ansible/community.general
1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2026-02-04 07:51:50 +00:00
Code Activity
community.general/plugins/module_utils/source_control/bitbucket.py
Felix Fontein 236b9c0e04
Sort imports with ruff check --fix (#11400) 
Sort imports with ruff check --fix.
2026-01-09 07:40:58 +01:00

106 lines
3.5 KiB
Python
Raw Permalink Blame History

# Copyright (c) Ansible project
# Simplified BSD License (see LICENSES/BSD-2-Clause.txt or https://opensource.org/licenses/BSD-2-Clause)
# SPDX-License-Identifier: BSD-2-Clause
from __future__ import annotations
import json
import typing as t
from ansible.module_utils.basic import env_fallback
from ansible.module_utils.urls import basic_auth_header, fetch_url
if t.TYPE_CHECKING:
from ansible.module_utils.basic import AnsibleModule
class BitbucketHelper:
BITBUCKET_API_URL = "https://api.bitbucket.org"
def __init__(self, module: AnsibleModule) -> None:
self.module = module
self.access_token: str | None = None
@staticmethod
def bitbucket_argument_spec() -> dict[str, t.Any]:
return dict(
client_id=dict(type="str", fallback=(env_fallback, ["BITBUCKET_CLIENT_ID"])),
client_secret=dict(type="str", no_log=True, fallback=(env_fallback, ["BITBUCKET_CLIENT_SECRET"])),
# TODO:
# - Rename user to username once current usage of username is removed
# - Alias user to username and deprecate it
user=dict(type="str", aliases=["username"], fallback=(env_fallback, ["BITBUCKET_USERNAME"])),
password=dict(type="str", no_log=True, fallback=(env_fallback, ["BITBUCKET_PASSWORD"])),
)
@staticmethod
def bitbucket_required_one_of() -> list[list[str]]:
return [["client_id", "client_secret", "user", "password"]]
@staticmethod
def bitbucket_required_together() -> list[list[str]]:
return [["client_id", "client_secret"], ["user", "password"]]
def fetch_access_token(self) -> None:
if self.module.params["client_id"] and self.module.params["client_secret"]:
headers = {
"Authorization": basic_auth_header(
self.module.params["client_id"], self.module.params["client_secret"]
),
}
info, content = self.request(
api_url="https://bitbucket.org/site/oauth2/access_token",
method="POST",
data="grant_type=client_credentials",
headers=headers,
)
if info["status"] == 200:
self.access_token = content["access_token"]
else:
self.module.fail_json(msg=f"Failed to retrieve access token: {info}")
def request(
self, api_url: str, method: str, data: bytes | str | dict | None = None, headers: dict[str, str] | None = None
):
headers = headers or {}
if self.access_token:
headers.update(
{
"Authorization": f"Bearer {self.access_token}",
}
)
elif self.module.params["user"] and self.module.params["password"]:
headers.update(
{
"Authorization": basic_auth_header(self.module.params["user"], self.module.params["password"]),
}
)
if isinstance(data, dict):
data = self.module.jsonify(data)
headers.update(
{
"Content-type": "application/json",
}
)
response, info = fetch_url(
module=self.module,
url=api_url,
method=method,
headers=headers,
data=data,
force=True,
)
content = {}
if response is not None:
body = response.read()
if body:
content = json.loads(body)
return info, content
View git blame Copy permalink