Commit graph

9827 commits

Author SHA1 Message Date
Toshio Kuratomi
a21ce559e5 Make validate_certs for vsphere_guest work with older python2 2016-12-08 11:24:03 -05:00
Charles Paul
3e841c04d2 adding autoremove to apt 2016-12-08 11:24:03 -05:00
Toshio Kuratomi
65a96f5a5d Re-add version_added to fireball docs 2016-12-08 11:24:03 -05:00
Toshio Kuratomi
288b26a732 Fireball was removed in 2.0 (action plugin is gone).
This commit removes the helper module that wouldn't work without the
action module and tells users what to use instead.
2016-12-08 11:24:03 -05:00
Matt Clay
04ad3fe304 Make modify_user honor check mode on OS X. 2016-12-08 11:24:02 -05:00
Peter Sprygada
9a90721720 initial add of new module eos_template
The eos_template module works by allowing configurations to be pushed
to Arista EOS devices that can be templated by the Ansible Jinja2
template engine
2016-12-08 11:24:02 -05:00
Peter Sprygada
022bcbd9e8 initial add of nxos_template module
The nxos_template module worksw by allowing configurations to be pushed
to Cisco NXOS devices over CLI or NXAPI and templated using the Ansible
Jinja2 template engine
2016-12-08 11:24:02 -05:00
Barry Peddycord III
7f86da31b9 Removing alpha-stage modules. 2016-12-08 11:24:02 -05:00
Peter Sprygada
029786a4c5 initial add of new module nxos_command
This adds a new module nxos_command that can be used to send arbitrary
commands to NXOS devices.  The module includes an argument that allows
the responses to be evaluated and causes the module not to return
control to the playbook until a set of conditions has been met.
2016-12-08 11:24:02 -05:00
Tobias Wolf
1ecc8544f6 Add diff for both file contents and file attributes to lineinfile
Using the difflist feature added in ansible/ansible@c337293 we can add
two diffs to the `diff` dict returned as JSON: A `before` and `after` pair of
changed file contents and the diff of the file attributes.

n.b.: the difflist handling from the above commit is logically broken.
PR will follow.

Example output:

    TASK [change line and mode] ************************************************************
    changed: [localhost]
    --- before: /tmp/sshd_config (content)
    +++ after: /tmp/sshd_config (content)
    @@ -65,21 +65,21 @@
     X11DisplayOffset 10
     PrintMotd no
     PrintLastLog yes
     TCPKeepAlive yes
     #UseLogin no

     #MaxStartups 10:30:60
     #Banner /etc/issue.net

     # Allow client to pass locale environment variables
    -AcceptEnv LANG LC_*
    +AcceptEnv        LANG LC_* GF_ENV_*

     Subsystem sftp /usr/lib/openssh/sftp-server

     # Set this to 'yes' to enable PAM authentication, account processing,
     # and session processing. If this is enabled, PAM authentication will
     # be allowed through the ChallengeResponseAuthentication and
     # PasswordAuthentication.  Depending on your PAM configuration,
     # PAM authentication via ChallengeResponseAuthentication may bypass
     # the setting of "PermitRootLogin without-password".
     # If you just want the PAM account and session checks to run without

    --- before: /tmp/sshd_config (file attributes)
    +++ after: /tmp/sshd_config (file attributes)
    @@ -1,3 +1,3 @@
     {
    -    "mode": "0700"
    +    "mode": "0644"
     }
2016-12-08 11:24:02 -05:00
Scott Suehle
d9a071089b Adding files to ansible core modules. 2016-12-08 11:24:02 -05:00
Peter Sprygada
d3b826dda2 initial add of eos_command module
This adds a new module eos_command to network/eos.  The eos_command module
is used for sending arbitrary commands to Arista EOS devices.  It includes
arguments that allow the module to wait for specific values before the
module returns control to the playbook or fails
2016-12-08 11:24:02 -05:00
Alexey Wasilyev
f8adc99196 docker: fix failing in case of empty image tag 2016-12-08 11:24:02 -05:00
Peter Sprygada
ad7704c802 initial add of eos_config module
This adds a new module for pushing configuraitons to eos devices in a
reliable and repeatable fashion.  It includes support for templating
configurations and backing up the current config prior to pushing out
changes.  This module works over either CLI or EAPI.

This PR has a dependency on ansible/ansible PR #14009 being merged
2016-12-08 11:24:02 -05:00
J Levitt
9456ece4b1 Make it clear that the dest path delimiters must be escaped
Make it clear that the dest path delimiters must be escaped
2016-12-08 11:24:02 -05:00
Ben Visser
8769c33e46 changing default of cache_security_groups to none, removing the ['default']
OCD is making me fix the inconsistency with how None is typed. First Letter Capitalized All Over Now.

cleaning up the default object that was created for the cache_security_groups and removing checks dealing with it.

clean up space

Changing default cache_security_groups from [default] to None.
2016-12-08 11:24:02 -05:00
Sebastien Couture
5674e77d7e moved code that gets the vm's current hard drive profile and checks if vm_disk definition count is higher than actual vm drive count out of for loop for efficiency 2016-12-08 11:24:02 -05:00
Peter Sprygada
97f666d58d initial add of new nxos_config module
This adds a new module for managing configuraiton files for Cisco NXOS
devices.  It provides configuration file management including templating
and backing up the current configuration.

This PR has a dependency on ansible/ansible PR # 14012
2016-12-08 11:24:02 -05:00
Joel Thompson
d8d8d7da64 Add umask option to pip module
On systems with restrictive umasks, the pip module won't allow you to
install pip packages that are usable by everyone on the system. This
commit adds a umask option to optionally override the umask on a
per-package basis.
2016-12-08 11:24:02 -05:00
Sebastien Couture
e5decc3e51 Added support for resizing disks when state is 'reconfigured' 2016-12-08 11:24:02 -05:00
Stewart Rutledge
79b8a42354 Changed insecure to validate_certs, with a default to true from false (reversing behavior) 2016-12-08 11:24:02 -05:00
Stewart Rutledge
2f79e2c01c Added support for insecure parameter 2016-12-08 11:24:01 -05:00
Toshio Kuratomi
697980d7cc Add example of using non-posix shellisms to raw and shell
Fixes #14262
2016-12-08 11:24:01 -05:00
Matt Clay
c87f70429b Make modify_user honor check mode on FreeBSD. 2016-12-08 11:24:01 -05:00
Matt Clay
b02eb232b0 Show error if python-apt is absent in check mode.
Previously this would fail with an exception which
did not clearly explain the reason for the failure.
2016-12-08 11:24:01 -05:00
Toshio Kuratomi
f6aa1ff9a4 Remove duplicate documentation fields 2016-12-08 11:24:01 -05:00
Toshio Kuratomi
ceba43e701 Better error message when rsync nad ssh aren't present where synchronize is run
Fixes https://github.com/ansible/ansible/issues/9305
2016-12-08 11:24:01 -05:00
Tobias Wolf
25ccb98d49 Add custom or 'prepared' diff field to synchronize module
This PR depends on pull requeest ansible/ansible#14105

rsync has a custom diff output that cannot easily be expressed as
`/usr/bin/diff before after`
2016-12-08 11:24:01 -05:00
Shawn Silva
12be401c11 The parameters 'template' and 'template_url' are incorrectly required in all cases.
If the state is 'absent' they should not be required. A few lines below the correct check is already in place.
2016-12-08 11:24:01 -05:00
Michael Scherer
63490709e6 Do not use a shell construct for rhnreg_ks
Since there is no shell escape of the password parameter, a password with
a single quote (or even worst, a single quote and a pipe) could have
unattended consequences. Also, the less we use use_unsafe_shell=True, the
better.
2016-12-08 11:24:01 -05:00
Brian Coca
19b3d43aa5 added missing version_Added 2016-12-08 11:24:01 -05:00
Toshio Kuratomi
457dfb3b4b Add an internal param instructing synchronize to replace localhost with the host that's being ssh'd from 2016-12-08 11:24:01 -05:00
Yair Fried
63a0b99b6a Fix glance_client module
Wrong variable name.
2016-12-08 11:24:01 -05:00
Graham Ullrich
61ac748bad Update django_manage documentation
As of Ansible 2.x, invocation of Django's ```manage.py``` requires a valid "shebang". Additionally, ```manage.py``` must be executable.
The old invocation was hardcoded as ```python manage.py ...``` while the new invocation is ```./manage.py ...```. See [this PR](https://github.com/ansible/ansible-modules-core/pull/1165).
This change allows more flexibility for which Python interpreter is invoked, but breaks existing deployment when ```manage.py``` is not properly configured. This documentation update adds a note explaining the new requirements for ```manage.py```.
2016-12-08 11:24:01 -05:00
Matt Martz
9e686c7294 Add note about precautions of using become with fetch. Addresses https://github.com/ansible/ansible/issues/14064 2016-12-08 11:24:01 -05:00
Toshio Kuratomi
b6ff36bed3 Fix documentation build in hostname 2016-12-08 11:24:01 -05:00
Toshio Kuratomi
5e4fe92676 Fix documentation build 2016-12-08 11:24:01 -05:00
Toshio Kuratomi
5f35d0d597 Document that synchronize in 2.0.0.x has broken sudo behaviour.
Part of the changes for #13825
2016-12-08 11:24:01 -05:00
Toshio Kuratomi
f4c9c4596f Fix for yum's use of rpm with non English locales
Depends upon https://github.com/ansible/ansible/pull/14025

Fixes https://github.com/ansible/ansible/issues/13996
Fixes https://github.com/ansible/ansible/issues/13975
2016-12-08 11:24:00 -05:00
techraf
896dcd9787 Fixed typo in example playbook 2016-12-08 11:24:00 -05:00
Brian Coca
a0204b80dc tabs are bad 2016-12-08 11:24:00 -05:00
Julia Kreger
060e12a2d3 Add wait support to os_ironic_node
Add support for the os_ironic_node module to be capible of waiting
until the baremetal node activation or deactivation has completed.
2016-12-08 11:24:00 -05:00
Tom Bamford
68f76c50d8 Remove explicit region parameter from ec2_ami_find 2016-12-08 11:24:00 -05:00
David Shrewsbury
f6d6895ce9 Add purge option to os_floating_ip module
Add the ability to completely delete a floating IP from the pool
when disassociating it from a server. When state is absent and
purge is true, the IP will be completely deleted. The default
keeps the current behavior, which is to only disassociate the IP
from the server.
2016-12-08 11:24:00 -05:00
Lee H
8e84ba71ae - fix check_mode test to avoid errors
- correct test mode check to ensure it returns and doesnt apply changes
  (via jmainguy)
2016-12-08 11:24:00 -05:00
David Shrewsbury
aed44e8886 Fix OpenStack module failure output
The exception message, when shade fails, will contain much more
specific information about the failure if the exception is treated
as a string. The 'message' attribute alone is usually not helpful.
2016-12-08 11:24:00 -05:00
Ben Visser
18ff22348a fixed grammatical issue in iam.py. exit -> exist. 2016-12-08 11:24:00 -05:00
Hiroaki Nakamura
f2246deaf9 Doc: Add NOTE about hostname modules does not modify /etc/hosts 2016-12-08 11:24:00 -05:00
Evgeny Vereshchagin
8f23e54a80 apt-key: convert ids to the 'short' format
Fixes:
$ ansible all -m apt_key -a 'state=present id=7A82B743B9B8E46F12C733FA4759FA960E27C0A6 keyserver=hkp://keyserver.ubuntu.com:80' --sudo
127.0.0.1 | SUCCESS => {
    "changed": true
}

$ ansible all -m apt_key -a 'state=absent id=7A82B743B9B8E46F12C733FA4759FA960E27C0A6' --sudo
127.0.0.1 | SUCCESS => {
    "changed": false
}

$ apt-key export 7A82B743B9B8E46F12C733FA4759FA960E27C0A6
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1
...

See https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1481871
2016-12-08 11:24:00 -05:00
techraf
7d09792758 Added 'backup' parameter to get_url module 2016-12-08 11:24:00 -05:00
Yoichi Imai
b9b08666f5 Fix iam_policy pdoc variable 2016-12-08 11:24:00 -05:00
Thomas Quinot
ef3308159f Allow cron_file to be an absolute path
Support specifying an absolute path (typically /etc/crontab) rather than
a path relative to /etc/cron.d, to allow modifying the main system crontab.
Particularly useful for target systems that have /etc/crontab but no
/etc/cron.d.
2016-12-08 11:24:00 -05:00
Michael Scherer
519e699b98 Split a shell snippet in 2 to avoid using use_unsafe_shell=True
Since use_unsafe_shell is suspicious from a security point
of view (or it wouldn't be unsafe), the less we have, the less
code we have to toroughly inspect for a security audit.

In this case, the '&&' can be replaced by doing 2 calls to run_command.
2016-12-08 11:24:00 -05:00
Jason Paige
a2f4d46c9b updating choices for rds parameter engines 2016-12-08 11:24:00 -05:00
Aaron Kurtz
e3782689bc Remove 'cache_table' from required params
Starting in Django 1.7, the createcachetable command looks for cache
table names in the CACHES settings dictionary, so cache_table is no
longer required, but is still allowed.
2016-12-08 11:23:59 -05:00
Bermudez, Jaime
efbdea909e Simplify logic around "present" state and skip dupes. If the policy doesn't exist or the policy document doesn't match or if we're not skipping dupes, then we go ahead and update the respective user/group/role policy. 2016-12-08 11:23:59 -05:00
daniel-sc
f654bd45f8 Allowing specifying ip by address 2016-12-08 11:23:59 -05:00
daniel-sc
40565b7293 Allowing to specify specific external ip for gce instances 2016-12-08 11:23:59 -05:00
Albert Mikaelyan
a61095b0b1 Update yum.py 2016-12-08 11:23:59 -05:00
Vladimir Mihailenco
2bdfea4a43 rackspace: set headers when uploading files to CF.
Otherwise CDN (Akamai) downloads file without the headers. The sequence
is following:
1. Ansible uploads file to CF.
2. Akamai downloads the file and caches it in CDN.
3. Ansible sets headers.

As a result Akamai serves file without headers.

This is backwards incompatible change, because headers keys are not
prefixed with `x-object-meta-`. Which allows user to set headers like
`Access-Control-Allow-Origin`.
2016-12-08 11:23:59 -05:00
bobgroves
18d4a33891 Makes rax_dns_record override default to true 2016-12-08 11:23:59 -05:00
bobgroves
65697dea14 Adds overwrite option to rax_dns_record 2016-12-08 11:23:59 -05:00
Jordan Bach
b6213ffa80 git: set remote branch before switching versions when using depth argument 2016-12-08 11:23:59 -05:00
Luca Berruti
0673a4919f cron module: add enviroment variables management 2016-12-08 11:23:59 -05:00
Henrique Rodrigues
c2e62ed9a9 Fix misspelling of the word 'certificate' 2016-12-08 11:23:59 -05:00
Brian Coca
b25c2a4261 added note about awslogs version added 2016-12-08 11:23:59 -05:00
Brian Coca
6e73c61298 added version_added 2016-12-08 11:23:59 -05:00
Constantin07
f36c567022 Added delete_on_termination option for volume attachment 2016-12-08 11:23:59 -05:00
Matt Ferrante
2dd53a8d91 updated s3 module documentation 2016-12-08 11:23:59 -05:00
jefferson fermo
9d9daeb73c add awslog option in docker log driver. this option is available starting with ansible 2.1 2016-12-08 11:23:59 -05:00
Brian Coca
4c6515e299 reverse order of cron commands
does not affect linux but fixes issue with busybox caring about order
fixes #2807
2016-12-08 11:23:58 -05:00
nitzmahone
821fb6c0ab fix win_get_url var renames ala xpicio fix PR #2378
reimplements #2378 sans formatting merge conflicts
2016-12-08 11:23:58 -05:00
Jeroen Seegers
7be08b00b0 Update cron.py
Minor update to documentation for the cron module to reflect the required "name" parameter when the value of "state" is "absent".
2016-12-08 11:23:58 -05:00
Brian Coca
f50fbe9dd2 updated s3 docs to reflect mode choices
fixes #2318
2016-12-08 11:23:58 -05:00
autotune
90631aef1b 1113 fix ec2 subnet tags 2016-12-08 11:23:58 -05:00
nitzmahone
fef6e5102e fix version_added on win_msi wait arg 2016-12-08 11:23:58 -05:00
Brian Coca
a5e4969dc4 updated version_added 2016-12-08 11:23:58 -05:00
Joost Cassee
267dcc8eb6 Add wait_timeout option to route53 module
This option is used to make sure the module does not block forever.
2016-12-08 11:23:58 -05:00
Joost Cassee
e91bcba078 Add wait option to route53 module
This option makes the module wait for the changes to replicate to all
Amazon DNS servers.
2016-12-08 11:23:58 -05:00
Mark van Driel
a24cdbe15e Fixed "invalid privileges string: set expected at most 1 arguments, got 2" 2016-12-08 11:23:58 -05:00
Jonathan Mainguy
e9a752f769 add ansi support 2016-12-08 11:23:58 -05:00
Ben Visser
cfed7e11d8 two choices for cache engine. adding them.
revert spacing

undoing quotes around default. will do another pull requests

Making documentation more explicit for elasticache engine choices.
2016-12-08 11:23:58 -05:00
Matt Clay
d861329d5e Added filename option to apt_repository module. 2016-12-08 11:23:58 -05:00
Hillel Antonov
8d5cebd597 Adding gathering environment variables to gather facts on Windows making similar in functionality to gather facts on Linux 2016-12-08 11:23:58 -05:00
Hans-Joachim Kliemeck
1354ef0285 fix problem with file content and high cpu/out of memory errors 2016-12-08 11:23:58 -05:00
Timothy R. Chavez
2ef913a288 Pass network argument to add_ips_to_server
The `network` argument needs to be passed through `add_ips_to_server`
so that the default value can be properly overridden from ansible.
2016-12-08 11:23:58 -05:00
Marios Andreopoulos
1ae765d61f fix: do not set scopes account to service account used for instance creation 2016-12-08 11:23:58 -05:00
Hans-Joachim Kliemeck
41ab7f8aed do not move item, instead copy item because acl will be kept 2016-12-08 11:23:57 -05:00
Alexey Wasilyev
4d30ae313d Add cpu_shares option for docker module 2016-12-08 11:23:57 -05:00
krdlab
c680611fe4 Fix self.changed value in ElbManager (ec2_elb_lb) 2016-12-08 11:23:57 -05:00
Jordi Gutiérrez Hermoso
4682ea1c3c hg: discard changes without changing the current revision
The command `hg up -C` by default moves to the latest revision on the
current branch. The `discard` function was trying to update to a
different branch, in case it was provided, by passing a `-r REVISION`
argument. Not only is this not the intended effect of the `discard`
function, but this also could update to a different branch that hasn't
been pulled yet, which is how we were experiencing trouble.

Instead, we unconditionally do `hg up -C -r .` to "update" to the
current revision (i.e. to "."), while `-C/--clean`ing the current
directory. This is similar to `hg revert --all`, except that it also
undoes the merge state of the working directory, in case there was
any.
2016-12-08 11:23:57 -05:00
Will Rouesnel
b565da78b3 docker: Fix state=reloaded to detect default LoggingDriver for docker
Previously the logging module hard coded the default logging driver. This means
if the docker daemon is started with a different logging driver, the ansible
module would continually restart it when run.

This fix adds a call to docker.Client.info(), which is inspected if a logging
driver is not supplied in the playbook, and the container only restarted if
the logging driver applied differs from the configured default.

In usage, this has solved issues with using alternative logging drivers.
2016-12-08 11:23:57 -05:00
Corwin Brown
c075c000c8 Adding Facter 2016-12-08 11:23:57 -05:00
Brian Coca
351de21ee7 made port default depending on db engine 2016-12-08 11:23:57 -05:00
Mark van Driel
d67f2eb104 Fixes require ssl in combination with other privileges
Fixes require ssl in combination with grant option

Refactoring: code cleanup to make it easier to understand

Code rewritten inspired by @willthames

Added WITH GRANT OPTION as exception; when only REQUIRESSL and/or GRANT are specified we have to add USAGE
2016-12-08 11:23:57 -05:00
Phil
3781c5ccb0 uses get-attr and fixes file path issues by escaping quotes around path 2016-12-08 11:23:57 -05:00
schwartzmx
5ff4d219e0 updates win_msi to allow install to wait - adds additional wait param - updates to use Start-Process to allow -Wait - this will wait for install/uninstall to complete before continue 2016-12-08 11:23:57 -05:00
Jan Duzinkiewicz
9c6db69827 forcing git fetch if sha1 are equal between repos but branch exists only at remote
Add an explanatory comment to the code
2016-12-08 11:23:57 -05:00
Brian Coca
3afaa2fef4 really fixed the doc formatting 2016-12-08 11:23:57 -05:00
Brian Coca
1fe3387971 crrected version added 2016-12-08 11:23:57 -05:00