ansible/community.general
1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2026-04-25 13:12:46 +00:00
Code Activity

Reformat everything.

Browse source
This commit is contained in:
Felix Fontein 2025-11-01 12:08:41 +01:00
parent 3f2213791a
commit 340ff8586d
1008 changed files with 61301 additions and 58309 deletions
Download patch file Download diff file Expand all files Collapse all files

150
plugins/modules/ipa_pwpolicy.py
View file

@ -162,7 +162,8 @@ from ansible.module_utils.common.text.converters import to_native
class PwPolicyIPAClient(IPAClient):
'''The global policy will be selected when `name` is `None`'''
"""The global policy will be selected when `name` is `None`"""
def __init__(self, module, host, port, protocol):
super().__init__(module, host, port, protocol)
@ -170,41 +171,54 @@ class PwPolicyIPAClient(IPAClient):
if name is None:
# Manually set the cn to the global policy because pwpolicy_find will return a random
# different policy if cn is `None`
name = 'global_policy'
return self._post_json(method='pwpolicy_find', name=None, item={'all': True, 'cn': name})
name = "global_policy"
return self._post_json(method="pwpolicy_find", name=None, item={"all": True, "cn": name})
def pwpolicy_add(self, name, item):
return self._post_json(method='pwpolicy_add', name=name, item=item)
return self._post_json(method="pwpolicy_add", name=name, item=item)
def pwpolicy_mod(self, name, item):
return self._post_json(method='pwpolicy_mod', name=name, item=item)
return self._post_json(method="pwpolicy_mod", name=name, item=item)
def pwpolicy_del(self, name):
return self._post_json(method='pwpolicy_del', name=name)
return self._post_json(method="pwpolicy_del", name=name)
def get_pwpolicy_dict(maxpwdlife=None, minpwdlife=None, historylength=None, minclasses=None,
minlength=None, priority=None, maxfailcount=None, failinterval=None,
lockouttime=None, gracelimit=None, maxrepeat=None, maxsequence=None, dictcheck=None, usercheck=None):
def get_pwpolicy_dict(
maxpwdlife=None,
minpwdlife=None,
historylength=None,
minclasses=None,
minlength=None,
priority=None,
maxfailcount=None,
failinterval=None,
lockouttime=None,
gracelimit=None,
maxrepeat=None,
maxsequence=None,
dictcheck=None,
usercheck=None,
):
pwpolicy = {}
pwpolicy_options = {
'krbmaxpwdlife': maxpwdlife,
'krbminpwdlife': minpwdlife,
'krbpwdhistorylength': historylength,
'krbpwdmindiffchars': minclasses,
'krbpwdminlength': minlength,
'cospriority': priority,
'krbpwdmaxfailure': maxfailcount,
'krbpwdfailurecountinterval': failinterval,
'krbpwdlockoutduration': lockouttime,
'passwordgracelimit': gracelimit,
'ipapwdmaxrepeat': maxrepeat,
'ipapwdmaxsequence': maxsequence,
"krbmaxpwdlife": maxpwdlife,
"krbminpwdlife": minpwdlife,
"krbpwdhistorylength": historylength,
"krbpwdmindiffchars": minclasses,
"krbpwdminlength": minlength,
"cospriority": priority,
"krbpwdmaxfailure": maxfailcount,
"krbpwdfailurecountinterval": failinterval,
"krbpwdlockoutduration": lockouttime,
"passwordgracelimit": gracelimit,
"ipapwdmaxrepeat": maxrepeat,
"ipapwdmaxsequence": maxsequence,
}
pwpolicy_boolean_options = {
'ipapwddictcheck': dictcheck,
'ipapwdusercheck': usercheck,
"ipapwddictcheck": dictcheck,
"ipapwdusercheck": usercheck,
}
for option, value in pwpolicy_options.items():
@ -223,29 +237,30 @@ def get_pwpolicy_diff(client, ipa_pwpolicy, module_pwpolicy):
def ensure(module, client):
state = module.params['state']
name = module.params['group']
state = module.params["state"]
name = module.params["group"]
module_pwpolicy = get_pwpolicy_dict(maxpwdlife=module.params.get('maxpwdlife'),
minpwdlife=module.params.get('minpwdlife'),
historylength=module.params.get('historylength'),
minclasses=module.params.get('minclasses'),
minlength=module.params.get('minlength'),
priority=module.params.get('priority'),
maxfailcount=module.params.get('maxfailcount'),
failinterval=module.params.get('failinterval'),
lockouttime=module.params.get('lockouttime'),
gracelimit=module.params.get('gracelimit'),
maxrepeat=module.params.get('maxrepeat'),
maxsequence=module.params.get('maxsequence'),
dictcheck=module.params.get('dictcheck'),
usercheck=module.params.get('usercheck'),
)
module_pwpolicy = get_pwpolicy_dict(
maxpwdlife=module.params.get("maxpwdlife"),
minpwdlife=module.params.get("minpwdlife"),
historylength=module.params.get("historylength"),
minclasses=module.params.get("minclasses"),
minlength=module.params.get("minlength"),
priority=module.params.get("priority"),
maxfailcount=module.params.get("maxfailcount"),
failinterval=module.params.get("failinterval"),
lockouttime=module.params.get("lockouttime"),
gracelimit=module.params.get("gracelimit"),
maxrepeat=module.params.get("maxrepeat"),
maxsequence=module.params.get("maxsequence"),
dictcheck=module.params.get("dictcheck"),
usercheck=module.params.get("usercheck"),
)
ipa_pwpolicy = client.pwpolicy_find(name=name)
changed = False
if state == 'present':
if state == "present":
if not ipa_pwpolicy:
changed = True
if not module.check_mode:
@ -267,35 +282,36 @@ def ensure(module, client):
def main():
argument_spec = ipa_argument_spec()
argument_spec.update(group=dict(type='str', aliases=['name']),
state=dict(type='str', default='present', choices=['present', 'absent']),
maxpwdlife=dict(type='str'),
minpwdlife=dict(type='str'),
historylength=dict(type='str'),
minclasses=dict(type='str'),
minlength=dict(type='str'),
priority=dict(type='str'),
maxfailcount=dict(type='str'),
failinterval=dict(type='str'),
lockouttime=dict(type='str'),
gracelimit=dict(type='int'),
maxrepeat=dict(type='int'),
maxsequence=dict(type='int'),
dictcheck=dict(type='bool'),
usercheck=dict(type='bool'),
)
argument_spec.update(
group=dict(type="str", aliases=["name"]),
state=dict(type="str", default="present", choices=["present", "absent"]),
maxpwdlife=dict(type="str"),
minpwdlife=dict(type="str"),
historylength=dict(type="str"),
minclasses=dict(type="str"),
minlength=dict(type="str"),
priority=dict(type="str"),
maxfailcount=dict(type="str"),
failinterval=dict(type="str"),
lockouttime=dict(type="str"),
gracelimit=dict(type="int"),
maxrepeat=dict(type="int"),
maxsequence=dict(type="int"),
dictcheck=dict(type="bool"),
usercheck=dict(type="bool"),
)
module = AnsibleModule(argument_spec=argument_spec,
supports_check_mode=True)
module = AnsibleModule(argument_spec=argument_spec, supports_check_mode=True)
client = PwPolicyIPAClient(module=module,
host=module.params['ipa_host'],
port=module.params['ipa_port'],
protocol=module.params['ipa_prot'])
client = PwPolicyIPAClient(
module=module,
host=module.params["ipa_host"],
port=module.params["ipa_port"],
protocol=module.params["ipa_prot"],
)
try:
client.login(username=module.params['ipa_user'],
password=module.params['ipa_pass'])
client.login(username=module.params["ipa_user"], password=module.params["ipa_pass"])
changed, pwpolicy = ensure(module, client)
except Exception as e:
module.fail_json(msg=to_native(e), exception=traceback.format_exc())
@ -303,5 +319,5 @@ def main():
module.exit_json(changed=changed, pwpolicy=pwpolicy)
if __name__ == '__main__':
if __name__ == "__main__":
main()