Ansible role for importing module of NIFCLOUD
Home Page: https://galaxy.ansible.com/nifcloud/nifcloud/
License: Apache License 2.0
Ansible role for importing module of NIFCLOUD
None.
None.
hosts: servers
roles:
- nifcloud
This project is licensed under Apache License, Version 2.0. See LICENSE for more details.
The following request parameters of UpdateSecurityGroup are deprecated.
Run DeleteSecurityGroup if state is set to absent in niftycloud_fw.py
stderr lines
TASK [nifcloud.nifcloud : Install python-pip (for Ubuntu)] ****************************************************************************************
task path: /path/to/.ansible/roles/nifcloud.nifcloud/tasks/ubuntu.yml:4
fatal: [localhost -> localhost]: FAILED! => {
"changed": false,
"invocation": {
"module_args": {
"allow_unauthenticated": false,
"autoclean": false,
"autoremove": false,
"cache_valid_time": 0,
"deb": null,
"default_release": null,
"dpkg_options": "force-confdef,force-confold",
"force": false,
"force_apt_get": false,
"install_recommends": null,
"name": "python-pip",
"only_upgrade": false,
"package": [
"python-pip"
],
"policy_rc_d": null,
"purge": false,
"state": "present",
"update_cache": null,
"upgrade": null
}
},
"msg": "No package matching 'python-pip' is available"
}
$ cat /etc/os-release
NAME="Ubuntu"
VERSION="20.04.1 LTS (Focal Fossa)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 20.04.1 LTS"
VERSION_ID="20.04"
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
VERSION_CODENAME=focal
UBUNTU_CODENAME=focal
$ ansible --version
ansible 2.8.17
config file = /path/to/ansible.cfg
configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules']
ansible python module location = /usr/local/lib/python3.8/dist-packages/ansible
executable location = /usr/local/bin/ansible
python version = 3.8.5 (default, Jul 28 2020, 12:59:40) [GCC 9.3.0]
$ ansible-galaxy list | grep nifcloud
- nifcloud.nifcloud, v2.2.2The reason maybe related to the removal of python2 in Ubuntu 20.04. The python-pip package wasnt available anymore in Ubuntu 20.04 , so the command apt install python-pip (in this case is apt module) was failed.
I find bug.
If target LB has multiple instances attached, can not detach instance from LB, because this if statement only compares with the first Instance attached to the load balancer
LB
instance001
instance002
instance002 can not detach.
Throw error if just 2 instances are not specified
Run NiftyDescribeSeparateInstanceRules with 1 rule name
Run NiftyCreateSeparateInstanceRule with 2 instances if the rule is not exist
Run NiftyUpdateSeparateInstanceRule if the specified setting value is different from the current
Run NiftyDeregisterInstancesFromSeparateInstanceRule and NiftyRegisterInstancesWithSeparateInstanceRule if the specified 2 instances are different from the current
https://stackoverflow.com/questions/10054122/valueerror-zero-length-field-name-in-format-python
add flake8 test
After #34 PEP8 support , it is more better add flake8 test.
I create fw rules after fw group. Because, rules contain fw group.
like this.
- name: Create Security Group
local_action:
module: niftycloud_fw
state: present
access_key: "AAA"
secret_access_key: "BBB"
endpoint: "east-1.cp.cloud.nifty.com"
group_name: "fw001"
- name: Create Security Group
local_action:
module: niftycloud_fw
state: present
access_key: "AAA"
secret_access_key: "BBB"
endpoint: "east-1.cp.cloud.nifty.com"
group_name: "fw002"
- name: Update Security Group
local_action:
module: niftycloud_fw
state: present
access_key: "AAA"
secret_access_key: "BBB"
endpoint: "east-1.cp.cloud.nifty.com"
group_name: "fw001"
ip_permissions:
- in_out: "IN"
group_name: "fw002"
ip_protocol: "ANY"
- name: Update Security Group
local_action:
module: niftycloud_fw
state: present
access_key: "AAA"
secret_access_key: "BBB"
endpoint: "east-1.cp.cloud.nifty.com"
group_name: "fw002"
ip_permissions:
- in_out: "IN"
group_name: "fw001"
ip_protocol: "ANY"
But, niftycloud_fw purge ip permissons at first create fw group.
In ec2_group imprements parameter purge_rules.
http://docs.ansible.com/ansible/ec2_group_module.html
Rename project to ansible-role-nifcloud because NIFTYCloud has rename service to NIFCLOUD.
current test code looks to comfirm only response parsing
For example, in test_niftycloud.py
# create success
def test_create_instance_success(self):
with mock.patch('requests.post', self.mockRequestsPostRunInstance):
with mock.patch('niftycloud.get_instance_state', self.mockGetInstanceState16):
self.assertEqual(
(True, 16, 'created'),
niftycloud.create_instance(self.mockModule)
)
test code of create_instance method not confirm following things
requests.post method for API authentication (e.g. signature) ?I think it should be separate test case in accordance to test purpose
Support PEP 8 into the python codes.
.editorconfig file.see
# the AnsibleModule object will be our abstraction working with Ansible
# this includes instantiation, a couple of common attr would be the
# args/params passed to the execution, as well as if the module
# supports check mode
module = AnsibleModule(
argument_spec=module_args,
supports_check_mode=True
)
# if the user is working with this module in only check mode we do not
# want to make any changes to the environment, just return the current
# state with no modifications
if module.check_mode:
return result
niftycloud_fw failed when special ip_protocol like 'SSH' and maybe others.
I create task like these.
- name: create fw
local_action:
module: niftycloud_fw
access_key: "<ACCESS_KEY>"
secret_access_key: "<SECRET_ACCESS_KEY>"
endpoint: "east-1.cp.cloud.nifty.com"
group_name: "ansibletestfw"
availability_zone: "east-14"
ip_permissions:
- ip_protocol: "SSH"
in_out: "IN"
cidr_ip: "10.0.0.11"
state: "present"
fatal: [localhost -> localhost]: FAILED! => {
"changed": false,
"changed_attributes": {},
"created": true,
"current_info": {
"description": "None",
"group_name": "ansibletestfw",
"ip_permissions": [
{
"cidr_ip": "10.0.0.11",
"from_port": 22,
"group_name": null,
"in_out": "IN",
"ip_protocol": "TCP",
"to_port": 22
}
],
"log_limit": 1000
},
"current_method": "authorize_security_group",
"current_state": "present",
"failed": true,
"group_name": "ansibletestfw",
"invocation": {
"module_args": {
"access_key": "<ACCESS_KEY>",
"availability_zone": "east-14",
"description": null,
"endpoint": "east-1.cp.cloud.nifty.com",
"group_name": "ansibletestfw",
"ip_permissions": [
{
"cidr_ip": "10.0.0.11",
"in_out": "IN",
"ip_protocol": "SSH"
}
],
"log_limit": null,
"purge_ip_permissions": true,
"secret_access_key": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
"state": "present"
},
"module_name": "niftycloud_fw"
},
"msg": "changes failed",
"status": -1
}
PLAY RECAP *********************************************************************
localhost : ok=1 changed=0 unreachable=0 failed=1
ip_protocol like SSH is converted TCP on computing API response.
We need fix contains_ip_permissions in niftycloud_fw.py.
I would like to describe the filter setting in the yaml format and apply it to the LB.
All python module imprements their own request_to_api functions.
it should be library to easy to add other modules in future.
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google โค๏ธ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.