GET, data)
        code = resp_obj[0]
        if code != 0:
-            self._module.fail_json(msg=("An error occurred trying to get the ADOM Lock Info. Error: " + str(resp_obj)))
+            self._module.fail_json(msg=("An error occurred trying to get the ADOM Lock Info. Error: " + to_text(resp_obj)))
        elif code == 0:
            try:
                if resp_obj[1]["status"]["message"] == "OK":
                    self._lock_info = None
-            except BaseException:
+            except Exception:
                self._lock_info = resp_obj[1]
        return resp_obj

@ -406,13 +411,13 @@ class HttpApi(HttpApiBase):
            resp_obj = self.send_request(FAZMethods.GET, data)
            code = resp_obj[0]
            if code != 0:
-                self._module.fail_json(msg=("An error occurred trying to get the ADOM Info. Error: " + str(resp_obj)))
+                self._module.fail_json(msg=("An error occurred trying to get the ADOM Info. Error: " + to_text(resp_obj)))
            elif code == 0:
                num_of_adoms = len(resp_obj[1])
                append_list = ['root', ]
                for adom in resp_obj[1]:
                    if adom["tab_status"] != "":
-                        append_list.append(str(adom["name"]))
+                        append_list.append(to_text(adom["name"]))
                self._adom_list = append_list
            return resp_obj

@ -428,22 +433,22 @@ class HttpApi(HttpApiBase):
                try:
                    if adom_lock_info[1]["status"]["message"] == "OK":
                        continue
-                except BaseException:
+                except Exception:
                    pass
                try:
                    if adom_lock_info[1][0]["lock_user"]:
-                        locked_list.append(str(adom))
+                        locked_list.append(to_text(adom))
                    if adom_lock_info[1][0]["lock_user"] == self._logged_in_user:
-                        locked_by_user_list.append({"adom": str(adom), "user": str(adom_lock_info[1][0]["lock_user"])})
-                except BaseException as err:
+                        locked_by_user_list.append({"adom": to_text(adom), "user": to_text(adom_lock_info[1][0]["lock_user"])})
+                except Exception as err:
                    raise FAZBaseException(err)
            self._locked_adom_list = locked_list
            self._locked_adoms_by_user = locked_by_user_list

-        except BaseException as err:
+        except Exception as err:
            raise FAZBaseException(msg=("An error occurred while trying to get the locked adom list. Error: "
-                                        + str(err)))
+                                        + to_text(err)))

-    ################################
+    #################################
    # END DATABASE LOCK CONTEXT CODE
-    ################################
+    #################################