| Server IP : 85.214.239.14 / Your IP : 3.135.207.204 Web Server : Apache/2.4.62 (Debian) System : Linux h2886529.stratoserver.net 4.9.0 #1 SMP Tue Jan 9 19:45:01 MSK 2024 x86_64 User : www-data ( 33) PHP Version : 7.4.18 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, MySQL : OFF | cURL : OFF | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : OFF Directory : /lib/python3/dist-packages/ansible_collections/community/aws/plugins/module_utils/ |
Upload File : |
# Copyright: Ansible Project
# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
from __future__ import absolute_import, division, print_function
__metaclass__ = type
from copy import deepcopy
from ansible_collections.amazon.aws.plugins.module_utils.core import is_boto3_error_code
from ansible_collections.amazon.aws.plugins.module_utils.ec2 import AWSRetry
from ansible_collections.amazon.aws.plugins.module_utils.ec2 import ansible_dict_to_boto3_filter_list
from ansible_collections.community.aws.plugins.module_utils.ec2 import BaseEc2Manager
from ansible_collections.community.aws.plugins.module_utils.ec2 import Boto3Mixin
from ansible_collections.community.aws.plugins.module_utils.ec2 import Ec2WaiterFactory
class TgwWaiterFactory(Ec2WaiterFactory):
@property
def _waiter_model_data(self):
data = super(TgwWaiterFactory, self)._waiter_model_data
# split the TGW waiters so we can keep them close to everything else.
tgw_data = dict(
tgw_attachment_available=dict(
operation='DescribeTransitGatewayAttachments',
delay=5, maxAttempts=120,
acceptors=[
dict(state='success', matcher='pathAll', expected='available', argument='TransitGatewayAttachments[].State'),
]
),
tgw_attachment_deleted=dict(
operation='DescribeTransitGatewayAttachments',
delay=5, maxAttempts=120,
acceptors=[
dict(state='retry', matcher='pathAll', expected='deleting', argument='TransitGatewayAttachments[].State'),
dict(state='success', matcher='pathAll', expected='deleted', argument='TransitGatewayAttachments[].State'),
dict(state='success', matcher='path', expected=True, argument='length(TransitGatewayAttachments[]) == `0`'),
dict(state='success', matcher='error', expected='InvalidRouteTableID.NotFound'),
]
),
)
data.update(tgw_data)
return data
class TGWAttachmentBoto3Mixin(Boto3Mixin):
def __init__(self, module, **kwargs):
self.tgw_waiter_factory = TgwWaiterFactory(module)
super(TGWAttachmentBoto3Mixin, self).__init__(module, **kwargs)
# Paginators can't be (easily) wrapped, so we wrap this method with the
# retry - retries the full fetch, but better than simply giving up.
@AWSRetry.jittered_backoff()
def _paginated_describe_transit_gateway_vpc_attachments(self, **params):
paginator = self.client.get_paginator('describe_transit_gateway_vpc_attachments')
return paginator.paginate(**params).build_full_result()
@Boto3Mixin.aws_error_handler('describe transit gateway attachments')
def _describe_vpc_attachments(self, **params):
result = self._paginated_describe_transit_gateway_vpc_attachments(**params)
return result.get('TransitGatewayVpcAttachments', None)
@Boto3Mixin.aws_error_handler('create transit gateway attachment')
def _create_vpc_attachment(self, **params):
result = self.client.create_transit_gateway_vpc_attachment(aws_retry=True, **params)
return result.get('TransitGatewayVpcAttachment', None)
@Boto3Mixin.aws_error_handler('modify transit gateway attachment')
def _modify_vpc_attachment(self, **params):
result = self.client.modify_transit_gateway_vpc_attachment(aws_retry=True, **params)
return result.get('TransitGatewayVpcAttachment', None)
@Boto3Mixin.aws_error_handler('delete transit gateway attachment')
def _delete_vpc_attachment(self, **params):
try:
result = self.client.delete_transit_gateway_vpc_attachment(aws_retry=True, **params)
except is_boto3_error_code('ResourceNotFoundException'):
return None
return result.get('TransitGatewayVpcAttachment', None)
@Boto3Mixin.aws_error_handler('transit gateway attachment to finish deleting')
def _wait_tgw_attachment_deleted(self, **params):
waiter = self.tgw_waiter_factory.get_waiter('tgw_attachment_deleted')
waiter.wait(**params)
@Boto3Mixin.aws_error_handler('transit gateway attachment to become available')
def _wait_tgw_attachment_available(self, **params):
waiter = self.tgw_waiter_factory.get_waiter('tgw_attachment_available')
waiter.wait(**params)
def _normalize_tgw_attachment(self, rtb):
return self._normalize_boto3_resource(rtb)
def _get_tgw_vpc_attachment(self, **params):
# Only for use with a single attachment, use _describe_vpc_attachments for
# multiple tables.
attachments = self._describe_vpc_attachments(**params)
if not attachments:
return None
attachment = attachments[0]
return attachment
class BaseTGWManager(BaseEc2Manager):
@Boto3Mixin.aws_error_handler('connect to AWS')
def _create_client(self, client_name='ec2'):
if client_name == 'ec2':
error_codes = ['IncorrectState']
else:
error_codes = []
retry_decorator = AWSRetry.jittered_backoff(
catch_extra_error_codes=error_codes,
)
client = self.module.client(client_name, retry_decorator=retry_decorator)
return client
class TransitGatewayVpcAttachmentManager(TGWAttachmentBoto3Mixin, BaseTGWManager):
TAG_RESOURCE_TYPE = 'transit-gateway-attachment'
def __init__(self, module, id=None):
self._subnet_updates = dict()
super(TransitGatewayVpcAttachmentManager, self).__init__(module=module, id=id)
def _get_id_params(self, id=None, id_list=False):
if not id:
id = self.resource_id
if not id:
# Users should never see this, but let's cover ourself
self.module.fail_json(msg='Attachment identifier parameter missing')
if id_list:
return dict(TransitGatewayAttachmentIds=[id])
return dict(TransitGatewayAttachmentId=id)
def _extra_error_output(self):
output = super(TransitGatewayVpcAttachmentManager, self)._extra_error_output()
if self.resource_id:
output['TransitGatewayAttachmentId'] = self.resource_id
return output
def _filter_immutable_resource_attributes(self, resource):
resource = super(TransitGatewayVpcAttachmentManager, self)._filter_immutable_resource_attributes(resource)
resource.pop('TransitGatewayId', None)
resource.pop('VpcId', None)
resource.pop('VpcOwnerId', None)
resource.pop('State', None)
resource.pop('SubnetIds', None)
resource.pop('CreationTime', None)
resource.pop('Tags', None)
return resource
def _set_option(self, name, value):
if value is None:
return False
# For now VPC Attachment options are all enable/disable
if value:
value = 'enable'
else:
value = 'disable'
options = deepcopy(self._preupdate_resource.get('Options', dict()))
options.update(self._resource_updates.get('Options', dict()))
options[name] = value
return self._set_resource_value('Options', options)
def set_dns_support(self, value):
return self._set_option('DnsSupport', value)
def set_ipv6_support(self, value):
return self._set_option('Ipv6Support', value)
def set_appliance_mode_support(self, value):
return self._set_option('ApplianceModeSupport', value)
def set_transit_gateway(self, tgw_id):
return self._set_resource_value('TransitGatewayId', tgw_id)
def set_vpc(self, vpc_id):
return self._set_resource_value('VpcId', vpc_id)
def set_subnets(self, subnets=None, purge=True):
if subnets is None:
return False
current_subnets = set(self._preupdate_resource.get('SubnetIds', []))
desired_subnets = set(subnets)
if not purge:
desired_subnets = desired_subnets.union(current_subnets)
# We'll pull the VPC ID from the subnets, no point asking for
# information we 'know'.
subnet_details = self._describe_subnets(SubnetIds=list(desired_subnets))
vpc_id = self.subnets_to_vpc(desired_subnets, subnet_details)
self._set_resource_value('VpcId', vpc_id, immutable=True)
# Only one subnet per-AZ is permitted
azs = [s.get('AvailabilityZoneId') for s in subnet_details]
if len(azs) != len(set(azs)):
self.module.fail_json(
msg='Only one attachment subnet per availability zone may be set.',
availability_zones=azs, subnets=subnet_details)
subnets_to_add = list(desired_subnets.difference(current_subnets))
subnets_to_remove = list(current_subnets.difference(desired_subnets))
if not subnets_to_remove and not subnets_to_add:
return False
self._subnet_updates = dict(add=subnets_to_add, remove=subnets_to_remove)
self._set_resource_value('SubnetIds', list(desired_subnets))
return True
def subnets_to_vpc(self, subnets, subnet_details=None):
if not subnets:
return None
if subnet_details is None:
subnet_details = self._describe_subnets(SubnetIds=list(subnets))
vpcs = [s.get('VpcId') for s in subnet_details]
if len(set(vpcs)) > 1:
self.module.fail_json(
msg='Attachment subnets may only be in one VPC, multiple VPCs found',
vpcs=list(set(vpcs)), subnets=subnet_details)
return vpcs[0]
def _do_deletion_wait(self, id=None, **params):
all_params = self._get_id_params(id=id, id_list=True)
all_params.update(**params)
return self._wait_tgw_attachment_deleted(**all_params)
def _do_creation_wait(self, id=None, **params):
all_params = self._get_id_params(id=id, id_list=True)
all_params.update(**params)
return self._wait_tgw_attachment_available(**all_params)
def _do_update_wait(self, id=None, **params):
all_params = self._get_id_params(id=id, id_list=True)
all_params.update(**params)
return self._wait_tgw_attachment_available(**all_params)
def _do_create_resource(self):
params = self._merge_resource_changes(filter_immutable=False, creation=True)
response = self._create_vpc_attachment(**params)
if response:
self.resource_id = response.get('TransitGatewayAttachmentId', None)
return response
def _do_update_resource(self):
if self._preupdate_resource.get('State', None) == 'pending':
# Resources generally don't like it if you try to update before creation
# is complete. If things are in a 'pending' state they'll often throw
# exceptions.
self._wait_for_creation()
elif self._preupdate_resource.get('State', None) == 'deleting':
self.module.fail_json(msg='Deletion in progress, unable to update',
route_tables=[self.original_resource])
updates = self._filter_immutable_resource_attributes(self._resource_updates)
subnets_to_add = self._subnet_updates.get('add', [])
subnets_to_remove = self._subnet_updates.get('remove', [])
if subnets_to_add:
updates['AddSubnetIds'] = subnets_to_add
if subnets_to_remove:
updates['RemoveSubnetIds'] = subnets_to_remove
if not updates:
return False
if self.module.check_mode:
return True
updates.update(self._get_id_params(id_list=False))
self._modify_vpc_attachment(**updates)
return True
def get_resource(self):
return self.get_attachment()
def delete(self, id=None):
if id:
id_params = self._get_id_params(id=id, id_list=True)
result = self._get_tgw_vpc_attachment(**id_params)
else:
result = self._preupdate_resource
self.updated_resource = dict()
if not result:
return False
if result.get('State') == 'deleting':
self._wait_for_deletion()
return False
if self.module.check_mode:
self.changed = True
return True
id_params = self._get_id_params(id=id, id_list=False)
result = self._delete_vpc_attachment(**id_params)
self.changed |= bool(result)
self._wait_for_deletion()
return bool(result)
def list(self, filters=None, id=None):
params = dict()
if id:
params['TransitGatewayAttachmentIds'] = [id]
if filters:
params['Filters'] = ansible_dict_to_boto3_filter_list(filters)
attachments = self._describe_vpc_attachments(**params)
if not attachments:
return list()
return [self._normalize_tgw_attachment(a) for a in attachments]
def get_attachment(self, id=None):
# RouteTable needs a list, Association/Propagation needs a single ID
id_params = self._get_id_params(id=id, id_list=True)
id_param = self._get_id_params(id=id, id_list=False)
result = self._get_tgw_vpc_attachment(**id_params)
if not result:
return None
if not id:
self._preupdate_resource = deepcopy(result)
attachment = self._normalize_tgw_attachment(result)
return attachment
def _normalize_resource(self, resource):
return self._normalize_tgw_attachment(resource)