@ -101,6 +101,7 @@ EXAMPLES = r'''
# state = absent|present (default: present) # state = absent|present (default: present)
import base64 import base64
import copy
import errno import errno
import hashlib import hashlib
import hmac import hmac
@ -118,6 +119,7 @@ def enforce_state(module, params):
Add or remove key .
Add or remove key .
"""
"""
results = dict ( changed = False )
host = params [ " name " ] . lower ( )
host = params [ " name " ] . lower ( )
key = params . get ( " key " , None )
key = params . get ( " key " , None )
path = params . get ( " path " )
path = params . get ( " path " )
@ -140,13 +142,12 @@ def enforce_state(module, params):
found , replace_or_add , found_line = search_for_host_key ( module , host , key , path , sshkeygen )
found , replace_or_add , found_line = search_for_host_key ( module , host , key , path , sshkeygen )
param s[ ' diff ' ] = compute_diff ( path , found_line , replace_or_add , state , key )
result s[ ' diff ' ] = compute_diff ( path , found_line , replace_or_add , state , key )
# check if we are trying to remove a non matching key,
# check if we are trying to remove a non matching key,
# in that case return with no change to the host
# in that case return with no change to the host
if state == ' absent ' and not found_line and key :
if state == ' absent ' and not found_line and key :
params [ ' changed ' ] = False
return results
return params
# We will change state if found==True & state!="present"
# We will change state if found==True & state!="present"
# or found==False & state=="present"
# or found==False & state=="present"
@ -154,15 +155,15 @@ def enforce_state(module, params):
# Alternatively, if replace is true (i.e. key present, and we must change
# Alternatively, if replace is true (i.e. key present, and we must change
# it)
# it)
if module . check_mode :
if module . check_mode :
module. exit_json ( changed = replace_or_add or ( state == " present " ) != found ,
results[ ' changed ' ] = replace_or_add or ( state == " present " ) != found
diff = params [ ' diff ' ] )
module . exit_json ( * * results )
# Now do the work.
# Now do the work.
# Only remove whole host if found and no key provided
# Only remove whole host if found and no key provided
if found and not key and state == " absent " :
if found and not key and state == " absent " :
module . run_command ( [ sshkeygen , ' -R ' , host , ' -f ' , path ] , check_rc = True )
module . run_command ( [ sshkeygen , ' -R ' , host , ' -f ' , path ] , check_rc = True )
param s[ ' changed ' ] = True
result s[ ' changed ' ] = True
# Next, add a new (or replacing) entry
# Next, add a new (or replacing) entry
if replace_or_add or found != ( state == " present " ) :
if replace_or_add or found != ( state == " present " ) :
@ -188,9 +189,9 @@ def enforce_state(module, params):
else :
else :
module . atomic_move ( outf . name , path )
module . atomic_move ( outf . name , path )
param s[ ' changed ' ] = True
result s[ ' changed ' ] = True
return param s
return result s
def sanity_check ( module , host , key , sshkeygen ) : def sanity_check ( module , host , key , sshkeygen ) :
@ -364,7 +365,9 @@ def main():
supports_check_mode = True
supports_check_mode = True
)
)
results = enforce_state ( module , module . params )
# TODO: deprecate returning everything that was passed in
results = copy . copy ( module . params )
results . update ( enforce_state ( module , module . params ) )
module . exit_json ( * * results )
module . exit_json ( * * results )
flowerysong
3 months ago
committed by