VhddlmZmZmZeZdZdZdZddl Z ddl Z ddl m Z ddl m Z ddl mZdd lmZdd lmZmZdd lmZeZe j.d d ZGddZGddeZy))absolute_importdivisionprint_functiona author: Unknown (!UNKNOWN) name: cyberarkpassword short_description: get secrets from CyberArk AIM requirements: - CyberArk AIM tool installed description: - Get secrets from CyberArk AIM. options: _command: description: Cyberark CLI utility. type: string env: - name: AIM_CLIPASSWORDSDK_CMD default: '/opt/CARKaim/sdk/clipasswordsdk' appid: description: Defines the unique ID of the application that is issuing the password request. type: string required: true query: description: Describes the filter criteria for the password retrieval. type: string required: true output: description: - Specifies the desired output fields separated by commas. - 'They could be: Password, PassProps., PasswordChangeInProcess.' type: string default: 'password' _extra: description: For extra_params values please check parameters for clipasswordsdk in CyberArk's "Credential Provider and ASCP Implementation Guide". notes: - For Ansible on Windows, please change the -parameters (C(-p), C(-d), and C(-o)) to /parameters (C(/p), C(/d), and C(/o)) and change the location of C(CLIPasswordSDK.exe). aq - name: passing options to the lookup ansible.builtin.debug: msg: '{{ lookup("community.general.cyberarkpassword", cyquery) }}' vars: cyquery: appid: "app_ansible" query: "safe=CyberArk_Passwords;folder=root;object=AdminPass" output: "Password,PassProps.UserName,PassProps.Address,PasswordChangeInProcess" - name: used in a loop ansible.builtin.debug: msg: "{{item}}" with_community.general.cyberarkpassword: appid: 'app_ansible' query: 'safe=CyberArk_Passwords;folder=root;object=AdminPass' output: 'Password,PassProps.UserName,PassProps.Address,PasswordChangeInProcess' aS _result: description: A list containing one dictionary. type: list elements: dictionary contains: password: description: - The actual value stored. passprops: description: Properties assigned to the entry. type: dictionary passwordchangeinprocess: description: Did the password change? N)PIPE)Popen) AnsibleError) LookupBase)to_bytes to_native)DisplayAIM_CLIPASSWORDSDK_CMDz/opt/CARKaim/sdk/clipasswordsdkceZdZddZdZy)CyberarkPasswordNc ||_||_||_g|_|j D]@\}}|jj d|jj |d|B|j t d|j t d|jd|_d|_y|jj|_d|_y)N-p=z+CyberArk Error: No Application ID specifiedz(CyberArk Error: No Vault query specifiedpasswords@#@) appidqueryoutput extra_parmsitemsappendrlower b_delimiter)selfrrrkwargskeyvalues u/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/community/general/plugins/lookup/cyberarkpassword.py__init__zCyberarkPassword.__init__cs    ,,. 6JC    # #D )    # #se1UG$4 5 6 :: LM M :: IJ J ;; $DK "++++-DK!c i} tddd|jdd|jd|jd|jg }|j |j d}|Dcgc] }t|}}t|tttj\}}|r t|}|rtd |d |r|jd r|dd }|jjd }|j|j} tt|D]P} || j!dr&d|vri|d<|| dd} t#| | |d| <=t#| | ||| <R |gScc}w#t$j&$r} t| jd} ~ wt($r+} td| j*d| j,d d} ~ wwxYw)N GetPasswordrzAppDescs.AppID=zQuery=z-oz-dr")stdoutstderrstdinz ERROR =>   ,z passprops. passprops zMERROR - AIM not installed or clipasswordsdk not in standard location. ERROR=(z) => )CLIPASSWORDSDK_CMDrrrrextendrr rr communicaterendswithsplitrangelen startswithr subprocessCalledProcessErrorOSErrorerrnostrerror) r result_dict all_parms b_credentialv b_all_params tmp_output tmp_error output_names output_valuesioutput_prop_namees r getzCyberarkPassword.gets & L" |4tzzl+dkkd&& (I   T-- .L1:;AHQK;L;$),tDX\$]$i$i$k !J ' 3 "Yyk#;<< 5 5e <+CR0 ;;,,S1L(..t/?/?@M3|,- O?--l;"+535 K0'3Ars';$AJ=YZK[A\K ,-=>3<]1=M3NK Q0 O};<0,, )qxx( ( L!nopovovnww|}~~H~H}IIJ KL L Ls7AE?#E:5DE?:E??GF'' G3&GG)NNN)__name__ __module__ __qualname__r!rGr"r rras "8,r"rceZdZdZddZy) LookupModulez USAGE: Nc "tj|t|trMg}|D]D}tjd|t di|}|j |j F|St di|}|j }|S)NzTerm: rK)displayvvvv isinstancelistrrrG)rterms variablesr return_valuesterm cyberark_connresults r runzLookupModule.runs w eT "M : vdV_- 0 84 8 $$]%6%6%89 :! ,5u5M"&&(FMr")N)rHrIrJ__doc__rYrKr"r rMrMs  r"rM) __future__rrrtype __metaclass__ DOCUMENTATIONEXAMPLESRETURNosr6rransible.errorsransible.plugins.lookupr +ansible.module_utils.common.text.convertersr r ansible.utils.displayr rOgetenvr.rrMrKr"r rgsx CB # J (   '-K) )RYY79Z[JJZ:r"