---
- debug: msg="START junos_user netconf/basic.yaml on connection={{ ansible_connection }}"
- name: setup - remove user
junos_user:
name: test_user
state: absent
provider: "{{ netconf }}"
- name: Create user
junos_user:
name: test_user
state: present
full_name: test_user
role: operator
provider: "{{ netconf }}"
register: result
- name: Get running configuration
junos_rpc:
rpc: get-configuration
provider: "{{ netconf }}"
register: config
- assert:
that:
- "result.changed == true"
- "'test_user' in config.xml"
- "'test_user' in config.xml"
- "'operator' in config.xml"
- name: Create user again (idempotent)
junos_user:
name: test_user
state: present
full_name: test_user
role: operator
provider: "{{ netconf }}"
register: result
- assert:
that:
- "result.changed == false"
- name: Deactivate user
junos_user:
name: test_user
state: present
full_name: test_user
role: operator
active: False
provider: "{{ netconf }}"
register: result
- name: Get running configuration
junos_rpc:
rpc: get-configuration
provider: "{{ netconf }}"
register: config
- assert:
that:
- "result.changed == true"
- "'' in config.xml"
- "'test_user' in config.xml"
- name: Activate user
junos_user:
name: test_user
state: present
full_name: test_user
role: operator
active: True
provider: "{{ netconf }}"
register: result
- name: Get running configuration
junos_rpc:
rpc: get-configuration
provider: "{{ netconf }}"
register: config
- assert:
that:
- "result.changed == true"
- "'test_user' in config.xml"
- "'test_user' in config.xml"
- "'operator' in config.xml"
- name: Delete user
junos_user:
name: test_user
state: absent
full_name: test_user
role: operator
provider: "{{ netconf }}"
register: result
- name: Get running configuration
junos_rpc:
rpc: get-configuration
provider: "{{ netconf }}"
register: config
- assert:
that:
- "result.changed == true"
- "'test_user' not in config.xml"
- "'test_user' not in config.xml"
- name: Delete user again (idempotent check)
junos_user:
name: test_user
state: absent
full_name: test_user
role: operator
provider: "{{ netconf }}"
register: result
- assert:
that:
- "result.changed == false"
- name: Teardown list of users
junos_user:
aggregate:
- {name: test_user1, state: absent}
- {name: test_user2, state: absent}
provider: "{{ netconf }}"
register: result
- name: Create list of users
junos_user:
aggregate:
- {name: test_user1, full_name: test_user2, role: operator, state: present}
- {name: test_user2, full_name: test_user2, role: read-only, state: present}
provider: "{{ netconf }}"
register: result
- name: Get running configuration
junos_rpc:
rpc: get-configuration
provider: "{{ netconf }}"
register: config
- assert:
that:
- "result.changed == true"
- "'test_user1' in config.xml"
- "'test_user2' in config.xml"
- name: Delete list of users
junos_user:
aggregate:
- {name: test_user1, full_name: test_user2, role: operator, state: absent}
- {name: test_user2, full_name: test_user2, role: read-only, state: absent}
provider: "{{ netconf }}"
register: result
- name: Get running configuration
junos_rpc:
rpc: get-configuration
provider: "{{ netconf }}"
register: config
- assert:
that:
- "result.changed == true"
- "'test_user1' not in config.xml"
- "'test_user2' not in config.xml"
- name: Create list of users
junos_user:
aggregate:
# NOTE(pabelanger): We noop our ansible-test user, as not to lose SSH access
- name: "{{ ansible_user|default('ansible') }}"
- {name: test_user1, full_name: test_user2, role: operator}
- {name: test_user2, full_name: test_user2, role: read-only}
provider: "{{ netconf }}"
register: result
- name: Purge users except the users in aggregate
junos_user:
aggregate:
# NOTE(pabelanger): We noop our ansible-test user, as not to lose SSH access
- name: "{{ ansible_user|default('ansible') }}"
purge: True
provider: "{{ netconf }}"
register: result
- assert:
that:
- "result.changed == true"
- result.diff.prepared is search("\- *user test_user1")
- result.diff.prepared is search("\- *user test_user2")
- debug: msg="END junos_user netconf/basic.yaml on connection={{ ansible_connection }}"