diff options
| author | Rohit <rohitthakur2590@outlook.com> | 2019-08-23 11:33:33 +0530 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2019-08-23 11:33:33 +0530 |
| commit | c6a4c534564404eff896f08e7520dee7ad3b65c8 (patch) | |
| tree | 94516649acfef300a86d80dfcdb33bbdf0beb6b0 | |
| parent | 4449f3a81551f39699902fc82aacdfa434a2e43c (diff) | |
| download | ansible-revert-61114-fortios_wireless_controller_hotspot20_h2qp_conn_capability.tar.gz | |
Revert "Fortinet's new module for fortios_wireless_controller_hotspot20_h2qp_conn_capability (#61114)"revert-61114-fortios_wireless_controller_hotspot20_h2qp_conn_capability
This reverts commit 4449f3a81551f39699902fc82aacdfa434a2e43c.
2 files changed, 0 insertions, 743 deletions
diff --git a/lib/ansible/modules/network/fortios/fortios_wireless_controller_hotspot20_h2qp_conn_capability.py b/lib/ansible/modules/network/fortios/fortios_wireless_controller_hotspot20_h2qp_conn_capability.py deleted file mode 100644 index 24f674a041..0000000000 --- a/lib/ansible/modules/network/fortios/fortios_wireless_controller_hotspot20_h2qp_conn_capability.py +++ /dev/null @@ -1,434 +0,0 @@ -#!/usr/bin/python -from __future__ import (absolute_import, division, print_function) -# Copyright 2019 Fortinet, Inc. -# -# This program is free software: you can redistribute it and/or modify -# it under the terms of the GNU General Public License as published by -# the Free Software Foundation, either version 3 of the License, or -# (at your option) any later version. -# -# This program is distributed in the hope that it will be useful, -# but WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -# GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program. If not, see <https://www.gnu.org/licenses/>. - -__metaclass__ = type - -ANSIBLE_METADATA = {'status': ['preview'], - 'supported_by': 'community', - 'metadata_version': '1.1'} - -DOCUMENTATION = ''' ---- -module: fortios_wireless_controller_hotspot20_h2qp_conn_capability -short_description: Configure connection capability in Fortinet's FortiOS and FortiGate. -description: - - This module is able to configure a FortiGate or FortiOS (FOS) device by allowing the - user to set and modify wireless_controller_hotspot20 feature and h2qp_conn_capability category. - Examples include all parameters and values need to be adjusted to datasources before usage. - Tested with FOS v6.0.4 -version_added: "2.9" -author: - - Miguel Angel Munoz (@mamunozgonzalez) - - Nicolas Thomas (@thomnico) -notes: - - Requires fortiosapi library developed by Fortinet - - Run as a local_action in your playbook -requirements: - - fortiosapi>=0.9.8 -options: - host: - description: - - FortiOS or FortiGate IP address. - type: str - required: false - username: - description: - - FortiOS or FortiGate username. - type: str - required: false - password: - description: - - FortiOS or FortiGate password. - type: str - default: "" - vdom: - description: - - Virtual domain, among those defined previously. A vdom is a - virtual instance of the FortiGate that can be configured and - used as a different unit. - type: str - default: root - https: - description: - - Indicates if the requests towards FortiGate must use HTTPS protocol. - type: bool - default: true - ssl_verify: - description: - - Ensures FortiGate certificate must be verified by a proper CA. - type: bool - default: true - state: - description: - - Indicates whether to create or remove the object. - type: str - required: true - choices: - - present - - absent - wireless_controller_hotspot20_h2qp_conn_capability: - description: - - Configure connection capability. - default: null - type: dict - suboptions: - esp_port: - description: - - Set ESP port service (used by IPsec VPNs) status. - type: str - choices: - - closed - - open - - unknown - ftp_port: - description: - - Set FTP port service status. - type: str - choices: - - closed - - open - - unknown - http_port: - description: - - Set HTTP port service status. - type: str - choices: - - closed - - open - - unknown - icmp_port: - description: - - Set ICMP port service status. - type: str - choices: - - closed - - open - - unknown - ikev2_port: - description: - - Set IKEv2 port service for IPsec VPN status. - type: str - choices: - - closed - - open - - unknown - ikev2_xx_port: - description: - - Set UDP port 4500 (which may be used by IKEv2 for IPsec VPN) service status. - type: str - choices: - - closed - - open - - unknown - name: - description: - - Connection capability name. - required: true - type: str - pptp_vpn_port: - description: - - Set Point to Point Tunneling Protocol (PPTP) VPN port service status. - type: str - choices: - - closed - - open - - unknown - ssh_port: - description: - - Set SSH port service status. - type: str - choices: - - closed - - open - - unknown - tls_port: - description: - - Set TLS VPN (HTTPS) port service status. - type: str - choices: - - closed - - open - - unknown - voip_tcp_port: - description: - - Set VoIP TCP port service status. - type: str - choices: - - closed - - open - - unknown - voip_udp_port: - description: - - Set VoIP UDP port service status. - type: str - choices: - - closed - - open - - unknown -''' - -EXAMPLES = ''' -- hosts: localhost - vars: - host: "192.168.122.40" - username: "admin" - password: "" - vdom: "root" - ssl_verify: "False" - tasks: - - name: Configure connection capability. - fortios_wireless_controller_hotspot20_h2qp_conn_capability: - host: "{{ host }}" - username: "{{ username }}" - password: "{{ password }}" - vdom: "{{ vdom }}" - https: "False" - state: "present" - wireless_controller_hotspot20_h2qp_conn_capability: - esp_port: "closed" - ftp_port: "closed" - http_port: "closed" - icmp_port: "closed" - ikev2_port: "closed" - ikev2_xx_port: "closed" - name: "default_name_9" - pptp_vpn_port: "closed" - ssh_port: "closed" - tls_port: "closed" - voip_tcp_port: "closed" - voip_udp_port: "closed" -''' - -RETURN = ''' -build: - description: Build number of the fortigate image - returned: always - type: str - sample: '1547' -http_method: - description: Last method used to provision the content into FortiGate - returned: always - type: str - sample: 'PUT' -http_status: - description: Last result given by FortiGate on last operation applied - returned: always - type: str - sample: "200" -mkey: - description: Master key (id) used in the last call to FortiGate - returned: success - type: str - sample: "id" -name: - description: Name of the table used to fulfill the request - returned: always - type: str - sample: "urlfilter" -path: - description: Path of the table used to fulfill the request - returned: always - type: str - sample: "webfilter" -revision: - description: Internal revision number - returned: always - type: str - sample: "17.0.2.10658" -serial: - description: Serial number of the unit - returned: always - type: str - sample: "FGVMEVYYQT3AB5352" -status: - description: Indication of the operation's result - returned: always - type: str - sample: "success" -vdom: - description: Virtual domain used - returned: always - type: str - sample: "root" -version: - description: Version of the FortiGate - returned: always - type: str - sample: "v5.6.3" - -''' - -from ansible.module_utils.basic import AnsibleModule -from ansible.module_utils.connection import Connection -from ansible.module_utils.network.fortios.fortios import FortiOSHandler -from ansible.module_utils.network.fortimanager.common import FAIL_SOCKET_MSG - - -def login(data, fos): - host = data['host'] - username = data['username'] - password = data['password'] - ssl_verify = data['ssl_verify'] - - fos.debug('on') - if 'https' in data and not data['https']: - fos.https('off') - else: - fos.https('on') - - fos.login(host, username, password, verify=ssl_verify) - - -def filter_wireless_controller_hotspot20_h2qp_conn_capability_data(json): - option_list = ['esp_port', 'ftp_port', 'http_port', - 'icmp_port', 'ikev2_port', 'ikev2_xx_port', - 'name', 'pptp_vpn_port', 'ssh_port', - 'tls_port', 'voip_tcp_port', 'voip_udp_port'] - dictionary = {} - - for attribute in option_list: - if attribute in json and json[attribute] is not None: - dictionary[attribute] = json[attribute] - - return dictionary - - -def underscore_to_hyphen(data): - if isinstance(data, list): - for elem in data: - elem = underscore_to_hyphen(elem) - elif isinstance(data, dict): - new_data = {} - for k, v in data.items(): - new_data[k.replace('_', '-')] = underscore_to_hyphen(v) - data = new_data - - return data - - -def wireless_controller_hotspot20_h2qp_conn_capability(data, fos): - vdom = data['vdom'] - state = data['state'] - wireless_controller_hotspot20_h2qp_conn_capability_data = data['wireless_controller_hotspot20_h2qp_conn_capability'] - filtered_data = \ - underscore_to_hyphen(filter_wireless_controller_hotspot20_h2qp_conn_capability_data(wireless_controller_hotspot20_h2qp_conn_capability_data)) - - if state == "present": - return fos.set('wireless-controller.hotspot20', - 'h2qp-conn-capability', - data=filtered_data, - vdom=vdom) - - elif state == "absent": - return fos.delete('wireless-controller.hotspot20', - 'h2qp-conn-capability', - mkey=filtered_data['name'], - vdom=vdom) - - -def is_successful_status(status): - return status['status'] == "success" or \ - status['http_method'] == "DELETE" and status['http_status'] == 404 - - -def fortios_wireless_controller_hotspot20(data, fos): - - if data['wireless_controller_hotspot20_h2qp_conn_capability']: - resp = wireless_controller_hotspot20_h2qp_conn_capability(data, fos) - - return not is_successful_status(resp), \ - resp['status'] == "success", \ - resp - - -def main(): - fields = { - "host": {"required": False, "type": "str"}, - "username": {"required": False, "type": "str"}, - "password": {"required": False, "type": "str", "default": "", "no_log": True}, - "vdom": {"required": False, "type": "str", "default": "root"}, - "https": {"required": False, "type": "bool", "default": True}, - "ssl_verify": {"required": False, "type": "bool", "default": True}, - "state": {"required": True, "type": "str", - "choices": ["present", "absent"]}, - "wireless_controller_hotspot20_h2qp_conn_capability": { - "required": False, "type": "dict", "default": None, - "options": { - "esp_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "ftp_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "http_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "icmp_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "ikev2_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "ikev2_xx_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "name": {"required": True, "type": "str"}, - "pptp_vpn_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "ssh_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "tls_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "voip_tcp_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]}, - "voip_udp_port": {"required": False, "type": "str", - "choices": ["closed", "open", "unknown"]} - - } - } - } - - module = AnsibleModule(argument_spec=fields, - supports_check_mode=False) - - # legacy_mode refers to using fortiosapi instead of HTTPAPI - legacy_mode = 'host' in module.params and module.params['host'] is not None and \ - 'username' in module.params and module.params['username'] is not None and \ - 'password' in module.params and module.params['password'] is not None - - if not legacy_mode: - if module._socket_path: - connection = Connection(module._socket_path) - fos = FortiOSHandler(connection) - - is_error, has_changed, result = fortios_wireless_controller_hotspot20(module.params, fos) - else: - module.fail_json(**FAIL_SOCKET_MSG) - else: - try: - from fortiosapi import FortiOSAPI - except ImportError: - module.fail_json(msg="fortiosapi module is required") - - fos = FortiOSAPI() - - login(module.params, fos) - is_error, has_changed, result = fortios_wireless_controller_hotspot20(module.params, fos) - fos.logout() - - if not is_error: - module.exit_json(changed=has_changed, meta=result) - else: - module.fail_json(msg="Error in repo", meta=result) - - -if __name__ == '__main__': - main() diff --git a/test/units/modules/network/fortios/test_fortios_wireless_controller_hotspot20_h2qp_conn_capability.py b/test/units/modules/network/fortios/test_fortios_wireless_controller_hotspot20_h2qp_conn_capability.py deleted file mode 100644 index 11adad6091..0000000000 --- a/test/units/modules/network/fortios/test_fortios_wireless_controller_hotspot20_h2qp_conn_capability.py +++ /dev/null @@ -1,309 +0,0 @@ -# Copyright 2019 Fortinet, Inc. -# -# This program is free software: you can redistribute it and/or modify -# it under the terms of the GNU General Public License as published by -# the Free Software Foundation, either version 3 of the License, or -# (at your option) any later version. -# -# This program is distributed in the hope that it will be useful, -# but WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -# GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with Ansible. If not, see <https://www.gnu.org/licenses/>. - -# Make coding more python3-ish -from __future__ import (absolute_import, division, print_function) -__metaclass__ = type - -import os -import json -import pytest -from mock import ANY -from ansible.module_utils.network.fortios.fortios import FortiOSHandler - -try: - from ansible.modules.network.fortios import fortios_wireless_controller_hotspot20_h2qp_conn_capability -except ImportError: - pytest.skip("Could not load required modules for testing", allow_module_level=True) - - -@pytest.fixture(autouse=True) -def connection_mock(mocker): - connection_class_mock = mocker.patch('ansible.modules.network.fortios.fortios_wireless_controller_hotspot20_h2qp_conn_capability.Connection') - return connection_class_mock - - -fos_instance = FortiOSHandler(connection_mock) - - -def test_wireless_controller_hotspot20_h2qp_conn_capability_creation(mocker): - schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema') - - set_method_result = {'status': 'success', 'http_method': 'POST', 'http_status': 200} - set_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.set', return_value=set_method_result) - - input_data = { - 'username': 'admin', - 'state': 'present', - 'wireless_controller_hotspot20_h2qp_conn_capability': { - 'esp_port': 'closed', - 'ftp_port': 'closed', - 'http_port': 'closed', - 'icmp_port': 'closed', - 'ikev2_port': 'closed', - 'ikev2_xx_port': 'closed', - 'name': 'default_name_9', - 'pptp_vpn_port': 'closed', - 'ssh_port': 'closed', - 'tls_port': 'closed', - 'voip_tcp_port': 'closed', - 'voip_udp_port': 'closed' - }, - 'vdom': 'root'} - - is_error, changed, response = fortios_wireless_controller_hotspot20_h2qp_conn_capability.fortios_wireless_controller_hotspot20(input_data, fos_instance) - - expected_data = { - 'esp-port': 'closed', - 'ftp-port': 'closed', - 'http-port': 'closed', - 'icmp-port': 'closed', - 'ikev2-port': 'closed', - 'ikev2-xx-port': 'closed', - 'name': 'default_name_9', - 'pptp-vpn-port': 'closed', - 'ssh-port': 'closed', - 'tls-port': 'closed', - 'voip-tcp-port': 'closed', - 'voip-udp-port': 'closed' - } - - set_method_mock.assert_called_with('wireless-controller.hotspot20', 'h2qp-conn-capability', data=expected_data, vdom='root') - schema_method_mock.assert_not_called() - assert not is_error - assert changed - assert response['status'] == 'success' - assert response['http_status'] == 200 - - -def test_wireless_controller_hotspot20_h2qp_conn_capability_creation_fails(mocker): - schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema') - - set_method_result = {'status': 'error', 'http_method': 'POST', 'http_status': 500} - set_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.set', return_value=set_method_result) - - input_data = { - 'username': 'admin', - 'state': 'present', - 'wireless_controller_hotspot20_h2qp_conn_capability': { - 'esp_port': 'closed', - 'ftp_port': 'closed', - 'http_port': 'closed', - 'icmp_port': 'closed', - 'ikev2_port': 'closed', - 'ikev2_xx_port': 'closed', - 'name': 'default_name_9', - 'pptp_vpn_port': 'closed', - 'ssh_port': 'closed', - 'tls_port': 'closed', - 'voip_tcp_port': 'closed', - 'voip_udp_port': 'closed' - }, - 'vdom': 'root'} - - is_error, changed, response = fortios_wireless_controller_hotspot20_h2qp_conn_capability.fortios_wireless_controller_hotspot20(input_data, fos_instance) - - expected_data = { - 'esp-port': 'closed', - 'ftp-port': 'closed', - 'http-port': 'closed', - 'icmp-port': 'closed', - 'ikev2-port': 'closed', - 'ikev2-xx-port': 'closed', - 'name': 'default_name_9', - 'pptp-vpn-port': 'closed', - 'ssh-port': 'closed', - 'tls-port': 'closed', - 'voip-tcp-port': 'closed', - 'voip-udp-port': 'closed' - } - - set_method_mock.assert_called_with('wireless-controller.hotspot20', 'h2qp-conn-capability', data=expected_data, vdom='root') - schema_method_mock.assert_not_called() - assert is_error - assert not changed - assert response['status'] == 'error' - assert response['http_status'] == 500 - - -def test_wireless_controller_hotspot20_h2qp_conn_capability_removal(mocker): - schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema') - - delete_method_result = {'status': 'success', 'http_method': 'POST', 'http_status': 200} - delete_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.delete', return_value=delete_method_result) - - input_data = { - 'username': 'admin', - 'state': 'absent', - 'wireless_controller_hotspot20_h2qp_conn_capability': { - 'esp_port': 'closed', - 'ftp_port': 'closed', - 'http_port': 'closed', - 'icmp_port': 'closed', - 'ikev2_port': 'closed', - 'ikev2_xx_port': 'closed', - 'name': 'default_name_9', - 'pptp_vpn_port': 'closed', - 'ssh_port': 'closed', - 'tls_port': 'closed', - 'voip_tcp_port': 'closed', - 'voip_udp_port': 'closed' - }, - 'vdom': 'root'} - - is_error, changed, response = fortios_wireless_controller_hotspot20_h2qp_conn_capability.fortios_wireless_controller_hotspot20(input_data, fos_instance) - - delete_method_mock.assert_called_with('wireless-controller.hotspot20', 'h2qp-conn-capability', mkey=ANY, vdom='root') - schema_method_mock.assert_not_called() - assert not is_error - assert changed - assert response['status'] == 'success' - assert response['http_status'] == 200 - - -def test_wireless_controller_hotspot20_h2qp_conn_capability_deletion_fails(mocker): - schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema') - - delete_method_result = {'status': 'error', 'http_method': 'POST', 'http_status': 500} - delete_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.delete', return_value=delete_method_result) - - input_data = { - 'username': 'admin', - 'state': 'absent', - 'wireless_controller_hotspot20_h2qp_conn_capability': { - 'esp_port': 'closed', - 'ftp_port': 'closed', - 'http_port': 'closed', - 'icmp_port': 'closed', - 'ikev2_port': 'closed', - 'ikev2_xx_port': 'closed', - 'name': 'default_name_9', - 'pptp_vpn_port': 'closed', - 'ssh_port': 'closed', - 'tls_port': 'closed', - 'voip_tcp_port': 'closed', - 'voip_udp_port': 'closed' - }, - 'vdom': 'root'} - - is_error, changed, response = fortios_wireless_controller_hotspot20_h2qp_conn_capability.fortios_wireless_controller_hotspot20(input_data, fos_instance) - - delete_method_mock.assert_called_with('wireless-controller.hotspot20', 'h2qp-conn-capability', mkey=ANY, vdom='root') - schema_method_mock.assert_not_called() - assert is_error - assert not changed - assert response['status'] == 'error' - assert response['http_status'] == 500 - - -def test_wireless_controller_hotspot20_h2qp_conn_capability_idempotent(mocker): - schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema') - - set_method_result = {'status': 'error', 'http_method': 'DELETE', 'http_status': 404} - set_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.set', return_value=set_method_result) - - input_data = { - 'username': 'admin', - 'state': 'present', - 'wireless_controller_hotspot20_h2qp_conn_capability': { - 'esp_port': 'closed', - 'ftp_port': 'closed', - 'http_port': 'closed', - 'icmp_port': 'closed', - 'ikev2_port': 'closed', - 'ikev2_xx_port': 'closed', - 'name': 'default_name_9', - 'pptp_vpn_port': 'closed', - 'ssh_port': 'closed', - 'tls_port': 'closed', - 'voip_tcp_port': 'closed', - 'voip_udp_port': 'closed' - }, - 'vdom': 'root'} - - is_error, changed, response = fortios_wireless_controller_hotspot20_h2qp_conn_capability.fortios_wireless_controller_hotspot20(input_data, fos_instance) - - expected_data = { - 'esp-port': 'closed', - 'ftp-port': 'closed', - 'http-port': 'closed', - 'icmp-port': 'closed', - 'ikev2-port': 'closed', - 'ikev2-xx-port': 'closed', - 'name': 'default_name_9', - 'pptp-vpn-port': 'closed', - 'ssh-port': 'closed', - 'tls-port': 'closed', - 'voip-tcp-port': 'closed', - 'voip-udp-port': 'closed' - } - - set_method_mock.assert_called_with('wireless-controller.hotspot20', 'h2qp-conn-capability', data=expected_data, vdom='root') - schema_method_mock.assert_not_called() - assert not is_error - assert not changed - assert response['status'] == 'error' - assert response['http_status'] == 404 - - -def test_wireless_controller_hotspot20_h2qp_conn_capability_filter_foreign_attributes(mocker): - schema_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.schema') - - set_method_result = {'status': 'success', 'http_method': 'POST', 'http_status': 200} - set_method_mock = mocker.patch('ansible.module_utils.network.fortios.fortios.FortiOSHandler.set', return_value=set_method_result) - - input_data = { - 'username': 'admin', - 'state': 'present', - 'wireless_controller_hotspot20_h2qp_conn_capability': { - 'random_attribute_not_valid': 'tag', - 'esp_port': 'closed', - 'ftp_port': 'closed', - 'http_port': 'closed', - 'icmp_port': 'closed', - 'ikev2_port': 'closed', - 'ikev2_xx_port': 'closed', - 'name': 'default_name_9', - 'pptp_vpn_port': 'closed', - 'ssh_port': 'closed', - 'tls_port': 'closed', - 'voip_tcp_port': 'closed', - 'voip_udp_port': 'closed' - }, - 'vdom': 'root'} - - is_error, changed, response = fortios_wireless_controller_hotspot20_h2qp_conn_capability.fortios_wireless_controller_hotspot20(input_data, fos_instance) - - expected_data = { - 'esp-port': 'closed', - 'ftp-port': 'closed', - 'http-port': 'closed', - 'icmp-port': 'closed', - 'ikev2-port': 'closed', - 'ikev2-xx-port': 'closed', - 'name': 'default_name_9', - 'pptp-vpn-port': 'closed', - 'ssh-port': 'closed', - 'tls-port': 'closed', - 'voip-tcp-port': 'closed', - 'voip-udp-port': 'closed' - } - - set_method_mock.assert_called_with('wireless-controller.hotspot20', 'h2qp-conn-capability', data=expected_data, vdom='root') - schema_method_mock.assert_not_called() - assert not is_error - assert changed - assert response['status'] == 'success' - assert response['http_status'] == 200 |