Commit graph

13042 commits

Author SHA1 Message Date
Andre Price
28b0a52245 Get failed deployments when create fails also 2016-12-08 11:34:07 -05:00
Laurent Mazuel
098a4c9ee4 Updated to use ServicePrincipalCredentials class and get rid of requests 2016-12-08 11:34:07 -05:00
Laurent Mazuel
ee6fc470db Fixes after Travis feedback 2016-12-08 11:34:07 -05:00
Laurent Mazuel
771c40952b Py2.6 compatible + minor fixes 2016-12-08 11:34:07 -05:00
Laurent Mazuel
96ea53d1f2 Fix YAML documentation 2016-12-08 11:34:07 -05:00
Laurent Mazuel
5d5cac57ff Add update from @obsoleted 2016-12-08 11:34:07 -05:00
Laurent Mazuel
801c44df9e Azure plugin using Azure Python SDK 2.0.0rc1 2016-12-08 11:34:07 -05:00
David Justice
a4cc8dfa2c add azure resource manager template deployment module 2016-12-08 11:34:07 -05:00
Rob
1d01d232a9 New module - ec2_snapshot_facts (#1088) 2016-12-08 11:34:07 -05:00
Adam Romanek
faa3c54531 Fixed #237 - improved embedded JSON support handling (#1530) 2016-12-08 11:34:07 -05:00
Victor Costan
e5742c3a47 amazon/GUIDELINES.md: Fix copy-paste typo (#2060) 2016-12-08 11:34:07 -05:00
jhawkesworth@users.noreply.github.com
b08b1cf2f3 Documentation improvements 2016-12-08 11:34:07 -05:00
jhawkesworth@users.noreply.github.com
aaa9541abd Further fixes to support binary data. Added boolean return values and return documentation. 2016-12-08 11:34:07 -05:00
jhawkesworth@users.noreply.github.com
c2ca0a9e93 adding the ability to manage binary registry data 2016-12-08 11:34:07 -05:00
Robin Roth
5464b71561 Zypper repository rewrite (#1990)
* Remove support for ancient zypper versions

Even SLES11 has zypper 1.x.

* zypper_repository: don't silently ignore repo changes

So far when a repo URL changes this got silently ignored (leading to
incorrect package installations) due to this code:

    elif 'already exists. Please use another alias' in stderr:
        changed = False

Removing this reveals that we correctly detect that a repo definition
has changes (via repo_subset) but don't indicate this as change but as a
nonexistent repo. This makes us currenlty bail out silently in the above
statement.

To fix this distinguish between non existent and modified repos and
remove the repo first in case of modifications (since there is no force
option in zypper to overwrite it and 'zypper mr' uses different
arguments).

To do this we have to identify a repo by name, alias or url.

* Don't fail on empty values

This unbreaks deleting repositories

* refactor zypper_repository module

* add properties enabled and priority
* allow changing of one property and correctly report changed
* allow overwrite of multiple repositories by alias and URL
* cleanup of unused code and more structuring

* respect enabled option

* make zypper_repository conform to python2.4

* allow repo deletion only by alias

* check for non-existant url field and use alias instead

* remove empty notes and aliases

* add version_added for priority and overwrite_multiple

* add version requirement on zypper and distribution

* zypper 1.0 is enough and exists

* make suse versions note, not requirement

based on comment by @alxgu
2016-12-08 11:34:07 -05:00
Michael Scherer
3d21f7c5a4 Mark the token as sensitive, since it shouldn't be printed (#2043) 2016-12-08 11:34:07 -05:00
Jiri Tyr
48c20dd981 Describing the _none_ value of the proxy option (#2053) 2016-12-08 11:34:06 -05:00
Jay Jahns
09aa205209 Add Maintenance Mode support for VMware (#1754)
* add vmware maintenance mode support

* changed version number in documentation

* updated version_added to 2.0 since CI is failing

* changed version to 2.0 due to CI - error asking for 2.1

* added RETURN

* updated formatting of return values and added some to clarify actions taken
2016-12-08 11:34:06 -05:00
codehopper-uk
e2e0f51739 Basic ability to set masquerade options from ansible, according to current code design/layout (mostly) (#2017)
* Support for masquerade settings

Ability to enable and disable masquerade settings from ansible via:
- firewalld: mapping=masquerade state=disabled permanent=true zone=dmz

Placeholder added (mapping) to support masquerade and port_forward
choices initially - port_forward not implemented yet.

* Permanent and Immediate zone handling differentiated

* Corrected naming abstraction for masquerading functionality

Removed mapping tag with port_forward choices - not applicable!

* Added version info for new masquerade option

Pull Request #2017 failing due to missing version info
2016-12-08 11:34:06 -05:00
Jordan Cohen
e07cc7d9a2 idempotency fix (#2024) 2016-12-08 11:34:06 -05:00
Karim Boumedhel
e57ef71ed3 Add cloudinit support to ovirt.py module 2016-12-08 11:34:06 -05:00
Michael Scherer
567bcf1341 Do not leak password by error for ovirt module (#1991) 2016-12-08 11:34:06 -05:00
Michael Scherer
5d2063aa38 Remove the +x from crypttab and cronvar (#2039)
While this change nothing, it is better to enforce consistency
2016-12-08 11:34:06 -05:00
Michael Scherer
d79c427722 Set api_key as no_log, since that's likely something that should be kept private (#2038) 2016-12-08 11:34:06 -05:00
Fernando José Pando
94c5e16fe3 Add SQS queue policy attachment functionality (#1716)
* Add SQS queue policy attachment functionality

SQS queue has no attribute 'Policy' until one is attached, so this special
case must be handled uniquely

SQS queue Policy can now be passed in as json
2016-12-08 11:34:06 -05:00
Michael Scherer
ad54180d17 Do not use a default value for -n parameter, fix #1400 (#1417) 2016-12-08 11:34:06 -05:00
Michael Scherer
a7b843ca80 Use type=path for pem_file, since that's a file (#1934) 2016-12-08 11:34:06 -05:00
Evgeni Golov
3bbef8dc24 fix handling of config options that share the same prefix
container_config:
      - "lxc.network.ipv4.gateway=auto"
      - "lxc.network.ipv4=192.0.2.1"

might try to override lxc.network.ipv4.gateway in the second entry as both
start with "lxc.network.ipv4".
use a regular expression to find a line that contains (optional) whitespace
and an = after the key.

Signed-off-by: Evgeni Golov <evgeni@golov.de>
2016-12-08 11:34:06 -05:00
Evgeni Golov
317ca77193 strip whitespace from key and value before inserting it into the config
before the following would produce four entries:

    container_config:
      - "lxc.network.flags=up"
      - "lxc.network.flags =up"
      - "lxc.network.flags= up"
      - "lxc.network.flags = up"

let's strip the whitespace and insert only one "lxc.network.flags = up"
into the final config

Signed-off-by: Evgeni Golov <evgeni@golov.de>
2016-12-08 11:34:06 -05:00
Michael Scherer
b4c3d32366 Mark conf_file as a path, for various user expansion 2016-12-08 11:34:06 -05:00
Christopher M. Fuhrman
310b7ce3d8 pkgin: Fix bad regexp which did not catch packages such as p5-SVN-Notify
The previous version of my regexp did not take into account packages
such as 'p5-Perl-Tidy' or 'p5-Test-Output', so use a greedy match up to
the last occurrance of '-' for matching the package.  This regex has
been extensively tested using all packages as provided by pkgsrc-2016Q1[1].

Footnotes:
[1]  http://cvsweb.netbsd.org/bsdweb.cgi/pkgsrc/?only_with_tag=pkgsrc-2016Q1
2016-12-08 11:34:06 -05:00
Michael Scherer
7c19002f34 Fix arguments for pushover module
Since user_key and app_token are used for authentication, I
suspect both of them should be kept secret.

According to the API manual, https://pushover.net/api
priority go from -2 to 2, so the argument should be constrained.
2016-12-08 11:34:06 -05:00
Ricardo Carrillo Cruz
eda5e2f571 Add os_project_facts module
This module gathers facts about OpenStack projects
2016-12-08 11:34:05 -05:00
Jasper Lievisse Adriaanse
0fb01e45fb Sprinkle some LANG/LC_* where command output is parsed (#2019) 2016-12-08 11:34:05 -05:00
Jasper Lievisse Adriaanse
8913f1a11d Tweak and extend the pkgin module
- make path to pkgin a global and stop passing it around; it's not going
  to change while ansible is running
- add support for several new options:
  * upgrade
  * full_upgrade
  * force
  * clean
- allow for update_cache to be run in the same task as upgrading/installing
  packages instead of needing a separate task for that
2016-12-08 11:34:05 -05:00
Jens Carl
cf804fb0b8 Fix code example (#2018) 2016-12-08 11:34:05 -05:00
Werner Dijkerman
1bcc43ca4e New module for creating gitlab projects (#968) 2016-12-08 11:34:05 -05:00
Werner Dijkerman
37b7c1d0cd New module for creating gitlab groups (#967) 2016-12-08 11:34:05 -05:00
Werner Dijkerman
22c62debb5 New module for creating gitlab users (#966) 2016-12-08 11:34:05 -05:00
René Moser
5197654437 cloudstack, cs_firewall: fix network not found error in return results (#2006)
Only a small issue in results.

In case of type is ingress, we rely on ip address, but in results we also return the network.
Resolving the ip address works without zone params. If the ip address is not located in the default zone and zone param is not set,
the network won't be found because default zone was used for the network query listing.

However since network param is not used for type ingress we skip the return of the network in results.
2016-12-08 11:34:05 -05:00
René Moser
d7e8dd22df cloudstack: cs_instance: fix template not found (#2005)
Let users decide which filter should be used to find the template.
2016-12-08 11:34:05 -05:00
Rene Moser
b5e4edd9f9 cloudstack: cs_template: fix state=extracted
* url arg is optional but we enforced it
* url is in a required together, but args only relevant while registering
2016-12-08 11:34:05 -05:00
Rene Moser
1b99ae4ac1 cloudstack: fix doc, display_text not required 2016-12-08 11:34:05 -05:00
Rene Moser
871f586378 cloudstack: cs_template: fix cross_zones template removal 2016-12-08 11:34:05 -05:00
David Shrewsbury
b928ffb5ac New OpenStack module os_port_facts (#1986) 2016-12-08 11:34:05 -05:00
Michael Scherer
1d1fba5476 Mark token as no_log, since that's used for auth (#2011) 2016-12-08 11:34:05 -05:00
Andrea Scarpino
b4064a352e The enable parameter is a boolean, then convert to a boolean. (#1607)
At the moment, this only works when 'enable' is equals to 'yes' or 'no'.

While I'm on it, I also fixed a typo in the example and added a required
parameter.
2016-12-08 11:34:05 -05:00
Kamil Szczygieł
26fe35fd0c VMware datacenter module shouldn't hold pyvmomi context in Ansible module object (#1568)
* VMware datacenter module rewritten to don't hold pyvmomi context and objects in Ansible module object

fixed exceptions handling

added datacenter destroy result, moved checks

changed wrong value

wrong value again... need some sleep

* check_mode fixes

* state defaults to present, default changed to true

* module check fixes
2016-12-08 11:34:04 -05:00
Michael Scherer
e986aad9aa Remove dead code (#1303)
The review on https://github.com/ansible/ansible-modules-extras/pull/1303
show the problem was already fixed, so we just need to remove the
code.
2016-12-08 11:34:04 -05:00
stoned
6a77e62df4 cpanm: search both its stderr and its stdout for the message 'is up t…
Note that since cpanm version 1.6926 its messages are sent to stdout
when previously they were sent to stderr.

Also there is no need to initialize out_cpanm and err_cpanm and
check for their truthiness as module.run_command() and str.find()
take care of that.
2016-12-08 11:34:04 -05:00
Evgeni Golov
ab07c9c7e8 do not set LXC default config
this was accidentally re-introduced in 7120fb4b

Signed-off-by: Evgeni Golov <evgeni@golov.de>
2016-12-08 11:34:04 -05:00
Ricardo Carrillo Cruz
079a7dc490 Add os_user_facts module
This module gather facts about one or more OpenStack users
2016-12-08 11:34:04 -05:00
Ricardo Carrillo Cruz
aba0597e45 Add os_keystone_domain_facts module
This module gathers one or more OpenStack domains facts
2016-12-08 11:34:04 -05:00
Matt Hite
a0b483746e Fixes issue #1992 -- fixes issue adding and deleting pools (#1994) 2016-12-08 11:34:04 -05:00
Michael Scherer
7a704ac600 Auth_toekn is a secret, shouldn't be logged (#1999) 2016-12-08 11:34:04 -05:00
Joerg Fiedler
518b03d73f add chroot flag to pkgng in order to allow installation of packages into chroot environments, e.g. jails (#1218) 2016-12-08 11:34:04 -05:00
Him You Ten
87ce503767 added stdout and stderr outputs (#1900)
* added stdout and stderr outputs

Added stdout and stderr outputs of the results from composer as the current msg output strips \n so very hard to read when debugging

* using stdout for fail_json

using stdout for fail_json so we get the stdout_lines array
2016-12-08 11:34:04 -05:00
Matt Hite
d2d4001dc5 New preserve_node parameter to skip unreferenced node removal 2016-12-08 11:34:04 -05:00
kubilus1
bcfab26d78 Unchecked index causes IndexError. 2016-12-08 11:34:04 -05:00
Jasper Lievisse Adriaanse
3a319b9a84 support for 'update_cache' in pkgin module 2016-12-08 11:34:04 -05:00
Michael Scherer
971b570b67 Do not leak passwords in case of error in cloudstack modules 2016-12-08 11:34:04 -05:00
Jonathan Mainguy
4b948af706 Enable stdout and stderr on sucessful runs, making show_diff useable
omit color symbols as ansible makes them illegible
2016-12-08 11:34:04 -05:00
Brian Beggs
75b172c706 hipchat api v2 rooms are now url escaped 2016-12-08 11:34:04 -05:00
Aaron Brady
7e1a538b93 Add to_destination parameter 2016-12-08 11:34:04 -05:00
Vlad Gusev
317fe95be0 system/puppet: add --tags parameter (#1916)
* system/puppet: add --tags parameter

--tags [1] is used to apply a part of the node’s catalog.

In puppet:
puppet agent --tags update,monitoring

In ansible:
puppet: tags=update,monitoring

[1] https://docs.puppetlabs.com/puppet/latest/reference/lang_tags.html#restricting-catalog-runs

* Add example of tag usage.

* system/puppet: add list type for a tags dict.
2016-12-08 11:34:03 -05:00
Michael Scherer
817335ae0d Client_secret is supposed to be kept secret, so mark it as no_log (#1995) 2016-12-08 11:34:03 -05:00
nitzmahone
bd3172b2e8 win_updates fix to use documented InstanceGuid property name 2016-12-08 11:34:03 -05:00
nitzmahone
e20eac089f win_updates shouldn't install hidden updates 2016-12-08 11:34:03 -05:00
Michael Scherer
e7e1a8bfea Avoid token leak by marking it as sensitive with no_log (#1966) 2016-12-08 11:34:03 -05:00
Michael Scherer
ed69d8335e Properly label path argument with type='path' (#1940) 2016-12-08 11:34:03 -05:00
Michael Scherer
b8706a1f95 Do not leak mail password by error 2016-12-08 11:34:03 -05:00
Michael Scherer
0dd3296ddd Mark password as 'no_log', to avoid leaking it 2016-12-08 11:34:03 -05:00
Rob
b93fda8573 Updated Amazon module guidelines regarding boto3
* Updated Amazon module guidelines regarding boto3

* Spelling correction
2016-12-08 11:34:03 -05:00
Andy Baker
c0d281e290 type should be 'list' not the default of 'string' 2016-12-08 11:34:03 -05:00
Evgeni Golov
1847f19e41 don't create world-readable archives of LXC containers
with the default umask tar will create a world-readable archive of the

container, which may contain sensitive data

Signed-off-by: Evgeni Golov <evgeni@golov.de>
2016-12-08 11:34:03 -05:00
Michael Scherer
3b79c1621b Prevent password leaks in notification/irc 2016-12-08 11:34:03 -05:00
Michael Scherer
67b2623e92 Use no_log=True for campfire module to avoid leaks 2016-12-08 11:34:03 -05:00
Michael Scherer
f2bf444395 Set no log for jabber.py password 2016-12-08 11:34:03 -05:00
Evgeni Golov
16b2d85d34 do not use a predictable filenames in the LXC plugin
* do not use a predictable filename for the LXC attach script

* don't use predictable filenames for LXC attach script logging

* don't set a predictable archive_path

this should prevent symlink attacks which could result in

* data corruption

* data leakage

* privilege escalation
2016-12-08 11:34:03 -05:00
Michael Scherer
f47a756c46 Add proper type to cpanm arguments
from_path, locallib, executable should be path to benefits
from path expansion for ~user.
2016-12-08 11:34:03 -05:00
Chulki Lee
432a9a31ca osx_defaults: fix datetime
Fix #1742
2016-12-08 11:34:02 -05:00
Matt Martz
c8bd27f1e8 Rebase PRs against $TRAVIS_BRANCH before performing tests 2016-12-08 11:34:02 -05:00
mo@oclab.net
20fd04b9e7 firewalld: fixes documentation
- removes warning, aligning to existing documentation
- adds version
2016-12-08 11:34:02 -05:00
mo@oclab.net
8b2d484032 firewalld: add/remove interfaces to/from zones 2016-12-08 11:34:02 -05:00
David Hocky
aabd6390d4 fix dscp marking documentation in iptables module 2016-12-08 11:34:02 -05:00
Evgeni Golov
88d8820f1b explicitly set "default: null" in the docs 2016-12-08 11:34:02 -05:00
Evgeni Golov
e1846d2e4b do not set a default config for lxc containers
otherwise deploying user-containers fail as these require information
from ~/.config/lxc/default.conf that the LXC tools will load if no
--config was supplied

Signed-off-by: Evgeni Golov <evgeni@golov.de>
2016-12-08 11:34:02 -05:00
Chris Porter
2b8b04638d fix security vulnerability in lxc module
octal/decimal confusion makes file world-writable before executing it
2016-12-08 11:34:02 -05:00
Hans-Joachim Kliemeck
e3d8facc7f fixxed tests 2016-12-08 11:34:02 -05:00
Hans-Joachim Kliemeck
c82d72e12a fixed problems related to userpricincipalname (user@domain) and undefined variables fixed variable capitalization 2016-12-08 11:34:02 -05:00
Hans-Joachim Kliemeck
186197397c fixxed problem with match @ 2016-12-08 11:34:02 -05:00
Hans-Joachim Kliemeck
9ba30d2cea only call set-acl if necessary 2016-12-08 11:34:02 -05:00
Hans-Joachim Kliemeck
700ca56c61 as suggested by @marcind, convert to boolean 2016-12-08 11:34:02 -05:00
Hans-Joachim Kliemeck
404483ea83 fixed documentation 2016-12-08 11:34:02 -05:00
Hans-Joachim Kliemeck
de4a271dd0 added userprincipal support 2016-12-08 11:34:02 -05:00
Hans-Joachim Kliemeck
65d5658553 added separate module to change owner, since win_acl is ACL only and should not be more complex 2016-12-08 11:34:02 -05:00
Marcos Diez
1aec0a3ffb mongodb_user.py: changes on comments 2016-12-08 11:34:01 -05:00
Marcos Diez
37ba9a3fe1 mongodb_user: fix checking if the roles of an oplog reader user changed 2016-12-08 11:34:01 -05:00
Guillaume Dufour
dc83f2c6d7 use python fallback to avoid error on old mongo version without roles 2016-12-08 11:34:01 -05:00
Guillaume Dufour
467d9a8090 avoid problem with old mongo version without roles 2016-12-08 11:34:01 -05:00