summaryrefslogtreecommitdiffstats
path: root/ansible_collections/openstack/cloud/plugins/modules/server.py
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-18 05:52:22 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-18 05:52:22 +0000
commit38b7c80217c4e72b1d8988eb1e60bb6e77334114 (patch)
tree356e9fd3762877d07cde52d21e77070aeff7e789 /ansible_collections/openstack/cloud/plugins/modules/server.py
parentAdding upstream version 7.7.0+dfsg. (diff)
downloadansible-38b7c80217c4e72b1d8988eb1e60bb6e77334114.tar.xz
ansible-38b7c80217c4e72b1d8988eb1e60bb6e77334114.zip
Adding upstream version 9.4.0+dfsg.upstream/9.4.0+dfsg
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'ansible_collections/openstack/cloud/plugins/modules/server.py')
-rw-r--r--ansible_collections/openstack/cloud/plugins/modules/server.py1382
1 files changed, 914 insertions, 468 deletions
diff --git a/ansible_collections/openstack/cloud/plugins/modules/server.py b/ansible_collections/openstack/cloud/plugins/modules/server.py
index a3ca7d051..d71799023 100644
--- a/ansible_collections/openstack/cloud/plugins/modules/server.py
+++ b/ansible_collections/openstack/cloud/plugins/modules/server.py
@@ -1,5 +1,5 @@
#!/usr/bin/python
-# coding: utf-8 -*-
+# -*- coding: utf-8 -*-
# Copyright 2019 Red Hat, Inc.
# Copyright (c) 2014 Hewlett-Packard Development Company, L.P.
@@ -15,194 +15,238 @@ author: OpenStack Ansible SIG
description:
- Create or Remove compute instances from OpenStack.
options:
- name:
- description:
- - Name that has to be given to the instance. It is also possible to
- specify the ID of the instance instead of its name if I(state) is I(absent).
- required: true
- type: str
- image:
- description:
- - The name or id of the base image to boot.
- - Required when I(boot_from_volume=true)
- type: str
- image_exclude:
- description:
- - Text to use to filter image names, for the case, such as HP, where
- there are multiple image names matching the common identifying
- portions. image_exclude is a negative match filter - it is text that
- may not exist in the image name.
- type: str
- default: "(deprecated)"
- flavor:
- description:
+ auto_ip:
+ description:
+ - Ensure instance has public ip however the cloud wants to do that.
+ - For example, the cloud could add a floating ip for the server or
+ attach the server to a public network.
+ - Requires I(wait) to be C(True) during server creation.
+ - Floating IP support is unstable in this module, use with caution.
+ - Options I(auto_ip), I(floating_ip_pools) and I(floating_ips) interact
+ in non-obvious ways and undocumentable depth. For explicit and safe
+ attaching and detaching of floating ip addresses use module
+ I(openstack.cloud.resource) instead.
+ type: bool
+ default: 'true'
+ aliases: ['auto_floating_ip', 'public_ip']
+ availability_zone:
+ description:
+ - Availability zone in which to create the server.
+ - This server attribute cannot be updated.
+ type: str
+ boot_from_volume:
+ description:
+ - Should the instance boot from a persistent volume created based on
+ the image given. Mutually exclusive with boot_volume.
+ - This server attribute cannot be updated.
+ type: bool
+ default: 'false'
+ boot_volume:
+ description:
+ - Volume name or id to use as the volume to boot from. Implies
+ boot_from_volume. Mutually exclusive with image and boot_from_volume.
+ - This server attribute cannot be updated.
+ aliases: ['root_volume']
+ type: str
+ config_drive:
+ description:
+ - Whether to boot the server with config drive enabled.
+ - This server attribute cannot be updated.
+ type: bool
+ default: 'false'
+ delete_ips:
+ description:
+ - When I(state) is C(absent) and this option is true, any floating IP
+ address associated with this server will be deleted along with it.
+ - Floating IP support is unstable in this module, use with caution.
+ type: bool
+ aliases: ['delete_fip']
+ default: 'false'
+ description:
+ description:
+ - Description of the server.
+ type: str
+ flavor:
+ description:
- The name or id of the flavor in which the new instance has to be
created.
- Exactly one of I(flavor) and I(flavor_ram) must be defined when
I(state=present).
- type: str
- flavor_ram:
- description:
- - The minimum amount of ram in MB that the flavor in which the new
- instance has to be created must have.
- - Exactly one of I(flavor) and I(flavor_ram) must be defined when
- I(state=present).
- type: int
- flavor_include:
- description:
+ - This server attribute cannot be updated.
+ type: str
+ flavor_include:
+ description:
- Text to use to filter flavor names, for the case, such as Rackspace,
where there are multiple flavors that have the same ram count.
flavor_include is a positive match filter - it must exist in the
flavor name.
- type: str
- key_name:
- description:
- - The key pair name to be used when creating a instance
- type: str
- security_groups:
- description:
- - Names of the security groups to which the instance should be
- added. This may be a YAML list or a comma separated string.
- type: list
- default: ['default']
- elements: str
- network:
- description:
+ - This server attribute cannot be updated.
+ type: str
+ flavor_ram:
+ description:
+ - The minimum amount of ram in MB that the flavor in which the new
+ instance has to be created must have.
+ - Exactly one of I(flavor) and I(flavor_ram) must be defined when
+ I(state=present).
+ - This server attribute cannot be updated.
+ type: int
+ floating_ip_pools:
+ description:
+ - Name of floating IP pool from which to choose a floating IP.
+ - Requires I(wait) to be C(True) during server creation.
+ - Floating IP support is unstable in this module, use with caution.
+ - Options I(auto_ip), I(floating_ip_pools) and I(floating_ips) interact
+ in non-obvious ways and undocumentable depth. For explicit and safe
+ attaching and detaching of floating ip addresses use module
+ I(openstack.cloud.resource) instead.
+ type: list
+ elements: str
+ floating_ips:
+ description:
+ - list of valid floating IPs that pre-exist to assign to this node.
+ - Requires I(wait) to be C(True) during server creation.
+ - Floating IP support is unstable in this module, use with caution.
+ - Options I(auto_ip), I(floating_ip_pools) and I(floating_ips) interact
+ in non-obvious ways and undocumentable depth. For explicit and safe
+ attaching and detaching of floating ip addresses use module
+ I(openstack.cloud.resource) instead.
+ type: list
+ elements: str
+ image:
+ description:
+ - The name or id of the base image to boot.
+ - Required when I(boot_from_volume=true).
+ - This server attribute cannot be updated.
+ type: str
+ image_exclude:
+ description:
+ - Text to use to filter image names, for the case, such as HP, where
+ there are multiple image names matching the common identifying
+ portions. image_exclude is a negative match filter - it is text that
+ may not exist in the image name.
+ - This server attribute cannot be updated.
+ type: str
+ default: "(deprecated)"
+ key_name:
+ description:
+ - The key pair name to be used when creating a instance.
+ - This server attribute cannot be updated.
+ type: str
+ metadata:
+ description:
+ - 'A list of key value pairs that should be provided as a metadata to
+ the new instance or a string containing a list of key-value pairs.
+ Example: metadata: "key1=value1,key2=value2"'
+ aliases: ['meta']
+ type: raw
+ name:
+ description:
+ - Name that has to be given to the instance. It is also possible to
+ specify the ID of the instance instead of its name if I(state) is
+ I(absent).
+ - This server attribute cannot be updated.
+ required: true
+ type: str
+ network:
+ description:
- Name or ID of a network to attach this instance to. A simpler
- version of the nics parameter, only one of network or nics should
- be supplied.
- type: str
- nics:
- description:
+ version of the I(nics) parameter, only one of I(network) or I(nics)
+ should be supplied.
+ - This server attribute cannot be updated.
+ type: str
+ nics:
+ description:
- A list of networks to which the instance's interface should
be attached. Networks may be referenced by net-id/net-name/port-id
or port-name.
- 'Also this accepts a string containing a list of (net/port)-(id/name)
- Eg: nics: "net-id=uuid-1,port-name=myport"
- Only one of network or nics should be supplied.'
- type: list
- elements: raw
- suboptions:
- tag:
- description:
- - 'A "tag" for the specific port to be passed via metadata.
- Eg: tag: test_tag'
- auto_ip:
- description:
- - Ensure instance has public ip however the cloud wants to do that
- type: bool
- default: 'yes'
- aliases: ['auto_floating_ip', 'public_ip']
- floating_ips:
- description:
- - list of valid floating IPs that pre-exist to assign to this node
- type: list
- elements: str
- floating_ip_pools:
- description:
- - Name of floating IP pool from which to choose a floating IP
- type: list
- elements: str
- meta:
- description:
- - 'A list of key value pairs that should be provided as a metadata to
- the new instance or a string containing a list of key-value pairs.
- Eg: meta: "key1=value1,key2=value2"'
- type: raw
- wait:
- description:
- - If the module should wait for the instance to be created.
- type: bool
- default: 'yes'
- timeout:
- description:
+ Example: C(nics: "net-id=uuid-1,port-name=myport")'
+ - Only one of I(network) or I(nics) should be supplied.
+ - This server attribute cannot be updated.
+ type: list
+ elements: raw
+ default: []
+ suboptions:
+ tag:
+ description:
+ - 'A I(tag) for the specific port to be passed via metadata.
+ Eg: C(tag: test_tag)'
+ reuse_ips:
+ description:
+ - When I(auto_ip) is true and this option is true, the I(auto_ip) code
+ will attempt to re-use unassigned floating ips in the project before
+ creating a new one. It is important to note that it is impossible
+ to safely do this concurrently, so if your use case involves
+ concurrent server creation, it is highly recommended to set this to
+ false and to delete the floating ip associated with a server when
+ the server is deleted using I(delete_ips).
+ - Floating IP support is unstable in this module, use with caution.
+ - This server attribute cannot be updated.
+ type: bool
+ default: 'true'
+ scheduler_hints:
+ description:
+ - Arbitrary key/value pairs to the scheduler for custom use.
+ - This server attribute cannot be updated.
+ type: dict
+ security_groups:
+ description:
+ - Names or IDs of the security groups to which the instance should be
+ added.
+ - On server creation, if I(security_groups) is omitted, the API creates
+ the server in the default security group.
+ - Requested security groups are not applied to pre-existing ports.
+ type: list
+ elements: str
+ default: []
+ state:
+ description:
+ - Should the resource be C(present) or C(absent).
+ choices: [present, absent]
+ default: present
+ type: str
+ terminate_volume:
+ description:
+ - If C(true), delete volume when deleting the instance and if it has
+ been booted from volume(s).
+ - This server attribute cannot be updated.
+ type: bool
+ default: 'false'
+ timeout:
+ description:
- The amount of time the module should wait for the instance to get
into active state.
- default: 180
- type: int
- config_drive:
- description:
- - Whether to boot the server with config drive enabled
- type: bool
- default: 'no'
- userdata:
- description:
- - Opaque blob of data which is made available to the instance
- type: str
- aliases: ['user_data']
- boot_from_volume:
- description:
- - Should the instance boot from a persistent volume created based on
- the image given. Mutually exclusive with boot_volume.
- type: bool
- default: 'no'
- volume_size:
- description:
+ default: 180
+ type: int
+ userdata:
+ description:
+ - Opaque blob of data which is made available to the instance.
+ - This server attribute cannot be updated.
+ type: str
+ volume_size:
+ description:
- The size of the volume to create in GB if booting from volume based
on an image.
- type: int
- boot_volume:
- description:
- - Volume name or id to use as the volume to boot from. Implies
- boot_from_volume. Mutually exclusive with image and boot_from_volume.
- aliases: ['root_volume']
- type: str
- terminate_volume:
- description:
- - If C(yes), delete volume when deleting instance (if booted from volume)
- type: bool
- default: 'no'
- volumes:
- description:
- - A list of preexisting volumes names or ids to attach to the instance
- default: []
- type: list
- elements: str
- scheduler_hints:
- description:
- - Arbitrary key/value pairs to the scheduler for custom use
- type: dict
- state:
- description:
- - Should the resource be present or absent.
- choices: [present, absent]
- default: present
- type: str
- delete_fip:
- description:
- - When I(state) is absent and this option is true, any floating IP
- associated with the instance will be deleted along with the instance.
- type: bool
- default: 'no'
- reuse_ips:
- description:
- - When I(auto_ip) is true and this option is true, the I(auto_ip) code
- will attempt to re-use unassigned floating ips in the project before
- creating a new one. It is important to note that it is impossible
- to safely do this concurrently, so if your use case involves
- concurrent server creation, it is highly recommended to set this to
- false and to delete the floating ip associated with a server when
- the server is deleted using I(delete_fip).
- type: bool
- default: 'yes'
- availability_zone:
- description:
- - Availability zone in which to create the server.
- type: str
- description:
- description:
- - Description of the server.
- type: str
-requirements:
- - "python >= 3.6"
- - "openstacksdk"
-
+ - This server attribute cannot be updated.
+ type: int
+ volumes:
+ description:
+ - A list of preexisting volumes names or ids to attach to the instance
+ - This server attribute cannot be updated.
+ default: []
+ type: list
+ elements: str
+ wait:
+ description:
+ - If the module should wait for the instance to be created.
+ type: bool
+ default: 'true'
extends_documentation_fragment:
- openstack.cloud.openstack
'''
EXAMPLES = '''
-- name: Create a new instance and attaches to a network and passes metadata to the instance
+- name: Create a new instance with metadata and attaches it to a network
openstack.cloud.server:
state: present
auth:
@@ -242,8 +286,9 @@ EXAMPLES = '''
key_name: test
timeout: 200
flavor: 101
- security_groups: default
- auto_ip: yes
+ security_groups:
+ - default
+ auto_ip: true
# Create a new instance in named cloud mordred availability zone az2
# and assigns a pre-known floating IP
@@ -307,9 +352,11 @@ EXAMPLES = '''
key_name: ansible_key
timeout: 200
flavor: 4
- nics: "net-id=4cb08b20-62fe-11e5-9d70-feff819cdc9f,net-id=542f0430-62fe-11e5-9d70-feff819cdc9f..."
+ nics: >-
+ net-id=4cb08b20-62fe-11e5-9d70-feff819cdc9f,
+ net-id=542f0430-62fe-11e5-9d70-feff819cdc9f
-- name: Creates a new instance and attaches to a network and passes metadata to the instance
+- name: Creates a new instance with metadata and attaches it to a network
openstack.cloud.server:
state: present
auth:
@@ -402,15 +449,13 @@ EXAMPLES = '''
openstack.cloud.server:
name: vm1
state: present
- image: "Ubuntu Server 14.04"
+ image: "Ubuntu Server 22.04"
flavor: "P-1"
network: "Production"
userdata: |
- {%- raw -%}#!/bin/bash
- echo " up ip route add 10.0.0.0/8 via {% endraw -%}{{ intra_router }}{%- raw -%}" >> /etc/network/interfaces.d/eth0.conf
- echo " down ip route del 10.0.0.0/8" >> /etc/network/interfaces.d/eth0.conf
- ifdown eth0 && ifup eth0
- {% endraw %}
+ #!/bin/sh
+ apt update
+ apt -y full-upgrade
# Create a new instance with server group for (anti-)affinity
# server group ID is returned from openstack.cloud.server_group module.
@@ -455,67 +500,340 @@ EXAMPLES = '''
'''
-from ansible_collections.openstack.cloud.plugins.module_utils.openstack import (
- openstack_find_nova_addresses, OpenStackModule)
-
-
-def _parse_nics(nics):
- for net in nics:
- if isinstance(net, str):
- for nic in net.split(','):
- yield dict((nic.split('='),))
- else:
- yield net
-
-
-def _parse_meta(meta):
- if isinstance(meta, str):
- metas = {}
- for kv_str in meta.split(","):
- k, v = kv_str.split("=")
- metas[k] = v
- return metas
- if not meta:
- return {}
- return meta
+RETURN = '''
+server:
+ description: Dictionary describing the server.
+ type: dict
+ returned: On success when I(state) is 'present'.
+ contains:
+ access_ipv4:
+ description: |
+ IPv4 address that should be used to access this server.
+ May be automatically set by the provider.
+ returned: success
+ type: str
+ access_ipv6:
+ description: |
+ IPv6 address that should be used to access this
+ server. May be automatically set by the provider.
+ returned: success
+ type: str
+ addresses:
+ description: |
+ A dictionary of addresses this server can be accessed through.
+ The dictionary contains keys such as 'private' and 'public',
+ each containing a list of dictionaries for addresses of that
+ type. The addresses are contained in a dictionary with keys
+ 'addr' and 'version', which is either 4 or 6 depending on the
+ protocol of the IP address.
+ returned: success
+ type: dict
+ admin_password:
+ description: |
+ When a server is first created, it provides the administrator
+ password.
+ returned: success
+ type: str
+ attached_volumes:
+ description: |
+ A list of an attached volumes. Each item in the list contains
+ at least an 'id' key to identify the specific volumes.
+ returned: success
+ type: list
+ availability_zone:
+ description: |
+ The name of the availability zone this server is a part of.
+ returned: success
+ type: str
+ block_device_mapping:
+ description: |
+ Enables fine grained control of the block device mapping for an
+ instance. This is typically used for booting servers from
+ volumes.
+ returned: success
+ type: str
+ compute_host:
+ description: |
+ The name of the compute host on which this instance is running.
+ Appears in the response for administrative users only.
+ returned: success
+ type: str
+ config_drive:
+ description: |
+ Indicates whether or not a config drive was used for this
+ server.
+ returned: success
+ type: str
+ created_at:
+ description: Timestamp of when the server was created.
+ returned: success
+ type: str
+ description:
+ description: |
+ The description of the server. Before microversion
+ 2.19 this was set to the server name.
+ returned: success
+ type: str
+ disk_config:
+ description: The disk configuration. Either AUTO or MANUAL.
+ returned: success
+ type: str
+ flavor:
+ description: The flavor property as returned from server.
+ returned: success
+ type: dict
+ flavor_id:
+ description: |
+ The flavor reference, as a ID or full URL, for the flavor to
+ use for this server.
+ returned: success
+ type: str
+ has_config_drive:
+ description: |
+ Indicates whether a configuration drive enables metadata
+ injection. Not all cloud providers enable this feature.
+ returned: success
+ type: str
+ host_id:
+ description: An ID representing the host of this server.
+ returned: success
+ type: str
+ host_status:
+ description: The host status.
+ returned: success
+ type: str
+ hostname:
+ description: |
+ The hostname set on the instance when it is booted.
+ By default, it appears in the response for administrative users
+ only.
+ returned: success
+ type: str
+ hypervisor_hostname:
+ description: |
+ The hypervisor host name. Appears in the response for
+ administrative users only.
+ returned: success
+ type: str
+ id:
+ description: ID of the server.
+ returned: success
+ type: str
+ image:
+ description: The image property as returned from server.
+ returned: success
+ type: dict
+ image_id:
+ description: |
+ The image reference, as a ID or full URL, for the image to use
+ for this server.
+ returned: success
+ type: str
+ instance_name:
+ description: |
+ The instance name. The Compute API generates the instance name
+ from the instance name template. Appears in the response for
+ administrative users only.
+ returned: success
+ type: str
+ is_locked:
+ description: The locked status of the server
+ returned: success
+ type: bool
+ kernel_id:
+ description: |
+ The UUID of the kernel image when using an AMI. Will be null if
+ not. By default, it appears in the response for administrative
+ users only.
+ returned: success
+ type: str
+ key_name:
+ description: The name of an associated keypair.
+ returned: success
+ type: str
+ launch_index:
+ description: |
+ When servers are launched via multiple create, this is the
+ sequence in which the servers were launched. By default, it
+ appears in the response for administrative users only.
+ returned: success
+ type: int
+ launched_at:
+ description: The timestamp when the server was launched.
+ returned: success
+ type: str
+ links:
+ description: |
+ A list of dictionaries holding links relevant to this server.
+ returned: success
+ type: str
+ max_count:
+ description: The maximum number of servers to create.
+ returned: success
+ type: str
+ metadata:
+ description: List of tag strings.
+ returned: success
+ type: dict
+ min_count:
+ description: The minimum number of servers to create.
+ returned: success
+ type: str
+ name:
+ description: Name of the server
+ returned: success
+ type: str
+ networks:
+ description: |
+ A networks object. Required parameter when there are multiple
+ networks defined for the tenant. When you do not specify the
+ networks parameter, the server attaches to the only network
+ created for the current tenant.
+ returned: success
+ type: str
+ power_state:
+ description: The power state of this server.
+ returned: success
+ type: str
+ progress:
+ description: |
+ While the server is building, this value represents the
+ percentage of completion. Once it is completed, it will be 100.
+ returned: success
+ type: int
+ project_id:
+ description: The ID of the project this server is associated with.
+ returned: success
+ type: str
+ ramdisk_id:
+ description: |
+ The UUID of the ramdisk image when using an AMI. Will be null
+ if not. By default, it appears in the response for
+ administrative users only.
+ returned: success
+ type: str
+ reservation_id:
+ description: |
+ The reservation id for the server. This is an id that can be
+ useful in tracking groups of servers created with multiple
+ create, that will all have the same reservation_id. By default,
+ it appears in the response for administrative users only.
+ returned: success
+ type: str
+ root_device_name:
+ description: |
+ The root device name for the instance By default, it appears in
+ the response for administrative users only.
+ returned: success
+ type: str
+ scheduler_hints:
+ description: The dictionary of data to send to the scheduler.
+ returned: success
+ type: dict
+ security_groups:
+ description: |
+ A list of applicable security groups. Each group contains keys
+ for: description, name, id, and rules.
+ returned: success
+ type: list
+ elements: dict
+ server_groups:
+ description: |
+ The UUIDs of the server groups to which the server belongs.
+ Currently this can contain at most one entry.
+ returned: success
+ type: list
+ status:
+ description: |
+ The state this server is in. Valid values include 'ACTIVE',
+ 'BUILDING', 'DELETED', 'ERROR', 'HARD_REBOOT', 'PASSWORD',
+ 'PAUSED', 'REBOOT', 'REBUILD', 'RESCUED', 'RESIZED',
+ 'REVERT_RESIZE', 'SHUTOFF', 'SOFT_DELETED', 'STOPPED',
+ 'SUSPENDED', 'UNKNOWN', or 'VERIFY_RESIZE'.
+ returned: success
+ type: str
+ tags:
+ description: A list of associated tags.
+ returned: success
+ type: list
+ task_state:
+ description: The task state of this server.
+ returned: success
+ type: str
+ terminated_at:
+ description: |
+ The timestamp when the server was terminated (if it has been).
+ returned: success
+ type: str
+ trusted_image_certificates:
+ description: |
+ A list of trusted certificate IDs, that were used during image
+ signature verification to verify the signing certificate.
+ returned: success
+ type: list
+ updated_at:
+ description: Timestamp of when this server was last updated.
+ returned: success
+ type: str
+ user_data:
+ description: |
+ Configuration information or scripts to use upon launch.
+ Base64 encoded.
+ returned: success
+ type: str
+ user_id:
+ description: The ID of the owners of this server.
+ returned: success
+ type: str
+ vm_state:
+ description: The VM state of this server.
+ returned: success
+ type: str
+ volumes:
+ description: Same as attached_volumes.
+ returned: success
+ type: list
+'''
+from ansible_collections.openstack.cloud.plugins.module_utils.openstack import OpenStackModule
+import copy
class ServerModule(OpenStackModule):
- deprecated_names = ('os_server', 'openstack.cloud.os_server')
argument_spec = dict(
- name=dict(required=True),
- image=dict(default=None),
+ auto_ip=dict(default=True, type='bool',
+ aliases=['auto_floating_ip', 'public_ip']),
+ availability_zone=dict(),
+ boot_from_volume=dict(default=False, type='bool'),
+ boot_volume=dict(aliases=['root_volume']),
+ config_drive=dict(default=False, type='bool'),
+ delete_ips=dict(default=False, type='bool', aliases=['delete_fip']),
+ description=dict(),
+ flavor=dict(),
+ flavor_include=dict(),
+ flavor_ram=dict(type='int'),
+ floating_ip_pools=dict(type='list', elements='str'),
+ floating_ips=dict(type='list', elements='str'),
+ image=dict(),
image_exclude=dict(default='(deprecated)'),
- flavor=dict(default=None),
- flavor_ram=dict(default=None, type='int'),
- flavor_include=dict(default=None),
- key_name=dict(default=None),
- security_groups=dict(default=['default'], type='list', elements='str'),
- network=dict(default=None),
+ key_name=dict(),
+ metadata=dict(type='raw', aliases=['meta']),
+ name=dict(required=True),
+ network=dict(),
nics=dict(default=[], type='list', elements='raw'),
- meta=dict(default=None, type='raw'),
- userdata=dict(default=None, aliases=['user_data']),
- config_drive=dict(default=False, type='bool'),
- auto_ip=dict(default=True, type='bool', aliases=['auto_floating_ip', 'public_ip']),
- floating_ips=dict(default=None, type='list', elements='str'),
- floating_ip_pools=dict(default=None, type='list', elements='str'),
- volume_size=dict(default=None, type='int'),
- boot_from_volume=dict(default=False, type='bool'),
- boot_volume=dict(default=None, aliases=['root_volume']),
+ reuse_ips=dict(default=True, type='bool'),
+ scheduler_hints=dict(type='dict'),
+ security_groups=dict(default=[], type='list', elements='str'),
+ state=dict(default='present', choices=['absent', 'present']),
terminate_volume=dict(default=False, type='bool'),
+ userdata=dict(),
+ volume_size=dict(type='int'),
volumes=dict(default=[], type='list', elements='str'),
- scheduler_hints=dict(default=None, type='dict'),
- state=dict(default='present', choices=['absent', 'present']),
- delete_fip=dict(default=False, type='bool'),
- reuse_ips=dict(default=True, type='bool'),
- description=dict(default=None, type='str'),
)
+
module_kwargs = dict(
mutually_exclusive=[
- ['auto_ip', 'floating_ips'],
- ['auto_ip', 'floating_ip_pools'],
- ['floating_ips', 'floating_ip_pools'],
+ ['auto_ip', 'floating_ips', 'floating_ip_pools'],
['flavor', 'flavor_ram'],
['image', 'boot_volume'],
['boot_from_volume', 'boot_volume'],
@@ -523,277 +841,405 @@ class ServerModule(OpenStackModule):
],
required_if=[
('boot_from_volume', True, ['volume_size', 'image']),
+ ('state', 'present', ('image', 'boot_volume'), True),
+ ('state', 'present', ('flavor', 'flavor_ram'), True),
],
+ supports_check_mode=True,
)
def run(self):
-
- state = self.params['state']
- image = self.params['image']
- boot_volume = self.params['boot_volume']
- flavor = self.params['flavor']
- flavor_ram = self.params['flavor_ram']
-
- if state == 'present':
- if not (image or boot_volume):
- self.fail(
- msg="Parameter 'image' or 'boot_volume' is required "
- "if state == 'present'"
- )
- if not flavor and not flavor_ram:
- self.fail(
- msg="Parameter 'flavor' or 'flavor_ram' is required "
- "if state == 'present'"
- )
-
- if state == 'present':
- self._get_server_state()
- self._create_server()
- elif state == 'absent':
- self._get_server_state()
- self._delete_server()
-
- def _exit_hostvars(self, server, changed=True):
- hostvars = self.conn.get_openstack_vars(server)
- self.exit(
- changed=changed, server=server, id=server.id, openstack=hostvars)
-
- def _get_server_state(self):
state = self.params['state']
- server = self.conn.get_server(self.params['name'])
- if server and state == 'present':
- if server.status not in ('ACTIVE', 'SHUTOFF', 'PAUSED', 'SUSPENDED'):
- self.fail(
- msg="The instance is available but not Active state: " + server.status)
- (ip_changed, server) = self._check_ips(server)
- (sg_changed, server) = self._check_security_groups(server)
- (server_changed, server) = self._update_server(server)
- self._exit_hostvars(server, ip_changed or sg_changed or server_changed)
- if server and state == 'absent':
- return True
- if state == 'absent':
- self.exit(changed=False, result="not present")
- return True
- def _create_server(self):
- flavor = self.params['flavor']
- flavor_ram = self.params['flavor_ram']
- flavor_include = self.params['flavor_include']
+ server = self.conn.compute.find_server(self.params['name'])
+ if server:
+ # fetch server details such as server['addresses']
+ server = self.conn.compute.get_server(server)
+
+ if self.ansible.check_mode:
+ self.exit_json(changed=self._will_change(state, server))
+
+ if state == 'present' and not server:
+ # Create server
+ server = self._create()
+ self.exit_json(changed=True,
+ server=server.to_dict(computed=False))
+
+ elif state == 'present' and server:
+ # Update server
+ update = self._build_update(server)
+ if update:
+ server = self._update(server, update)
+
+ self.exit_json(changed=bool(update),
+ server=server.to_dict(computed=False))
+
+ elif state == 'absent' and server:
+ # Delete server
+ self._delete(server)
+ self.exit_json(changed=True)
+
+ elif state == 'absent' and not server:
+ # Do nothing
+ self.exit_json(changed=False)
+
+ def _build_update(self, server):
+ if server.status not in ('ACTIVE', 'SHUTOFF', 'PAUSED', 'SUSPENDED'):
+ self.fail_json(msg="The instance is available but not "
+ "active state: {0}".format(server.status))
+
+ return {
+ **self._build_update_ips(server),
+ **self._build_update_security_groups(server),
+ **self._build_update_server(server)}
+
+ def _build_update_ips(self, server):
+ auto_ip = self.params['auto_ip']
+ floating_ips = self.params['floating_ips']
+ floating_ip_pools = self.params['floating_ip_pools']
+
+ if not (auto_ip or floating_ips or floating_ip_pools):
+ # No floating ip has been requested, so
+ # do not add or remove any floating ip.
+ return {}
+
+ # Get floating ip addresses attached to the server
+ ips = [interface_spec['addr']
+ for v in server['addresses'].values()
+ for interface_spec in v
+ if interface_spec.get('OS-EXT-IPS:type', None) == 'floating']
+
+ if (auto_ip and ips and not floating_ip_pools and not floating_ips):
+ # Server has a floating ip address attached and
+ # no specific floating ip has been requested,
+ # so nothing to change.
+ return {}
+
+ if not ips:
+ # One or multiple floating ips have been requested,
+ # but none have been attached, so attach them.
+ return dict(ips=dict(
+ auto_ip=auto_ip,
+ ips=floating_ips,
+ ip_pool=floating_ip_pools))
+
+ if auto_ip or not floating_ips:
+ # Nothing do to because either any floating ip address
+ # or no specific floating ips have been requested
+ # and any floating ip has been attached.
+ return {}
+
+ # A specific set of floating ips has been requested
+ update = {}
+ add_ips = [ip for ip in floating_ips if ip not in ips]
+ if add_ips:
+ # add specific ips which have not been added
+ update['add_ips'] = add_ips
+
+ remove_ips = [ip for ip in ips if ip not in floating_ips]
+ if remove_ips:
+ # Detach ips which are not supposed to be attached
+ update['remove_ips'] = remove_ips
+
+ def _build_update_security_groups(self, server):
+ update = {}
+
+ required_security_groups = dict(
+ (sg['id'], sg) for sg in [
+ self.conn.network.find_security_group(
+ security_group_name_or_id, ignore_missing=False)
+ for security_group_name_or_id in self.params['security_groups']
+ ])
+
+ # Retrieve IDs of security groups attached to the server
+ server = self.conn.compute.fetch_server_security_groups(server)
+ assigned_security_groups = dict(
+ (sg['id'], self.conn.network.get_security_group(sg['id']))
+ for sg in server.security_groups)
+
+ # openstacksdk adds security groups to server using resources
+ add_security_groups = [
+ sg for (sg_id, sg) in required_security_groups.items()
+ if sg_id not in assigned_security_groups]
+
+ if add_security_groups:
+ update['add_security_groups'] = add_security_groups
+
+ # openstacksdk removes security groups from servers using resources
+ remove_security_groups = [
+ sg for (sg_id, sg) in assigned_security_groups.items()
+ if sg_id not in required_security_groups]
+
+ if remove_security_groups:
+ update['remove_security_groups'] = remove_security_groups
+
+ return update
+
+ def _build_update_server(self, server):
+ update = {}
+
+ # Process metadata
+ required_metadata = self._parse_metadata(self.params['metadata'])
+ assigned_metadata = server.metadata
+
+ add_metadata = dict()
+ for (k, v) in required_metadata.items():
+ if k not in assigned_metadata or assigned_metadata[k] != v:
+ add_metadata[k] = v
+
+ if add_metadata:
+ update['add_metadata'] = add_metadata
+
+ remove_metadata = dict()
+ for (k, v) in assigned_metadata.items():
+ if k not in required_metadata or required_metadata[k] != v:
+ remove_metadata[k] = v
+
+ if remove_metadata:
+ update['remove_metadata'] = remove_metadata
+
+ # Process server attributes
+
+ # Updateable server attributes in openstacksdk
+ # (OpenStack API names in braces):
+ # - access_ipv4 (accessIPv4)
+ # - access_ipv6 (accessIPv6)
+ # - name (name)
+ # - hostname (hostname)
+ # - disk_config (OS-DCF:diskConfig)
+ # - description (description)
+ # Ref.: https://docs.openstack.org/api-ref/compute/#update-server
+
+ # A server's name cannot be updated by this module because
+ # it is used to find servers by name or id.
+ # If name is an id, then we do not have a name to update.
+ # If name is a name actually, then it was used to find a
+ # matching server hence the name is the user defined one
+ # already.
+
+ # Update all known updateable attributes although
+ # our module might not support them yet
+ server_attributes = dict(
+ (k, self.params[k])
+ for k in ['access_ipv4', 'access_ipv6', 'hostname', 'disk_config',
+ 'description']
+ if k in self.params and self.params[k] is not None
+ and self.params[k] != server[k])
+
+ if server_attributes:
+ update['server_attributes'] = server_attributes
+
+ return update
+
+ def _create(self):
+ for k in ['auto_ip', 'floating_ips', 'floating_ip_pools']:
+ if self.params[k] is not None \
+ and self.params['wait'] is False:
+ # floating ip addresses will only be added if
+ # we wait until the server has been created
+ # Ref.: https://opendev.org/openstack/openstacksdk/src/commit/3f81d0001dd994cde990d38f6e2671ee0694d7d5/openstack/cloud/_compute.py#L945
+ self.fail_json(
+ msg="Option '{0}' requires 'wait: true'".format(k))
+
+ flavor_name_or_id = self.params['flavor']
image_id = None
if not self.params['boot_volume']:
image_id = self.conn.get_image_id(
self.params['image'], self.params['image_exclude'])
if not image_id:
- self.fail(
- msg="Could not find image %s" % self.params['image'])
+ self.fail_json(
+ msg="Could not find image {0} with exclude {1}".format(
+ self.params['image'], self.params['image_exclude']))
- if flavor:
- flavor_dict = self.conn.get_flavor(flavor)
- if not flavor_dict:
- self.fail(msg="Could not find flavor %s" % flavor)
+ if flavor_name_or_id:
+ flavor = self.conn.compute.find_flavor(flavor_name_or_id,
+ ignore_missing=False)
else:
- flavor_dict = self.conn.get_flavor_by_ram(flavor_ram, flavor_include)
- if not flavor_dict:
- self.fail(msg="Could not find any matching flavor")
+ flavor = self.conn.get_flavor_by_ram(self.params['flavor_ram'],
+ self.params['flavor_include'])
+ if not flavor:
+ self.fail_json(msg="Could not find any matching flavor")
- nics = self._network_args()
-
- self.params['meta'] = _parse_meta(self.params['meta'])
-
- bootkwargs = self.check_versioned(
- name=self.params['name'],
+ args = dict(
+ flavor=flavor.id,
image=image_id,
- flavor=flavor_dict['id'],
- nics=nics,
- meta=self.params['meta'],
- security_groups=self.params['security_groups'],
- userdata=self.params['userdata'],
- config_drive=self.params['config_drive'],
- )
- for optional_param in (
- 'key_name', 'availability_zone', 'network',
- 'scheduler_hints', 'volume_size', 'volumes',
- 'description'):
- if self.params[optional_param]:
- bootkwargs[optional_param] = self.params[optional_param]
-
- server = self.conn.create_server(
ip_pool=self.params['floating_ip_pools'],
ips=self.params['floating_ips'],
- auto_ip=self.params['auto_ip'],
- boot_volume=self.params['boot_volume'],
- boot_from_volume=self.params['boot_from_volume'],
- terminate_volume=self.params['terminate_volume'],
- reuse_ips=self.params['reuse_ips'],
- wait=self.params['wait'], timeout=self.params['timeout'],
- **bootkwargs
+ meta=self._parse_metadata(self.params['metadata']),
+ nics=self._parse_nics(),
)
- self._exit_hostvars(server)
-
- def _update_server(self, server):
- changed = False
-
- self.params['meta'] = _parse_meta(self.params['meta'])
-
- # self.conn.set_server_metadata only updates the key=value pairs, it doesn't
- # touch existing ones
- update_meta = {}
- for (k, v) in self.params['meta'].items():
- if k not in server.metadata or server.metadata[k] != v:
- update_meta[k] = v
-
- if update_meta:
- self.conn.set_server_metadata(server, update_meta)
- changed = True
- # Refresh server vars
- server = self.conn.get_server(self.params['name'])
-
- return (changed, server)
-
- def _delete_server(self):
- try:
- self.conn.delete_server(
- self.params['name'], wait=self.params['wait'],
- timeout=self.params['timeout'],
- delete_ips=self.params['delete_fip'])
- except Exception as e:
- self.fail(msg="Error in deleting vm: %s" % e)
- self.exit(changed=True, result='deleted')
-
- def _network_args(self):
- args = []
- nics = self.params['nics']
-
- if not isinstance(nics, list):
- self.fail(msg='The \'nics\' parameter must be a list.')
-
- for num, net in enumerate(_parse_nics(nics)):
+ for k in ['auto_ip', 'availability_zone', 'boot_from_volume',
+ 'boot_volume', 'config_drive', 'description', 'key_name',
+ 'name', 'network', 'reuse_ips', 'scheduler_hints',
+ 'security_groups', 'terminate_volume', 'timeout',
+ 'userdata', 'volume_size', 'volumes', 'wait']:
+ if self.params[k] is not None:
+ args[k] = self.params[k]
+
+ server = self.conn.create_server(**args)
+
+ # openstacksdk's create_server() might call meta.add_server_interfaces(
+ # ) which alters server attributes such as server['addresses']. So we
+ # do an extra call to compute.get_server() to return a clean server
+ # resource.
+ # Ref.: https://opendev.org/openstack/openstacksdk/src/commit/3f81d0001dd994cde990d38f6e2671ee0694d7d5/openstack/cloud/_compute.py#L942
+ return self.conn.compute.get_server(server)
+
+ def _delete(self, server):
+ self.conn.delete_server(
+ server.id,
+ **dict((k, self.params[k])
+ for k in ['wait', 'timeout', 'delete_ips']))
+
+ def _update(self, server, update):
+ server = self._update_ips(server, update)
+ server = self._update_security_groups(server, update)
+ server = self._update_server(server, update)
+ # Refresh server attributes after security groups etc. have changed
+ #
+ # Use compute.get_server() instead of compute.find_server()
+ # to include server details
+ return self.conn.compute.get_server(server)
+
+ def _update_ips(self, server, update):
+ args = dict((k, self.params[k]) for k in ['wait', 'timeout'])
+ ips = update.get('ips')
+ if ips:
+ server = self.conn.add_ips_to_server(server, **ips, **args)
+
+ add_ips = update.get('add_ips')
+ if add_ips:
+ # Add specific ips which have not been added
+ server = self.conn.add_ip_list(server, add_ips, **args)
+
+ remove_ips = update.get('remove_ips')
+ if remove_ips:
+ # Detach ips which are not supposed to be attached
+ for ip in remove_ips:
+ ip_id = self.conn.network.find_ip(name_or_id=ip,
+ ignore_missing=False).id
+ # self.conn.network.update_ip(ip_id, port_id=None) does not
+ # handle nova network but self.conn.detach_ip_from_server()
+ # does so
+ self.conn.detach_ip_from_server(server_id=server.id,
+ floating_ip_id=ip_id)
+ return server
+
+ def _update_security_groups(self, server, update):
+ add_security_groups = update.get('add_security_groups')
+ if add_security_groups:
+ for sg in add_security_groups:
+ self.conn.compute.add_security_group_to_server(server, sg)
+
+ remove_security_groups = update.get('remove_security_groups')
+ if remove_security_groups:
+ for sg in remove_security_groups:
+ self.conn.compute.remove_security_group_from_server(server, sg)
+
+ # Whenever security groups of a server have changed,
+ # the server object has to be refreshed. This will
+ # be postponed until all updates have been applied.
+ return server
+
+ def _update_server(self, server, update):
+ add_metadata = update.get('add_metadata')
+ if add_metadata:
+ self.conn.compute.set_server_metadata(server.id,
+ **add_metadata)
+
+ remove_metadata = update.get('remove_metadata')
+ if remove_metadata:
+ self.conn.compute.delete_server_metadata(server.id,
+ remove_metadata.keys())
+
+ server_attributes = update.get('server_attributes')
+ if server_attributes:
+ # Server object cannot passed to self.conn.compute.update_server()
+ # entirely because its security_groups attribute was expanded by
+ # self.conn.compute.fetch_server_security_groups() previously which
+ # thus will no longer have a valid value for OpenStack API.
+ server = self.conn.compute.update_server(server['id'],
+ **server_attributes)
+
+ # Whenever server attributes such as metadata have changed,
+ # the server object has to be refreshed. This will
+ # be postponed until all updates have been applied.
+ return server
+
+ def _parse_metadata(self, metadata):
+ if not metadata:
+ return {}
+
+ if isinstance(metadata, str):
+ metas = {}
+ for kv_str in metadata.split(","):
+ k, v = kv_str.split("=")
+ metas[k] = v
+ return metas
+
+ return metadata
+
+ def _parse_nics(self):
+ nics = []
+ stringified_nets = self.params['nics']
+
+ if not isinstance(stringified_nets, list):
+ self.fail_json(msg="The 'nics' parameter must be a list.")
+
+ nets = [(dict((nested_net.split('='),))
+ for nested_net in net.split(','))
+ if isinstance(net, str) else net
+ for net in stringified_nets]
+
+ for net in nets:
if not isinstance(net, dict):
- self.fail(
- msg='Each entry in the \'nics\' parameter must be a dict.')
+ self.fail_json(
+ msg="Each entry in the 'nics' parameter must be a dict.")
if net.get('net-id'):
- args.append(net)
+ nics.append(net)
elif net.get('net-name'):
- by_name = self.conn.get_network(net['net-name'])
- if not by_name:
- self.fail(
- msg='Could not find network by net-name: %s' %
- net['net-name'])
- resolved_net = net.copy()
- del resolved_net['net-name']
- resolved_net['net-id'] = by_name['id']
- args.append(resolved_net)
+ network_id = self.conn.network.find_network(
+ net['net-name'], ignore_missing=False).id
+ # Replace net-name with net-id and keep optional nic args
+ # Ref.: https://github.com/ansible/ansible/pull/20969
+ #
+ # Delete net-name from a copy else it will
+ # disappear from Ansible's debug output
+ net = copy.deepcopy(net)
+ del net['net-name']
+ net['net-id'] = network_id
+ nics.append(net)
elif net.get('port-id'):
- args.append(net)
+ nics.append(net)
elif net.get('port-name'):
- by_name = self.conn.get_port(net['port-name'])
- if not by_name:
- self.fail(
- msg='Could not find port by port-name: %s' %
- net['port-name'])
- resolved_net = net.copy()
- del resolved_net['port-name']
- resolved_net['port-id'] = by_name['id']
- args.append(resolved_net)
+ port_id = self.conn.network.find_port(
+ net['port-name'], ignore_missing=False).id
+ # Replace net-name with net-id and keep optional nic args
+ # Ref.: https://github.com/ansible/ansible/pull/20969
+ #
+ # Delete net-name from a copy else it will
+ # disappear from Ansible's debug output
+ net = copy.deepcopy(net)
+ del net['port-name']
+ net['port-id'] = port_id
+ nics.append(net)
if 'tag' in net:
- args[num]['tag'] = net['tag']
- return args
-
- def _detach_ip_list(self, server, extra_ips):
- for ip in extra_ips:
- ip_id = self.conn.get_floating_ip(
- id=None, filters={'floating_ip_address': ip})
- self.conn.detach_ip_from_server(
- server_id=server.id, floating_ip_id=ip_id)
-
- def _check_ips(self, server):
- changed = False
-
- auto_ip = self.params['auto_ip']
- floating_ips = self.params['floating_ips']
- floating_ip_pools = self.params['floating_ip_pools']
+ nics[-1]['tag'] = net['tag']
+ return nics
- if floating_ip_pools or floating_ips:
- ips = openstack_find_nova_addresses(server.addresses, 'floating')
- if not ips:
- # If we're configured to have a floating but we don't have one,
- # let's add one
- server = self.conn.add_ips_to_server(
- server,
- auto_ip=auto_ip,
- ips=floating_ips,
- ip_pool=floating_ip_pools,
- wait=self.params['wait'],
- timeout=self.params['timeout'],
- )
- changed = True
- elif floating_ips:
- # we were configured to have specific ips, let's make sure we have
- # those
- missing_ips = []
- for ip in floating_ips:
- if ip not in ips:
- missing_ips.append(ip)
- if missing_ips:
- server = self.conn.add_ip_list(server, missing_ips,
- wait=self.params['wait'],
- timeout=self.params['timeout'])
- changed = True
- extra_ips = []
- for ip in ips:
- if ip not in floating_ips:
- extra_ips.append(ip)
- if extra_ips:
- self._detach_ip_list(server, extra_ips)
- changed = True
- elif auto_ip:
- if server['interface_ip']:
- changed = False
- else:
- # We're configured for auto_ip but we're not showing an
- # interface_ip. Maybe someone deleted an IP out from under us.
- server = self.conn.add_ips_to_server(
- server,
- auto_ip=auto_ip,
- ips=floating_ips,
- ip_pool=floating_ip_pools,
- wait=self.params['wait'],
- timeout=self.params['timeout'],
- )
- changed = True
- return (changed, server)
-
- def _check_security_groups(self, server):
- changed = False
-
- # server security groups were added to shade in 1.19. Until then this
- # module simply ignored trying to update security groups and only set them
- # on newly created hosts.
- if not (
- hasattr(self.conn, 'add_server_security_groups')
- and hasattr(self.conn, 'remove_server_security_groups')
- ):
- return changed, server
-
- module_security_groups = set(self.params['security_groups'])
- server_security_groups = set(sg['name'] for sg in server.security_groups)
-
- add_sgs = module_security_groups - server_security_groups
- remove_sgs = server_security_groups - module_security_groups
-
- if add_sgs:
- self.conn.add_server_security_groups(server, list(add_sgs))
- changed = True
-
- if remove_sgs:
- self.conn.remove_server_security_groups(server, list(remove_sgs))
- changed = True
-
- return (changed, server)
+ def _will_change(self, state, server):
+ if state == 'present' and not server:
+ return True
+ elif state == 'present' and server:
+ return bool(self._build_update(server))
+ elif state == 'absent' and server:
+ return True
+ else:
+ # state == 'absent' and not server:
+ return False
def main():