mirror of
https://github.com/openshift/community.okd.git
synced 2026-03-26 19:03:14 +00:00
f60ded17b0
* Update to work with k8s 2.0 This makes the necessary changes to get the collection working with kubernetes.core 2.0. The biggest changes here will be switching from the openshift client to the kubernetes client, and dropping Python 2 support. * Install kubernetes not openshift * Add changelog fragment
392 lines
14 KiB
Python
392 lines
14 KiB
Python
#!/usr/bin/python
|
|
# -*- coding: utf-8 -*-
|
|
|
|
# Copyright (c) 2020, Red Hat
|
|
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
__metaclass__ = type
|
|
|
|
# STARTREMOVE (downstream)
|
|
DOCUMENTATION = r'''
|
|
module: openshift_process
|
|
|
|
short_description: Process an OpenShift template.openshift.io/v1 Template
|
|
|
|
version_added: "0.3.0"
|
|
|
|
author: "Fabian von Feilitzsch (@fabianvf)"
|
|
|
|
description:
|
|
- Processes a specified OpenShift template with the provided template.
|
|
- Templates can be provided inline, from a file, or specified by name and namespace in the cluster.
|
|
- Analogous to `oc process`.
|
|
- For CRUD operations on Template resources themselves, see the community.okd.k8s module.
|
|
|
|
extends_documentation_fragment:
|
|
- kubernetes.core.k8s_auth_options
|
|
- kubernetes.core.k8s_wait_options
|
|
- kubernetes.core.k8s_resource_options
|
|
|
|
requirements:
|
|
- "python >= 3.6"
|
|
- "kubernetes >= 12.0.0"
|
|
- "PyYAML >= 3.11"
|
|
|
|
options:
|
|
name:
|
|
description:
|
|
- The name of the Template to process.
|
|
- The Template must be present in the cluster.
|
|
- When provided, I(namespace) is required.
|
|
- Mutually exclusive with I(resource_definition) or I(src)
|
|
type: str
|
|
namespace:
|
|
description:
|
|
- The namespace that the template can be found in.
|
|
type: str
|
|
namespace_target:
|
|
description:
|
|
- The namespace that resources should be created, updated, or deleted in.
|
|
- Only used when I(state) is present or absent.
|
|
parameters:
|
|
description:
|
|
- 'A set of key: value pairs that will be used to set/override values in the Template.'
|
|
- Corresponds to the `--param` argument to oc process.
|
|
type: dict
|
|
parameter_file:
|
|
description:
|
|
- A path to a file containing template parameter values to override/set values in the Template.
|
|
- Corresponds to the `--param-file` argument to oc process.
|
|
type: str
|
|
state:
|
|
description:
|
|
- Determines what to do with the rendered Template.
|
|
- The state I(rendered) will render the Template based on the provided parameters, and return the rendered
|
|
objects in the I(resources) field. These can then be referenced in future tasks.
|
|
- The state I(present) will cause the resources in the rendered Template to be created if they do not
|
|
already exist, and patched if they do.
|
|
- The state I(absent) will delete the resources in the rendered Template.
|
|
type: str
|
|
default: rendered
|
|
choices: [ absent, present, rendered ]
|
|
'''
|
|
|
|
EXAMPLES = r'''
|
|
- name: Process a template in the cluster
|
|
community.okd.openshift_process:
|
|
name: nginx-example
|
|
namespace: openshift # only needed if using a template already on the server
|
|
parameters:
|
|
NAMESPACE: openshift
|
|
NAME: test123
|
|
state: rendered
|
|
register: result
|
|
|
|
- name: Create the rendered resources using apply
|
|
community.okd.k8s:
|
|
namespace: default
|
|
definition: '{{ item }}'
|
|
wait: yes
|
|
apply: yes
|
|
loop: '{{ result.resources }}'
|
|
|
|
- name: Process a template with parameters from an env file and create the resources
|
|
community.okd.openshift_process:
|
|
name: nginx-example
|
|
namespace: openshift
|
|
namespace_target: default
|
|
parameter_file: 'files/nginx.env'
|
|
state: present
|
|
wait: yes
|
|
|
|
- name: Process a local template and create the resources
|
|
community.okd.openshift_process:
|
|
src: files/example-template.yaml
|
|
parameter_file: files/example.env
|
|
namespace_target: default
|
|
state: present
|
|
|
|
- name: Process a local template, delete the resources, and wait for them to terminate
|
|
community.okd.openshift_process:
|
|
src: files/example-template.yaml
|
|
parameter_file: files/example.env
|
|
namespace_target: default
|
|
state: absent
|
|
wait: yes
|
|
'''
|
|
|
|
RETURN = r'''
|
|
result:
|
|
description:
|
|
- The created, patched, or otherwise present object. Will be empty in the case of a deletion.
|
|
returned: on success when state is present or absent
|
|
type: complex
|
|
contains:
|
|
apiVersion:
|
|
description: The versioned schema of this representation of an object.
|
|
returned: success
|
|
type: str
|
|
kind:
|
|
description: Represents the REST resource this object represents.
|
|
returned: success
|
|
type: str
|
|
metadata:
|
|
description: Standard object metadata. Includes name, namespace, annotations, labels, etc.
|
|
returned: success
|
|
type: complex
|
|
contains:
|
|
name:
|
|
description: The name of the resource
|
|
type: str
|
|
namespace:
|
|
description: The namespace of the resource
|
|
type: str
|
|
spec:
|
|
description: Specific attributes of the object. Will vary based on the I(api_version) and I(kind).
|
|
returned: success
|
|
type: dict
|
|
status:
|
|
description: Current status details for the object.
|
|
returned: success
|
|
type: complex
|
|
contains:
|
|
conditions:
|
|
type: complex
|
|
description: Array of status conditions for the object. Not guaranteed to be present
|
|
items:
|
|
description: Returned only when multiple yaml documents are passed to src or resource_definition
|
|
returned: when resource_definition or src contains list of objects
|
|
type: list
|
|
duration:
|
|
description: elapsed time of task in seconds
|
|
returned: when C(wait) is true
|
|
type: int
|
|
sample: 48
|
|
resources:
|
|
type: complex
|
|
description:
|
|
- The rendered resources defined in the Template
|
|
returned: on success when state is rendered
|
|
contains:
|
|
apiVersion:
|
|
description: The versioned schema of this representation of an object.
|
|
returned: success
|
|
type: str
|
|
kind:
|
|
description: Represents the REST resource this object represents.
|
|
returned: success
|
|
type: str
|
|
metadata:
|
|
description: Standard object metadata. Includes name, namespace, annotations, labels, etc.
|
|
returned: success
|
|
type: complex
|
|
contains:
|
|
name:
|
|
description: The name of the resource
|
|
type: str
|
|
namespace:
|
|
description: The namespace of the resource
|
|
type: str
|
|
spec:
|
|
description: Specific attributes of the object. Will vary based on the I(api_version) and I(kind).
|
|
returned: success
|
|
type: dict
|
|
status:
|
|
description: Current status details for the object.
|
|
returned: success
|
|
type: dict
|
|
contains:
|
|
conditions:
|
|
type: complex
|
|
description: Array of status conditions for the object. Not guaranteed to be present
|
|
'''
|
|
# ENDREMOVE (downstream)
|
|
|
|
import re
|
|
import os
|
|
import copy
|
|
import traceback
|
|
|
|
from ansible.module_utils.basic import AnsibleModule
|
|
from ansible.module_utils._text import to_native
|
|
|
|
try:
|
|
from ansible_collections.kubernetes.core.plugins.module_utils.common import K8sAnsibleMixin, get_api_client
|
|
from ansible_collections.kubernetes.core.plugins.module_utils.args_common import (
|
|
AUTH_ARG_SPEC, RESOURCE_ARG_SPEC, WAIT_ARG_SPEC
|
|
)
|
|
HAS_KUBERNETES_COLLECTION = True
|
|
except ImportError as e:
|
|
HAS_KUBERNETES_COLLECTION = False
|
|
k8s_collection_import_exception = e
|
|
K8S_COLLECTION_ERROR = traceback.format_exc()
|
|
K8sAnsibleMixin = object
|
|
AUTH_ARG_SPEC = RESOURCE_ARG_SPEC = WAIT_ARG_SPEC = {}
|
|
|
|
try:
|
|
from kubernetes.dynamic.exceptions import DynamicApiError, NotFoundError
|
|
except ImportError:
|
|
pass
|
|
|
|
DOTENV_PARSER = re.compile(r"(?x)^(\s*(\#.*|\s*|(export\s+)?(?P<key>[A-z_][A-z0-9_.]*)=(?P<value>.+?)?)\s*)[\r\n]*$")
|
|
|
|
|
|
class OpenShiftProcess(K8sAnsibleMixin):
|
|
|
|
def __init__(self):
|
|
self.module = AnsibleModule(
|
|
argument_spec=self.argspec,
|
|
supports_check_mode=True,
|
|
)
|
|
self.fail_json = self.module.fail_json
|
|
self.exit_json = self.module.exit_json
|
|
|
|
if not HAS_KUBERNETES_COLLECTION:
|
|
self.module.fail_json(
|
|
msg="The kubernetes.core collection must be installed",
|
|
exception=K8S_COLLECTION_ERROR,
|
|
error=to_native(k8s_collection_import_exception)
|
|
)
|
|
|
|
super(OpenShiftProcess, self).__init__(self.module)
|
|
|
|
self.params = self.module.params
|
|
self.check_mode = self.module.check_mode
|
|
|
|
@property
|
|
def argspec(self):
|
|
spec = copy.deepcopy(AUTH_ARG_SPEC)
|
|
spec.update(copy.deepcopy(WAIT_ARG_SPEC))
|
|
spec.update(copy.deepcopy(RESOURCE_ARG_SPEC))
|
|
|
|
spec['state'] = dict(type='str', default='rendered', choices=['present', 'absent', 'rendered'])
|
|
spec['namespace'] = dict(type='str')
|
|
spec['namespace_target'] = dict(type='str')
|
|
spec['parameters'] = dict(type='dict')
|
|
spec['name'] = dict(type='str')
|
|
spec['parameter_file'] = dict(type='str')
|
|
|
|
return spec
|
|
|
|
def execute_module(self):
|
|
self.client = get_api_client(self.module)
|
|
|
|
v1_templates = self.find_resource('templates', 'template.openshift.io/v1', fail=True)
|
|
v1_processed_templates = self.find_resource('processedtemplates', 'template.openshift.io/v1', fail=True)
|
|
|
|
name = self.params.get('name')
|
|
namespace = self.params.get('namespace')
|
|
namespace_target = self.params.get('namespace_target')
|
|
definition = self.params.get('resource_definition')
|
|
src = self.params.get('src')
|
|
|
|
state = self.params.get('state')
|
|
|
|
parameters = self.params.get('parameters') or {}
|
|
parameter_file = self.params.get('parameter_file')
|
|
|
|
if (name and definition) or (name and src) or (src and definition):
|
|
self.fail_json("Only one of src, name, or definition may be provided")
|
|
|
|
if name and not namespace:
|
|
self.fail_json("namespace is required when name is set")
|
|
|
|
template = None
|
|
|
|
if src or definition:
|
|
self.set_resource_definitions(self.module)
|
|
if len(self.resource_definitions) < 1:
|
|
self.fail_json('Unable to load a Template resource from src or resource_definition')
|
|
elif len(self.resource_definitions) > 1:
|
|
self.fail_json('Multiple Template resources found in src or resource_definition, only one Template may be processed at a time')
|
|
template = self.resource_definitions[0]
|
|
template_namespace = template.get('metadata', {}).get('namespace')
|
|
namespace = template_namespace or namespace or namespace_target or 'default'
|
|
elif name and namespace:
|
|
try:
|
|
template = v1_templates.get(name=name, namespace=namespace).to_dict()
|
|
except DynamicApiError as exc:
|
|
self.fail_json(msg="Failed to retrieve Template with name '{0}' in namespace '{1}': {2}".format(name, namespace, exc.body),
|
|
error=exc.status, status=exc.status, reason=exc.reason)
|
|
except Exception as exc:
|
|
self.module.fail_json(msg="Failed to retrieve Template with name '{0}' in namespace '{1}': {2}".format(name, namespace, to_native(exc)),
|
|
error='', status='', reason='')
|
|
else:
|
|
self.fail_json("One of resource_definition, src, or name and namespace must be provided")
|
|
|
|
if parameter_file:
|
|
parameters = self.parse_dotenv_and_merge(parameters, parameter_file)
|
|
|
|
for k, v in parameters.items():
|
|
template = self.update_template_param(template, k, v)
|
|
|
|
result = {'changed': False}
|
|
|
|
try:
|
|
response = v1_processed_templates.create(body=template, namespace=namespace).to_dict()
|
|
except DynamicApiError as exc:
|
|
self.fail_json(msg="Server failed to render the Template: {0}".format(exc.body),
|
|
error=exc.status, status=exc.status, reason=exc.reason)
|
|
except Exception as exc:
|
|
self.module.fail_json(msg="Server failed to render the Template: {0}".format(to_native(exc)),
|
|
error='', status='', reason='')
|
|
result['message'] = ""
|
|
if "message" in response:
|
|
result['message'] = response['message']
|
|
result['resources'] = response['objects']
|
|
|
|
if state != 'rendered':
|
|
self.resource_definitions = response['objects']
|
|
self.kind = self.api_version = self.name = None
|
|
self.namespace = self.params.get('namespace_target')
|
|
self.append_hash = False
|
|
self.apply = False
|
|
self.params['validate'] = None
|
|
self.params['merge_type'] = None
|
|
super(OpenShiftProcess, self).execute_module()
|
|
|
|
self.module.exit_json(**result)
|
|
|
|
def update_template_param(self, template, k, v):
|
|
for i, param in enumerate(template['parameters']):
|
|
if param['name'] == k:
|
|
template['parameters'][i]['value'] = v
|
|
return template
|
|
return template
|
|
|
|
def parse_dotenv_and_merge(self, parameters, parameter_file):
|
|
path = os.path.normpath(parameter_file)
|
|
if not os.path.exists(path):
|
|
self.fail(msg="Error accessing {0}. Does the file exist?".format(path))
|
|
try:
|
|
with open(path, 'r') as f:
|
|
multiline = ''
|
|
for line in f.readlines():
|
|
line = line.strip()
|
|
if line.endswith('\\'):
|
|
multiline += ' '.join(line.rsplit('\\', 1))
|
|
continue
|
|
if multiline:
|
|
line = multiline + line
|
|
multiline = ''
|
|
match = DOTENV_PARSER.search(line)
|
|
if not match:
|
|
continue
|
|
match = match.groupdict()
|
|
if match.get('key'):
|
|
if match['key'] in parameters:
|
|
self.fail_json(msg="Duplicate value for '{0}' detected in parameter file".format(match['key']))
|
|
parameters[match['key']] = match['value']
|
|
except IOError as exc:
|
|
self.fail(msg="Error loading parameter file: {0}".format(exc))
|
|
return parameters
|
|
|
|
|
|
def main():
|
|
OpenShiftProcess().execute_module()
|
|
|
|
|
|
if __name__ == '__main__':
|
|
main()
|