VhK&ddlmZmZmZeZdZdZddlZddl m Z ddl m Z ddl m Z ddd Zd Zd Zd Zd ZdZedk(reyy))absolute_importdivisionprint_functiona --- module: podman_secret author: - "Aliaksandr Mianzhynski (@amenzhinsky)" version_added: '1.7.0' short_description: Manage podman secrets notes: [] description: - Manage podman secrets requirements: - podman options: data: description: - The value of the secret. Required when C(state) is C(present). Mutually exclusive with C(env) and C(path). type: str driver: description: - Override default secrets driver, currently podman uses C(file) which is unencrypted. type: str driver_opts: description: - Driver-specific key-value options. type: dict env: description: - The name of the environment variable that contains the secret. Mutually exclusive with C(data) and C(path). type: str executable: description: - Path to C(podman) executable if it is not in the C($PATH) on the machine running C(podman) type: str default: 'podman' force: description: - Use it when C(state) is C(present) to remove and recreate an existing secret. type: bool default: false skip_existing: description: - Use it when C(state) is C(present) and secret with the same name already exists. If set to C(true), the secret will NOT be recreated and remains as is. type: bool default: false name: description: - The name of the secret. required: True type: str path: description: - Path to the file that contains the secret. Mutually exclusive with C(data) and C(env). type: path state: description: - Whether to create or remove the named secret. type: str default: present choices: - absent - present labels: description: - Labels to set on the secret. type: dict debug: description: - Enable debug mode for module. It prints secrets diff. type: bool default: False a( - name: Create secret containers.podman.podman_secret: state: present name: mysecret data: "my super secret content" - name: Create container that uses the secret containers.podman.podman_container: name: showmysecret image: docker.io/alpine:3.14 secrets: - mysecret detach: false command: cat /run/secrets/mysecret register: container - name: Output secret data debug: msg: '{{ container.stdout }}' - name: Remove secret containers.podman.podman_secret: state: absent name: mysecret N) AnsibleModule) LooseVersion)get_podman_versionbeforeafterc |t|tdkrH|j|ddddg\}}}||jDcgc]}|jc}vS|j|dd|g\}}}|dk(Scc}w)Nz4.5.0secretlsz--formatz {{.Name}}existsr)r run_command splitlinesstrip)module executablenameversionrcouterris s/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/containers/podman/plugins/modules/podman_secret.pypodman_secret_existsrzs,w/,w2GG)) 4[ AC C3>>+;zrbzutf-8SpecDriverNameOptions=Labels) rlog from_jsondiffopenreaddecodeosenvirongetitemsjoin Exception)rrrdatapathenvskipdriver driver_optsdebuglabelscmdrrrrftextenv_datakvs r need_updaterBs xND AC%%c*LBS Qw  JJKcQ R 4!!#&q) l#t+$(DM%+L%9DN%9DM%/DN dD! 0Qvvxw/ 0l#t+$(DM%+L%9DN%9DM%/DN zz~~c*Hl#x/$,DM%+L%9DN%9DM%/DN f~h'/69 &W !'!9&!AX #))+ 1&>(+I6::1=B$'HHaV$4DM%(XXF6N84Y?CCAFG&IDN    1&>(+//2a7$'HHaV$4DM%(XXF6N8488;<&>DN   S 0 0N sn5J3JJ I44'JJ/AJ0J+J/5J%A J33J'A J2J4I>9J J  J c Lt|d} | >t| tdk\r't||||||||| | | rt|||n'ddiS|r t||||rt |||| rddiS|ddg} |r"| j d| j || rF| j d| j d j d | jD| rK| jD]8\}}| j d | j d j ||g:| j ||r| j d nl|r| j |nX|rVtjj||jd|z| j d| j ||r|j| |d\}}}n|j| \}}}|dk7r|jd|zdtddztddzddS)NF)failz4.7.0changedrcreatez--driverz --driver-opts,c3>K|]}dj|yw)r&N)r2).0rs r z'podman_secret_create..sEACHHQKEsz--labelr&-z"Environment variable %s is not setmsgz--envT)r4 binary_datarzUnable to create secret: %sr  r r )rEr*)rrrBpodman_secret_removerappendr2r1r.r/r0 fail_jsonrr*)rrrr4r5r6forcer7r8r9r:r;podman_versionr<r@rArrrs rpodman_secret_createrUs'U;N!l>&BlSZF[&[ vz4tS$P[]bdj k T :u% %  T : (T>Ru% % x *C  : 6 ?# 388E1B1B1DEEF LLN )DAq JJy ! JJsxxA' ( )JJt  3  4 ::>>#  &   !E!K  L 7 3 ))#Dd)K C))#. C Qw:S@A8nt+']T)  cd}|j|dd|g\}}}|dk(rd}d |iSd|vr d |iS|jd|zd |iS) NFrrmrTzno such secretzUnable to remove secret: %srLrE)rrR)rrrrErrrs rrPrPsG%%z8T4&HILBS Qw 7  S  7  :S@A 7 rVcbtttddtddddgtddtdd td td td d td d td td td td d  ddgddfggdg}|jd}|jd}|j|jdd}|dk(r|jd}|jd}|jd}|jd}|jd}|jd} |jd} |jd } |jd} t ||||| | ||||| | } n t |||} |j di| y)Nstrpodman)typedefaultpresentabsent)r\r]choicesT)r\required)r\no_log)r\r5boolFdict) rstaterr4r6r5rS skip_existingr8r9r;r:re)r5r6r4) argument_spec required_ifmutually_exclusiverr)rar4rSrfr8r9r:r;r6)rrdparams get_bin_pathrUrP exit_json)rrerrr4rSr7r8r9r:r;r5r6resultss rmainros 9E9x>ST5405.% 6"FE2FE:U#&)V$FE2  y*A4HI34!F& MM' "E == D$$V]]<%@4$PJ }}V$ g&}}_-x(mmM2  g&x(}}V$mmE"&vz'+T4eT'-{E6K'vz4@FwrV__main__) __future__rrrr\ __metaclass__ DOCUMENTATIONEXAMPLESr.ansible.module_utils.basicrHansible_collections.containers.podman.plugins.module_utils.podman.commonrrr*rrBrUrPro__name__rjrVrrxskA@ L \ 6 4agr">B1h ( V zFrV