VhP"dZdZdZddlZ ddlZddlmZddlm Z ddl m Z dgd Z d Z d Zd Zd ZdZdZdZdZdZedk(reyy#e$rYGwxYw)aO --- module: mq_user version_added: 6.0.0 short_description: Manage users in existing Amazon MQ broker description: - Manage Amazon MQ users. - Pending changes are taking into account for idempotency. author: - FCO (@fotto) options: broker_id: description: - The ID of the MQ broker to work on. type: str required: true username: description: - The name of the user to create/update/delete. type: str required: true state: description: - Create/Update vs Delete of user. default: present choices: [ 'present', 'absent' ] type: str console_access: description: - Whether the user can access the MQ Console. - Defaults to C(false) on creation. type: bool groups: description: - Set group memberships for user. - Defaults to C([]) on creation. type: list elements: str password: description: - Set password for user. - Defaults to a random password on creation. - Ignored unless I(allow_pw_update=true). type: str allow_pw_update: description: - When I(allow_pw_update=true) and I(password) is set, the password will always be updated for the user. default: false type: bool extends_documentation_fragment: - amazon.aws.boto3 - amazon.aws.common.modules - amazon.aws.region.modules a - name: create/update user - set provided password if user doesn't exist, yet community.aws.mq_user: state: present broker_id: "aws-mq-broker-id" username: "sample_user1" console_access: false groups: ["g1", "g2"] password: "plain-text-password" - name: allow console access and update group list - relying on default state community.aws.mq_user: broker_id: "aws-mq-broker-id" username: "sample_user1" region: "{{ aws_region }}" console_access: true groups: ["g1", "g2", "g3"] - name: remove user - setting all credentials explicitly community.aws.mq_user: state: absent broker_id: "aws-mq-broker-id" username: "other_user" z user: description: - just echos the username - "only present when state=present" type: str returned: success N)camel_dict_to_snake_dict)is_boto3_error_code)AnsibleAWSModuleF)console_accessgroupscg}d|vr|d}n d|vr|dd}t|t|k7ryt|tt|t|zk7ryy)NGroupsPendingTF)lenset) user_responserequested_groupscurrent_groupss i/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/community/aws/plugins/modules/mq_user.py_group_change_requiredrtsnN= &x0 m #&y1(; >c"233 >c#n"5|jd r/d |jvr!|jd r|jd |d <t |d k(rd}n?|js1|jd|d <|jd|d<t|||d}t|||jd|jd}|t|dgdS)Nr r!FTrr rrr%allow_pw_updater&rr#r$Tags) ignore_list)changeduser) r=r) check_moder6rrr r9r)r1r2rCrB _responser3s rensure_user_presentrFs T66==+Ev}}U_G` aDG |  $T62I v}} $x)@)L%dFMM(,CD#)==#:x v}} ,?O1P1\.tV]]CS5TU*0--8H*I'  &6==+D FMM1fmmDU6V%+]]:%>z" v;! G$$%+]];%?z"%+]]:%>z"T662G T66==+Ev}}U_G` aD(@TZS[(\ ]]rct|||jd|jd}ddi}||Sd|vrd|dvr |dddk(r|Sddi}|jr|S |j|d |d  |S#tj j tj jf$r}|j|d Yd}~|Sd}~wwxYw)Nr r!rBFr PendingChangeDELETETr#r$r"zCouldn't delete userr') r=r)rD delete_userr+r,r-r.r/)r1r2rCresultr5s rensure_user_absentrLs T66==+Ev}}U_G` aD F | D_Y?DOTcDdhpDp  F  < $z"2T*=MN M    + +X-@-@-N-N O<Q$:;; MUUH9y(.CDMMt TFt$J MM  g &E I (Vrls6 p 2   V\X 0! ,^D*8 zFS  sAAA