Vh{tddlmZmZmZeZdZdZdZddl Z ddl m Z dZ dZ d Zd Zd Zed k(reyy) )absolute_importdivisionprint_functiona module: awall short_description: Manage awall policies author: Ted Trask (@tdtrask) description: - This modules allows for enable/disable/activate of C(awall) policies. - Alpine Wall (C(awall)) generates a firewall configuration from the enabled policy files and activates the configuration on the system. extends_documentation_fragment: - community.general.attributes attributes: check_mode: support: full diff_mode: support: none options: name: description: - One or more policy names. type: list elements: str state: description: - Whether the policies should be enabled or disabled. type: str choices: [disabled, enabled] default: enabled activate: description: - Activate the new firewall rules. - Can be run with other steps or on its own. - Idempotency is affected if O(activate=true), as the module will always report a changed state. type: bool default: false notes: - At least one of O(name) and O(activate) is required. an - name: Enable "foo" and "bar" policy community.general.awall: name: [foo bar] state: enabled - name: Disable "foo" and "bar" policy and activate new rules community.general.awall: name: - foo - bar state: disabled activate: false - name: Activate currently enabled firewall rules community.general.awall: activate: true z # N) AnsibleModulectdtz}|j|\}}}|dk(ry|jd||y)Nz%s activate --forcerTzcould not activate new rulesmsgstdoutstderr) AWALL_PATH run_command fail_json)modulecmdrcr r s k/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/community/general/plugins/modules/awall.pyactivaterKsD : .C++C0B Qw;FSYZcdtz}|j|\}}}tjd|z|tjryy)N%s listz ^%s\s+enabledTF)r r research MULTILINE)rnamerrr r s ris_policy_enabledrTsC z "C++C0B yy!D(&",,? rcg}|D] }t||r|j|"|s|jdddj|}|jr dt z}n t d|}|j |\}}}|dk7r|jd|z|| |r|js t||jd d |zy) NFzpolicy(ies) already enabledchangedr  rz enable rzfailed to enable %srTzenabled awall policy(ies): %s rappend exit_jsonjoin check_moder r rr rnamesactpoliciesrrrr r s r enable_policyr)\sH" . OOD !" ,IJ HHX E :& *E2++C0B Qw2U:6RXY 6$$ T'F'NOrcg}|D] }t||s|j|"|s|jdddj|}|jr dt z}n t d|}|j |\}}}|dk7r|jd|z|| |r|js t||jd d |zy) NFzpolicy(ies) already disabledrrrz disable rzfailed to disable %srTzdisabled awall policy(ies): %sr r%s rdisable_policyr+psH" VT * OOD !" ,JK HHX E :&!+U3++C0B Qw3e;FSYZ 6$$ T'G%'OPrc tttddddgtddtdd  d d ggd }|jdd a|j}|d r7|ddk(rt ||d |d n|ddk(rt ||d |d |d r*|js t||jd d|jdy)Nstrenableddisabled)typedefaultchoiceslist)r0elementsboolF)r0r1)staterrrrT) argument_specrequired_one_ofsupports_check_modeawall)requiredr6zactivated awall rulesrzno action defined)r ) rdict get_bin_pathr paramsr)r+r$rr"r)rps rmainr@s E9z9>UV6E2vu5 !*-. F$$Wt$rJs_A@ $ L &  4[P(Q(.< zFr