External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-05-19 14:57:39 -02:30
Code Issues Packages Projects Releases Wiki Activity

tower_credential: expect ssh_key_data to be a string instead of path (#45158)

Browse Source 
* expect ssh_key_data to be a string instead of path

ssh_key_data should be a string filled with the private key
the old behavior can be archived with a lookup

Fixes #45119

* clarifies ssh_key_data description, adds newline
This commit is contained in:
Meecr0b
2018-09-07 19:41:09 +02:00
committed by AlanCoding
parent 7b6dc13078
commit def043c383
1 changed files with 26 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

35
lib/ansible/modules/web_infrastructure/ansible_tower/tower_credential.py
View File

@@ -58,7 +58,8 @@ options:
- Password for this credential. Use ASK for prompting. secret_key for AWS. api_key for RAX. - Password for this credential. Use ASK for prompting. secret_key for AWS. api_key for RAX.
ssh_key_data: ssh_key_data:
description: description:
- Path to SSH private key. - SSH private key content. To extract the content from a file path, use the lookup function (see examples).
required: False
ssh_key_unlock: ssh_key_unlock:
description: description:
- Unlock password for ssh_key. Use ASK for prompting. - Unlock password for ssh_key. Use ASK for prompting.
@@ -123,6 +124,17 @@ EXAMPLES = '''
organization: test-org organization: test-org
state: present state: present
tower_config_file: "~/tower_cli.cfg" tower_config_file: "~/tower_cli.cfg"
- name: Create a valid SCM credential from a private_key file
tower_credential:
name: SCM Credential
organization: Default
state: present
kind: scm
username: joe
password: secret
ssh_key_data: "{{ lookup('file', '/tmp/id_rsa') }}"
ssh_key_unlock: "passphrase"
''' '''
import os import os
@@ -187,7 +199,7 @@ def main():
host=dict(), host=dict(),
username=dict(), username=dict(),
password=dict(no_log=True), password=dict(no_log=True),
ssh_key_data=dict(no_log=True, type='path'), ssh_key_data=dict(no_log=True, type='str'),
ssh_key_unlock=dict(no_log=True), ssh_key_unlock=dict(no_log=True),
authorize=dict(type='bool', default=False), authorize=dict(type='bool', default=False),
authorize_password=dict(no_log=True), authorize_password=dict(no_log=True),
@@ -254,13 +266,18 @@ def main():
params['team'] = team['id'] params['team'] = team['id']
if module.params.get('ssh_key_data'): if module.params.get('ssh_key_data'):
filename = module.params.get('ssh_key_data') data = module.params.get('ssh_key_data')
if not os.path.exists(filename): if os.path.exists(data):
module.fail_json(msg='file not found: %s' % filename) module.deprecate(
if os.path.isdir(filename): msg='ssh_key_data should be a string, not a path to a file. Use lookup(\'file\', \'/path/to/file\') instead',
module.fail_json(msg='attempted to read contents of directory: %s' % filename) version="2.12"
with open(filename, 'rb') as f: )
module.params['ssh_key_data'] = to_text(f.read()) if os.path.isdir(data):
module.fail_json(msg='attempted to read contents of directory: %s' % data)
with open(data, 'rb') as f:
module.params['ssh_key_data'] = to_text(f.read())
else:
module.params['ssh_key_data'] = data
for key in ('authorize', 'authorize_password', 'client', for key in ('authorize', 'authorize_password', 'client',
'security_token', 'secret', 'tenant', 'subscription', 'security_token', 'secret', 'tenant', 'subscription',