Vh9ddlmZmZmZeZdZdZdZddl Z ddl m Z ddl m Z mZddlmZdd lmZdd lmZmZmZdd lmZd Zd ZGddeZdZedk(reyy))absolute_importdivisionprint_functionu module: ssh_config short_description: Manage SSH config for user version_added: '2.0.0' description: - Configures SSH hosts with special C(IdentityFile)s and hostnames. author: - Björn Andersson (@gaqzi) - Abhijeet Kasurde (@Akasurde) extends_documentation_fragment: - community.general.attributes attributes: check_mode: support: full diff_mode: support: none options: state: description: - Whether a host entry should exist or not. default: present choices: ['present', 'absent'] type: str user: description: - Which user account this configuration file belongs to. - If none given and O(ssh_config_file) is not specified, C(/etc/ssh/ssh_config) is used. - If a user is given, C(~/.ssh/config) is used. - Mutually exclusive with O(ssh_config_file). type: str group: description: - Which group this configuration file belongs to. - If none given, O(user) is used. type: str host: description: - The endpoint this configuration is valid for. - Can be an actual address on the internet or an alias that will connect to the value of O(hostname). required: true type: str hostname: description: - The actual host to connect to when connecting to the host defined. type: str port: description: - The actual port to connect to when connecting to the host defined. type: str remote_user: description: - Specifies the user to log in as. type: str identity_file: description: - The path to an identity file (SSH private key) that will be used when connecting to this host. - File need to exist and have mode V(0600) to be valid. type: path identities_only: description: - Specifies that SSH should only use the configured authentication identity and certificate files (either the default files, or those explicitly configured in the C(ssh_config) files or passed on the ssh command-line), even if C(ssh-agent) or a C(PKCS11Provider) or C(SecurityKeyProvider) offers more identities. type: bool version_added: 8.2.0 user_known_hosts_file: description: - Sets the user known hosts file option. type: str strict_host_key_checking: description: - Whether to strictly check the host key when doing connections to the remote host. - The value V(accept-new) is supported since community.general 8.6.0. choices: ['yes', 'no', 'ask', 'accept-new'] type: str proxycommand: description: - Sets the C(ProxyCommand) option. - Mutually exclusive with O(proxyjump). type: str proxyjump: description: - Sets the C(ProxyJump) option. - Mutually exclusive with O(proxycommand). type: str version_added: 6.5.0 forward_agent: description: - Sets the C(ForwardAgent) option. type: bool version_added: 4.0.0 add_keys_to_agent: description: - Sets the C(AddKeysToAgent) option. type: bool version_added: 8.2.0 ssh_config_file: description: - SSH config file. - If O(user) and this option are not specified, C(/etc/ssh/ssh_config) is used. - Mutually exclusive with O(user). type: path host_key_algorithms: description: - Sets the C(HostKeyAlgorithms) option. type: str version_added: 6.1.0 controlmaster: description: - Sets the C(ControlMaster) option. choices: ['yes', 'no', 'ask', 'auto', 'autoask'] type: str version_added: 8.1.0 controlpath: description: - Sets the C(ControlPath) option. type: str version_added: 8.1.0 controlpersist: description: - Sets the C(ControlPersist) option. type: str version_added: 8.1.0 dynamicforward: description: - Sets the C(DynamicForward) option. type: str version_added: 10.1.0 other_options: description: - Provides the option to specify arbitrary SSH config entry options via a dictionary. - The key names must be lower case. Keys with upper case values are rejected. - The values must be strings. Other values are rejected. type: dict version_added: 10.4.0 requirements: - paramiko a - name: Add a host in the configuration community.general.ssh_config: user: akasurde host: "example.com" hostname: "github.com" identity_file: "/home/akasurde/.ssh/id_rsa" port: '2223' state: present other_options: serveraliveinterval: '30' - name: Delete a host from the configuration community.general.ssh_config: ssh_config_file: "{{ ssh_config_test }}" host: "example.com" state: absent a hosts_added: description: A list of host added. returned: success type: list sample: ["example.com"] hosts_removed: description: A list of host removed. returned: success type: list sample: ["example.com"] hosts_changed: description: A list of host changed. returned: success type: list sample: ["example.com"] hosts_change_diff: description: A list of host diff changes. returned: on change type: list sample: [ { "example.com": { "new": { "hostname": "github.com", "identityfile": ["/tmp/test_ssh_config/fake_id_rsa"], "port": "2224" }, "old": { "hostname": "github.com", "identityfile": ["/tmp/test_ssh_config/fake_id_rsa"], "port": "2224" } } } ] N)deepcopy) AnsibleModulemissing_required_lib) to_native) string_types) ConfigParser HAS_PARAMIKOPARAMIKO_IMPORT_ERROR)determine_config_filec|dury|duryy)NTyesFnovalues p/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/community/general/plugins/modules/ssh_config.py convert_boolrs } ~ c|dk(ry|dk(ry|S)NTruerFalserrrs r fix_bool_strrs   Lrc.eZdZdZdZdZedZy) SSHConfigc||_ts |jtdt|j |_|j j d|_|j j dxs |j|_|j j d|_ |j j d|_ |j d|_ |j t|j|_|jj!y#t$r,|jjd|jz YOwxYw) NPARAMIKO)msg exceptionusergrouphostssh_config_file identity_filezFailed to find %sr )moduler fail_jsonrr paramsgetr"r#r$ config_filer&check_ssh_config_pathr configFileNotFoundErrorload)selfr(s r__init__zSSHConfig.__init__s    !5j!AMb  cmm KKOOF+ [[__W-: KKOOF+ ;;??+<=![[9 ""$ N&t'7'78DK ! N KK ! !&9D>$** +0B0B0Nggood&6&67G!#gt7I7I!JD 77>>$"4"45 %%*JT[[YhMi*i%j6 1O +rc ^ |jj|j}|jd}t d'id|jj dd|jj dd|jj ddt |jj dd|jj dd|jj dd |jj d d |jj d d |jj d d |jj d d t |jj d dt |jj dd|jj dd|jj ddt|jj dd|jj d}|jj dr|jj djD]\}}|j|k7r,|jjdj|||vrLt|ts6|jjdj|t||||<|jjdj|d}g}g}g} g} |D cgc]} | d|jk(s| }} |r|D]} |dk(r5d}| j!| d|jj#| d=|j$| dfi|\} } | sYd}|jj'| d| |j!| d|j!| d| d| dinh|d k(rc|j$t fi|\} } | rCd}| j!|j|jj)|j| |r|jj*s |jj-d#}|j0d$k(rd%}|jj5|j0|d|jj7|j0|j8d|jj;|j0|j<d|jj?||| || &ycc} w#t.$r@}|jjd!|j0d"t3|Yd}~d}~wwxYw)(Nstatehostnameportr&identities_onlyr" remote_userstrict_host_key_checkinguser_known_hosts_file proxycommand proxyjumphost_key_algorithms forward_agentadd_keys_to_agent controlmaster controlpathcontrolpersistdynamicforward other_optionsz0The other_options key {key!r} must be lower case)keyr'zMThe other_options value provided for key {key!r} must be a string, got {type})rKtypez(Multiple values provided for key {key!r}Fr$absentToptions)oldnewpresentzFailed to write to z due to permission issue: 0600z/etc/ssh/ssh_config0644)changed hosts_changed hosts_removedhosts_change_diff hosts_addedr) r. search_hostr$r*dictr+rritemslowerr(r)format isinstancer rLappend delete_host change_host update_hostadd_host check_modewrite_to_ssh_configPermissionErrorr,r set_mode_if_differentset_owner_if_differentr"set_group_if_differentr# exit_json)r1 hosts_resultr:argsrKrconfig_changedrUrWrVrXr$rTrN perm_exec perm_modes r ensure_statezSSHConfig.ensure_state s${{..tyy9  G$ [[__Z0 ( ++///: )9J)KL  /  &*[[__5O%P  #'++//2I"J 8 kkook2 !% 0E F 't{{'GH +4;;??;N+OP ++///:   6 ( 8H(IJ  ;;??+;DDF j U99;#%KK)).`.g.glo.g.p)qd?%e\: --3B3I3INQOSTYOZ3I3[-\ %DIKK)).X._._dg._.h)i j   )5Sf9RS S $ H$%)N!((f6KK++DL9(8t'7'7Y'P4'P$GW)- //V gF%,,T&\:)00 L'+I'.+2 (i /t//?$? GW!%""499- $$TYY8 $++"8"8 x //1 I#88" KK - -d.>.> 5 Q KK . .t/?/?E R KK . .t/?/?U S n,9,90A*5  7]TD# x %%OSO_O_ajktauv&xx xs$7UUU## V,,5V''V,c Rt|}d}|jD]\}}d|vr|jdd}|s|j|s0||=d}6|j||k7sKt |j|t r||j|vr~|||<d}||fS)NF_T)rr[replacer+r^list)rNkwargsrTkvs rrazSSHConfig.change_hostes7#LLN DAqaxIIc2&;;q> "GQ1$jQ.NSTX_XcXcdeXfSf  rN)__name__ __module__ __qualname__r2r-rp staticmethodrarrrrrs(" kY7v  rrc ttd(idtdddtdddtdd tdd d td dtddtddtddtdddtdddtddtddtddtdd dtddddgdtddgdd tddgd!d"tddd#tddd$tdd%tddd&tdddd%dgddgg'}t|}|jy))Nr#str)defaultrLr$T)rLrequiredr;)rLrCF)rLno_logr&r5r=boolrJrZr<rA)rLrrBrDrEr>r%r:rQrM)rLrchoicesr?)rraskz accept-newrF)rrrautoautoaskrGrHrIr"r@) argument_specsupports_check_modemutually_exclusiver)rrZrrp)r(ssh_config_objs rmainrxs  t%0 540 u% !%% >  F+  !f-  F+ 5! 5$7 t4 F+ #/ %( !F; E9y(>ST &*:&! *E4Ahi+ ,%6- . UD9/ 0 U+1 2d/3 4#'E4"@5 8! & ' [ ) ="FHv&N!r__main__) __future__rrrrL __metaclass__ DOCUMENTATIONEXAMPLESRETURNr4copyransible.module_utils.basicrr+ansible.module_utils.common.text.convertersr ansible.module_utils.sixr Dansible_collections.community.general.plugins.module_utils._stormsshr r r >ansible_collections.community.general.plugins.module_utils.sshrrrobjectrrryrrrrs~A@ I V &$ L JA1CC`H H V&"R zFr