mirror of
https://github.com/ansible/awx.git
synced 2026-01-12 02:19:58 -03:30
12dcc10416
* Update subscription API to use service accounts Update code to pull subscriptions from console.redhat.com instead of subscription.rhsm.redhat.com Uses service account client ID and client secret instead of username/password, which is being deprecated in July 2025. Additional changes: - In awx.awx.subscriptions module, use new service account params rather than old basic auth params - Update awx.awx.license module to use subscription_id instead of pool_id. This is due to using a different API, which identifies unique subscriptions by subscriptionID instead of pool ID. Signed-off-by: Seth Foster <fosterbseth@gmail.com> Co-authored-by: Chris Meyers <chris.meyers.fsu@gmail.com> Co-authored-by: Peter Braun <pbraun@redhat.com> * fix token name Signed-off-by: Seth Foster <fosterbseth@gmail.com> * Fix Subscriptions credentials fallback Ensure service account authentication is being used when falling back to using SUBSCRIPTIONS_CLIENT_ID. Additional change: Subscription data can return two types of capacities: Sockets and Nodes For determining overall capacity if capacity name is Nodes: capacity quantity x subscription quantity if capacity name is Sockets: capacity quantity / 2 (minimum of 1) x subscription quantity Signed-off-by: Seth Foster <fosterbseth@gmail.com> --------- Signed-off-by: Seth Foster <fosterbseth@gmail.com> Co-authored-by: Chris Meyers <chris.meyers.fsu@gmail.com> Co-authored-by: Peter Braun <pbraun@redhat.com>
103 lines
3.3 KiB
Python
103 lines
3.3 KiB
Python
#!/usr/bin/python
|
|
# coding: utf-8 -*-
|
|
|
|
# (c) 2019, John Westcott IV <john.westcott.iv@redhat.com>
|
|
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
|
|
from __future__ import absolute_import, division, print_function
|
|
|
|
__metaclass__ = type
|
|
|
|
ANSIBLE_METADATA = {'metadata_version': '1.1', 'status': ['preview'], 'supported_by': 'community'}
|
|
|
|
|
|
DOCUMENTATION = '''
|
|
---
|
|
module: subscriptions
|
|
author: "John Westcott IV (@john-westcott-iv)"
|
|
short_description: Get subscription list
|
|
description:
|
|
- Get subscriptions available to Automation Platform Controller. See
|
|
U(https://www.ansible.com/tower) for an overview.
|
|
options:
|
|
client_id:
|
|
description:
|
|
- Red Hat service account client ID or Red Hat Satellite username to get available subscriptions.
|
|
- The credentials you use will be stored for future use in retrieving renewal or expanded subscriptions
|
|
required: True
|
|
type: str
|
|
client_secret:
|
|
description:
|
|
- Red Hat service account client secret or Red Hat Satellite password to get available subscriptions.
|
|
- The credentials you use will be stored for future use in retrieving renewal or expanded subscriptions
|
|
required: True
|
|
type: str
|
|
filters:
|
|
description:
|
|
- Client side filters to apply to the subscriptions.
|
|
- For any entries in this dict, if there is a corresponding entry in the subscription it must contain the value from this dict
|
|
- Note This is a client side search, not an API side search
|
|
required: False
|
|
type: dict
|
|
default: {}
|
|
extends_documentation_fragment: awx.awx.auth
|
|
'''
|
|
|
|
RETURN = '''
|
|
subscriptions:
|
|
description: dictionary containing information about the subscriptions
|
|
returned: If login succeeded
|
|
type: dict
|
|
'''
|
|
|
|
EXAMPLES = '''
|
|
- name: Get subscriptions
|
|
subscriptions:
|
|
client_id: "c6bd7594-d776-46e5-8156-6d17af147479"
|
|
client_secret: "MO9QUvoOZ5fc5JQKXoTch1AsTLI7nFsZ"
|
|
|
|
- name: Get subscriptions with a filter
|
|
subscriptions:
|
|
client_id: "c6bd7594-d776-46e5-8156-6d17af147479"
|
|
client_secret: "MO9QUvoOZ5fc5JQKXoTch1AsTLI7nFsZ"
|
|
filters:
|
|
product_name: "Red Hat Ansible Automation Platform"
|
|
support_level: "Self-Support"
|
|
'''
|
|
|
|
from ..module_utils.controller_api import ControllerAPIModule
|
|
|
|
|
|
def main():
|
|
|
|
module = ControllerAPIModule(
|
|
argument_spec=dict(
|
|
client_id=dict(type='str', required=True),
|
|
client_secret=dict(type='str', no_log=True, required=True),
|
|
filters=dict(type='dict', required=False, default={}),
|
|
),
|
|
)
|
|
|
|
json_output = {'changed': False}
|
|
|
|
# Check if Tower is already licensed
|
|
post_data = {
|
|
'subscriptions_client_secret': module.params.get('client_secret'),
|
|
'subscriptions_client_id': module.params.get('client_id'),
|
|
}
|
|
all_subscriptions = module.post_endpoint('config/subscriptions', data=post_data)['json']
|
|
json_output['subscriptions'] = []
|
|
for subscription in all_subscriptions:
|
|
add = True
|
|
for key in module.params.get('filters').keys():
|
|
if subscription.get(key, None) and module.params.get('filters')[key] not in subscription.get(key):
|
|
add = False
|
|
if add:
|
|
json_output['subscriptions'].append(subscription)
|
|
|
|
module.exit_json(**json_output)
|
|
|
|
|
|
if __name__ == '__main__':
|
|
main()
|