VhO rdZdZdZ ddlZddlmZddlmZddlmZddl m Z id d d d d ddddddddddddddddddd d!d"d#d$d%d&d'd(d)d*d+d,iZ d-d.d/d0d1d2d3d.d.d.d4d5 Z gd6Z d7ZdHd8Zd9Zd:Zd;Zd<Zd=Zd>Zd?Zd@ZdAZdBZdCZdDZdEZdFZedGk(reyy#e$rYwxYw)Iam --- module: mq_broker version_added: 6.0.0 short_description: MQ broker management description: - Create/update/delete a broker. - Reboot a broker. author: - FCO (@fotto) options: broker_name: description: - The Name of the MQ broker to work on. type: str required: true state: description: - "C(present): Create/update broker." - "C(absent): Delete broker." - "C(restarted): Reboot broker." choices: [ 'present', 'absent', 'restarted' ] default: present type: str deployment_mode: description: - Set broker deployment type. - Can be used only during creation. - Defaults to C(SINGLE_INSTANCE). choices: [ 'SINGLE_INSTANCE', 'ACTIVE_STANDBY_MULTI_AZ', 'CLUSTER_MULTI_AZ' ] type: str use_aws_owned_key: description: - Must be set to C(false) if I(kms_key_id) is provided as well. - Can be used only during creation. - Defaults to C(true). type: bool kms_key_id: description: - Use referenced key to encrypt broker data at rest. - Can be used only during creation. type: str engine_type: description: - Set broker engine type. - Can be used only during creation. - Defaults to C(ACTIVEMQ). choices: [ 'ACTIVEMQ', 'RABBITMQ' ] type: str maintenance_window_start_time: description: - Set maintenance window for automatic minor upgrades. - Can be used only during creation. - Not providing any value means "no maintenance window". type: dict publicly_accessible: description: - Allow/disallow public access. - Can be used only during creation. - Defaults to C(false). type: bool storage_type: description: - Set underlying storage type. - Can be used only during creation. - Defaults to C(EFS). choices: [ 'EBS', 'EFS' ] type: str subnet_ids: description: - Defines where deploy broker instances to. - Minimum required number depends on deployment type. - Can be used only during creation. type: list elements: str users: description: - This parameter allows to use a custom set of initial user(s). - M(community.aws.mq_user) is the preferred way to manage (local) users however a broker cannot be created without any user. - If nothing is specified a default C(admin) user will be created along with brokers. - Can be used only during creation. Use M(community.aws.mq_user) module for updates. type: list elements: dict tags: description: - Tag newly created brokers. - Can be used only during creation. type: dict authentication_strategy: description: Choose between locally and remotely managed users. choices: [ 'SIMPLE', 'LDAP' ] type: str auto_minor_version_upgrade: description: Allow/disallow automatic minor version upgrades. type: bool default: true engine_version: description: - Set engine version of broker. - The special value C(latest) will pick the latest available version. - The special value C(latest) is ignored on update. type: str host_instance_type: description: Instance type of broker instances. type: str enable_audit_log: description: Enable/disable to push audit logs to AWS CloudWatch. type: bool default: false enable_general_log: description: Enable/disable to push general logs to AWS CloudWatch. type: bool default: false security_groups: description: - Associate security groups with broker. - At least one must be provided during creation. type: list elements: str wait: description: - Specifies whether the module waits for the desired C(state). - The time to wait can be controlled by setting I(wait_timeout). type: bool default: false version_added: 7.1.0 wait_timeout: description: - How long to wait (in seconds) for the broker to reach the desired state if I(wait=true). default: 900 type: int version_added: 7.1.0 extends_documentation_fragment: - amazon.aws.boto3 - amazon.aws.common.modules - amazon.aws.region.modules a - name: create broker (if missing) with minimal required parameters community.aws.mq_broker: broker_name: "{{ broker_name }}" security_groups: - sg_xxxxxxx subnet_ids: - subnet_xxx - subnet_yyy register: result - set_fact: broker_id: "{{ result.broker['BrokerId'] }}" - name: use mq_broker_info to wait until broker is ready community.aws.mq_broker_info: broker_id: "{{ broker_id }}" register: result until: "result.broker['BrokerState'] == 'RUNNING'" retries: 15 delay: 60 - name: create or update broker with almost all parameter set including credentials community.aws.mq_broker: broker_name: "my_broker_2" state: present deployment_mode: 'ACTIVE_STANDBY_MULTI_AZ' use_aws_owned_key: false kms_key_id: 'my-precreted-key-id' engine_type: 'ACTIVEMQ' maintenance_window_start_time: DayOfWeek: 'MONDAY' TimeOfDay: '03:15' TimeZone: 'Europe/Berlin' publicly_accessible: true storage_type: 'EFS' security_groups: - sg_xxxxxxx subnet_ids: - subnet_xxx - subnet_yyy users: - Username: 'initial-user' Password': 'plain-text-password' ConsoleAccess: true tags: env: Test creator: ansible authentication_strategy: 'SIMPLE' auto_minor_version_upgrade: true engine_version: "5.15.13" host_instance_type: 'mq.t3.micro' enable_audit_log: true enable_general_log: true - name: reboot a broker community.aws.mq_broker: broker_name: "my_broker_2" state: restarted - name: delete a broker community.aws.mq_broker: broker_name: "my_broker_2" state: absent a broker: description: - "All API responses are converted to snake yaml except 'Tags'" - "'state=present': API response of create_broker() or update_broker() call" - "'state=absent': result of describe_broker() call before delete_broker() is triggerd" - "'state=restarted': result of describe_broker() after reboot has been triggered" type: dict returned: success N)sleep)time)camel_dict_to_snake_dict)AnsibleAWSModuleauthentication_strategyAuthenticationStrategyauto_minor_version_upgradeAutoMinorVersionUpgrade broker_name BrokerNamedeployment_modeDeploymentModeuse_aws_owned_keyz EncryptionOptions/UseAwsOwnedKey kms_key_idzEncryptionOptions/KmsKeyId engine_type EngineTypeengine_version EngineVersionhost_instance_typeHostInstanceTypeenable_audit_logz Logs/Auditenable_general_logz Logs/Generalmaintenance_window_start_timeMaintenanceWindowStartTimepublicly_accessiblePubliclyAccessiblesecurity_groupsSecurityGroups storage_type StorageType subnet_ids SubnetIdsusersUserstagsTagsSIMPLEFSINGLE_INSTANCETACTIVEMQlatestz mq.t3.microEFS) rr r rrrrrrrr) r rrrrrrr!r#r%ct|}d|vr"|jd}|jn|g}|}t|dkDr-|j }||vri||<||}t|dkDr-|||d<y)N/r) PARAMS_MAPsplitreverselenpop)kwargskeyvalue mapped_keykey_listdatathis_keys k/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/community/aws/plugins/modules/mq_broker.py _set_kwargr< sCJ j##C(< D h-! <<> 4 DNH~ h-!  D!ci}|r)tjD]\}}t||||jD]?}|r |tvr|t vr*|j|t|||j|@A|S)N)DEFAULTSitemsr<paramsCREATE_ONLY_PARAMSr/)moduleapply_defaultsignore_create_paramsr4p_namep_values r; _fill_kwargsrH1s F'~~/ 0OFG vvw / 0--  F.@$@  Z FMM&$9$E vvv}}V'< =   Mr=cnt|t|k7ryt|D]\}}|||k7syyNTF)r2 enumerate)currentdesiredindexr6s r;__list_needs_changerOCsA 7|s7|#!'* u GEN " r=c6|D]}||vs||||k7syyrJ)rLrMr5s r;__dict_needs_changerRMs2 '>s|ws|+ r=cd}|D]z}||}||}t|tttfr ||k7s.d}|St|trt ||sPd}|St|t rt||srd}|Sd}|S|S)NFT) isinstanceintstrboollistrOdictrR)rLrM needs_changer5 current_value desired_values r; _needs_changer]XsL  mc3%5 6 -#   t ,"=-@#   t ,"=-@#   L  -, r=c |j|}|dddddS#tjjtjjf$r}|j |dYd}~yd}~wwxYw)N)rBrokerEngineTypesrEngineVersionsNamezCouldn't list engine versionsmsg)describe_broker_engine_typesbotocore exceptions ClientError BotoCoreError fail_json_aws)connrCrresponsees r;get_latest_engine_versionrmssE44 4L+,Q/0@A!DVLL    + +X-@-@-N-N OEQ$CDDEs"%7A9A44A9c0 |jd}d}|jd}|dD]}|d|k(s |d}|S|S#tjjtjj f$r}|j |dYd}~yd}~wwxYw) Nr d) MaxResultsBrokerSummariesr BrokerIdzCouldn't list broker brokers.rb)rA list_brokersrerfrgrhri)rjrCr broker_idrkbrokerrls r; get_broker_idrv{s EmmM2  $$$401 Fl#{2":.       + +X-@-@-N-N OEQ$CDDEs!3AAA7B8BBc |j|S#tjjtjjf$r}|j |dYd}~yd}~wwxYw)NrrzCouldn't get broker details.rb)describe_brokerrerfrgrhri)rjrCrtrls r;get_broker_inforzsbD##Y#77    + +X-@-@-N-N ODQ$BCCDs7A( A##A(cd}|jjdd}|jjd}|jjd}d}|jd}|jddd d  }t |z} | t kDr{ |j d |d } t | } |jryt| dkr|dk(rd}n7|dvr| dddk(rd}n%| dddk(rnt|| t kDr{|s|jdyy#tjjtjjf$r} |j| dYd} ~ sd} ~ wwxYw)N wait_timeoutr stateFrsro)MaxItemsPageSize StartingToken)PaginationConfigz BrokerSummaries[?BrokerName == `z`][]r.absentT)presentrebootedr BrokerStateRUNNINGCREATION_FAILEDzCouldn't paginate brokers.rbzdesired state not reached)rAget get_paginatorpaginatersearchrX check_moder2rrerfrgrhri fail_json) rjrC interval_secstimeoutr desired_statedone paginator page_iteratorr}filtered_iterator broker_listrls r;wait_for_statusrsMmm4G--##M2KMM%%g.M D"">2I&&SVYln8o&pM6G#L   F - 4 47WXcWddh5i j 01K  ;!# (A 77KN=>??7B6BBc,|jjd} |j|}|r t||S#tjj tjj f$r}|j|dYd}~_d}~wwxYw)NrrxzCouldn't delete broker.rb) rAr delete_brokerrerfrgrhrirrs r;rrrrct|}|jjd}d|vr|ddk(rt|||d|d<|ddk(r|j dd |vr d d d gd g|d <d|vrd|dvrd|dd<d|vst |ddk(r|j dd }|j di|}|r t||t|dg|dS)Nrrr*rrLDAPz0'AuthenticationStrategy=LDAP' not supported, yetrbr$admin adminPasswordT)UsernamePassword ConsoleAccessGroupsEncryptionOptionsUseAwsOwnedKeyFrrz@At least one security group must be specified on broker creationr& ignore_listruchangedrQ) rHrArrmrr2 create_brokerrr)rjrCr4rrresults r;rrs & !F ==  V $D& VO%<%H";D&&Q]J^"_ &'61OPf(/__coqrswf$)9VDW=X)X8="#$45v%V4D-E)F!)K_`G T   )& )F f%.vF8LY` aar=ct|dd}|jjd}|d}|d=||d<t|||}|ddk7r|j d |d |d d |vr|d d k(r|d |d <||d}d}t ||r d}|j s|jdi|}|r t||||dS)NFT)rDrErr rrrrz$Cannot trigger update while broker (z) is in state rbrr*)rtr rrQ) rHrArrzrr]r update_brokerr) rjrCrtr4rr api_resultrrs r;rrs &T RF ==  V $D&K|"F: vy9J- I-6ykPZ[hPiOjk  & VO%<%H",_"=$[ AFGZ(  +++5f5J f% 11r=c`|jddd}|jrt|dgddSt||}||d<|s|ddS t |||}|d d k(r|ddSt ||||ddS#t jj$r}|j|Yd}~8d}~wwxYw) Nr )r rtr&rTrrtFrDELETION_IN_PROGRESS) rArrrvrzrrerfrgri)rjrCrrtrrls r; ensure_absentr s#]]=9 MF 26xP]abbdF+I#F;  U33 $T69= m $(> >$7 7dFI. ..    * * Q s A5# A55B-B((B-cx|jrdddddSt||}|r t|||St||S)NfakeArnfakeId) broker_arnrtTr)rrvrr)rjrCrts r;ensure_presentr#sG )2JW[\\dF+IT6955 v &&r=c td7idtdddtdgdd td d d tdd dtgddtd dtddtddgddtddtd dtddgd td!d"d#td!d"d$tdd%td&d'gd(tdd d)tdd*tdd+td d d,td d d-td!d"}t|d.}|jd/}|jddk(r t ||}|jd7i|jdd0k(r t||}|jd7i|jdd1k(rt||}|jr|jd2|r|nd3id4|s|jd56 d}|js t|||t|||}|j4yy#t j j$r}|j|Yd}~ d}~wwxYw#t j j$r}|j|Yd}~d}~wwxYw#t j j$r}|j|Yd}~d}~wwxYw)8Nr TrV)requiredtyperr)rr restarted)defaultchoicesrFrW)rrr}r~rUr )r(ACTIVE_STANDBY_MULTI_AZCLUSTER_MULTI_AZ)rr)rrrr)RABBITMQ)rrrrYrrEBSr+r!rX)relementsr#r%rr'rr rrrrr) argument_specsupports_check_modemqrrrtrrz"I99I>J:J55J:=K5K00K5__main__)TF) DOCUMENTATIONEXAMPLESRETURNre ImportErrorrr0ansible.module_utils.common.dict_transformationsr;ansible_collections.amazon.aws.plugins.module_utils.modulesrr/r?rBr<rHrOrRr]rmrvrzrrrrrrrr__name__rQr=r;rsJ Z@ D   UX7 ";<'  ;  . <o, .$%A/'M +!" W#$ F% . ("'('   "$6E ED$:N  b42>/.'?9D zF[   sB..B65B6