53affc3220
Collections are new. openstacksdk as of now doesn't support python2. We shouldn't pretend to support python2 either. If you're using ansible new enough to use collections, you can use python3. This release of openstacksdk only supports 3.6 and onwards, so set that as our min. Change-Id: I34d544ce48f25bffde8e6e0cf82cdf9a85e681c3
108 lines
2.9 KiB
Python
108 lines
2.9 KiB
Python
#!/usr/bin/python
|
|
# Copyright (c) 2015 Hewlett-Packard Development Company, L.P.
|
|
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
|
|
ANSIBLE_METADATA = {'metadata_version': '1.1',
|
|
'status': ['preview'],
|
|
'supported_by': 'community'}
|
|
|
|
|
|
DOCUMENTATION = '''
|
|
---
|
|
module: os_user_group
|
|
short_description: Associate OpenStack Identity users and groups
|
|
author: "Monty Taylor (@emonty)"
|
|
description:
|
|
- Add and remove users from groups
|
|
options:
|
|
user:
|
|
description:
|
|
- Name or id for the user
|
|
required: true
|
|
group:
|
|
description:
|
|
- Name or id for the group.
|
|
required: true
|
|
state:
|
|
description:
|
|
- Should the user be present or absent in the group
|
|
choices: [present, absent]
|
|
default: present
|
|
availability_zone:
|
|
description:
|
|
- Ignored. Present for backwards compatibility
|
|
required: false
|
|
requirements:
|
|
- "python >= 3.6""
|
|
- "openstacksdk"
|
|
|
|
extends_documentation_fragment:
|
|
- openstack.cloud.openstack
|
|
'''
|
|
|
|
EXAMPLES = '''
|
|
# Add the demo user to the demo group
|
|
- os_user_group:
|
|
cloud: mycloud
|
|
user: demo
|
|
group: demo
|
|
'''
|
|
|
|
from ansible.module_utils.basic import AnsibleModule
|
|
from ansible_collections.openstack.cloud.plugins.module_utils.openstack import (openstack_full_argument_spec,
|
|
openstack_module_kwargs,
|
|
openstack_cloud_from_module)
|
|
|
|
|
|
def _system_state_change(state, in_group):
|
|
if state == 'present' and not in_group:
|
|
return True
|
|
if state == 'absent' and in_group:
|
|
return True
|
|
return False
|
|
|
|
|
|
def main():
|
|
argument_spec = openstack_full_argument_spec(
|
|
user=dict(required=True),
|
|
group=dict(required=True),
|
|
state=dict(default='present', choices=['absent', 'present']),
|
|
)
|
|
|
|
module_kwargs = openstack_module_kwargs()
|
|
module = AnsibleModule(argument_spec,
|
|
supports_check_mode=True,
|
|
**module_kwargs)
|
|
|
|
user = module.params['user']
|
|
group = module.params['group']
|
|
state = module.params['state']
|
|
|
|
sdk, cloud = openstack_cloud_from_module(module)
|
|
try:
|
|
in_group = cloud.is_user_in_group(user, group)
|
|
|
|
if module.check_mode:
|
|
module.exit_json(changed=_system_state_change(state, in_group))
|
|
|
|
changed = False
|
|
if state == 'present':
|
|
if not in_group:
|
|
cloud.add_user_to_group(user, group)
|
|
changed = True
|
|
|
|
elif state == 'absent':
|
|
if in_group:
|
|
cloud.remove_user_from_group(user, group)
|
|
changed = True
|
|
|
|
module.exit_json(changed=changed)
|
|
|
|
except sdk.exceptions.OpenStackCloudException as e:
|
|
module.fail_json(msg=str(e), extra_data=e.extra_data)
|
|
|
|
|
|
if __name__ == '__main__':
|
|
main()
|