internet/community.general
3
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2026-04-14 21:01:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

Adds the bigip_profile_server_ssl module (#48532)

Browse Source
This commit is contained in:
Tim Rupp
2018-11-11 10:57:26 -08:00
committed by GitHub
parent 69d24cc7fc
commit 232fcb9f34
3 changed files with 850 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

73
test/units/modules/network/f5/fixtures/load_ltm_profile_serverssl_1.json Normal file
View File

@@ -0,0 +1,73 @@
{
"kind": "tm:ltm:profile:server-ssl:server-sslstate",
"name": "asda",
"partition": "Common",
"fullPath": "/Common/asda",
"generation": 160,
"selfLink": "https://localhost/mgmt/tm/ltm/profile/server-ssl/~Common~asda?ver=13.1.0.8",
"alertTimeout": "indefinite",
"allowExpiredCrl": "disabled",
"appService": "none",
"authenticate": "once",
"authenticateDepth": 9,
"authenticateName": "none",
"bypassOnClientCertFail": "disabled",
"bypassOnHandshakeAlert": "disabled",
"c3dCaCert": "none",
"c3dCaKey": "none",
"c3dCertExtensionCustomOids": [],
"c3dCertExtensionIncludes": [
"basic-constraints",
"extended-key-usage",
"key-usage",
"subject-alternative-name"
],
"c3dCertLifespan": 24,
"caFile": "none",
"cacheSize": 262144,
"cacheTimeout": 3600,
"cert": "none",
"chain": "/Common/default.crt",
"chainReference": {
"link": "https://localhost/mgmt/tm/sys/file/ssl-cert/~Common~default.crt?ver=13.1.0.8"
},
"cipherGroup": "none",
"ciphers": "DEFAULT",
"crlFile": "none",
"defaultsFrom": "/Common/serverssl",
"defaultsFromReference": {
"link": "https://localhost/mgmt/tm/ltm/profile/server-ssl/~Common~serverssl?ver=13.1.0.8"
},
"description": "none",
"expireCertResponseControl": "drop",
"genericAlert": "enabled",
"handshakeTimeout": "10",
"key": "none",
"maxActiveHandshakes": "indefinite",
"modSslMethods": "disabled",
"mode": "enabled",
"ocsp": "none",
"tmOptions": [
"dont-insert-empty-fragments"
],
"peerCertMode": "ignore",
"proxySsl": "disabled",
"proxySslPassthrough": "disabled",
"renegotiatePeriod": "indefinite",
"renegotiateSize": "indefinite",
"renegotiation": "enabled",
"retainCertificate": "true",
"secureRenegotiation": "require-strict",
"serverName": "none",
"sessionMirroring": "disabled",
"sessionTicket": "disabled",
"sniDefault": "false",
"sniRequire": "false",
"sslC3d": "disabled",
"sslForwardProxy": "disabled",
"sslForwardProxyBypass": "disabled",
"sslSignHash": "any",
"strictResume": "disabled",
"uncleanShutdown": "enabled",
"untrustedCertResponseControl": "drop"
}

116
test/units/modules/network/f5/test_bigip_profile_server_ssl.py Normal file
View File

@@ -0,0 +1,116 @@
# -*- coding: utf-8 -*-
#
# Copyright: (c) 2018, F5 Networks Inc.
# GNU General Public License v3.0 (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
from __future__ import (absolute_import, division, print_function)
__metaclass__ = type
import os
import json
import sys
from nose.plugins.skip import SkipTest
if sys.version_info < (2, 7):
raise SkipTest("F5 Ansible modules require Python >= 2.7")
from ansible.module_utils.basic import AnsibleModule
try:
from library.modules.bigip_profile_server_ssl import ApiParameters
from library.modules.bigip_profile_server_ssl import ModuleParameters
from library.modules.bigip_profile_server_ssl import ModuleManager
from library.modules.bigip_profile_server_ssl import ArgumentSpec
# In Ansible 2.8, Ansible changed import paths.
from test.units.compat import unittest
from test.units.compat.mock import Mock
from test.units.compat.mock import patch
from test.units.modules.utils import set_module_args
except ImportError:
try:
from ansible.modules.network.f5.bigip_profile_server_ssl import ApiParameters
from ansible.modules.network.f5.bigip_profile_server_ssl import ModuleParameters
from ansible.modules.network.f5.bigip_profile_server_ssl import ModuleManager
from ansible.modules.network.f5.bigip_profile_server_ssl import ArgumentSpec
# Ansible 2.8 imports
from units.compat import unittest
from units.compat.mock import Mock
from units.compat.mock import patch
from units.modules.utils import set_module_args
except ImportError:
raise SkipTest("F5 Ansible modules require the f5-sdk Python library")
fixture_path = os.path.join(os.path.dirname(__file__), 'fixtures')
fixture_data = {}
def load_fixture(name):
path = os.path.join(fixture_path, name)
if path in fixture_data:
return fixture_data[path]
with open(path) as f:
data = f.read()
try:
data = json.loads(data)
except Exception:
pass
fixture_data[path] = data
return data
class TestParameters(unittest.TestCase):
def test_module_parameters(self):
args = dict(
name='foo',
server_name='foo.bar.com',
secure_renegotiation='require',
)
p = ModuleParameters(params=args)
assert p.name == 'foo'
assert p.server_name == 'foo.bar.com'
assert p.secure_renegotiation == 'require'
def test_api_parameters(self):
args = load_fixture('load_ltm_profile_serverssl_1.json')
p = ApiParameters(params=args)
assert p.name == 'asda'
assert p.server_name is None
class TestManager(unittest.TestCase):
def setUp(self):
self.spec = ArgumentSpec()
def test_create(self, *args):
# Configure the arguments that would be sent to the Ansible module
set_module_args(dict(
name='foo',
server_name='foo.bar.com',
password='password',
server='localhost',
user='admin'
))
module = AnsibleModule(
argument_spec=self.spec.argument_spec,
supports_check_mode=self.spec.supports_check_mode
)
mm = ModuleManager(module=module)
# Override methods to force specific logic in the module to happen
mm.exists = Mock(return_value=False)
mm.create_on_device = Mock(return_value=True)
results = mm.exec_module()
assert results['changed'] is True