213 lines
5.2 KiB
Python
213 lines
5.2 KiB
Python
#!/usr/bin/python
|
|
# -*- coding: utf-8 -*-
|
|
|
|
# Copyright (c) 2021, Cisco Systems
|
|
# GNU General Public License v3.0+ (see LICENSE or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
DOCUMENTATION = r"""
|
|
---
|
|
module: internal_user
|
|
short_description: Resource module for Internal User
|
|
description:
|
|
- Manage operations create, update and delete of the resource Internal User.
|
|
version_added: '1.0.0'
|
|
extends_documentation_fragment:
|
|
- cisco.ise.module
|
|
author: Rafael Campos (@racampos)
|
|
options:
|
|
changePassword:
|
|
description: ChangePassword flag.
|
|
type: bool
|
|
customAttributes:
|
|
description: Key value map.
|
|
type: dict
|
|
description:
|
|
description: Internal User's description.
|
|
type: str
|
|
email:
|
|
description: Internal User's email.
|
|
type: str
|
|
enablePassword:
|
|
description: Internal User's enablePassword.
|
|
type: str
|
|
enabled:
|
|
description: Whether the user is enabled/disabled. To use it as filter, the values
|
|
should be 'Enabled' or 'Disabled'. The values are case sensitive. For example,
|
|
'ERSObjectURL?filter=enabled.EQ.Enabled'.
|
|
type: bool
|
|
expiryDate:
|
|
description: To store the internal user's expiry date information. It's format is
|
|
= 'YYYY-MM-DD'.
|
|
type: str
|
|
expiryDateEnabled:
|
|
description: ExpiryDateEnabled flag.
|
|
type: bool
|
|
firstName:
|
|
description: Internal User's firstName.
|
|
type: str
|
|
id:
|
|
description: Internal User's id.
|
|
type: str
|
|
identityGroups:
|
|
description: CSV of identity group IDs.
|
|
type: str
|
|
lastName:
|
|
description: Internal User's lastName.
|
|
type: str
|
|
name:
|
|
description: Internal User's name.
|
|
type: str
|
|
password:
|
|
description: Internal User's password.
|
|
type: str
|
|
passwordIDStore:
|
|
description: The id store where the internal user's password is kept.
|
|
type: str
|
|
requirements:
|
|
- ciscoisesdk >= 1.1.0
|
|
- python >= 3.5
|
|
seealso:
|
|
# Reference by Internet resource
|
|
- name: Internal User reference
|
|
description: Complete reference of the Internal User object model.
|
|
link: https://ciscoisesdk.readthedocs.io/en/latest/api/api.html#v3-0-0-summary
|
|
"""
|
|
|
|
EXAMPLES = r"""
|
|
- name: Update by name
|
|
cisco.ise.internal_user:
|
|
ise_hostname: "{{ise_hostname}}"
|
|
ise_username: "{{ise_username}}"
|
|
ise_password: "{{ise_password}}"
|
|
ise_verify: "{{ise_verify}}"
|
|
state: present
|
|
changePassword: true
|
|
customAttributes: {}
|
|
description: string
|
|
email: string
|
|
enablePassword: string
|
|
enabled: true
|
|
expiryDate: string
|
|
expiryDateEnabled: true
|
|
firstName: string
|
|
id: string
|
|
identityGroups: string
|
|
lastName: string
|
|
name: string
|
|
password: string
|
|
passwordIDStore: string
|
|
|
|
- name: Delete by name
|
|
cisco.ise.internal_user:
|
|
ise_hostname: "{{ise_hostname}}"
|
|
ise_username: "{{ise_username}}"
|
|
ise_password: "{{ise_password}}"
|
|
ise_verify: "{{ise_verify}}"
|
|
state: absent
|
|
name: string
|
|
|
|
- name: Update by id
|
|
cisco.ise.internal_user:
|
|
ise_hostname: "{{ise_hostname}}"
|
|
ise_username: "{{ise_username}}"
|
|
ise_password: "{{ise_password}}"
|
|
ise_verify: "{{ise_verify}}"
|
|
state: present
|
|
changePassword: true
|
|
customAttributes: {}
|
|
description: string
|
|
email: string
|
|
enablePassword: string
|
|
enabled: true
|
|
expiryDate: string
|
|
expiryDateEnabled: true
|
|
firstName: string
|
|
id: string
|
|
identityGroups: string
|
|
lastName: string
|
|
name: string
|
|
password: string
|
|
passwordIDStore: string
|
|
|
|
- name: Delete by id
|
|
cisco.ise.internal_user:
|
|
ise_hostname: "{{ise_hostname}}"
|
|
ise_username: "{{ise_username}}"
|
|
ise_password: "{{ise_password}}"
|
|
ise_verify: "{{ise_verify}}"
|
|
state: absent
|
|
id: string
|
|
|
|
- name: Create
|
|
cisco.ise.internal_user:
|
|
ise_hostname: "{{ise_hostname}}"
|
|
ise_username: "{{ise_username}}"
|
|
ise_password: "{{ise_password}}"
|
|
ise_verify: "{{ise_verify}}"
|
|
state: present
|
|
changePassword: true
|
|
customAttributes: {}
|
|
description: string
|
|
email: string
|
|
enablePassword: string
|
|
enabled: true
|
|
expiryDate: string
|
|
expiryDateEnabled: true
|
|
firstName: string
|
|
identityGroups: string
|
|
lastName: string
|
|
name: string
|
|
password: string
|
|
passwordIDStore: string
|
|
|
|
"""
|
|
|
|
RETURN = r"""
|
|
ise_response:
|
|
description: A dictionary or list with the response returned by the Cisco ISE Python SDK
|
|
returned: always
|
|
type: dict
|
|
sample: >
|
|
{
|
|
"id": "string",
|
|
"name": "string",
|
|
"description": "string",
|
|
"enabled": true,
|
|
"email": "string",
|
|
"password": "string",
|
|
"firstName": "string",
|
|
"lastName": "string",
|
|
"changePassword": true,
|
|
"identityGroups": "string",
|
|
"expiryDateEnabled": true,
|
|
"expiryDate": "string",
|
|
"enablePassword": "string",
|
|
"customAttributes": {},
|
|
"passwordIDStore": "string",
|
|
"link": {
|
|
"rel": "string",
|
|
"href": "string",
|
|
"type": "string"
|
|
}
|
|
}
|
|
|
|
ise_update_response:
|
|
description: A dictionary or list with the response returned by the Cisco ISE Python SDK
|
|
returned: always
|
|
version_added: "1.1.0"
|
|
type: dict
|
|
sample: >
|
|
{
|
|
"UpdatedFieldsList": {
|
|
"updatedField": {
|
|
"field": "string",
|
|
"oldValue": "string",
|
|
"newValue": "string"
|
|
},
|
|
"field": "string",
|
|
"oldValue": "string",
|
|
"newValue": "string"
|
|
}
|
|
}
|
|
"""
|