archive
/
ansible
mirror of https://github.com/ansible/ansible.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Bug fixes for GCP modules (#58903)

Browse Source
pull/59049/head
The Magician 6 years ago committed by jctanner
parent 5cd0e2f19f
commit 6fb7a2b7cc
10 changed files with 48 additions and 50 deletions
Show Stats Download Patch File Download Diff File

2
lib/ansible/modules/cloud/google/gcp_iam_service_account.py
Unescape Escape View File

@ -61,7 +61,7 @@ extends_documentation_fragment: gcp
EXAMPLES = ''' EXAMPLES = '''
- name: create a service account - name: create a service account
gcp_iam_service_account: gcp_iam_service_account:
name: "{{ sa_name }}" name: sa-{{ resource_name.split("-")[-1] }}@graphite-playground.google.com.iam.gserviceaccount.com
display_name: My Ansible test key display_name: My Ansible test key
project: test_project project: test_project
auth_kind: serviceaccount auth_kind: serviceaccount

4
lib/ansible/modules/cloud/google/gcp_iam_service_account_facts.py
Unescape Escape View File

@ -108,8 +108,8 @@ def main():
module.params['scopes'] = ['https://www.googleapis.com/auth/iam'] module.params['scopes'] = ['https://www.googleapis.com/auth/iam']
items = fetch_list(module, collection(module)) items = fetch_list(module, collection(module))
if items.get('items'): if items.get('accounts'):
items = items.get('items') items = items.get('accounts')
else: else:
items = [] items = []
return_value = {'resources': items} return_value = {'resources': items}

41
lib/ansible/modules/cloud/google/gcp_pubsub_subscription.py
Unescape Escape View File

@ -295,6 +295,7 @@ expirationPolicy:
from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest, remove_nones_from_dict, replace_resource_dict from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest, remove_nones_from_dict, replace_resource_dict
import json import json
import re
################################################################################ ################################################################################
# Main # Main
@ -385,8 +386,8 @@ def delete(module, link):
def resource_to_request(module): def resource_to_request(module):
request = { request = {
u'name': module.params.get('name'), u'name': name_pattern(module.params.get('name'), module),
u'topic': replace_resource_dict(module.params.get(u'topic', {}), 'name'), u'topic': topic_pattern(replace_resource_dict(module.params.get(u'topic', {}), 'name'), module),
u'labels': module.params.get('labels'), u'labels': module.params.get('labels'),
u'pushConfig': SubscriptionPushconfig(module.params.get('push_config', {}), module).to_request(), u'pushConfig': SubscriptionPushconfig(module.params.get('push_config', {}), module).to_request(),
u'ackDeadlineSeconds': module.params.get('ack_deadline_seconds'), u'ackDeadlineSeconds': module.params.get('ack_deadline_seconds'),
@ -394,7 +395,6 @@ def resource_to_request(module):
u'retainAckedMessages': module.params.get('retain_acked_messages'), u'retainAckedMessages': module.params.get('retain_acked_messages'),
u'expirationPolicy': SubscriptionExpirationpolicy(module.params.get('expiration_policy', {}), module).to_request(), u'expirationPolicy': SubscriptionExpirationpolicy(module.params.get('expiration_policy', {}), module).to_request(),
} }
request = encode_request(request, module)
return_vals = {} return_vals = {}
for k, v in request.items(): for k, v in request.items():
if v or v is False: if v or v is False:
@ -431,8 +431,6 @@ def return_if_object(module, response, allow_not_found=False):
except getattr(json.decoder, 'JSONDecodeError', ValueError): except getattr(json.decoder, 'JSONDecodeError', ValueError):
module.fail_json(msg="Invalid JSON response with error: %s" % response.text) module.fail_json(msg="Invalid JSON response with error: %s" % response.text)
result = decode_request(result, module)
if navigate_hash(result, ['error', 'errors']): if navigate_hash(result, ['error', 'errors']):
module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) module.fail_json(msg=navigate_hash(result, ['error', 'errors']))
@ -442,7 +440,6 @@ def return_if_object(module, response, allow_not_found=False):
def is_different(module, response): def is_different(module, response):
request = resource_to_request(module) request = resource_to_request(module)
response = response_to_hash(module, response) response = response_to_hash(module, response)
request = decode_request(request, module)
# Remove all output-only from response. # Remove all output-only from response.
response_vals = {} response_vals = {}
@ -462,8 +459,8 @@ def is_different(module, response):
# This is for doing comparisons with Ansible's current parameters. # This is for doing comparisons with Ansible's current parameters.
def response_to_hash(module, response): def response_to_hash(module, response):
return { return {
u'name': module.params.get('name'), u'name': name_pattern(module.params.get('name'), module),
u'topic': replace_resource_dict(module.params.get(u'topic', {}), 'name'), u'topic': topic_pattern(replace_resource_dict(module.params.get(u'topic', {}), 'name'), module),
u'labels': response.get(u'labels'), u'labels': response.get(u'labels'),
u'pushConfig': SubscriptionPushconfig(response.get(u'pushConfig', {}), module).from_response(), u'pushConfig': SubscriptionPushconfig(response.get(u'pushConfig', {}), module).from_response(),
u'ackDeadlineSeconds': response.get(u'ackDeadlineSeconds'), u'ackDeadlineSeconds': response.get(u'ackDeadlineSeconds'),
@ -473,21 +470,29 @@ def response_to_hash(module, response):
} }
def decode_request(response, module): def name_pattern(name, module):
if 'name' in response: if name is None:
response['name'] = response['name'].split('/')[-1] return
regex = r"projects/.*/subscriptions/.*"
if not re.match(regex, name):
name = "projects/{project}/subscriptions/{name}".format(**module.params)
return name
if 'topic' in response:
response['topic'] = response['topic'].split('/')[-1]
return response def topic_pattern(name, module):
if name is None:
return
regex = r"projects/.*/topics/.*"
def encode_request(request, module): if not re.match(regex, name):
request['topic'] = '/'.join(['projects', module.params['project'], 'topics', replace_resource_dict(request['topic'], 'name')]) formatted_params = {'project': module.params['project'], 'topic': replace_resource_dict(module.params['topic'], 'name')}
request['name'] = '/'.join(['projects', module.params['project'], 'subscriptions', module.params['name']]) name = "projects/{project}/topics/{topic}".format(**formatted_params)
return request return name
class SubscriptionPushconfig(object): class SubscriptionPushconfig(object):

28
lib/ansible/modules/cloud/google/gcp_pubsub_topic.py
Unescape Escape View File

@ -107,6 +107,7 @@ labels:
from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest, replace_resource_dict from ansible.module_utils.gcp_utils import navigate_hash, GcpSession, GcpModule, GcpRequest, replace_resource_dict
import json import json
import re
################################################################################ ################################################################################
# Main # Main
@ -181,8 +182,11 @@ def delete(module, link):
def resource_to_request(module): def resource_to_request(module):
request = {u'name': module.params.get('name'), u'kmsKeyName': module.params.get('kms_key_name'), u'labels': module.params.get('labels')} request = {
request = encode_request(request, module) u'name': name_pattern(module.params.get('name'), module),
u'kmsKeyName': module.params.get('kms_key_name'),
u'labels': module.params.get('labels'),
}
return_vals = {} return_vals = {}
for k, v in request.items(): for k, v in request.items():
if v or v is False: if v or v is False:
@ -219,8 +223,6 @@ def return_if_object(module, response, allow_not_found=False):
except getattr(json.decoder, 'JSONDecodeError', ValueError): except getattr(json.decoder, 'JSONDecodeError', ValueError):
module.fail_json(msg="Invalid JSON response with error: %s" % response.text) module.fail_json(msg="Invalid JSON response with error: %s" % response.text)
result = decode_request(result, module)
if navigate_hash(result, ['error', 'errors']): if navigate_hash(result, ['error', 'errors']):
module.fail_json(msg=navigate_hash(result, ['error', 'errors'])) module.fail_json(msg=navigate_hash(result, ['error', 'errors']))
@ -230,7 +232,6 @@ def return_if_object(module, response, allow_not_found=False):
def is_different(module, response): def is_different(module, response):
request = resource_to_request(module) request = resource_to_request(module)
response = response_to_hash(module, response) response = response_to_hash(module, response)
request = decode_request(request, module)
# Remove all output-only from response. # Remove all output-only from response.
response_vals = {} response_vals = {}
@ -249,18 +250,19 @@ def is_different(module, response):
# Remove unnecessary properties from the response. # Remove unnecessary properties from the response.
# This is for doing comparisons with Ansible's current parameters. # This is for doing comparisons with Ansible's current parameters.
def response_to_hash(module, response): def response_to_hash(module, response):
return {u'name': module.params.get('name'), u'kmsKeyName': module.params.get('kms_key_name'), u'labels': response.get(u'labels')} return {u'name': name_pattern(module.params.get('name'), module), u'kmsKeyName': module.params.get('kms_key_name'), u'labels': response.get(u'labels')}
def name_pattern(name, module):
if name is None:
return
def decode_request(response, module): regex = r"projects/.*/topics/.*"
if 'name' in response:
response['name'] = response['name'].split('/')[-1]
return response
if not re.match(regex, name):
name = "projects/{project}/topics/{name}".format(**module.params)
def encode_request(request, module): return name
request['name'] = '/'.join(['projects', module.params['project'], 'topics', module.params['name']])
return request
if __name__ == '__main__': if __name__ == '__main__':

2
test/integration/targets/gcp_compute_url_map/tasks/main.yml
Unescape Escape View File

@ -113,7 +113,6 @@
assert: assert:
that: that:
- result.changed == true - result.changed == true
- result.has_key('kind') == False
- name: verify that url_map was deleted - name: verify that url_map was deleted
gcp_compute_url_map_facts: gcp_compute_url_map_facts:
filters: filters:
@ -142,7 +141,6 @@
assert: assert:
that: that:
- result.changed == false - result.changed == false
- result.has_key('kind') == False
#--------------------------------------------------------- #---------------------------------------------------------
# Post-test teardown # Post-test teardown
# If errors happen, don't crash the playbook! # If errors happen, don't crash the playbook!

2
test/integration/targets/gcp_compute_vpn_tunnel/tasks/main.yml
Unescape Escape View File

@ -128,7 +128,6 @@
assert: assert:
that: that:
- result.changed == true - result.changed == true
- result.has_key('kind') == False
- name: verify that vpn_tunnel was deleted - name: verify that vpn_tunnel was deleted
gcp_compute_vpn_tunnel_facts: gcp_compute_vpn_tunnel_facts:
filters: filters:
@ -161,7 +160,6 @@
assert: assert:
that: that:
- result.changed == false - result.changed == false
- result.has_key('kind') == False
#--------------------------------------------------------- #---------------------------------------------------------
# Post-test teardown # Post-test teardown
# If errors happen, don't crash the playbook! # If errors happen, don't crash the playbook!

2
test/integration/targets/gcp_dns_managed_zone/tasks/main.yml
Unescape Escape View File

@ -82,7 +82,6 @@
assert: assert:
that: that:
- result.changed == true - result.changed == true
- result.has_key('kind') == False
- name: verify that managed_zone was deleted - name: verify that managed_zone was deleted
gcp_dns_managed_zone_facts: gcp_dns_managed_zone_facts:
dns_name: test.somewild2.example.com. dns_name: test.somewild2.example.com.
@ -111,4 +110,3 @@
assert: assert:
that: that:
- result.changed == false - result.changed == false
- result.has_key('kind') == False

2
test/integration/targets/gcp_dns_resource_record_set/tasks/main.yml
Unescape Escape View File

@ -108,7 +108,6 @@
assert: assert:
that: that:
- result.changed == true - result.changed == true
- result.has_key('kind') == False
- name: verify that resource_record_set was deleted - name: verify that resource_record_set was deleted
gcp_dns_resource_record_set_facts: gcp_dns_resource_record_set_facts:
managed_zone: "{{ managed_zone }}" managed_zone: "{{ managed_zone }}"
@ -141,7 +140,6 @@
assert: assert:
that: that:
- result.changed == false - result.changed == false
- result.has_key('kind') == False
#--------------------------------------------------------- #---------------------------------------------------------
# Post-test teardown # Post-test teardown
# If errors happen, don't crash the playbook! # If errors happen, don't crash the playbook!

1
test/integration/targets/gcp_iam_service_account/defaults/main.yml
Unescape Escape View File

@ -1,3 +1,2 @@
--- ---
resource_name: "{{ resource_prefix }}" resource_name: "{{ resource_prefix }}"
sa_name: sa-{{ 100000 | random }}@graphite-playground.google.com.iam.gserviceaccount.com

14
test/integration/targets/gcp_iam_service_account/tasks/main.yml
Unescape Escape View File

@ -15,7 +15,7 @@
# Pre-test setup # Pre-test setup
- name: delete a service account - name: delete a service account
gcp_iam_service_account: gcp_iam_service_account:
name: "{{ sa_name }}" name: sa-{{ resource_name.split("-")[-1] }}@graphite-playground.google.com.iam.gserviceaccount.com
display_name: My Ansible test key display_name: My Ansible test key
project: "{{ gcp_project }}" project: "{{ gcp_project }}"
auth_kind: "{{ gcp_cred_kind }}" auth_kind: "{{ gcp_cred_kind }}"
@ -24,7 +24,7 @@
#---------------------------------------------------------- #----------------------------------------------------------
- name: create a service account - name: create a service account
gcp_iam_service_account: gcp_iam_service_account:
name: "{{ sa_name }}" name: sa-{{ resource_name.split("-")[-1] }}@graphite-playground.google.com.iam.gserviceaccount.com
display_name: My Ansible test key display_name: My Ansible test key
project: "{{ gcp_project }}" project: "{{ gcp_project }}"
auth_kind: "{{ gcp_cred_kind }}" auth_kind: "{{ gcp_cred_kind }}"
@ -46,11 +46,11 @@
- name: verify that command succeeded - name: verify that command succeeded
assert: assert:
that: that:
- results['resources'] | map(attribute='name') | select("match", ".*{{ sa_name }}.*") | list | length == 1 - results['resources'] | map(attribute='name') | select("match", ".*sa-{{ resource_name.split("-")[-1] }}@graphite-playground.google.com.iam.gserviceaccount.com.*") | list | length == 1
# ---------------------------------------------------------------------------- # ----------------------------------------------------------------------------
- name: create a service account that already exists - name: create a service account that already exists
gcp_iam_service_account: gcp_iam_service_account:
name: "{{ sa_name }}" name: sa-{{ resource_name.split("-")[-1] }}@graphite-playground.google.com.iam.gserviceaccount.com
display_name: My Ansible test key display_name: My Ansible test key
project: "{{ gcp_project }}" project: "{{ gcp_project }}"
auth_kind: "{{ gcp_cred_kind }}" auth_kind: "{{ gcp_cred_kind }}"
@ -64,7 +64,7 @@
#---------------------------------------------------------- #----------------------------------------------------------
- name: delete a service account - name: delete a service account
gcp_iam_service_account: gcp_iam_service_account:
name: "{{ sa_name }}" name: sa-{{ resource_name.split("-")[-1] }}@graphite-playground.google.com.iam.gserviceaccount.com
display_name: My Ansible test key display_name: My Ansible test key
project: "{{ gcp_project }}" project: "{{ gcp_project }}"
auth_kind: "{{ gcp_cred_kind }}" auth_kind: "{{ gcp_cred_kind }}"
@ -86,11 +86,11 @@
- name: verify that command succeeded - name: verify that command succeeded
assert: assert:
that: that:
- results['resources'] | map(attribute='name') | select("match", ".*{{ sa_name }}.*") | list | length == 0 - results['resources'] | map(attribute='name') | select("match", ".*sa-{{ resource_name.split("-")[-1] }}@graphite-playground.google.com.iam.gserviceaccount.com.*") | list | length == 0
# ---------------------------------------------------------------------------- # ----------------------------------------------------------------------------
- name: delete a service account that does not exist - name: delete a service account that does not exist
gcp_iam_service_account: gcp_iam_service_account:
name: "{{ sa_name }}" name: sa-{{ resource_name.split("-")[-1] }}@graphite-playground.google.com.iam.gserviceaccount.com
display_name: My Ansible test key display_name: My Ansible test key
project: "{{ gcp_project }}" project: "{{ gcp_project }}"
auth_kind: "{{ gcp_cred_kind }}" auth_kind: "{{ gcp_cred_kind }}"

Write Preview
Loading…
Cancel
Save