mirror of
https://github.com/ansible/awx.git
synced 2026-02-22 05:30:18 -03:30
Fix up request tower ps script
This commit is contained in:
Jordan Borean
100
tools/scripts/request_tower_configuration.ps1
Normal file → Executable file
100
tools/scripts/request_tower_configuration.ps1
Normal file → Executable file
@@ -1,4 +1,6 @@
|
|||||||
# Define parameters
|
#!/usr/bin/env pwsh
|
||||||
|
|
||||||
|
# Define parameters
|
||||||
[cmdletbinding()]
|
[cmdletbinding()]
|
||||||
Param(
|
Param(
|
||||||
[Alias("k")]
|
[Alias("k")]
|
||||||
@@ -21,8 +23,6 @@ Param(
|
|||||||
)
|
)
|
||||||
|
|
||||||
# Initialize variables
|
# Initialize variables
|
||||||
Set-StrictMode -Version 2
|
|
||||||
$ErrorActionPreference = "Stop"
|
|
||||||
$retry_attempts = 10
|
$retry_attempts = 10
|
||||||
$attempt = 0
|
$attempt = 0
|
||||||
$usage = @"
|
$usage = @"
|
||||||
@@ -54,46 +54,88 @@ If (-not $tower_url -or -not $host_config_key -or -not $job_template_id -or $hel
|
|||||||
}
|
}
|
||||||
|
|
||||||
# Create Invoke-WebRequest JSON data hash tables
|
# Create Invoke-WebRequest JSON data hash tables
|
||||||
If (-not $extra_vars) {
|
$data = @{
|
||||||
$data = @{
|
host_config_key = $host_config_key
|
||||||
host_config_key=$host_config_key
|
}
|
||||||
}
|
If ($extra_vars) {
|
||||||
} Else {
|
$data.extra_vars = $extra_vars
|
||||||
$data = @{
|
}
|
||||||
host_config_key=$host_config_key
|
|
||||||
extra_vars=$extra_vars
|
# Ensure TLS 1.2 is enabled (this isn't on by default on older .NET versions)
|
||||||
|
[Net.ServicePointManager]::SecurityProtocol = [Net.ServicePointManager]::SecurityProtocol -bor [Net.SecurityProtocolType]::Tls12
|
||||||
|
|
||||||
|
$invoke_params = @{
|
||||||
|
ContentType = 'application/json'
|
||||||
|
Method = 'POST'
|
||||||
|
Body = (ConvertTo-Json $data)
|
||||||
|
Uri = "$tower_url/api/v2/job_templates/$job_template_id/callback/"
|
||||||
|
UseBasicParsing = $true
|
||||||
|
}
|
||||||
|
|
||||||
|
$invoke_command = Get-Command -Name Invoke-WebRequest
|
||||||
|
$legacy_insecure = $insecure
|
||||||
|
If ('SkipCertificateCheck' -in $invoke_command.Parameters.Keys) {
|
||||||
|
$invoke_params.SkipCertificateCheck = $insecure
|
||||||
|
$legacy_insecure = $false
|
||||||
|
}
|
||||||
|
Else {
|
||||||
|
Add-Type -TypeDefinition @'
|
||||||
|
using System.Net;
|
||||||
|
using System.Security.Cryptography.X509Certificates;
|
||||||
|
|
||||||
|
public class TrustAllCertsPolicy : ICertificatePolicy {
|
||||||
|
public bool CheckValidationResult(ServicePoint srvPoint, X509Certificate certificate,
|
||||||
|
WebRequest request, int certificateProblem) {
|
||||||
|
return true;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
'@
|
||||||
|
}
|
||||||
|
$old_validation_policy = [System.Net.ServicePointManager]::CertificatePolicy
|
||||||
|
|
||||||
# Success on any 2xx status received, failure on only 404 status received, retry any other status every min for up to 10 min
|
# Success on any 2xx status received, failure on only 404 status received, retry any other status every min for up to 10 min
|
||||||
While ($attempt -lt $retry_attempts) {
|
While ($attempt -lt $retry_attempts) {
|
||||||
Try {
|
Try {
|
||||||
If ($insecure) {
|
If ($legacy_insecure) {
|
||||||
[System.Net.ServicePointManager]::ServerCertificateValidationCallback = {$true}
|
[System.Net.ServicePointManager]::CertificatePolicy = New-Object -TypeName TrustAllCertsPolicy
|
||||||
}
|
}
|
||||||
$resp = Invoke-WebRequest -ContentType application/json -Method POST -Body (ConvertTo-Json $data) -Uri $tower_url/api/v2/job_templates/$job_template_id/callback/
|
$null = Invoke-WebRequest @invoke_params
|
||||||
If ($resp.StatusCode -match '^2[0-9]+$') {
|
Exit 0
|
||||||
Exit 0
|
|
||||||
}
|
|
||||||
}
|
|
||||||
Catch [System.Security.Authentication.AuthenticationException] {
|
|
||||||
Write-Host $_
|
|
||||||
Exit 1
|
|
||||||
}
|
}
|
||||||
Catch {
|
Catch {
|
||||||
$ex = $_
|
$exp = $_.Exception
|
||||||
$attempt++
|
|
||||||
If ($([int]$ex.Exception.Response.StatusCode) -eq 404) {
|
# The StatusCode is only present on certain exception which differ across PowerShell versions.
|
||||||
Write-Host "$([int]$ex.Exception.Response.StatusCode) received... encountered problem, halting"
|
$status_code = If ($exp.GetType().FullName -in @(
|
||||||
|
'System.Net.WebException', # Windows PowerShell (<=5.1)
|
||||||
|
'Microsoft.PowerShell.Commands.HttpResponseException' # PowerShell (6+)
|
||||||
|
)) {
|
||||||
|
$exp.Response.StatusCode
|
||||||
|
}
|
||||||
|
|
||||||
|
# WinPS cert validation errors are a WebException but have no StatusCode so we need to check that explicitly.
|
||||||
|
If ($null -ne $status_code) {
|
||||||
|
$attempt++
|
||||||
|
|
||||||
|
$msg = "$([int]$status_code) ($status_code) received... "
|
||||||
|
|
||||||
|
If ([int]$status_code -eq 404) {
|
||||||
|
Write-Host "$msg encountered problem, halting"
|
||||||
|
Exit 1
|
||||||
|
}
|
||||||
|
|
||||||
|
Write-Host "$msg retrying in 1 minute (Attempt $attempt)"
|
||||||
|
}
|
||||||
|
Else {
|
||||||
|
Write-Host "Unknown error received... $($_.ToString()) ($($exp.GetType().FullName))"
|
||||||
Exit 1
|
Exit 1
|
||||||
}
|
}
|
||||||
Write-Host "$([int]$ex.Exception.Response.StatusCode) received... retrying in 1 minute (Attempt $attempt)"
|
|
||||||
}
|
}
|
||||||
Finally {
|
Finally {
|
||||||
If ($insecure) {
|
If ($legacy_insecure) {
|
||||||
$sp = [System.Net.ServicePointManager]::FindServicePoint($tower_url)
|
$sp = [System.Net.ServicePointManager]::FindServicePoint($invoke_params.Uri)
|
||||||
$sp.CloseConnectionGroup("") > $null
|
$sp.CloseConnectionGroup("") > $null
|
||||||
[System.Net.ServicePointManager]::ServerCertificateValidationCallback = $null
|
[System.Net.ServicePointManager]::CertificatePolicy = $old_validation_policy
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
Start-Sleep -Seconds 60
|
Start-Sleep -Seconds 60
|
||||||
|
|||||||
Reference in New Issue
Block a user