Vh{J ddlmZmZmZeZddlmZddlm Z ddl Z ddl Z ddl Z ddl mZddlmZmZddlmZddlmZ dd lmZmZdd lmZmZdd lmZd Ze e edgfdd d e edgfdde edgfdd e dd e dd Z!dZ"dZ#dZ$dZ%dZ&Gdd Z'y#e$rd ZYewxYw)!)absolute_importdivisionprint_function) b64encode formatdateN) iteritems)urlparse urlencode) fetch_url) env_fallback) serializationhashes)paddingec)default_backendTFINTERSIGHT_API_PRIVATE_KEYpath)fallbacktyperequiredno_logINTERSIGHT_API_URIstrzhttps://intersight.com/api/v1)rrdefaultINTERSIGHT_API_KEY_ID)rrrbool)rr)api_private_keyapi_uri api_key_idvalidate_certs use_proxycltj}|j|j|S)z Generates a SHA256 digest from a String. :param data: data string set by user :return: instance of digest object )hashlibsha256updateencode)datadigests t/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/cisco/intersight/plugins/module_utils/intersight.pyget_sha256_digestr+?s'^^ F MM$++- Mcd}|dz|zdz}t|j}d}|jD]0\}}||jzdz|z}||dz kr|dz}|dz }2|S)z Concatenates Intersight headers in preparation to be signed :param req_tgt : http method plus endpoint :param hdrs: dict with header keys :return: concatenated header authorization string z(request-target):  rz: )lenitemslower)req_tgthdrssslengthikeyvalues r*prepare_str_to_signr;Ms B " "W ,t 3B  F Ajjl U #))+  $u , vz>dB Q  Ir,ctdddS)zC Generated a GMT formatted Date :return: current date NFT)timeval localtimeusegmtrr,r* get_gmt_daterAds deD AAr,cxt|t|k7ryt||D]\}}t||ryy)NFT)r1zipcompare_values) expected_list actual_listexpectedactuals r* compare_listsrInsD =S-- {;&h/ r,c t|trt|tr t||St|D]1\}}t j d|s||vr!t |||r1yy#ttf$r ||k7rYyYywxYw)NzP(ass)?w(or)?dFT) isinstancelistrIr researchrDAttributeError TypeError)rGrHr9r:s r*rDrDzs h %*VT*B 62 2%h/ LS%yy*C0Cv4E!%5   I & X  s"+A.;A.*A.,A..BBcNeZdZdZdZdZdZdZd dZd dZ dd Z d Z d Z y)IntersightModulec||_td|_ts|jj d|jj d|_|jj d|_ t|jj dd5}|j|_ dddd |_ g|_d |_y#1swYxYw#ttf$r!|jj d|_ YQwxYw) NF)changedz(cryptography is required for this modulemsgrr rrr.)moduledictresultHAS_CRYPTOGRAPHY fail_jsonparamshost public_keyopenread private_keyFileNotFoundErrorOSErrordigest_algorithm response_list update_method)selfrXfs r*__init__zIntersightModule.__init__s 5)  KK ! !&P ! QKK&&y1 ++,,\: Edkk(():;SA ,Q#$668  ,!#  , ,!7+ E#{{112CDD  Es*8#CC1CCC-D  D ctjd}|j|j}|s t d|j d}t j|jjdt}|dk(rW|j|jtjtj}d|_t)|S|dk(rW|j|jt!j"tj}d|_t)|St%d j'|) z Generates a signed digest from a String :param digest: string to be signed & hashed :return: instance of digest object z\s*-----BEGIN (.*)-----\s+zNot a valid PEM pre boundaryr0NzRSA PRIVATE KEYz rsa-sha256zEC PRIVATE KEYhs2019zUnsupported key: {0})rMcompilematchrb ValueErrorgrouprload_pem_private_keyr'rsignrPKCS1v15rSHA256rerECDSA Exceptionformatr)rhr(rWm pem_headerr9rrs r*get_sig_b64encodez"IntersightModule.get_sig_b64encodes  JJ4 5 GGD$$ %;< <WWQZ 001A1A1H1H1JDRaRcd * *88DKKM7+;+;+=v}}OD$0D ! + +88DKKM288FMMO+DED$,D !299*EF Fr,c d}|dzdz|jzdzdz|jzdz}|dz}|jD]\}}|dz|jz}|dz}|dzd z|j d zdz}|S) z Assmebled an Intersight formatted authorization header :param hdrs : object with header keys :param signed_msg: base64 encoded sha256 hashed body :return: concatenated authorization header Signature zkeyId="z",z algorithm="zheaders="(request-target)",z signature="ascii)r_rer2r3decode)rhr5 signed_msgauth_strr9dummys r*get_auth_headerz IntersightModule.get_auth_headersc>J.@5H>Y\`\q\qqtyy::**, 4JC#~ 3H 4d?c>N2Z5F5Fw5OORVVr,cddj|i}d||d}|jd i|}|jd|jddd}|Stdj|) z Retrieve an Intersight object moid by name :param resource_path: intersight resource path e.g. '/ntp/Policies' :param target_name: intersight object name :return: json http response object $filterz Name eq '{0}'GET http_method resource_path query_paramsResultsrMoidz,Intersight object with name "{0}" not found!r@)rwintersight_calljsonKeyError)rhr target_nameroptionsget_moid located_moids r*get_moid_by_namez!IntersightModule.get_moid_by_names --k: !*(  (4''2'2 ==?9 % 1#==?95a8@LIPPQ\]^ ^r,c  |jd i|\}}tjdt|dst |d|d|d j}t|dkDr+tj|}jd |d <|SiS#t $r2}|j jdt|zYd}~d}~wwxYw) z Call the Intersight API and check for success status :param options: options dict with method and other params for API call :return: json http response object z2..statusrVbodyzCode exception: %s rUNrzx-starship-traceidtrace_idr@) rrMrnr RuntimeErrorrvrXr\rar1rloadsget)rhrresponseinfoe response_data resp_jsons r*call_apizIntersightModule.call_apis F1T114;V MM9 !  }  ! =1I$(HH-A$BIj !   F KK ! !&;c!f&D ! E E FsA B C$(CCNc 2t|jj}t|jj}d} |j } d} | dvr t d|dk7r|t fs td|t|ts td|(t|jddk7r t d| d k7r|jd k(r t d |rd t|z} | d vr=|;|.t|t r|j||}ntdt d||d|zz }| dk7rtj |} |j|z| z} | j#dz|z|z| z} t%}t'| }t)|j+}||d|j-dzd}t/| |}|j1|}|j3||}|jd k(rd}nd}d|dj5|dj5|dj5|j-ddj5|d}t7|j8| | || |j8j:d\}}||fS)a Invoke the Intersight API :param resource_path: intersight resource path e.g. '/ntp/Policies' :param query_params: dictionary object with query string parameters as key/value pairs :param body: dictionary object with intersight data :param moid: intersight object moid :param name: intersight object name :return: json http response object r.)rPOSTPATCHDELETEz7Please select a valid HTTP verb (GET/POST/PATCH/DELETE)zAThe *resource_path* value is required and must be of type ""z1The *query_params* value must be of type ""zutf-8zInvalid *moid* value!rz json-patchz"z5Must set either *moid* or *name* with "PATCH/DELETE!"/rr}zSHA-256=r)HostDateDigestzapplication/json-patch+jsonzapplication/jsonz{0}z SHA-256={0})Acceptz Content-Typerrr Authorizationr")r(headersmethodr")r r^netlocrupperrorrPrKrYr1r'rgr rrdumpsr3rAr+rr)rr;rzrrwr rXr])rhrrrrmoidname target_host target_path query_pathr bodyString target_urlrequest_targetcdate body_digestb64_body_digest auth_headerstring_to_signb64_signed_msg content_typerequest_headerrrs r*rz IntersightModule.intersight_callstyy)00 tyy)..  ""$  < <VW W R (<_` `  $Z d-KOP P  T[[%9!:b!@45 5 g $"4"4 "D[\ \ y66J ( (|#!$,#44]DI'(RSS$%\]]   S4Z 'M U?D)JYY.; #- ;mKjX( 3 #K$6$6$89  ?#9#9'#BB -^[I//?**;G     -8L-L((LL-LL'#**?+A+A'+JK"\\+6  #4;; UclrCJJQQR]^_$~r,czd||d}|jd i|}|jdrV|r|d|jd<nAt|ddkDr|jj d|dd|jd<|jd|jd <|jd |jd <y ) z GET a resource and return the 1st element found or the full Results list If return_list is False and more than 1 element is returned, a warning is raised rrr api_responser0z1More than 1 resource found, returning the 1st onerCountcountrNr@)rrrZr1rXwarn)rhrr return_listrrs r* get_resourcezIntersightModule.get_resourcecs !*(  !4==+7+ << ".6y.A N+x *+a/KK$$%XY.6y.A!.D N+'||G4 G"*,,z": Jr,c||_|jjs|rc|dk7r^d|||d}|jd i|}|j dr|dd|j d<|j d|j d<n]d||d}|jd i|}|r.||j d<|j d|j d<n|r|j || d |j d <y) Npostpatch)rrrrrrrr)rrrrrTrTr@)rgrX check_moderrrZr)rhrrrrrgr response_dicts r*configure_resourcez#IntersightModule.configure_resourceys *{{%% /$+%2   !. 8 8  $$Y/2? 2J12MDKK/.;.?.? .KDKK +$*%2  !. 8 8  2?DKK/.;.?.? .KDKK +!%%&3%1&"& Ir,c|jjsEd||d}|jdi|}i|jd<|j d|jd<d|jd<y)Ndelete)rrrrrTrTr@)rXrrrZr)rhrrrresps r*delete_resourcez IntersightModule.delete_resourcesg{{%%'!.G !4==+7+D*,DKK '&*hhz&:DKK #!% Ir,cd}|jdd|jjdzdzdd|jdj dr|jdd}i|jd<d|jjd zdz}|d |zdzz }|j||d d d}d }|jdj drg|jdd}|jjddk(r$t |j |jd}n|j||d}|jjddk(r|s|j jd |sd|i|j d <|j|||j d|i|jdj dr|jdd}|S)Nz/organization/Organizationsz Name eq ' organization'r)rz$selectrrrzand Organization.Moid eq ' Organization)rz$expandFstatepresent)rrr)rrrr) rrXr]rZrrDapi_bodyrpopr)rhrorganization_moid filter_strrresource_values_matchs r*configure_policy_or_profilez,IntersightModule.configure_policy_or_profiles  7&););N)KKcQ!   ;;~ & * *6 2 $ N ;F C &( N# 4;;#5#5f#==C 25FFLL  '%)   % ;;~ & * *6 2;;~.v6D{{!!'*i7(6t}}dkkR`Fa(b%$$"/% ;;  g &) 3*..v6{{>26: r,)r.r.NNNN)F)r.) __name__ __module__ __qualname__rjrzrrrrrrrrr@r,r*rRrRs7 2.6*bH;,"&H &=r,rR)( __future__rrrr __metaclass__base64r email.utilsrrMrr$ansible.module_utils.sixr +ansible.module_utils.six.moves.urllib.parser r ansible.module_utils.urlsr ansible.module_utils.basicr cryptography.hazmat.primitivesrr)cryptography.hazmat.primitives.asymmetricrrcryptography.hazmat.backendsrr[ ImportErrorrYintersight_argument_specr+r;rArIrDrRr@r,r*rsBCB " .K/3DE< <2N1O"PW]hluyz <*>)?@uVu vl-D,EFU]abVT2-  .B &ZZusB44B>=B>