Why Gemfury?
Push, build, and install
RubyGems
npm packages
Python packages
Maven artifacts
PHP packages
Go Modules
Debian packages
RPM packages
NuGet packages
duality-group / ansible python
Repository URL to install this package:
|
Version:
6.0.0 ▾
|
#!/usr/bin/python
# -*- coding: utf-8 -*-
#
# Copyright: (c) 2019, F5 Networks Inc.
# GNU General Public License v3.0 (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
from __future__ import absolute_import, division, print_function
__metaclass__ = type
DOCUMENTATION = r'''
---
module: bigip_monitor_ftp
short_description: Manage FTP monitors on a BIG-IP
description:
- Manage FTP monitors on a BIG-IP device.
version_added: "1.1.0"
options:
name:
description:
- Specifies the name of the monitor.
type: str
required: True
app_service:
description:
- The iApp service to be associated with this profile. When no service is
specified, the default is None.
type: str
parent:
description:
- The parent template of this monitor template. Once this value has
been set, it cannot be changed.
- When creating a new monitor, if this parameter is not specified, the default
is the system-supplied C(ftp) monitor.
type: str
description:
description:
- The description of the monitor.
type: str
debug:
description:
- Specifies whether the monitor sends error messages and additional information to a log file created and
labeled specifically for this monitor.
- "When C(yes) the system redirects error messages and additional information to the
C(/var/log/monitors/<monitor_name>-<node_name>-<port>.log) file."
type: bool
mode:
description:
- Specifies the data transfer process (DTP) mode.
- When C(passive), the monitor sends a data transfer request to the FTP server. When the FTP server receives the
request, the FTP server initiates and establishes the data connection.
- When C(port), the monitor initiates and establishes the data connection with the FTP server.
type: str
choices:
- passive
- port
filename:
description:
- Specifies the full path and file name of the file the system attempts to download. The health check
is successful if the system can download the file.
type: str
target_username:
description:
- Specifies the user name, if the monitored target requires authentication.
type: str
target_password:
description:
- Specifies the password, if the monitored target requires authentication.
type: str
ip:
description:
- IP address part of the IP/port definition. If this parameter is not
provided when creating a new monitor, the default value is '*'.
type: str
port:
description:
- Port address part of the IP/port definition. If this parameter is not
provided when creating a new monitor, the default value is '*'.
If specifying an IP address, you must use a value between 1 and 65535.
type: str
interval:
description:
- The interval specifying how frequently the monitor instance of this
template will run.
- This value B(must) be less than the C(timeout) value.
- When creating a new monitor, if this parameter is not provided, the
default C(5) will be used.
type: int
up_interval:
description:
- Specifies the interval at which the system performs the health check
when a resource is up.
- When C(0), specifies the system uses the interval specified in
C(interval) to check the health of the resource.
- When any other number, enables you to specify a different interval to
use when checking the health of a resource that is up.
- When creating a new monitor, if this parameter is not provided, the
default C(0) will be used.
type: int
timeout:
description:
- The number of seconds in which the node or service must respond to
the monitor request.
- If the target responds within the set time period, it is considered up.
- If the target does not respond within the set time period, it is considered down.
- You can change this to any number, however, it should be 3 times the
interval number of seconds plus 1 second.
- If this parameter is not provided when creating a new monitor, then the default
value will be C(31).
type: int
manual_resume:
description:
- Specifies whether the system automatically changes the status of a resource
to B(enabled) at the next successful monitor check.
- If you set this option to C(yes), you must manually re-enable the resource
before the system can use it for load balancing connections.
- When creating a new monitor, if this parameter is not specified, the default
value is C(no).
- When C(yes), specifies you must manually re-enable the resource after an
unsuccessful monitor check.
- When C(no), specifies the system automatically changes the status of a
resource to B(enabled) at the next successful monitor check.
type: bool
time_until_up:
description:
- Specifies the amount of time in seconds after the first successful
response before a node will be marked up.
- A value of C(0) will cause a node to be marked up immediately after a valid
response is received from the node.
- If this parameter is not provided when creating a new monitor, then the default
value will be C(0).
type: int
update_password:
description:
- C(always) will update passwords if the C(target_password) is specified.
- C(on_create) will only set the password for newly created monitors.
type: str
choices:
- always
- on_create
default: always
partition:
description:
- Device partition to manage resources on.
type: str
default: Common
state:
description:
- When C(present), ensures the monitor exists.
- When C(absent), ensures the monitor is removed.
type: str
choices:
- present
- absent
default: present
extends_documentation_fragment: f5networks.f5_modules.f5
author:
- Wojciech Wypior (@wojtek0806)
'''
EXAMPLES = r'''
- name: Create FTP Monitor
bigip_monitor_ftp:
state: present
ip: 10.10.10.10
name: my_ft_monitor
provider:
server: lb.mydomain.com
user: admin
password: secret
delegate_to: localhost
- name: Remove FTP Monitor
bigip_monitor_ftp:
state: absent
name: my_ftp_monitor
provider:
server: lb.mydomain.com
user: admin
password: secret
delegate_to: localhost
- name: Include a username and password in the FTP monitor
bigip_monitor_ftp:
state: absent
name: my_ftp_monitor
target_username: monitor_user
target_password: monitor_pass
provider:
server: lb.mydomain.com
user: admin
password: secret
delegate_to: localhost
'''
RETURN = r'''
app_service:
description: The iApp service associated with this monitor.
returned: changed
type: str
sample: /Common/good_service.app/good_service
parent:
description: The parent monitor.
returned: changed
type: str
sample: /Common/foo_ftp
description:
description: The description of the monitor.
returned: changed
type: str
sample: Important Monitor
debug:
description:
- Whether the monitor sends error messages and additional information to a log file created and
labeled specifically for this monitor.
returned: changed
type: bool
sample: no
mode:
description: Specifies the data transfer process (DTP) mode.
returned: changed
type: str
sample: passive
filename:
description: Specifies the full path and file name of the file the system attempts to download.
returned: changed
type: str
sample: /ftp/var/health.txt
ip:
description: The new IP of IP/port definition.
returned: changed
type: str
sample: 10.12.13.14
port:
description:
- Alias port or service for the monitor to check, on behalf of the pools or pool
members with which the monitor is associated.
returned: changed
type: str
sample: 80
interval:
description: The new interval at which to run the monitor check.
returned: changed
type: int
sample: 2
up_interval:
description: Interval for the system to use to perform the health check when a resource is up.
returned: changed
type: int
sample: 0
timeout:
description: The new timeout in which the remote system must respond to the monitor.
returned: changed
type: int
sample: 10
manual_resume:
description:
- Specifies whether the system automatically changes the status of a
resource to up at the next successful monitor check.
returned: changed
type: bool
sample: yes
time_until_up:
description: The new time in which to mark a system as up after first successful response.
returned: changed
type: int
sample: 2
'''
from datetime import datetime
from ansible.module_utils.basic import (
AnsibleModule, env_fallback
)
from ..module_utils.bigip import F5RestClient
from ..module_utils.common import (
F5ModuleError, AnsibleF5Parameters, transform_name, f5_argument_spec, flatten_boolean, fq_name
)
from ..module_utils.compare import cmp_str_with_none
from ..module_utils.ipaddress import is_valid_ip
from ..module_utils.icontrol import tmos_version
from ..module_utils.teem import send_teem
class Parameters(AnsibleF5Parameters):
api_map = {
'appService': 'app_service',
'defaultsFrom': 'parent',
'timeUntilUp': 'time_until_up',
'manualResume': 'manual_resume',
'upInterval': 'up_interval',
'username': 'target_username',
'password': 'target_password',
}
api_attributes = [
'defaultsFrom',
'description',
'debug',
'mode',
'filename',
'username',
'password',
'destination',
'interval',
'upInterval',
'timeout',
'manualResume',
'timeUntilUp',
]
returnables = [
'app_service',
'parent',
'description',
'debug',
'mode',
'filename',
'ip',
'port',
'interval',
'up_interval',
'timeout',
'manual_resume',
'time_until_up',
'target_username',
'destination',
]
updatables = [
'app_service',
'description',
'debug',
'mode',
'filename',
'target_username',
'target_password',
'ip',
'port',
'interval',
'up_interval',
'timeout',
'manual_resume',
'time_until_up',
'destination',
]
class ApiParameters(Parameters):
@property
def ip(self):
ip, port = self._values['destination'].split(':')
return ip
@property
def port(self):
ip, port = self._values['destination'].split(':')
try:
return int(port)
except ValueError:
return port
@property
def description(self):
if self._values['description'] in [None, 'none']:
return None
return self._values['description']
class ModuleParameters(Parameters):
@property
def description(self):
if self._values['description'] is None:
return None
elif self._values['description'] in ['none', '']:
return ''
return self._values['description']
@property
def parent(self):
if self._values['parent'] is None:
return None
result = fq_name(self.partition, self._values['parent'])
return result
@property
def interval(self):
if self._values['interval'] is None:
return None
if 1 > self._values['interval'] > 86400:
raise F5ModuleError(
"Interval value must be between 1 and 86400."
)
return self._values['interval']
@property
def timeout(self):
if self._values['timeout'] is None:
return None
if self._values['timeout'] is None:
return None
if 1 > self._values['timeout'] > 86400:
raise F5ModuleError(
"Timeout value must be between 1 and 86400."
)
return self._values['timeout']
@property
def ip(self):
if self._values['ip'] is None:
return None
if self._values['ip'] in ['*', '0.0.0.0']:
return '*'
elif is_valid_ip(self._values['ip']):
return self._values['ip']
else:
raise F5ModuleError(
"The provided 'ip' parameter is not an IP address."
)
@property
def port(self):
if self._values['port'] is None:
return None
elif self._values['port'] == '*':
return '*'
return int(self._values['port'])
@property
def destination(self):
if self.ip is None and self.port is None:
return None
destination = '{0}:{1}'.format(self.ip, self.port)
return destination
@destination.setter
def destination(self, value):
ip, port = value.split(':')
self._values['ip'] = ip
self._values['port'] = port
@property
def time_until_up(self):
if self._values['time_until_up'] is None:
return None
if self._values['time_until_up'] is None:
return None
if 0 > self._values['time_until_up'] > 86400:
raise F5ModuleError(
"Time_until_up value must be between 0 and 86400."
)
return self._values['time_until_up']
@property
def manual_resume(self):
result = flatten_boolean(self._values['manual_resume'])
if result == 'yes':
return 'enabled'
if result == 'no':
return 'disabled'
@property
def debug(self):
result = flatten_boolean(self._values['debug'])
if result == 'yes':
return 'enabled'
if result == 'no':
return 'disabled'
class Changes(Parameters):
def to_return(self):
result = {}
try:
for returnable in self.returnables:
result[returnable] = getattr(self, returnable)
result = self._filter_params(result)
except Exception:
raise
return result
class UsableChanges(Changes):
pass
class ReportableChanges(Changes):
@property
def debug(self):
return flatten_boolean(self._values['debug'])
@property
def manual_resume(self):
return flatten_boolean(self._values['manual_resume'])
class Difference(object):
def __init__(self, want, have=None):
self.want = want
self.have = have
def compare(self, param):
try:
result = getattr(self, param)
return result
except AttributeError:
return self.__default(param)
def __default(self, param):
attr1 = getattr(self.want, param)
try:
attr2 = getattr(self.have, param)
if attr1 != attr2:
return attr1
except AttributeError:
return attr1
@property
def destination(self):
if self.want.ip is None and self.want.port is None:
return None
if self.want.port is None:
self.want.update({'port': self.have.port})
if self.want.ip is None:
self.want.update({'ip': self.have.ip})
if self.want.port in [None, '*'] and self.want.ip != '*':
raise F5ModuleError(
"Specifying an IP address requires that a port number be specified."
)
if self.want.destination != self.have.destination:
return self.want.destination
@property
def target_password(self):
if self.want.target_password != self.have.target_password:
if self.want.update_password == 'always':
result = self.want.target_password
return result
@property
def description(self):
return cmp_str_with_none(self.want.description, self.have.description)
@property
def interval(self):
if self.want.timeout is not None and self.want.interval is not None:
if self.want.interval >= self.want.timeout:
raise F5ModuleError(
"Parameter 'interval' must be less than 'timeout'."
)
elif self.want.timeout is not None:
if self.have.interval >= self.want.timeout:
raise F5ModuleError(
"Parameter 'interval' must be less than 'timeout'."
)
elif self.want.interval is not None:
if self.want.interval >= self.have.timeout:
raise F5ModuleError(
"Parameter 'interval' must be less than 'timeout'."
)
if self.want.interval != self.have.interval:
return self.want.interval
class ModuleManager(object):
def __init__(self, *args, **kwargs):
self.module = kwargs.get('module', None)
self.client = F5RestClient(**self.module.params)
self.want = ModuleParameters(params=self.module.params)
self.have = ApiParameters()
self.changes = UsableChanges()
def _set_changed_options(self):
changed = {}
for key in Parameters.returnables:
if getattr(self.want, key) is not None:
changed[key] = getattr(self.want, key)
if changed:
self.changes = UsableChanges(params=changed)
def _update_changed_options(self):
diff = Difference(self.want, self.have)
updatables = Parameters.updatables
changed = dict()
for k in updatables:
change = diff.compare(k)
if change is None:
continue
else:
if isinstance(change, dict):
changed.update(change)
else:
changed[k] = change
if changed:
self.changes = UsableChanges(params=changed)
return True
return False
def _announce_deprecations(self, result):
warnings = result.pop('__warnings', [])
for warning in warnings:
self.client.module.deprecate(
msg=warning['msg'],
version=warning['version']
)
def exec_module(self):
start = datetime.now().isoformat()
version = tmos_version(self.client)
changed = False
result = dict()
state = self.want.state
if state == "present":
changed = self.present()
elif state == "absent":
changed = self.absent()
reportable = ReportableChanges(params=self.changes.to_return())
changes = reportable.to_return()
result.update(**changes)
result.update(dict(changed=changed))
self._announce_deprecations(result)
send_teem(start, self.client, self.module, version)
return result
def present(self):
if self.exists():
return self.update()
else:
return self.create()
def absent(self):
if self.exists():
return self.remove()
return False
def should_update(self):
result = self._update_changed_options()
if result:
return True
return False
def update(self):
self.have = self.read_current_from_device()
if not self.should_update():
return False
if self.module.check_mode:
return True
self.update_on_device()
return True
def remove(self):
if self.module.check_mode:
return True
self.remove_from_device()
if self.exists():
raise F5ModuleError("Failed to delete the resource.")
return True
def create(self):
self._set_changed_options()
if self.module.check_mode:
return True
self.create_on_device()
return True
def exists(self):
uri = "https://{0}:{1}/mgmt/tm/ltm/monitor/ftp/{2}".format(
self.client.provider['server'],
self.client.provider['server_port'],
transform_name(self.want.partition, self.want.name)
)
resp = self.client.api.get(uri)
try:
response = resp.json()
except ValueError as ex:
raise F5ModuleError(str(ex))
if resp.status == 404 or 'code' in response and response['code'] == 404:
return False
if resp.status in [200, 201] or 'code' in response and response['code'] in [200, 201]:
return True
errors = [401, 403, 409, 500, 501, 502, 503, 504]
if resp.status in errors or 'code' in response and response['code'] in errors:
if 'message' in response:
raise F5ModuleError(response['message'])
else:
raise F5ModuleError(resp.content)
def create_on_device(self):
params = self.changes.api_params()
params['name'] = self.want.name
params['partition'] = self.want.partition
uri = "https://{0}:{1}/mgmt/tm/ltm/monitor/ftp/".format(
self.client.provider['server'],
self.client.provider['server_port'],
)
resp = self.client.api.post(uri, json=params)
try:
response = resp.json()
except ValueError as ex:
raise F5ModuleError(str(ex))
if resp.status in [200, 201] or 'code' in response and response['code'] in [200, 201]:
return True
raise F5ModuleError(resp.content)
def update_on_device(self):
params = self.changes.api_params()
uri = "https://{0}:{1}/mgmt/tm/ltm/monitor/ftp/{2}".format(
self.client.provider['server'],
self.client.provider['server_port'],
transform_name(self.want.partition, self.want.name)
)
resp = self.client.api.patch(uri, json=params)
try:
response = resp.json()
except ValueError as ex:
raise F5ModuleError(str(ex))
if resp.status in [200, 201] or 'code' in response and response['code'] in [200, 201]:
return True
raise F5ModuleError(resp.content)
def remove_from_device(self):
uri = "https://{0}:{1}/mgmt/tm/ltm/monitor/ftp/{2}".format(
self.client.provider['server'],
self.client.provider['server_port'],
transform_name(self.want.partition, self.want.name)
)
response = self.client.api.delete(uri)
if response.status == 200:
return True
raise F5ModuleError(response.content)
def read_current_from_device(self):
uri = "https://{0}:{1}/mgmt/tm/ltm/monitor/ftp/{2}".format(
self.client.provider['server'],
self.client.provider['server_port'],
transform_name(self.want.partition, self.want.name)
)
resp = self.client.api.get(uri)
try:
response = resp.json()
except ValueError as ex:
raise F5ModuleError(str(ex))
if resp.status in [200, 201] or 'code' in response and response['code'] in [200, 201]:
return ApiParameters(params=response)
raise F5ModuleError(resp.content)
class ArgumentSpec(object):
def __init__(self):
self.supports_check_mode = True
argument_spec = dict(
name=dict(required=True),
app_service=dict(),
parent=dict(),
description=dict(),
debug=dict(type='bool'),
mode=dict(
choices=['passive', 'port']
),
filename=dict(),
target_username=dict(),
target_password=dict(no_log=True),
ip=dict(),
port=dict(),
interval=dict(type='int'),
up_interval=dict(type='int'),
timeout=dict(type='int'),
manual_resume=dict(type='bool'),
time_until_up=dict(type='int'),
update_password=dict(
default='always',
choices=['always', 'on_create'],
no_log=False
),
state=dict(
default='present',
choices=['present', 'absent']
),
partition=dict(
default='Common',
fallback=(env_fallback, ['F5_PARTITION'])
)
)
self.argument_spec = {}
self.argument_spec.update(f5_argument_spec)
self.argument_spec.update(argument_spec)
def main():
spec = ArgumentSpec()
module = AnsibleModule(
argument_spec=spec.argument_spec,
supports_check_mode=spec.supports_check_mode,
)
try:
mm = ModuleManager(module=module)
results = mm.exec_module()
module.exit_json(**results)
except F5ModuleError as ex:
module.fail_json(msg=str(ex))
if __name__ == '__main__':
main()