VhP ddlmZmZmZeZdZdZdZddl Z ddl m Z ddl m Z  ddlmZdd lmZdd lmZmZmZ dd lmZmZGd d e ZdZdZedk(reyy#e$rZ ixZxZZYdZ[9dZ[wwxYw#e$rY?wxYw))absolute_importdivisionprint_functiona+ module: openshift_route short_description: Expose a Service as an OpenShift Route. version_added: "0.3.0" author: "Fabian von Feilitzsch (@fabianvf)" description: - Looks up a Service and creates a new Route based on it. - Analogous to `oc expose` and `oc create route` for creating Routes, but does not support creating Services. - For creating Services from other resources, see kubernetes.core.k8s. extends_documentation_fragment: - kubernetes.core.k8s_auth_options - kubernetes.core.k8s_wait_options - kubernetes.core.k8s_state_options requirements: - "python >= 3.6" - "kubernetes >= 12.0.0" - "PyYAML >= 3.11" options: service: description: - The name of the service to expose. - Required when I(state) is not absent. type: str aliases: ['svc'] namespace: description: - The namespace of the resource being targeted. - The Route will be created in this namespace as well. required: yes type: str labels: description: - Specify the labels to apply to the created Route. - 'A set of key: value pairs.' type: dict annotations: description: - Specify the Route Annotations. - 'A set of key: value pairs.' type: dict version_added: "2.1.0" name: description: - The desired name of the Route to be created. - Defaults to the value of I(service) type: str hostname: description: - The hostname for the Route. type: str path: description: - The path for the Route type: str wildcard_policy: description: - The wildcard policy for the hostname. - Currently only Subdomain is supported. - If not provided, the default of None will be used. choices: - Subdomain type: str port: description: - Name or number of the port the Route will route traffic to. type: str tls: description: - TLS configuration for the newly created route. - Only used when I(termination) is set. type: dict suboptions: ca_certificate: description: - Path to a CA certificate file on the target host. - Not supported when I(termination) is set to passthrough. type: str certificate: description: - Path to a certificate file on the target host. - Not supported when I(termination) is set to passthrough. type: str destination_ca_certificate: description: - Path to a CA certificate file used for securing the connection. - Only used when I(termination) is set to reencrypt. - Defaults to the Service CA. type: str key: description: - Path to a key file on the target host. - Not supported when I(termination) is set to passthrough. type: str insecure_policy: description: - Sets the InsecureEdgeTerminationPolicy for the Route. - Not supported when I(termination) is set to reencrypt. - When I(termination) is set to passthrough, only redirect is supported. - If not provided, insecure traffic will be disallowed. type: str choices: - allow - redirect - disallow default: disallow termination: description: - The termination type of the Route. - If left empty no termination type will be set, and the route will be insecure. - When set to insecure I(tls) will be ignored. choices: - edge - passthrough - reencrypt - insecure default: insecure type: str a - name: Create hello-world deployment community.okd.k8s: definition: apiVersion: apps/v1 kind: Deployment metadata: name: hello-kubernetes namespace: default spec: replicas: 3 selector: matchLabels: app: hello-kubernetes template: metadata: labels: app: hello-kubernetes spec: containers: - name: hello-kubernetes image: paulbouwer/hello-kubernetes:1.8 ports: - containerPort: 8080 - name: Create Service for the hello-world deployment community.okd.k8s: definition: apiVersion: v1 kind: Service metadata: name: hello-kubernetes namespace: default spec: ports: - port: 80 targetPort: 8080 selector: app: hello-kubernetes - name: Expose the insecure hello-world service externally community.okd.openshift_route: service: hello-kubernetes namespace: default insecure_policy: allow annotations: haproxy.router.openshift.io/balance: roundrobin register: route a result: description: - The Route object that was created or updated. Will be empty in the case of deletion. returned: success type: complex contains: apiVersion: description: The versioned schema of this representation of an object. returned: success type: str kind: description: Represents the REST resource this object represents. returned: success type: str metadata: description: Standard object metadata. Includes name, namespace, annotations, labels, etc. returned: success type: complex contains: name: description: The name of the created Route type: str namespace: description: The namespace of the create Route type: str spec: description: Specification for the Route returned: success type: complex contains: host: description: Host is an alias/DNS that points to the service. type: str path: description: Path that the router watches for, to route traffic for to the service. type: str port: description: Defines a port mapping from a router to an endpoint in the service endpoints. type: complex contains: targetPort: description: The target port on pods selected by the service this route points to. type: str tls: description: Defines config used to secure a route and provide termination. type: complex contains: caCertificate: description: Provides the cert authority certificate contents. type: str certificate: description: Provides certificate contents. type: str destinationCACertificate: description: Provides the contents of the ca certificate of the final destination. type: str insecureEdgeTerminationPolicy: description: Indicates the desired behavior for insecure connections to a route. type: str key: description: Provides key file contents. type: str termination: description: Indicates termination type. type: str to: description: Specifies the target that resolve into endpoints. type: complex contains: kind: description: The kind of target that the route is referring to. Currently, only 'Service' is allowed. type: str name: description: Name of the service/target that is being referred to. e.g. name of the service. type: str weight: description: Specifies the target's relative weight against other target reference objects. type: int wildcardPolicy: description: Wildcard policy if any for the route. type: str status: description: Current status details for the Route returned: success type: complex contains: ingress: description: List of places where the route may be exposed. type: complex contains: conditions: description: Array of status conditions for the Route ingress. type: complex contains: type: description: The type of the condition. Currently only 'Ready'. type: str status: description: The status of the condition. Can be True, False, Unknown. type: str host: description: The host string under which the route is exposed. type: str routerCanonicalHostname: description: The external host name for the router that can be used as a CNAME for the host requested for this route. May not be set. type: str routerName: description: A name chosen by the router to identify itself. type: str wildcardPolicy: description: The wildcard policy that was allowed where this route is exposed. type: str duration: description: elapsed time of task in seconds returned: when C(wait) is true type: int sample: 48 N) to_native)AnsibleOpenshiftModule)perform_action)Waiter) AUTH_ARG_SPEC WAIT_ARG_SPECCOMMON_ARG_SPEC)DynamicApiError NotFoundErrorcVeZdZfdZedZdZ ddZdZxZ S)OpenShiftRoutectt| |jdd|_d|_g|_d|jd<y)NT) argument_specsupports_check_modeF merge_type)superr__init__argspec append_hashapplywarningsparams)self __class__s q/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/community/okd/plugins/modules/openshift_route.pyrzOpenShiftRoute.__init__TsG nd,,, $ - !  $( L!ctjt}|jtjt|jtjt t ddg|d<t dd|d<t d |d <t d |d <t d |d <t d |d <t dgd|d<t d |d<t dt t d t d t d t ddt dgdd|d<t gdd|d<t d |d<|S)Nstrsvc)typealiasesserviceT)requiredr# namespacedict)r#labelsnamehostnamepath Subdomain)choicesr#wildcard_policyportF)r#no_log)allowredirectdisallowr4)r#r.default)ca_certificate certificatedestination_ca_certificatekeyinsecure_policy)r#optionstls)edge passthrough reencryptinsecurer@)r.r5 termination annotations)copydeepcopyr updater r r()rspecs rrzOpenShiftRoute.argspec_s0}}]+ DMM-01 DMM/23EE7;Y $U;[6*X'V U+Z'V "& }5"I 'V #/ e,+/U+;eE2 $=&!   U #Dj ]#/] rc|jjd}|jd}|jjd}|dk(rd}|jjd}|dk7r|s|jd|jjdxr#|jjd  xr|dk7}|rd |jd<|jjd xs|}|jjd }|jjd }|jjd} |jjd} |jjd} |jjd} |r|jjdr|jdjd} |jdjd}|jdjd}|jdjd}|jdjd}|dk(r d}n dx} x}x}x}}dd|||did}| r| |dd<|dk7r |j||| | || ||| ||| |d<t |j ||j}|jjd }|jjd!}|rN|j ddd"#}t|j|t}|j||||$\}|d%<|d&<|jd'i|y)(Nr%r'rAr@stateabsentz:If 'state' is not 'absent' then 'service' must be providedwaitwait_conditionFr*r)r+r,r/r0rBr<r6r7r8r9r:r4zroute.openshift.io/v1Route)r*r'r)) apiVersionkindmetadatarFrO) r0r/r+r,termination_typetls_insecure_policy tls_ca_certtls_certtls_keytls_dest_ca_certrF wait_timeout wait_sleepTfail)timeoutsleepr*r'resultduration) rget fail_jsonbuild_route_specrr" find_resourcer clientwait_predicaterJ exit_json)r service_namer'rPrH custom_wait route_namer)r+r,r/r0rBrRrSrUrTrQrouter\rZr[ v1_routeswaitersuccesss rexecute_modulezOpenShiftRoute.execute_modules-{{y1 KK , ;;??=9 z )#  ( H \ NNW X KKOOF # "KKOO$455 "!  "'DKK [[__V,< *;;??:.{{v&++//*;<{{v&kkoom4   6++e,001ABK{{5)--mr3zU'redirect' is the only supported insecureEdgeTerminationPolicy for passthrough routesr?z<'tls.insecure_policy' is not supported with reencrypt routesz='tls.ca_certificate' is not supported with passthrough routes caCertificatez:'tls.certificate' is not supported with passthrough routesr7z2'tls.key' is not supported with passthrough routesr9z<'destination_certificate' is only valid for reencrypt routesdestinationCACertificatehostr,)rbr_rr`r formatbodyrsrt Exceptionrset_portr( capitalize)rrfr'r0r/r+r,rPrQrRrSrTrU v1_servicestarget_serviceexc route_specs rrazOpenShiftRoute.build_route_specs((Dt(D  (__,)_TN2!$ dmmNDA.    $1A1L1L1N OJu "#v-,668u%7&6*j8s ,668u%7&4NNVFJ 5!"AB#}4NNW6A 5!/2#}4NNT4< 5!-0#}4NN#WX+2 5!%(#{2NNVAQ 5!"<= $Ju  !)Jv  !%Jv m "f"N  NNCJJ388Tjjzzzz      NNCJJcN    s*E**H* H*A G&& H*2-H%%H*c|r|S|jjD]9}|jdk(s|j|jcS|jcSy)NTCP)rFportsprotocolr*rv)rr%port_argps rrzOpenShiftRoute.set_port@sQ O## $AzzU"66%66M||#  $ r) NNNNNNNNNN) __name__ __module__ __qualname__rpropertyrrmrar __classcell__)rs@rrrSsP )  DR!p  hTrrc|jr|jjsy|jjD]E}|jDcgc]}|jdk(s|}}|sy|d}|jdk7sEyycc}w)NFAdmittedrTrueT)rsingress conditionsr#)rirxmatchs rrdrdKs~ LLU\\11<<''#..Gq!&&J2FGGa <<6 !   Hs B Bc4tjy)N)r run_moduler^rrmainrXs!r__main__) __future__rrrr# __metaclass__ DOCUMENTATIONEXAMPLESRETURNrCansible.module_utils._textrGansible_collections.community.okd.plugins.module_utils.openshift_commonrCansible_collections.kubernetes.core.plugins.module_utils.k8s.runnerrCansible_collections.kubernetes.core.plugins.module_utils.k8s.waiterr Dansible_collections.kubernetes.core.plugins.module_utils.args_commonr r r ImportErrorekubernetes.dynamic.exceptionsr rrrdrrr^rrrsA@ | |0 dv r 09 L u+up " zFg9688M8MO9   s(A"A;"A8'A33A8;BB