mirror of
https://github.com/openshift/community.okd.git
synced 2026-03-27 03:13:08 +00:00
0838ee48d2
* Enable turbo mode This enables turbo mode (default is off) for the modules in this collection that use the client from the kubernetes.core collection. * Add changelog fragment
394 lines
14 KiB
Python
394 lines
14 KiB
Python
#!/usr/bin/python
|
|
# -*- coding: utf-8 -*-
|
|
|
|
# Copyright (c) 2020, Red Hat
|
|
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
__metaclass__ = type
|
|
|
|
# STARTREMOVE (downstream)
|
|
DOCUMENTATION = r'''
|
|
module: openshift_process
|
|
|
|
short_description: Process an OpenShift template.openshift.io/v1 Template
|
|
|
|
version_added: "0.3.0"
|
|
|
|
author: "Fabian von Feilitzsch (@fabianvf)"
|
|
|
|
description:
|
|
- Processes a specified OpenShift template with the provided template.
|
|
- Templates can be provided inline, from a file, or specified by name and namespace in the cluster.
|
|
- Analogous to `oc process`.
|
|
- For CRUD operations on Template resources themselves, see the community.okd.k8s module.
|
|
|
|
extends_documentation_fragment:
|
|
- kubernetes.core.k8s_auth_options
|
|
- kubernetes.core.k8s_wait_options
|
|
- kubernetes.core.k8s_resource_options
|
|
|
|
requirements:
|
|
- "python >= 3.6"
|
|
- "kubernetes >= 12.0.0"
|
|
- "PyYAML >= 3.11"
|
|
|
|
options:
|
|
name:
|
|
description:
|
|
- The name of the Template to process.
|
|
- The Template must be present in the cluster.
|
|
- When provided, I(namespace) is required.
|
|
- Mutually exclusive with I(resource_definition) or I(src)
|
|
type: str
|
|
namespace:
|
|
description:
|
|
- The namespace that the template can be found in.
|
|
type: str
|
|
namespace_target:
|
|
description:
|
|
- The namespace that resources should be created, updated, or deleted in.
|
|
- Only used when I(state) is present or absent.
|
|
parameters:
|
|
description:
|
|
- 'A set of key: value pairs that will be used to set/override values in the Template.'
|
|
- Corresponds to the `--param` argument to oc process.
|
|
type: dict
|
|
parameter_file:
|
|
description:
|
|
- A path to a file containing template parameter values to override/set values in the Template.
|
|
- Corresponds to the `--param-file` argument to oc process.
|
|
type: str
|
|
state:
|
|
description:
|
|
- Determines what to do with the rendered Template.
|
|
- The state I(rendered) will render the Template based on the provided parameters, and return the rendered
|
|
objects in the I(resources) field. These can then be referenced in future tasks.
|
|
- The state I(present) will cause the resources in the rendered Template to be created if they do not
|
|
already exist, and patched if they do.
|
|
- The state I(absent) will delete the resources in the rendered Template.
|
|
type: str
|
|
default: rendered
|
|
choices: [ absent, present, rendered ]
|
|
'''
|
|
|
|
EXAMPLES = r'''
|
|
- name: Process a template in the cluster
|
|
community.okd.openshift_process:
|
|
name: nginx-example
|
|
namespace: openshift # only needed if using a template already on the server
|
|
parameters:
|
|
NAMESPACE: openshift
|
|
NAME: test123
|
|
state: rendered
|
|
register: result
|
|
|
|
- name: Create the rendered resources using apply
|
|
community.okd.k8s:
|
|
namespace: default
|
|
definition: '{{ item }}'
|
|
wait: yes
|
|
apply: yes
|
|
loop: '{{ result.resources }}'
|
|
|
|
- name: Process a template with parameters from an env file and create the resources
|
|
community.okd.openshift_process:
|
|
name: nginx-example
|
|
namespace: openshift
|
|
namespace_target: default
|
|
parameter_file: 'files/nginx.env'
|
|
state: present
|
|
wait: yes
|
|
|
|
- name: Process a local template and create the resources
|
|
community.okd.openshift_process:
|
|
src: files/example-template.yaml
|
|
parameter_file: files/example.env
|
|
namespace_target: default
|
|
state: present
|
|
|
|
- name: Process a local template, delete the resources, and wait for them to terminate
|
|
community.okd.openshift_process:
|
|
src: files/example-template.yaml
|
|
parameter_file: files/example.env
|
|
namespace_target: default
|
|
state: absent
|
|
wait: yes
|
|
'''
|
|
|
|
RETURN = r'''
|
|
result:
|
|
description:
|
|
- The created, patched, or otherwise present object. Will be empty in the case of a deletion.
|
|
returned: on success when state is present or absent
|
|
type: complex
|
|
contains:
|
|
apiVersion:
|
|
description: The versioned schema of this representation of an object.
|
|
returned: success
|
|
type: str
|
|
kind:
|
|
description: Represents the REST resource this object represents.
|
|
returned: success
|
|
type: str
|
|
metadata:
|
|
description: Standard object metadata. Includes name, namespace, annotations, labels, etc.
|
|
returned: success
|
|
type: complex
|
|
contains:
|
|
name:
|
|
description: The name of the resource
|
|
type: str
|
|
namespace:
|
|
description: The namespace of the resource
|
|
type: str
|
|
spec:
|
|
description: Specific attributes of the object. Will vary based on the I(api_version) and I(kind).
|
|
returned: success
|
|
type: dict
|
|
status:
|
|
description: Current status details for the object.
|
|
returned: success
|
|
type: complex
|
|
contains:
|
|
conditions:
|
|
type: complex
|
|
description: Array of status conditions for the object. Not guaranteed to be present
|
|
items:
|
|
description: Returned only when multiple yaml documents are passed to src or resource_definition
|
|
returned: when resource_definition or src contains list of objects
|
|
type: list
|
|
duration:
|
|
description: elapsed time of task in seconds
|
|
returned: when C(wait) is true
|
|
type: int
|
|
sample: 48
|
|
resources:
|
|
type: complex
|
|
description:
|
|
- The rendered resources defined in the Template
|
|
returned: on success when state is rendered
|
|
contains:
|
|
apiVersion:
|
|
description: The versioned schema of this representation of an object.
|
|
returned: success
|
|
type: str
|
|
kind:
|
|
description: Represents the REST resource this object represents.
|
|
returned: success
|
|
type: str
|
|
metadata:
|
|
description: Standard object metadata. Includes name, namespace, annotations, labels, etc.
|
|
returned: success
|
|
type: complex
|
|
contains:
|
|
name:
|
|
description: The name of the resource
|
|
type: str
|
|
namespace:
|
|
description: The namespace of the resource
|
|
type: str
|
|
spec:
|
|
description: Specific attributes of the object. Will vary based on the I(api_version) and I(kind).
|
|
returned: success
|
|
type: dict
|
|
status:
|
|
description: Current status details for the object.
|
|
returned: success
|
|
type: dict
|
|
contains:
|
|
conditions:
|
|
type: complex
|
|
description: Array of status conditions for the object. Not guaranteed to be present
|
|
'''
|
|
# ENDREMOVE (downstream)
|
|
|
|
import re
|
|
import os
|
|
import copy
|
|
import traceback
|
|
|
|
try:
|
|
from ansible_collections.kubernetes.core.plugins.module_utils.ansiblemodule import AnsibleModule
|
|
except ImportError:
|
|
from ansible.module_utils.basic import AnsibleModule
|
|
from ansible.module_utils._text import to_native
|
|
|
|
try:
|
|
from ansible_collections.kubernetes.core.plugins.module_utils.common import K8sAnsibleMixin, get_api_client
|
|
from ansible_collections.kubernetes.core.plugins.module_utils.args_common import (
|
|
AUTH_ARG_SPEC, RESOURCE_ARG_SPEC, WAIT_ARG_SPEC
|
|
)
|
|
HAS_KUBERNETES_COLLECTION = True
|
|
except ImportError as e:
|
|
HAS_KUBERNETES_COLLECTION = False
|
|
k8s_collection_import_exception = e
|
|
K8S_COLLECTION_ERROR = traceback.format_exc()
|
|
K8sAnsibleMixin = object
|
|
AUTH_ARG_SPEC = RESOURCE_ARG_SPEC = WAIT_ARG_SPEC = {}
|
|
|
|
try:
|
|
from kubernetes.dynamic.exceptions import DynamicApiError, NotFoundError
|
|
except ImportError:
|
|
pass
|
|
|
|
DOTENV_PARSER = re.compile(r"(?x)^(\s*(\#.*|\s*|(export\s+)?(?P<key>[A-z_][A-z0-9_.]*)=(?P<value>.+?)?)\s*)[\r\n]*$")
|
|
|
|
|
|
class OpenShiftProcess(K8sAnsibleMixin):
|
|
|
|
def __init__(self):
|
|
self.module = AnsibleModule(
|
|
argument_spec=self.argspec,
|
|
supports_check_mode=True,
|
|
)
|
|
self.fail_json = self.module.fail_json
|
|
self.exit_json = self.module.exit_json
|
|
|
|
if not HAS_KUBERNETES_COLLECTION:
|
|
self.module.fail_json(
|
|
msg="The kubernetes.core collection must be installed",
|
|
exception=K8S_COLLECTION_ERROR,
|
|
error=to_native(k8s_collection_import_exception)
|
|
)
|
|
|
|
super(OpenShiftProcess, self).__init__(self.module)
|
|
|
|
self.params = self.module.params
|
|
self.check_mode = self.module.check_mode
|
|
self.client = get_api_client(self.module)
|
|
|
|
@property
|
|
def argspec(self):
|
|
spec = copy.deepcopy(AUTH_ARG_SPEC)
|
|
spec.update(copy.deepcopy(WAIT_ARG_SPEC))
|
|
spec.update(copy.deepcopy(RESOURCE_ARG_SPEC))
|
|
|
|
spec['state'] = dict(type='str', default='rendered', choices=['present', 'absent', 'rendered'])
|
|
spec['namespace'] = dict(type='str')
|
|
spec['namespace_target'] = dict(type='str')
|
|
spec['parameters'] = dict(type='dict')
|
|
spec['name'] = dict(type='str')
|
|
spec['parameter_file'] = dict(type='str')
|
|
|
|
return spec
|
|
|
|
def execute_module(self):
|
|
v1_templates = self.find_resource('templates', 'template.openshift.io/v1', fail=True)
|
|
v1_processed_templates = self.find_resource('processedtemplates', 'template.openshift.io/v1', fail=True)
|
|
|
|
name = self.params.get('name')
|
|
namespace = self.params.get('namespace')
|
|
namespace_target = self.params.get('namespace_target')
|
|
definition = self.params.get('resource_definition')
|
|
src = self.params.get('src')
|
|
|
|
state = self.params.get('state')
|
|
|
|
parameters = self.params.get('parameters') or {}
|
|
parameter_file = self.params.get('parameter_file')
|
|
|
|
if (name and definition) or (name and src) or (src and definition):
|
|
self.fail_json("Only one of src, name, or definition may be provided")
|
|
|
|
if name and not namespace:
|
|
self.fail_json("namespace is required when name is set")
|
|
|
|
template = None
|
|
|
|
if src or definition:
|
|
self.set_resource_definitions(self.module)
|
|
if len(self.resource_definitions) < 1:
|
|
self.fail_json('Unable to load a Template resource from src or resource_definition')
|
|
elif len(self.resource_definitions) > 1:
|
|
self.fail_json('Multiple Template resources found in src or resource_definition, only one Template may be processed at a time')
|
|
template = self.resource_definitions[0]
|
|
template_namespace = template.get('metadata', {}).get('namespace')
|
|
namespace = template_namespace or namespace or namespace_target or 'default'
|
|
elif name and namespace:
|
|
try:
|
|
template = v1_templates.get(name=name, namespace=namespace).to_dict()
|
|
except DynamicApiError as exc:
|
|
self.fail_json(msg="Failed to retrieve Template with name '{0}' in namespace '{1}': {2}".format(name, namespace, exc.body),
|
|
error=exc.status, status=exc.status, reason=exc.reason)
|
|
except Exception as exc:
|
|
self.module.fail_json(msg="Failed to retrieve Template with name '{0}' in namespace '{1}': {2}".format(name, namespace, to_native(exc)),
|
|
error='', status='', reason='')
|
|
else:
|
|
self.fail_json("One of resource_definition, src, or name and namespace must be provided")
|
|
|
|
if parameter_file:
|
|
parameters = self.parse_dotenv_and_merge(parameters, parameter_file)
|
|
|
|
for k, v in parameters.items():
|
|
template = self.update_template_param(template, k, v)
|
|
|
|
result = {'changed': False}
|
|
|
|
try:
|
|
response = v1_processed_templates.create(body=template, namespace=namespace).to_dict()
|
|
except DynamicApiError as exc:
|
|
self.fail_json(msg="Server failed to render the Template: {0}".format(exc.body),
|
|
error=exc.status, status=exc.status, reason=exc.reason)
|
|
except Exception as exc:
|
|
self.module.fail_json(msg="Server failed to render the Template: {0}".format(to_native(exc)),
|
|
error='', status='', reason='')
|
|
result['message'] = ""
|
|
if "message" in response:
|
|
result['message'] = response['message']
|
|
result['resources'] = response['objects']
|
|
|
|
if state != 'rendered':
|
|
self.resource_definitions = response['objects']
|
|
self.kind = self.api_version = self.name = None
|
|
self.namespace = self.params.get('namespace_target')
|
|
self.append_hash = False
|
|
self.apply = False
|
|
self.params['validate'] = None
|
|
self.params['merge_type'] = None
|
|
super(OpenShiftProcess, self).execute_module()
|
|
|
|
self.module.exit_json(**result)
|
|
|
|
def update_template_param(self, template, k, v):
|
|
for i, param in enumerate(template['parameters']):
|
|
if param['name'] == k:
|
|
template['parameters'][i]['value'] = v
|
|
return template
|
|
return template
|
|
|
|
def parse_dotenv_and_merge(self, parameters, parameter_file):
|
|
path = os.path.normpath(parameter_file)
|
|
if not os.path.exists(path):
|
|
self.fail(msg="Error accessing {0}. Does the file exist?".format(path))
|
|
try:
|
|
with open(path, 'r') as f:
|
|
multiline = ''
|
|
for line in f.readlines():
|
|
line = line.strip()
|
|
if line.endswith('\\'):
|
|
multiline += ' '.join(line.rsplit('\\', 1))
|
|
continue
|
|
if multiline:
|
|
line = multiline + line
|
|
multiline = ''
|
|
match = DOTENV_PARSER.search(line)
|
|
if not match:
|
|
continue
|
|
match = match.groupdict()
|
|
if match.get('key'):
|
|
if match['key'] in parameters:
|
|
self.fail_json(msg="Duplicate value for '{0}' detected in parameter file".format(match['key']))
|
|
parameters[match['key']] = match['value']
|
|
except IOError as exc:
|
|
self.fail(msg="Error loading parameter file: {0}".format(exc))
|
|
return parameters
|
|
|
|
|
|
def main():
|
|
OpenShiftProcess().execute_module()
|
|
|
|
|
|
if __name__ == '__main__':
|
|
main()
|