External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-05-23 16:47:45 -02:30
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #6455 from AlanCoding/auth_errors

Browse Source 
Improve error handling related to authentication

Reviewed-by: https://github.com/apps/softwarefactory-project-zuul
This commit is contained in:
softwarefactory-project-zuul[bot]
2020-03-31 11:28:37 +00:00
committed by GitHub
parent 5eddcdd5f5 059e744774
commit 2264a98c04
2 changed files with 28 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
awx_collection/plugins/module_utils/tower_api.py
View File

@@ -316,13 +316,12 @@ class TowerModule(AnsibleModule):
elif kwargs.get('data'): elif kwargs.get('data'):
self.url = self.url._replace(query=urlencode(kwargs.get('data'))) self.url = self.url._replace(query=urlencode(kwargs.get('data')))
data = {} data = None # Important, if content type is not JSON, this should not be dict type
if headers.get('Content-Type', '') == 'application/json': if headers.get('Content-Type', '') == 'application/json':
data = dumps(kwargs.get('data', {})) data = dumps(kwargs.get('data', {}))
try: try:
response = self.session.open(method, self.url.geturl(), headers=headers, validate_certs=self.verify_ssl, follow_redirects=True, data=data) response = self.session.open(method, self.url.geturl(), headers=headers, validate_certs=self.verify_ssl, follow_redirects=True, data=data)
self.url = self.url._replace(query=None)
except(SSLValidationError) as ssl_err: except(SSLValidationError) as ssl_err:
self.fail_json(msg="Could not establish a secure connection to your host ({1}): {0}.".format(self.url.netloc, ssl_err)) self.fail_json(msg="Could not establish a secure connection to your host ({1}): {0}.".format(self.url.netloc, ssl_err))
except(ConnectionError) as con_err: except(ConnectionError) as con_err:
@@ -364,6 +363,8 @@ class TowerModule(AnsibleModule):
self.fail_json(msg="Unexpected return code when calling {0}: {1}".format(self.url.geturl(), he)) self.fail_json(msg="Unexpected return code when calling {0}: {1}".format(self.url.geturl(), he))
except(Exception) as e: except(Exception) as e:
self.fail_json(msg="There was an unknown error when trying to connect to {2}: {0} {1}".format(type(e).__name__, e, self.url.geturl())) self.fail_json(msg="There was an unknown error when trying to connect to {2}: {0} {1}".format(type(e).__name__, e, self.url.geturl()))
finally:
self.url = self.url._replace(query=None)
response_body = '' response_body = ''
try: try:
@@ -403,6 +404,12 @@ class TowerModule(AnsibleModule):
force_basic_auth=True, url_username=self.username, url_password=self.password, force_basic_auth=True, url_username=self.username, url_password=self.password,
data=dumps(login_data), headers={'Content-Type': 'application/json'} data=dumps(login_data), headers={'Content-Type': 'application/json'}
) )
except HTTPError as he:
try:
resp = he.read()
except Exception as e:
resp = 'unknown {0}'.format(e)
self.fail_json(msg='Failed to get token: {0}'.format(he), response=resp)
except(Exception) as e: except(Exception) as e:
# Sanity check: Did the server send back some kind of internal error? # Sanity check: Did the server send back some kind of internal error?
self.fail_json(msg='Failed to get token: {0}'.format(e)) self.fail_json(msg='Failed to get token: {0}'.format(e))
@@ -633,7 +640,12 @@ class TowerModule(AnsibleModule):
if self.oauth_token_id is not None and self.username and self.password: if self.oauth_token_id is not None and self.username and self.password:
# Attempt to delete our current token from /api/v2/tokens/ # Attempt to delete our current token from /api/v2/tokens/
# Post to the tokens endpoint with baisc auth to try and get a token # Post to the tokens endpoint with baisc auth to try and get a token
api_token_url = (self.url._replace(path='/api/v2/tokens/{0}/'.format(self.oauth_token_id))).geturl() api_token_url = (
self.url._replace(
path='/api/v2/tokens/{0}/'.format(self.oauth_token_id),
query=None # in error cases, fail_json exists before exception handling
)
).geturl()
try: try:
self.session.open( self.session.open(
@@ -647,6 +659,12 @@ class TowerModule(AnsibleModule):
) )
self.oauth_token_id = None self.oauth_token_id = None
self.authenticated = False self.authenticated = False
except HTTPError as he:
try:
resp = he.read()
except Exception as e:
resp = 'unknown {0}'.format(e)
self.warn('Failed to release tower token: {0}, response: {1}'.format(he, resp))
except(Exception) as e: except(Exception) as e:
# Sanity check: Did the server send back some kind of internal error? # Sanity check: Did the server send back some kind of internal error?
self.warn('Failed to release tower token {0}: {1}'.format(self.oauth_token_id, e)) self.warn('Failed to release tower token {0}: {1}'.format(self.oauth_token_id, e))

9
awx_collection/test/awx/conftest.py
View File

@@ -78,10 +78,15 @@ def run_module(request, collection_import):
def new_request(self, method, url, **kwargs): def new_request(self, method, url, **kwargs):
kwargs_copy = kwargs.copy() kwargs_copy = kwargs.copy()
if 'data' in kwargs: if 'data' in kwargs:
if not isinstance(kwargs['data'], dict): if isinstance(kwargs['data'], dict):
kwargs_copy['data'] = kwargs['data']
elif kwargs['data'] is None:
pass
elif isinstance(kwargs['data'], str):
kwargs_copy['data'] = json.loads(kwargs['data']) kwargs_copy['data'] = json.loads(kwargs['data'])
else: else:
kwargs_copy['data'] = kwargs['data'] raise RuntimeError('Expected data to be dict or str, got {0}, data: {1}'.format(
type(kwargs['data']), kwargs['data']))
if 'params' in kwargs and method == 'GET': if 'params' in kwargs and method == 'GET':
# query params for GET are handled a bit differently by # query params for GET are handled a bit differently by
# tower-cli and python requests as opposed to REST framework APIRequestFactory # tower-cli and python requests as opposed to REST framework APIRequestFactory