onepassword* lookups: drop support for op v1 (#12061)

Drop support for op v1.

plugins/doc_fragments/_onepassword.py

@@ -11,6 +11,7 @@ from __future__ import annotations
 class ModuleDocFragment:
     DOCUMENTATION = r"""
 requirements:
+  - C(op) 1Password command line utility version 2 or later.
   - See U(https://support.1password.com/command-line/)
 options:
   master_password:
@@ -39,7 +40,6 @@ options:
   service_account_token:
     description:
       - The access key for a service account.
-      - Only works with 1Password CLI version 2 or later.
     type: str
   vault:
     description: Vault containing the item to retrieve (case-insensitive). If absent, searches all vaults.

plugins/lookup/onepassword.py

@@ -15,8 +15,6 @@ author:
 short_description: Fetch field values from 1Password
 description:
   - P(community.general.onepassword#lookup) wraps the C(op) command line utility to fetch specific field values from 1Password.
-requirements:
-  - C(op) 1Password command line utility
 options:
   _terms:
     description:
@@ -214,151 +212,6 @@ class OnePassCLIBase(metaclass=abc.ABCMeta):
         return to_text(b_out).strip()
 
 
-class OnePassCLIv1(OnePassCLIBase):
-    supports_version = "1"
-
-    def _parse_field(self, data_json, field_name, section_title):
-        """
-        Retrieves the desired field from the `op` response payload
-
-        When the item is a `password` type, the password is a key within the `details` key:
-
-        $ op get item 'test item' | jq
-        {
-          [...]
-          "templateUuid": "005",
-          "details": {
-            "notesPlain": "",
-            "password": "foobar",
-            "passwordHistory": [],
-            "sections": [
-              {
-                "name": "linked items",
-                "title": "Related Items"
-              }
-            ]
-          },
-          [...]
-        }
-
-        However, when the item is a `login` type, the password is within a fields array:
-
-        $ op get item 'test item' | jq
-        {
-          [...]
-          "details": {
-            "fields": [
-              {
-                "designation": "username",
-                "name": "username",
-                "type": "T",
-                "value": "foo"
-              },
-              {
-                "designation": "password",
-                "name": "password",
-                "type": "P",
-                "value": "bar"
-              }
-            ],
-            [...]
-          },
-          [...]
-        """
-        data = json.loads(data_json)
-        if section_title is None:
-            # https://github.com/ansible-collections/community.general/pull/1610:
-            # check the details dictionary for `field_name` and return it immediately if it exists
-            # when the entry is a "password" instead of a "login" item, the password field is a key
-            # in the `details` dictionary:
-            if field_name in data["details"]:
-                return data["details"][field_name]
-
-            # when the field is not found above, iterate through the fields list in the object details
-            for field_data in data["details"].get("fields", []):
-                if field_data.get("name", "").lower() == field_name.lower():
-                    return field_data.get("value", "")
-
-        for section_data in data["details"].get("sections", []):
-            if section_title is not None and section_title.lower() != section_data["title"].lower():
-                continue
-
-            for field_data in section_data.get("fields", []):
-                if field_data.get("t", "").lower() == field_name.lower():
-                    return field_data.get("v", "")
-
-        return ""
-
-    def assert_logged_in(self):
-        args = ["get", "account"]
-        if self.account_id:
-            args.extend(["--account", self.account_id])
-        elif self.subdomain:
-            account = f"{self.subdomain}.{self.domain}"
-            args.extend(["--account", account])
-
-        rc, out, err = self._run(args, ignore_errors=True)
-
-        return not bool(rc)
-
-    def full_signin(self):
-        if self.connect_host or self.connect_token:
-            raise AnsibleLookupError(
-                "1Password Connect is not available with 1Password CLI version 1. Please use version 2 or later."
-            )
-
-        if self.service_account_token:
-            raise AnsibleLookupError(
-                "1Password CLI version 1 does not support Service Accounts. Please use version 2 or later."
-            )
-
-        required_params = [
-            "subdomain",
-            "username",
-            "secret_key",
-            "master_password",
-        ]
-        self._check_required_params(required_params)
-
-        args = [
-            "signin",
-            f"{self.subdomain}.{self.domain}",
-            to_bytes(self.username),
-            to_bytes(self.secret_key),
-            "--raw",
-        ]
-
-        return self._run(args, command_input=to_bytes(self.master_password))
-
-    def get_raw(self, item_id, vault=None, token=None):
-        args = ["get", "item", item_id]
-
-        if self.account_id:
-            args.extend(["--account", self.account_id])
-
-        if vault is not None:
-            args += [f"--vault={vault}"]
-
-        if token is not None:
-            args += [to_bytes("--session=") + token]
-
-        return self._run(args)
-
-    def signin(self):
-        self._check_required_params(["master_password"])
-
-        args = ["signin", "--raw"]
-        if self.subdomain:
-            args.append(self.subdomain)
-
-        return self._run(args, command_input=to_bytes(self.master_password))
-
-    def get_secret_reference(self, reference):
-        raise AnsibleLookupError(
-            "Secret references are not supported in op v1. Upgrade to op v2 or use item names/UUIDs"
-        )
-
-
 class OnePassCLIv2(OnePassCLIBase):
     """
     CLIv2 Syntax Reference: https://developer.1password.com/docs/cli/upgrade#step-2-update-your-scripts

plugins/lookup/onepassword_doc.py

@@ -8,15 +8,12 @@ DOCUMENTATION = r"""
 name: onepassword_doc
 author:
   - Sam Doran (@samdoran)
-requirements:
-  - C(op) 1Password command line utility version 2 or later.
 short_description: Fetch documents stored in 1Password
 version_added: "8.1.0"
 description:
   - P(community.general.onepassword_doc#lookup) wraps C(op) command line utility to fetch one or more documents from 1Password.
 notes:
   - The document contents are a string exactly as stored in 1Password.
-  - This plugin requires C(op) version 2 or later.
 options:
   _terms:
     description: Identifier(s) (case-insensitive UUID or name) of item(s) to retrieve.

plugins/lookup/onepassword_raw.py

@@ -12,8 +12,6 @@ author:
   - Scott Buchanan (@scottsb)
   - Andrew Zenk (@azenk)
   - Sam Doran (@samdoran)
-requirements:
-  - C(op) 1Password command line utility
 short_description: Fetch an entire item from 1Password
 description:
   - P(community.general.onepassword_raw#lookup) wraps C(op) command line utility to fetch an entire item from 1Password.

plugins/lookup/onepassword_ssh_key.py

@@ -8,8 +8,6 @@ DOCUMENTATION = r"""
 name: onepassword_ssh_key
 author:
   - Mohammed Babelly (@mohammedbabelly20)
-requirements:
-  - C(op) 1Password command line utility version 2 or later.
 short_description: Fetch SSH keys stored in 1Password
 version_added: "10.3.0"
 description:
@@ -17,7 +15,6 @@ description:
 notes:
   - By default, it returns the private key value in PKCS#8 format, unless O(ssh_format=true) is passed.
   - The pluging works only for C(SSHKEY) type items.
-  - This plugin requires C(op) version 2 or later.
 options:
   _terms:
     description: Identifier(s) (case-insensitive UUID or name) of item(s) to retrieve.