Ë ÇVhÐãóN—dZdZddlmZGd„de«Zd„Zedk(re«yy) aT --- module: role_assignment short_description: Assign OpenStack identity groups and users to roles author: OpenStack Ansible SIG description: - Grant and revoke roles in either project or domain context for OpenStack identity (Keystone) users and groups. options: domain: description: - Name or ID of the domain to scope the role association to. - Valid only with keystone version 3. - Required if I(project) is not specified. - When I(project) is specified, then I(domain) will not be used for scoping the role association, only for finding resources. - "When scoping the role association, I(project) has precedence over I(domain) and I(domain) has precedence over I(system): When I(project) is specified, then I(domain) and I(system) are not used for role association. When I(domain) is specified, then I(system) will not be used for role association." type: str group: description: - Name or ID for the group. - Valid only with keystone version 3. - If I(group) is not specified, then I(user) is required. Both may not be specified at the same time. type: str project: description: - Name or ID of the project to scope the role association to. - If you are using keystone version 2, then this value is required. - When I(project) is specified, then I(domain) will not be used for scoping the role association, only for finding resources. - "When scoping the role association, I(project) has precedence over I(domain) and I(domain) has precedence over I(system): When I(project) is specified, then I(domain) and I(system) are not used for role association. When I(domain) is specified, then I(system) will not be used for role association." type: str role: description: - Name or ID for the role. required: true type: str state: description: - Should the roles be present or absent on the user. choices: [present, absent] default: present type: str system: description: - Name of system to scope the role association to. - Valid only with keystone version 3. - Required if I(project) and I(domain) are not specified. - "When scoping the role association, I(project) has precedence over I(domain) and I(domain) has precedence over I(system): When I(project) is specified, then I(domain) and I(system) are not used for role association. When I(domain) is specified, then I(system) will not be used for role association." type: str user: description: - Name or ID for the user. - If I(user) is not specified, then I(group) is required. Both may not be specified at the same time. type: str extends_documentation_fragment: - openstack.cloud.openstack az - name: Grant an admin role on the user admin in the project project1 openstack.cloud.role_assignment: cloud: mycloud user: admin role: admin project: project1 - name: Revoke the admin role from the user barney in the newyork domain openstack.cloud.role_assignment: cloud: mycloud state: absent user: barney role: admin domain: newyork é)ÚOpenStackModulec óœ—eZdZee«e«e«ed¬«edddg¬«e«e«¬«Zeddgd¬ «Zd „Zy ) ÚIdentityRoleAssignmentModuleT)ÚrequiredÚpresentÚabsent)ÚdefaultÚchoices)ÚdomainÚgroupÚprojectÚroleÚstateÚsystemÚuser)rr )r r r)Úrequired_one_ofÚsupports_check_modecól—i}i}i}|jd}|jjj|d¬«}|d|d<|jd}|?|jjj |d¬«}|d|d<|d|d<|d|d<|jd }|9|jjj |fd di|¤Ž} | d|d <| d|d <|jd } | 9|jjj | fd di|¤Ž} | d|d <| d|d <|jd} | d|vr| |d<| |d<|jd} | ]|jjj| fd di|¤Ž}|d|d<|d|d<|jdd«|jdd«t|jjjdi|¤Ž«}|jd}|jjr%|j|dk(xr| xs |dk(xr|¬«|dk(r5|s3|jj|dfi|¤Ž|jd¬«y|dk(r5|r3|jj|dfi|¤Ž|jd¬«y|jd¬«y)NrF)Úignore_missingÚidÚrole_idr Úscope_domain_idÚ domain_idrrÚuser_idr Úgroup_idrz scope.systemr Úscope_project_idrrr)ÚchangedT©)ÚparamsÚconnÚidentityÚ find_roleÚ find_domainÚ find_userÚ find_groupÚ find_projectÚpopÚlistÚrole_assignmentsÚansibleÚ check_modeÚ exit_jsonÚ grant_roleÚ revoke_role)ÚselfÚfiltersÚ find_filtersÚkwargsÚrole_name_or_idrÚdomain_name_or_idr Úuser_name_or_idrÚgroup_name_or_idr Ú system_nameÚproject_name_or_idr r)rs ús/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/openstack/cloud/plugins/modules/role_assignment.pyÚrunz IdentityRoleAssignmentModule.runws €ØˆØˆ ؈àŸ+™+ fÑ-ˆØy‰y×!Ñ!×+Ñ+¨OØ;@ð,óBˆà! $™Zˆ Ñà ŸK™K¨Ñ1ÐØ Ð (Ø—Y‘Y×'Ñ'×3Ñ3Ø!°%ð4ó9ˆFà)/°©ˆGÐ%Ñ &Ø(.¨t© ˆL˜Ñ %Ø% d™|ˆF8Ñ àŸ+™+ fÑ-ˆØ Ð &Ø/4—9‘9×%Ñ%×/Ñ/ØñGØ05ðGØ9EñGˆDà!% d¡ˆGIÑ Ø! $™ZˆF6‰NàŸ;™; wÑ/ÐØ Ð 'Ø1D—I‘I×&Ñ&×1Ñ1Ø ñHØ16ðHØ:FñHˆEà"'¨¡+ˆGJÑ Ø# D™kˆF7‰Oà—k‘k (Ñ+ˆ Ø Ð "à ¨Ñ/Ø*5˜Ñ'à*ˆF8Ñ à!Ÿ[™[¨Ñ3ÐØ Ð )Ø5d—i‘i×(Ñ(×5Ñ5Ø"ñJØ38ðJØrIsCððG€ ðR €õ"_ôU* ?ôU*òp ð  ˆzÒÙ…Fðr;