Don't hardcode privilege escalation prompts if they're all of the same format.

Just create them all from supported privilege escalation types.
2026-01-20 22:18:01 -03:30 · 2017-07-25 12:06:40 -04:00 · 2017-07-25 12:06:40 -04:00 · 864d803273
commit 864d803273
parent a6f5686ef4
3 changed files with 18 additions and 38 deletions
--- a/awx/main/constants.py
+++ b/awx/main/constants.py
@ -1,5 +1,14 @@
 # Copyright (c) 2015 Ansible, Inc.
 # All Rights Reserved.

+from django.utils.translation import ugettext_lazy as _
+
 CLOUD_PROVIDERS = ('azure', 'azure_rm', 'ec2', 'gce', 'rax', 'vmware', 'openstack', 'satellite6', 'cloudforms')
 SCHEDULEABLE_PROVIDERS = CLOUD_PROVIDERS + ('custom', 'scm',)
+PRIVILEGE_ESCALATION_METHODS = [
+                ('sudo', _('Sudo')),
+                ('su', _('Su')),
+                ('pbrun', _('Pbrun')),
+                ('pfexec', _('Pfexec')),
+                ('dzdo', _('DZDO')),
+                ('pmrun', _('Pmrun'))]
--- a/awx/main/models/credential.py
+++ b/awx/main/models/credential.py
@ -19,6 +19,7 @@ from django.utils.encoding import force_text

 # AWX
 from awx.api.versioning import reverse
+from awx.main.constants import PRIVILEGE_ESCALATION_METHODS
 from awx.main.fields import (ImplicitRoleField, CredentialInputField,
                             CredentialTypeInputField,
                             CredentialTypeInjectorField)
@ -135,15 +136,7 @@ class V1Credential(object):
            max_length=32,
            blank=True,
            default='',
-            choices=[
-                ('', _('None')),
-                ('sudo', _('Sudo')),
-                ('su', _('Su')),
-                ('pbrun', _('Pbrun')),
-                ('pfexec', _('Pfexec')),
-                ('dzdo', _('DZDO')),
-                ('pmrun', _('Pmrun')),
-            ],
+            choices=[('', _('None'))] + PRIVILEGE_ESCALATION_METHODS,
            help_text=_('Privilege escalation method.')
        ),
        'become_username': models.CharField(
--- a/awx/main/tasks.py
+++ b/awx/main/tasks.py
@ -44,7 +44,7 @@ from django.core.exceptions import ObjectDoesNotExist

 # AWX
 from awx import __version__ as tower_application_version
-from awx.main.constants import CLOUD_PROVIDERS
+from awx.main.constants import CLOUD_PROVIDERS, PRIVILEGE_ESCALATION_METHODS
 from awx.main.models import * # noqa
 from awx.main.models.unified_jobs import ACTIVE_STATES
 from awx.main.queue import CallbackQueueDispatcher
@ -1115,20 +1115,9 @@ class RunJob(BaseTask):
        d = super(RunJob, self).get_password_prompts()
        d[re.compile(r'Enter passphrase for .*:\s*?$', re.M)] = 'ssh_key_unlock'
        d[re.compile(r'Bad passphrase, try again for .*:\s*?$', re.M)] = ''
-        d[re.compile(r'sudo password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'SUDO password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'su password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'SU password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'PBRUN password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'pbrun password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'PMRUN password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'pmrun password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'PFEXEC password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'pfexec password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'RUNAS password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'runas password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'DZDO password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'dzdo password.*:\s*?$', re.M)] = 'become_password'
+        for method in PRIVILEGE_ESCALATION_METHODS:
+            d[re.compile(r'%s password.*:\s*?$' % (method[0]), re.M)] = 'become_password'
+            d[re.compile(r'%s password.*:\s*?$' % (method[0].upper()), re.M)] = 'become_password'
        d[re.compile(r'SSH password:\s*?$', re.M)] = 'ssh_password'
        d[re.compile(r'Password:\s*?$', re.M)] = 'ssh_password'
        d[re.compile(r'Vault password:\s*?$', re.M)] = 'vault_password'
@ -2068,20 +2057,9 @@ class RunAdHocCommand(BaseTask):
        d = super(RunAdHocCommand, self).get_password_prompts()
        d[re.compile(r'Enter passphrase for .*:\s*?$', re.M)] = 'ssh_key_unlock'
        d[re.compile(r'Bad passphrase, try again for .*:\s*?$', re.M)] = ''
-        d[re.compile(r'sudo password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'SUDO password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'su password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'SU password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'PBRUN password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'pbrun password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'PMRUN password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'pmrun password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'PFEXEC password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'pfexec password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'RUNAS password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'runas password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'DZDO password.*:\s*?$', re.M)] = 'become_password'
-        d[re.compile(r'dzdo password.*:\s*?$', re.M)] = 'become_password'
+        for method in PRIVILEGE_ESCALATION_METHODS:
+            d[re.compile(r'%s password.*:\s*?$' % (method[0]), re.M)] = 'become_password'
+            d[re.compile(r'%s password.*:\s*?$' % (method[0].upper()), re.M)] = 'become_password'
        d[re.compile(r'SSH password:\s*?$', re.M)] = 'ssh_password'
        d[re.compile(r'Password:\s*?$', re.M)] = 'ssh_password'
        return d