Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

New Modules: AWS Network Firewall - rule groups #944

Merged
merged 2 commits into from
Mar 15, 2022
Merged

New Modules: AWS Network Firewall - rule groups #944

merged 2 commits into from
Mar 15, 2022

Conversation

tremble
Copy link
Contributor

@tremble tremble commented Feb 21, 2022
edited
Loading

Sorta-Depends-On: #974

SUMMARY

Two new modules for AWS Network Firewall rule groups. This first iteration will only support stateful rule groups.

networkfirewall_rule_group.py
networkfirewall_rule_group_info.py

ToDo:

  • Initial modules
  • Return Value documentation
  • Integration Tests
  • CI Permissions
ISSUE TYPE
  • New Module Pull Request
COMPONENT NAME

plugins/module_utils/networkfirewall.py
plugins/modules/networkfirewall_rule_group.py
plugins/modules/networkfirewall_rule_group_info.py

ADDITIONAL INFORMATION

Note: It's a deliberate choice not to support creation of stateless rules initially. I want to get some of the initial framework in place so that the Policy and Firewall pieces can be built out while waiting on reviews.

@ansibullbot
Copy link

cc @jillr @markuman @s-hertel
click here for bot help

@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@tremble tremble force-pushed the firewall/rule_group branch from 3cab926 to b8ef6fe Compare February 23, 2022 16:20
@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@tremble tremble force-pushed the firewall/rule_group branch from b8ef6fe to 8c11319 Compare February 26, 2022 13:49
@ansibullbot ansibullbot added integration tests/integration tests tests labels Feb 26, 2022
@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@tremble tremble force-pushed the firewall/rule_group branch from 8c11319 to 9cce48a Compare February 28, 2022 16:36
@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@tremble tremble force-pushed the firewall/rule_group branch from 9cce48a to 5712811 Compare February 28, 2022 17:23
@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@tremble tremble mentioned this pull request Mar 1, 2022
Merged
@tremble tremble force-pushed the firewall/rule_group branch from 5712811 to 6c96b90 Compare March 1, 2022 14:10
@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@gravesm
Copy link
Member

gravesm commented Mar 1, 2022

recheck

@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@gravesm
Copy link
Member

gravesm commented Mar 1, 2022

@tremble We needed to temporarily back out the terminator policy changes. I'll try to sort those out tomorrow.

@tremble
Copy link
Contributor Author

tremble commented Mar 2, 2022

@tremble We needed to temporarily back out the terminator policy changes. I'll try to sort those out tomorrow.

Sure. Having problems with botocore versions? The terminator changes need at least botocore 1.19.20.

FWIW this PR is only for the "Rule Groups", which have no direct costs associated with them.

@tremble tremble requested a review from alinabuzachis March 3, 2022 12:56
@gravesm
Copy link
Member

gravesm commented Mar 9, 2022

Sorry for the delay. This should be good from the terminator side of things.

@tremble tremble mentioned this pull request Mar 10, 2022
Closed
@tremble tremble force-pushed the firewall/rule_group branch from 6c96b90 to d029e83 Compare March 10, 2022 09:13
@softwarefactory-project-zuul

This comment was marked as resolved.

Sign in to view
@tremble tremble force-pushed the firewall/rule_group branch from d029e83 to 62d715e Compare March 10, 2022 10:15
@softwarefactory-project-zuul

This comment was marked as outdated.

Sign in to view
@tremble
Copy link
Contributor Author

tremble commented Mar 10, 2022

@goneri Am I missing something silly, this isn't picking up the code from #974 which I added a Depends-On: for.

@goneri
Copy link
Member

goneri commented Mar 10, 2022

@goneri Am I missing something silly, this isn't picking up the code from #974 which I added a Depends-On: for.

AFAIK, It needs to be at the top of the file.

@goneri
Copy link
Member

goneri commented Mar 10, 2022

recheck

@softwarefactory-project-zuul
Copy link
Contributor

Build succeeded.

@tremble
Copy link
Contributor Author

tremble commented Mar 10, 2022

AFAIK, It needs to be at the top of the file.

That did it, thanks @goneri

@tremble tremble force-pushed the firewall/rule_group branch from 62d715e to 8af9875 Compare March 15, 2022 13:40
@softwarefactory-project-zuul
Copy link
Contributor

Build succeeded.

@tremble tremble added the mergeit Merge the PR (SoftwareFactory) label Mar 15, 2022
@tremble
Copy link
Contributor Author

tremble commented Mar 15, 2022

We have a number of flaky integration tests, because #974 doesn't have any modules it's triggering the full test suite. To work around this I've merged #974 into #944. Both have been approved on their own.

@softwarefactory-project-zuul
Copy link
Contributor

Build succeeded (gate pipeline).

@softwarefactory-project-zuul softwarefactory-project-zuul bot merged commit 5de9673 into ansible-collections:main Mar 15, 2022
@tremble tremble deleted the firewall/rule_group branch July 7, 2022 19:24
abikouo pushed a commit to abikouo/community.aws that referenced this pull request Oct 24, 2023
@mandar242
ec2_ami: Add support for params BootMode, TpmSupport, UefiData (ansib…
7d2528a 
…le-collections#1037)

ec2_ami: Add support for params BootMode, TpmSupport, UefiData

SUMMARY
Depends-On: ansible-collections#1066

Added support for params BootMode, TpmSupport, UefiData in ec2_ami.

Fixes ansible-collections#944
ISSUE TYPE


Feature Pull Request

COMPONENT NAME

ec2_ami
ADDITIONAL INFORMATION



Example playbook
- name: abc
  hosts: localhost
  gather_facts: false
  tasks:
    - name: AMI Creation with boot_mode and tpm_support
      amazon.aws.ec2_ami:
        name: ami-create-test_legacy-bios
        state: present
        architecture: x86_64
        virtualization_type: hvm
        root_device_name: /dev/sda1
        device_mapping:
          - device_name: /dev/sda1
            snapshot_id: snap-xxxxxxxxx
        wait: yes
        region: us-east-2
        boot_mode: legacy-bios
        tpm_support: v2.0
        tags:
          name: ami-create-test

Reviewed-by: Gonéri Le Bouder <goneri@lebouder.net>
Reviewed-by: Mandar Kulkarni <mandar242@gmail.com>
Reviewed-by: Mike Graves <mgraves@redhat.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@alinabuzachis alinabuzachis alinabuzachis approved these changes

Assignees
No one assigned
Labels
community_review integration tests/integration mergeit Merge the PR (SoftwareFactory) module module needs_triage new_module New module new_plugin New plugin plugins plugin (any type) tests tests
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@tremble @ansibullbot @gravesm @goneri @alinabuzachis