move inv src vault cred validation from view to model

2026-05-02 23:25:29 -02:30 · 2018-08-20 08:53:45 -04:00
parent 0868f97335
commit 9a85578925
5 changed files with 124 additions and 10 deletions
--- a/awx/api/fields.py
+++ b/awx/api/fields.py
@@ -97,7 +97,7 @@ class DeprecatedCredentialField(serializers.IntegerField):
        kwargs['allow_null'] = True
        kwargs['default'] = None
        kwargs['min_value'] = 1
-        kwargs['help_text'] = 'This resource has been deprecated and will be removed in a future release'
+        kwargs.setdefault('help_text', 'This resource has been deprecated and will be removed in a future release')
        super(DeprecatedCredentialField, self).__init__(**kwargs)

    def to_internal_value(self, pk):
--- a/awx/api/serializers.py
+++ b/awx/api/serializers.py
@@ -1906,7 +1906,9 @@ class CustomInventoryScriptSerializer(BaseSerializer):


 class InventorySourceOptionsSerializer(BaseSerializer):
-    credential = DeprecatedCredentialField()
+    credential = DeprecatedCredentialField(
+        help_text=_('Cloud credential to use for inventory updates.')
+    )

    class Meta:
        fields = ('*', 'source', 'source_path', 'source_script', 'source_vars', 'credential',
--- a/awx/api/views.py
+++ b/awx/api/views.py
@@ -2883,17 +2883,14 @@ class InventorySourceCredentialsList(SubListAttachDetachAPIView):
    relationship = 'credentials'

    def is_valid_relation(self, parent, sub, created=False):
+        # Inventory source credentials are exclusive with all other credentials
+        # subject to change for https://github.com/ansible/awx/issues/277
+        # or https://github.com/ansible/awx/issues/223
+        if parent.credentials.exists():
+            return {'msg': _("Source already has credential assigned.")}
        error = InventorySource.cloud_credential_validation(parent.source, sub)
        if error:
            return {'msg': error}
-        if sub.credential_type == 'vault':
-            # TODO: support this
-            return {"msg": _("Vault credentials are not yet supported for inventory sources.")}
-        else:
-            # Cloud credentials are exclusive with all other cloud credentials
-            cloud_cred_qs = parent.credentials.exclude(credential_type__kind='vault')
-            if cloud_cred_qs.exists():
-                return {'msg': _("Source already has cloud credential assigned.")}
        return None