VhddlmZmZmZeZdZdZdZddl m Z m Z dZ ddl mZmZdd lmZdd lmZeZGd d eZy #e$rdZ Y(wxYw))absolute_importdivisionprint_functiona name: dsv author: Adam Migus (@amigus) short_description: Get secrets from Thycotic DevOps Secrets Vault version_added: 1.0.0 description: - Uses the Thycotic DevOps Secrets Vault Python SDK to get Secrets from a DSV O(tenant) using a O(client_id) and O(client_secret). requirements: - python-dsv-sdk - https://pypi.org/project/python-dsv-sdk/ options: _terms: description: The path to the secret, for example V(/staging/servers/web1). required: true tenant: description: The first format parameter in the default O(url_template). type: string env: - name: DSV_TENANT ini: - section: dsv_lookup key: tenant required: true tld: default: com description: The top-level domain of the tenant; the second format parameter in the default O(url_template). type: string env: - name: DSV_TLD ini: - section: dsv_lookup key: tld required: false client_id: description: The client_id with which to request the Access Grant. type: string env: - name: DSV_CLIENT_ID ini: - section: dsv_lookup key: client_id required: true client_secret: description: The client secret associated with the specific O(client_id). type: string env: - name: DSV_CLIENT_SECRET ini: - section: dsv_lookup key: client_secret required: true url_template: default: https://{}.secretsvaultcloud.{}/v1 description: The path to prepend to the base URL to form a valid REST API request. type: string env: - name: DSV_URL_TEMPLATE ini: - section: dsv_lookup key: url_template required: false z _list: description: - One or more JSON responses to C(GET /secrets/{path}). - See U(https://dsv.thycotic.com/api/index.html#operation/getSecret). type: list elements: dict z - hosts: localhost vars: secret: "{{ lookup('community.general.dsv', '/test/secret') }}" tasks: - ansible.builtin.debug: msg: 'the password is {{ secret["data"]["password"] }}' ) AnsibleErrorAnsibleOptionsErrorF) SecretsVaultSecretsVaultErrorT)Display) LookupBasec"eZdZedZdZy) LookupModulecN tdi|}|S#t$r tdwxYw)N:python-dsv-sdk==0.0.1 must be installed to use this plugin)r TypeErrorr)vault_parametersvaults h/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/community/general/plugins/lookup/dsv.pyClientzLookupModule.Clientms8 ] 4#34EL ][\ \ ]s $c htr td|j||tj |j d|j d|j d|j d|j dd}g}|D]w}t jd | |jd }|d k(rtd |t jd ||j|j|y|S#t$r}td|jd}~wwxYw)Nr) var_optionsdirecttenant client_id client_secrettld url_template)rrrrrzdsv_lookup term: z[/:]zInvalid secret path: z"DevOps Secrets Vault GET /secrets/z%DevOps Secrets Vault lookup failure: )sdk_is_missingr set_optionsr r get_optiondisplaydebuglstriprvvvappendget_secret_jsonr message) selfterms variableskwargsrresulttermpatherrors rrunzLookupModule.runus+ [\ \ Yv>##//(3!__[9!%!Au- $ ?    D MM-dV4 5 {{6*2:-0EdV.LMM @GH e33D9:  % ";EMM?K s+AD  D1D,,D1N)__name__ __module__ __qualname__ staticmethodrr1rrr r ls]]r6r N) __future__rrrtype __metaclass__ DOCUMENTATIONRETURNEXAMPLESansible.errorsrrrthycotic.secrets.vaultrr ImportErroransible.utils.displayr ansible.plugins.lookupr r"r rr6rrBsp A@ < |  =*- )(:(NsAAA