ansible/test/integration/roles/test_lookups/tasks/main.yml

# test code for lookup plugins
# (c) 2014, James Tanner <tanner.jc@gmail.com>

# This file is part of Ansible
#
# Ansible is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# Ansible is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with Ansible.  If not, see <http://www.gnu.org/licenses/>.

# FILE LOOKUP

- name: make a new file to read
  copy: dest={{output_dir}}/foo.txt mode=0644 content="bar"

- name: load the file as a fact
  set_fact: 
    foo: "{{ lookup('file', output_dir + '/foo.txt' ) }}"

- debug: var=foo

- name: verify file lookup 
  assert: 
    that:
        - "foo == 'bar'"


# PASSWORD LOOKUP

- name: remove previous password files
  file: dest={{output_dir}}/lookup/password state=absent
  with_items:
  - "{{output_dir}}/lookup/password"
  - "{{output_dir}}/lookup"

- name: create a password file
  set_fact: 
    newpass: "{{ lookup('password', output_dir + '/lookup/password length=8') }}"

- name: stat the password file directory
  stat: path="{{output_dir}}/lookup"
  register: result

- name: assert the directory's permissions
  assert:
    that:
    - result.stat.mode == '0700'

- name: stat the password file
  stat: path="{{output_dir}}/lookup/password"
  register: result

- name: assert the directory's permissions
  assert:
    that:
    - result.stat.mode == '0600'

- name: get password length
  shell: wc -c {{output_dir}}/lookup/password | awk '{print $1}'
  register: wc_result

- debug: var=wc_result.stdout

- name: read password
  shell: cat {{output_dir}}/lookup/password
  register: cat_result

- debug: var=cat_result.stdout

- name: verify password
  assert:
    that:
        - "wc_result.stdout == '9'"
        - "cat_result.stdout == newpass"

# ENV LOOKUP

- name: get first environment var name
  shell: env | head -n1 | cut -d\= -f1
  register: known_var_name

- name: get first environment var value
  shell: echo {{ '$' + known_var_name.stdout }}
  register: known_var_value 

- name: use env lookup to get known var
  set_fact:
    test_val: "{{ lookup('env', known_var_name.stdout) }}"

- debug: var=known_var_name.stdout
- debug: var=known_var_value.stdout
- debug: var=test_val

- name: compare values
  assert:
    that:
        - "test_val == known_var_value.stdout"


# PIPE LOOKUP

# https://github.com/ansible/ansible/issues/6550
- name: confirm pipe lookup works with a single positional arg
  debug: msg="{{ lookup('pipe', 'ls') }}"


# LOOKUP TEMPLATING

- name: use bare interpolation
  debug: msg="got {{item}}"
  with_items: things1
  register: bare_var

- name: verify that list was interpolated
  assert:
    that:
        - "bare_var.results[0].item == 1"
        - "bare_var.results[1].item == 2"

- name: use list with bare strings in it
  debug: msg={{item}}
  with_items:
    - things2
    - things1

- name: use list with undefined var in it
  debug: msg={{item}}
  with_items: things2
  ignore_errors: True


# BUG #10073 nested template handling

- name: set variable that clashes
  set_fact:
      LOGNAME: foobar


- name: get LOGNAME environment var value
  shell: echo {{ '$LOGNAME' }}
  register: known_var_value

- name: do the lookup for env LOGNAME
  set_fact:
    test_val: "{{ lookup('env', 'LOGNAME') }}"

- debug: var=test_val

- name: compare values
  assert:
    that:
        - "test_val == known_var_value.stdout"


- name: set with_dict
  shell: echo "{{ item.key + '=' + item.value  }}"
  with_dict: "{{ mydict }}"

# URL Lookups

- name: Test that retrieving a url works
  set_fact:
    web_data: "{{ lookup('url', 'https://gist.githubusercontent.com/abadger/9858c22712f62a8effff/raw/43dd47ea691c90a5fa7827892c70241913351963/test') }}"

- name: Assert that the url was retrieved
  assert:
    that:
      - "'one' in web_data"

- name: Test that retrieving a url with invalid cert fails
  set_fact:
    web_data: "{{ lookup('url', 'https://kennethreitz.org/') }}"
  ignore_errors: True
  register: url_invalid_cert

- assert:
    that:
      - "url_invalid_cert.failed"
      - "'Error validating the server' in url_invalid_cert.msg"

- name: Test that retrieving a url with invalid cert with validate_certs=False works
  set_fact:
    web_data: "{{ lookup('url', 'https://kennethreitz.org/', validate_certs=False) }}"
  register: url_no_validate_cert

- assert:
    that:
      - "'kennethreitz.org' in web_data"
Add test for basic lookups 11 years ago			`# test code for lookup plugins`
			`# (c) 2014, James Tanner <tanner.jc@gmail.com>`

			`# This file is part of Ansible`
			`#`
			`# Ansible is free software: you can redistribute it and/or modify`
			`# it under the terms of the GNU General Public License as published by`
			`# the Free Software Foundation, either version 3 of the License, or`
			`# (at your option) any later version.`
			`#`
			`# Ansible is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with Ansible. If not, see <http://www.gnu.org/licenses/>.`

			`# FILE LOOKUP`

			`- name: make a new file to read`
			`copy: dest={{output_dir}}/foo.txt mode=0644 content="bar"`

			`- name: load the file as a fact`
			`set_fact:`
			`foo: "{{ lookup('file', output_dir + '/foo.txt' ) }}"`

			`- debug: var=foo`

			`- name: verify file lookup`
			`assert:`
			`that:`
			`- "foo == 'bar'"`


			`# PASSWORD LOOKUP`

			`- name: remove previous password files`
Make sure password files from lookups are created with restrictive permissions Also adds checks for the lookup integration test for passwords. Fixes #8652 10 years ago			`file: dest={{output_dir}}/lookup/password state=absent`
			`with_items:`
			`- "{{output_dir}}/lookup/password"`
			`- "{{output_dir}}/lookup"`
Add test for basic lookups 11 years ago
			`- name: create a password file`
			`set_fact:`
Make sure password files from lookups are created with restrictive permissions Also adds checks for the lookup integration test for passwords. Fixes #8652 10 years ago			`newpass: "{{ lookup('password', output_dir + '/lookup/password length=8') }}"`

			`- name: stat the password file directory`
			`stat: path="{{output_dir}}/lookup"`
			`register: result`

			`- name: assert the directory's permissions`
			`assert:`
			`that:`
			`- result.stat.mode == '0700'`

			`- name: stat the password file`
			`stat: path="{{output_dir}}/lookup/password"`
			`register: result`

			`- name: assert the directory's permissions`
			`assert:`
			`that:`
			`- result.stat.mode == '0600'`
Add test for basic lookups 11 years ago
			`- name: get password length`
Make sure password files from lookups are created with restrictive permissions Also adds checks for the lookup integration test for passwords. Fixes #8652 10 years ago			`shell: wc -c {{output_dir}}/lookup/password \| awk '{print $1}'`
Add test for basic lookups 11 years ago			`register: wc_result`

			`- debug: var=wc_result.stdout`

			`- name: read password`
Make sure password files from lookups are created with restrictive permissions Also adds checks for the lookup integration test for passwords. Fixes #8652 10 years ago			`shell: cat {{output_dir}}/lookup/password`
Add test for basic lookups 11 years ago			`register: cat_result`

			`- debug: var=cat_result.stdout`

			`- name: verify password`
			`assert:`
			`that:`
			`- "wc_result.stdout == '9'"`
			`- "cat_result.stdout == newpass"`

added tests for templating and with_items 10 years ago			`# ENV LOOKUP`
Add test for basic lookups 11 years ago
			`- name: get first environment var name`
			`shell: env \| head -n1 \| cut -d\= -f1`
			`register: known_var_name`

			`- name: get first environment var value`
			`shell: echo {{ '$' + known_var_name.stdout }}`
			`register: known_var_value`

			`- name: use env lookup to get known var`
added tests for templating and with_items 10 years ago			`set_fact:`
Add test for basic lookups 11 years ago			`test_val: "{{ lookup('env', known_var_name.stdout) }}"`

			`- debug: var=known_var_name.stdout`
			`- debug: var=known_var_value.stdout`
added tests for templating and with_items 10 years ago			`- debug: var=test_val`
Add test for basic lookups 11 years ago
			`- name: compare values`
			`assert:`
added tests for templating and with_items 10 years ago			`that:`
Add test for basic lookups 11 years ago			`- "test_val == known_var_value.stdout"`
Addresses #6550 add integration tests for pipe lookup 11 years ago

			`# PIPE LOOKUP`

			`# https://github.com/ansible/ansible/issues/6550`
			`- name: confirm pipe lookup works with a single positional arg`
added tests for templating and with_items 10 years ago			`debug: msg="{{ lookup('pipe', 'ls') }}"`
Addresses #6550 add integration tests for pipe lookup 11 years ago

added tests for templating and with_items 10 years ago			`# LOOKUP TEMPLATING`

			`- name: use bare interpolation`
			`debug: msg="got {{item}}"`
			`with_items: things1`
			`register: bare_var`

			`- name: verify that list was interpolated`
			`assert:`
			`that:`
			`- "bare_var.results[0].item == 1"`
			`- "bare_var.results[1].item == 2"`
Addresses #6550 add integration tests for pipe lookup 11 years ago
added new test that allows for listed bare strings now with_times: barestring, will error out in test 10 years ago			`- name: use list with bare strings in it`
			`debug: msg={{item}}`
			`with_items:`
			`- things2`
			`- things1`

added tests for templating and with_items 10 years ago			`- name: use list with undefined var in it`
			`debug: msg={{item}}`
			`with_items: things2`
added new test that allows for listed bare strings now with_times: barestring, will error out in test 10 years ago			`ignore_errors: True`
Addresses #6550 add integration tests for pipe lookup 11 years ago
Add integration test to verify #10073 In issue #10073 a misbehaviour in literal handling for inline lookup arguments that can cause unexpected behaviur was reported. This integration testcase reproduce the problem. After applying pull request #10991 the issue is fixed and the test passes. Signed-off-by: Jan Losinski <losinski@wh2.tu-dresden.de> 10 years ago
			`# BUG #10073 nested template handling`

			`- name: set variable that clashes`
			`set_fact:`
			`LOGNAME: foobar`


			`- name: get LOGNAME environment var value`
			`shell: echo {{ '$LOGNAME' }}`
			`register: known_var_value`

			`- name: do the lookup for env LOGNAME`
			`set_fact:`
			`test_val: "{{ lookup('env', 'LOGNAME') }}"`

			`- debug: var=test_val`

			`- name: compare values`
			`assert:`
			`that:`
			`- "test_val == known_var_value.stdout"`

added with_dict test 10 years ago
			`- name: set with_dict`
			`shell: echo "{{ item.key + '=' + item.value }}"`
			`with_dict: "{{ mydict }}"`
Add test that url lookup checks tls certificates 10 years ago
			`# URL Lookups`

			`- name: Test that retrieving a url works`
			`set_fact:`
			`web_data: "{{ lookup('url', 'https://gist.githubusercontent.com/abadger/9858c22712f62a8effff/raw/43dd47ea691c90a5fa7827892c70241913351963/test') }}"`

			`- name: Assert that the url was retrieved`
			`assert:`
			`that:`
			`- "'one' in web_data"`

			`- name: Test that retrieving a url with invalid cert fails`
			`set_fact:`
			`web_data: "{{ lookup('url', 'https://kennethreitz.org/') }}"`
			`ignore_errors: True`
			`register: url_invalid_cert`

			`- assert:`
			`that:`
			`- "url_invalid_cert.failed"`
			`- "'Error validating the server' in url_invalid_cert.msg"`

			`- name: Test that retrieving a url with invalid cert with validate_certs=False works`
			`set_fact:`
			`web_data: "{{ lookup('url', 'https://kennethreitz.org/', validate_certs=False) }}"`
			`register: url_no_validate_cert`

			`- assert:`
			`that:`
			`- "'kennethreitz.org' in web_data"`