Why Gemfury?
Push, build, and install
RubyGems
npm packages
Python packages
Maven artifacts
PHP packages
Go Modules
Debian packages
RPM packages
NuGet packages
duality-group / ansible python
Repository URL to install this package:
|
Version:
6.0.0 ▾
|
#!/usr/bin/python
# Copyright: Ansible Project
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
from __future__ import absolute_import, division, print_function
__metaclass__ = type
DOCUMENTATION = '''
---
module: wafv2_web_acl_info
version_added: 1.5.0
author:
- "Markus Bergholz (@markuman)"
short_description: wafv2_web_acl
description:
- Info about web acl
options:
name:
description:
- The name of the web acl.
required: true
type: str
scope:
description:
- Scope of wafv2 web acl.
required: true
choices: ["CLOUDFRONT", "REGIONAL"]
type: str
extends_documentation_fragment:
- amazon.aws.aws
- amazon.aws.ec2
'''
EXAMPLES = '''
- name: get web acl
community.aws.wafv2_web_acl_info:
name: test05
scope: REGIONAL
register: out
'''
RETURN = """
arn:
description: web acl arn
sample: arn:aws:wafv2:eu-central-1:11111111:regional/webacl/test05/318c1ab9-fa74-4b3b-a974-f92e25106f61
type: str
returned: Always, as long as the web acl exists
description:
description: Description of the web acl
sample: Some web acl description
returned: Always, as long as the web acl exists
type: str
capacity:
description: Current capacity of the web acl
sample: 140
returned: Always, as long as the web acl exists
type: int
name:
description: Web acl name
sample: test02
returned: Always, as long as the web acl exists
type: str
rules:
description: Current rules of the web acl
returned: Always, as long as the web acl exists
type: list
sample:
- name: admin_protect
override_action:
none: {}
priority: 1
statement:
managed_rule_group_statement:
name: AWSManagedRulesAdminProtectionRuleSet
vendor_name: AWS
visibility_config:
cloud_watch_metrics_enabled: true
metric_name: admin_protect
sampled_requests_enabled: true
visibility_config:
description: Visibility config of the web acl
returned: Always, as long as the web acl exists
type: dict
sample:
cloud_watch_metrics_enabled: true
metric_name: blub
sampled_requests_enabled: false
"""
try:
from botocore.exceptions import ClientError, BotoCoreError
except ImportError:
pass # caught by AnsibleAWSModule
from ansible_collections.amazon.aws.plugins.module_utils.core import AnsibleAWSModule
from ansible_collections.amazon.aws.plugins.module_utils.ec2 import camel_dict_to_snake_dict
from ansible_collections.community.aws.plugins.module_utils.wafv2 import wafv2_list_web_acls
def get_web_acl(wafv2, name, scope, id, fail_json_aws):
try:
response = wafv2.get_web_acl(
Name=name,
Scope=scope,
Id=id
)
except (BotoCoreError, ClientError) as e:
fail_json_aws(e, msg="Failed to get wafv2 web acl.")
return response
def main():
arg_spec = dict(
name=dict(type='str', required=True),
scope=dict(type='str', required=True, choices=['CLOUDFRONT', 'REGIONAL'])
)
module = AnsibleAWSModule(
argument_spec=arg_spec,
supports_check_mode=True,
)
state = module.params.get("state")
name = module.params.get("name")
scope = module.params.get("scope")
wafv2 = module.client('wafv2')
# check if web acl exists
response = wafv2_list_web_acls(wafv2, scope, module.fail_json_aws)
id = None
retval = {}
for item in response.get('WebACLs'):
if item.get('Name') == name:
id = item.get('Id')
if id:
existing_acl = get_web_acl(wafv2, name, scope, id, module.fail_json_aws)
retval = camel_dict_to_snake_dict(existing_acl.get('WebACL'))
module.exit_json(**retval)
if __name__ == '__main__':
main()