Merge pull request #245 from rjeffman/fix_sudorule_categories

Fixes removal of `all` from categories in sudorule and hbacrule modules.
2026-05-08 06:13:21 +00:00 · 2020-05-12 13:06:18 +02:00
parent 14d4502019 5e734e847e
commit a432c3ff50
6 changed files with 330 additions and 24 deletions
--- a/plugins/modules/ipahbacrule.py
+++ b/plugins/modules/ipahbacrule.py
@@ -49,17 +49,17 @@ options:
    description: User category the rule applies to
    required: false
    aliases: ["usercat"]
-    choices: ["all"]
+    choices: ["all", ""]
  hostcategory:
    description: Host category the rule applies to
    required: false
    aliases: ["hostcat"]
-    choices: ["all"]
+    choices: ["all", ""]
  servicecategory:
    description: Service category the rule applies to
    required: false
    aliases: ["servicecat"]
-    choices: ["all"]
+    choices: ["all", ""]
  nomembers:
    description: Suppress processing of membership attributes
    required: false
@@ -208,11 +208,11 @@ def main():
            # present
            description=dict(type="str", default=None),
            usercategory=dict(type="str", default=None,
-                              aliases=["usercat"], choices=["all"]),
+                              aliases=["usercat"], choices=["all", ""]),
            hostcategory=dict(type="str", default=None,
-                              aliases=["hostcat"], choices=["all"]),
+                              aliases=["hostcat"], choices=["all", ""]),
            servicecategory=dict(type="str", default=None,
-                                 aliases=["servicecat"], choices=["all"]),
+                                 aliases=["servicecat"], choices=["all", ""]),
            nomembers=dict(required=False, type='bool', default=None),
            host=dict(required=False, type='list', default=None),
            hostgroup=dict(required=False, type='list', default=None),
--- a/plugins/modules/ipasudorule.py
+++ b/plugins/modules/ipasudorule.py
@@ -51,18 +51,21 @@ options:
  usercategory:
    description: User category the sudo rule applies to
    required: false
-    choices: ["all"]
+    choices: ["all", ""]
+    aliases: ["usercat"]
  usergroup:
    description: List of user groups assigned to the sudo rule.
    required: false
  runasgroupcategory:
    description: RunAs Group category applied to the sudo rule.
    required: false
-    choices: ["all"]
+    choices: ["all", ""]
+    aliases: ["runasgroupcat"]
  runasusercategory:
    description: RunAs User category applied to the sudorule.
    required: false
-    choices: ["all"]
+    choices: ["all", ""]
+    aliases: ["runasusercat"]
  nomembers:
    description: Suppress processing of membership attributes
    required: false
@@ -78,7 +81,8 @@ options:
  hostcategory:
    description: Host category the sudo rule applies to.
    required: false
-    choices: ["all"]
+    choices: ["all", ""]
+    aliases: ["hostcat"]
  allow_sudocmd:
    description: List of allowed sudocmds assigned to this sudorule.
    required: false
@@ -98,7 +102,8 @@ options:
  cmdcategory:
    description: Command category the sudo rule applies to
    required: false
-    choices: ["all"]
+    choices: ["all", ""]
+    aliases: ["cmdcat"]
  order:
    description: Order to apply this rule.
    required: false
@@ -241,9 +246,9 @@ def main():
            # present
            description=dict(required=False, type="str", default=None),
            usercategory=dict(required=False, type="str", default=None,
-                              choices=["all"]),
+                              choices=["all", ""], aliases=['usercat']),
            hostcategory=dict(required=False, type="str", default=None,
-                              choices=["all"]),
+                              choices=["all", ""], aliases=['hostcat']),
            nomembers=dict(required=False, type='bool', default=None),
            host=dict(required=False, type='list', default=None),
            hostgroup=dict(required=False, type='list', default=None),
@@ -254,11 +259,13 @@ def main():
            allow_sudocmdgroup=dict(required=False, type="list", default=None),
            deny_sudocmdgroup=dict(required=False, type="list", default=None),
            cmdcategory=dict(required=False, type="str", default=None,
-                             choices=["all"]),
+                             choices=["all", ""], aliases=['cmdcat']),
            runasusercategory=dict(required=False, type="str", default=None,
-                                   choices=["all"]),
+                                   choices=["all", ""],
+                                   aliases=['runasusercat']),
            runasgroupcategory=dict(required=False, type="str", default=None,
-                                    choices=["all"]),
+                                    choices=["all", ""],
+                                    aliases=['runasgroupcat']),
            runasuser=dict(required=False, type="list", default=None),
            runasgroup=dict(required=False, type="list", default=None),
            order=dict(type="int", required=False, aliases=['sudoorder']),