sa_8001/offline_kubespray
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c6123d17d8cb7ebc4456ecd09d3b8ab30076d72c
offline_kubespray/collection/cisco/ise/plugins/action/csr_generate.py
ByeonJungHun 360c6eef4a offline 작업
2024-02-19 16:02:29 +09:00

120 lines
4.2 KiB
Python
Raw Blame History

#!/usr/bin/env python
# -*- coding: utf-8 -*-
# Copyright (c) 2021, Cisco Systems
# GNU General Public License v3.0+ (see LICENSE or https://www.gnu.org/licenses/gpl-3.0.txt)
from __future__ import (absolute_import, division, print_function)
__metaclass__ = type
from ansible.plugins.action import ActionBase
try:
from ansible_collections.ansible.utils.plugins.module_utils.common.argspec_validate import (
AnsibleArgSpecValidator,
)
except ImportError:
ANSIBLE_UTILS_IS_INSTALLED = False
else:
ANSIBLE_UTILS_IS_INSTALLED = True
from ansible.errors import AnsibleActionFail
from ansible_collections.cisco.ise.plugins.plugin_utils.ise import (
ISESDK,
ise_argument_spec,
)
# Get common arguements specification
argument_spec = ise_argument_spec()
# Add arguments specific for this module
argument_spec.update(dict(
allowWildCardCert=dict(type="bool"),
certificatePolicies=dict(type="str"),
digestType=dict(type="str"),
hostnames=dict(type="list"),
keyLength=dict(type="str"),
keyType=dict(type="str"),
portalGroupTag=dict(type="str"),
sanDNS=dict(type="list"),
sanDir=dict(type="list"),
sanIP=dict(type="list"),
sanURI=dict(type="list"),
subjectCity=dict(type="str"),
subjectCommonName=dict(type="str"),
subjectCountry=dict(type="str"),
subjectOrg=dict(type="str"),
subjectOrgUnit=dict(type="str"),
subjectState=dict(type="str"),
usedFor=dict(type="str"),
))
required_if = []
required_one_of = []
mutually_exclusive = []
required_together = []
class ActionModule(ActionBase):
def __init__(self, *args, **kwargs):
if not ANSIBLE_UTILS_IS_INSTALLED:
raise AnsibleActionFail("ansible.utils is not installed. Execute 'ansible-galaxy collection install ansible.utils'")
super(ActionModule, self).__init__(*args, **kwargs)
self._supports_async = False
self._supports_check_mode = False
self._result = None
# Checks the supplied parameters against the argument spec for this module
def _check_argspec(self):
aav = AnsibleArgSpecValidator(
data=self._task.args,
schema=dict(argument_spec=argument_spec),
schema_format="argspec",
schema_conditionals=dict(
required_if=required_if,
required_one_of=required_one_of,
mutually_exclusive=mutually_exclusive,
required_together=required_together,
),
name=self._task.action,
)
valid, errors, self._task.args = aav.validate()
if not valid:
raise AnsibleActionFail(errors)
def get_object(self, params):
new_object = dict(
allow_wild_card_cert=params.get("allowWildCardCert"),
certificate_policies=params.get("certificatePolicies"),
digest_type=params.get("digestType"),
hostnames=params.get("hostnames"),
key_length=params.get("keyLength"),
key_type=params.get("keyType"),
portal_group_tag=params.get("portalGroupTag"),
san_dns=params.get("sanDNS"),
san_dir=params.get("sanDir"),
san_ip=params.get("sanIP"),
san_uri=params.get("sanURI"),
subject_city=params.get("subjectCity"),
subject_common_name=params.get("subjectCommonName"),
subject_country=params.get("subjectCountry"),
subject_org=params.get("subjectOrg"),
subject_org_unit=params.get("subjectOrgUnit"),
subject_state=params.get("subjectState"),
used_for=params.get("usedFor"),
)
return new_object
def run(self, tmp=None, task_vars=None):
self._task.diff = False
self._result = super(ActionModule, self).run(tmp, task_vars)
self._result["changed"] = False
self._check_argspec()
ise = ISESDK(params=self._task.args)
response = ise.exec(
family="certificates",
function='generate_csr',
params=self.get_object(self._task.args),
).response
self._result.update(dict(ise_response=response))
self._result.update(ise.exit_json())
return self._result
Reference in New Issue View Git Blame Copy Permalink