Skip to content

Latest commit

 

History

History
690 lines (491 loc) · 26.1 KB

CHANGELOG.rst

File metadata and controls

690 lines (491 loc) · 26.1 KB

infra.aap_configuration Release Notes

  • renamed some more vars that got missed in the new naming convention.
  • updated gateway services async and no log vars to correct naming convention.
Release Date: 2024-10-31
The collection has been updated for AAP 2.5 use and has only been tested against AAP 2.5, it has been updated to include the previously separated hub, eda, and gateway collection roles.
  • Introduction of roles for gateway
  • Rename of collection to infra.aap_configuration
  • Roles from infra.ah_configuration and infra.eda_configuration have migrated into this collection
  • Major overhaul to all code completed, variables have changed, role names have changed, please see the Conversion guide for more details.
  • ee_namespace role has been removed, this was removed in AAP 2.4, and was depreciated then.
  • Controller credentials role now includes request timeout option.
  • meta_dependency_check set to default to false. This is due to feature not working on controller, or in offline environments without a hub. Set controller_dependency_check to 'true' to re-enable feature.
  • Add ability to disable dependency check
  • Fixed issue with loops that were getting always empty list of objects
  • Added meta role to perform dependency checks. No changes needed from a user perspective.
  • filetree_create able export proper approval role
  • filetree_create able export proper approval role (user roles)
  • filetree_create able to bulk export role for objects
  • filetree_create able to create files without id values
  • filetree_create able to export project with update_project state
  • filetree_create able to export scm_refspec of project
  • filetree_create able to export single worfklow with related job_templates and projects
  • filetree_create able to filter by schedule_id
  • filetree_create able to remove $encrypted$ while exporting job template and workflow
  • filetree_create able to use defined organization for organizationless objects
  • filetree_create is missing double quote
  • filetree_read speed tuning
  • fix memory leak when there are plenty of job templates
  • fix project export while exporting related objects to job template
  • Fix "approval" role permission name in object diff.
  • Fixed missing execution environemnt while exporting the project
  • filetree_create export extra_vars with escaping any variable brackets
  • Added controller_configuration_loop_delay and role specific var to give users the option to add a pause during the async loop to slow it down a bit when they are seeing controller API overloaded.
  • Added the option assign_instance_groups_to_org to allow skipping this when creating an org if desired
  • filetree_create able to filter by project_id, workflow_job_template_id or job_template_id
  • fixes an issue where spaces are stripped from variables applied to the inventories, inventory_sources, hosts, groups, credential_types and notification_templates roles
  • Add two playbooks to simplify management of Configuration as Code files
  • Added option to not removing '$encrypted$' string in filetree_create credentials output
  • added new_name as an option to organization role
  • Adjusted output of boolean filetree_create fields to provide ansible-lint compatible values.
  • Avoid the groups populated by a constructed inventory to be removed during object_diff.
  • Fix "adhoc" role permission name in object diff.
  • Fix changed_when statement in all roles to show correct state
  • Fixed the empty credential scenario where the playbook looks for credential names and fails with undefied value.
  • fixed a bug where int values were being set to 0 it was being dropped and value was not being pushed to controller
  • fixed a bug where when verbosity was set to 0 it was being dropped and value was not being pushed to controller
  • Add assign_notification_templates_to_org option to organization role to allow conditional assigning of notification templates
  • Updated dispatch role with assign_notification_templates_to_org option assigned to organization as False on first run and True on second run by default.
  • instance role - add missing arguments introduced in ansible.controller 4.5.0 or awx.awx 23.0.0
  • Constructed inventories can only be exported when AAP version is >= 4.5.0
  • Fixed roles diff when the role is set at the organization level for an user/team
  • Fixed roles diff when the roles are provided as a list, in a single entry
  • Organization not defined when exporting some inventory sources from Tower 3.7.2
  • The role 'filetree_create' will now allow to export all the objects of one kind into a single file, so it can be loaded by both ansible group_vars syntax and filetree_read tool.
  • added improvements to checkmod where it will run faster with the async tasks. In addition added an additional fail check at end of dispatch that will likely fail if dependencies are missing, as expected.
  • added mandatory check to workflow launch name option
  • filetree_create - Add the constructed inventory exportation fields from the API endpoint api/v2/constructed_inventories
  • Fixed an issue where the diff doesn't work correctly when explicitly setting state present
  • Fixed an issue where the usage access to instance_groups were removed
  • Fixed member removal of teams
  • The role 'credentials' have had the enforced defaults removed from team, user, and organization options. This was causing an error with these parameters were mutally exclusive.
  • The role 'inventory_sources' will now skip when the source parameter is constructed. These sources are auto created and not meant to be edited. However they can still be synced with the inventory_source_update.
  • The role 'workflow_job_templates' Default enforced value set for workflow templates limit was 0, was corrected to be an empty string.
  • Fixed issue with organization creation with instance group. Execute instance and instance_group before organizations.
  • dispatch - Fixed the order and behavior to run as a single task with options for organization behavior.
  • filetree_create - Fixed the misspelled variable name that caused exported job_templates yaml files containing incorrect name.
  • filetree_create and object_diff- Subelement filter is executed before when and it was causing a failure when the list was not defined.
  • Adds request_timeout to controller_export_diff module, and roles
  • licence role now uses a boolean of controller_license.use_looup to determine whether to lookup subscriptions. A lookup is only needed to refresh the available pools, or if it has never been done. See Role Readme for details.
  • Fixed issue with licence role not operating properly, when a controller never had credentials provided for subscription lookup. See Role Readme for proper usuage.
  • Fixed issue with organization role not acceppting default environments option correctly.
  • Added roles option to roles role to allow setting multiple roles in one item rather than repeating entire sections of code
  • ansible.cfg removed from root and galaxy.yml added to enable install from source
  • Added more attributes to be expanded and used by the comparison
  • Fixed lintering issues
  • Add option to change async directory, and set the default to null. /tmp/.ansible_async was a workaround while the default was broken previously.
  • Change from lookup to query in the object_diff task files
  • add organizations tag in a dispatch task which is in charge of applying galaxy credencitals in the organization.
  • added the instance_groups filed to the roles role.
  • added the possibility to export schedules through the filetree_create role
  • filetree_create now allows to export objects for the specified organization
  • remove depencency of CONTROLER_USERNAME variable for object_diff role by calling the API with api/me instead of calling the api/users and filtering by username
  • Changes default value for *_enforce_defaults to false instead of the truthy value (due to the quotes), 'false'.
  • Fix addition of state: present when with_present: true
  • Temporarily fixed an error when installing docker-compose using pip (see https://stackoverflow.com/questions/76708329/docker-compose-no-longer-building-image-attributeerror-cython-sources for more information)
  • When exporting job templates it was failing when missing some input information.
  • When exporting schedules, the diff_mode was not treated correctly
  • When importing the exported notification templates, the types of some values are not as expected.
  • When importing the exported settings, fields like AUTOMATION_ANALYTICS_LAST_GATHER: 2023-07-17T13:22:06.445818Z caused problems with the multiple :.
  • fix 'credentials' role ignoring 'update_secrets false' and forcing to default 'true'
  • fixed an the users and teams field on the roles role to be correct and not singular.
  • Added Roles bulk_host_create, bulk_job_launch.
  • Added new_name option to the roles applications, credential_types, execution_environments, inventories, projects, users.
  • Added new_username option to user role.
  • Added option to multiple roles to enforce defaults. This is described in each of the roles readmes and will slowly be rolled out to all applicable roles. This option enforces module/api defaults in order to prevent config drift. This makes it so if an option is NOT specified in a configuration it enforces the default value. It is not enabled by default.
  • Added scm_branch option to inventory_sources role.
  • Corrected various readmes.
  • Credentials role credential type set to mandatory. This would fail in the past if it was not set, this just codifies it.
  • If someone wants to have the old behavior, or only update projects with dispatch, the dispatch variable controller_configuration_dispatcher_roles can be overwritten and customized.
  • Instances role - changed default of node_type and node_state to omit, as generally these cannot be changed on existing instances unless deploying new instances.
  • Inventory role - added input_inventories option for constructed inventories.
  • Removed project_update from dispatch. This is because with bringing update_project option in line with the module options, it was running twice both in project and project update. Since both roles use the same variable controller_projects.
  • Set the default behavior of project_update to run the update as true, unless the user explicitly sets the variable update_project to overide the default behavior. This is because if the user is specifically calling project_update it should by default update the project.
  • Updated workflow job template options to use non depreciated names for options. This should not affect any operations.
  • added alias's for applicable roles to use the variables set by the awx cli export.
  • added get_stats.yml playbook in the playbook folder to get some basic info on a Tower/Controller instance
  • added option for using the export form of default execution environment.
  • added option to roles role to support upcoming change to allow lists of teams and users to be used in the module.
  • added options to license role to allow use of subcription lookup or pool_id.
  • Fixed defaults for values that are lists.
  • Fixed filetree read to error when organization not defined.
  • Fixed rrule in schedules to not be mandatory.
  • Added argument_spec for all roles
  • Ensures vars get loaded properly by dispatch role
  • Adapt filetree_read role tests playbook config-controller-filetree.yml.
  • Add new type of objects for object_diff role: applications, execution environments, instance groups, notifications and schedules
  • Add no_log to all tasks that populates data to avoid exposing encrypted data
  • Add task to add Galaxy credentials and Execution Environments to Organization.
  • Added argument_spec for all roles
  • Set the variables to assign_galaxy_credentials_to_org and assign_default_ee_to_org to false in the task to run all roles at dispatch role.
  • avoid to create orgs during drop_diff
  • fixed an extra blank line in schedules readme that was breaking the table
  • removed references to redhat_cop as a collection namespace in the readme files.
  • updated object_diff role to use the infra namespace, that means to use the role it requires the infra version of the collection. Previous version required the redhat_cop
  • Fixed name of task for inventory source update
  • Fixed variable definitions in readmes
  • Removed master_role_example as no longer required (this wasn't a functional role)
  • Add max_forks, max_concurrent_jobs as options to instance_groups role
  • Add no_log everywhere controller_api_plugin is used to avoid to expose sensitive information in case of crashes.
  • Add no_log everywhere controller_api_plugin is used to avoid to expose sensitive information in case of crashes.
  • Add or fix some variables or extra_vars exported from objects like notifications, inventory, inventory_source, hosts, groups, jt or wjt.
  • Add roles object to object_diff role and controller_object_diff lookup plugin.
  • Fix one query with controller_password to change it and set oauth_token=controller_oauthtoken.
  • Fixed typos in README.md.
  • Improve template to export settings with filetree_create role. Settings will be in yaml format.
  • Renamed the field update to update_project to avoid colliding with the Python dict update method
  • Renamed variable controller_workflow_job_templates to controller_workflows (the previos one was not used at all).
  • Renamed variable controller_workflow_job_templates to controller_workflows (the previos one was not used at all).
  • return_all: true has been added to return the maximum of max_objects=query_controller_api_max_objects objects.
  • Enable the ability to define simple_workflow_nodes on workflow_job_templates without the need to set the state on a workflow_job_template (#297).
  • Update release process to avoid problems that have happened and automate it.
  • removed all examples from repo outside of readmes
  • infra.controller_configuration 2.2.3 is broken, it is aap_utilities release. We are bumping the version to minimize the issues.
  • rewrote playbooks/controller_configure.yml and removed all other playbooks
  • update_on_project_update in inventory_source as an option due to the awx module no longer supports this option.
  • Added instance role to add instances using the new awx.awx.instance module.
  • Update options on inventories, job templates, liscence, projects, schedules, and workflow_job_templates roles to match latest awx.awx release
  • Add a way to detect which of awx.awx or ansible.controller collection is installed. Added to the playbooks and examples.
  • Add markdown linter
  • Add the current object ID to the corresponding output yaml filename.
  • Fix all linter reported errors
  • Move linter configurations to root directory
  • Organize the output in directories (one per each object type).
  • Remove json_query and jmespath dependency from filetree_create role.
  • Update linter versions
  • Fixed optional lists to default to omit if the list is empty.
  • Reduce the memory usage on the filetree_create role.
  • Adds Configuration as Code filetree_create - A role to export and convert all Controller's objects configuration in yaml files to be consumed with previous roles.
  • Adds Configuration as Code filetree_read role - A role to load controller variables (objects) from a hierarchical and scalable directory structure.
  • Adds Configuration as Code object_diff role - A role to get differences between code and controller. It will give us the lists to remove absent objects in the controller which they are not in code.
  • Adds credential and organization options for schedule role.
  • inventory_sources - update source_vars to parse Jinja variables using the same workaround as inventories role.
  • Fixed broken documentation for controller_object_diff plugin
  • Adds dispatch role - A role to run all other roles.
  • Changed default interval for inventory_source_update, project_update and project to be the value of the role's async delay value. This still defaults to 1 if the delay value is not set as previously.
  • Fixes async to work on default execution enviroments.
  • Fixes inventories hardcoded 'no_log' true on the async job check task.
  • Added asynchronous to {organizations,credentials,credential_types,inventories,job_templates} task to speed up creation.
  • Allow setting the organization when creating users.
  • Update to controller_object_diff lookup plugin to better handle group, host, inventory, credential, workflow_job_template_node and user objects.
  • Update to controller_object_diff lookup plugin to better handle organizations.
  • galaxy credentials in the organization role now require assign_galaxy_organizations_to_org to be true.
  • Fixes option of survey_spec on job_templates role.
  • Allows for using the roles for deletion to only use required fields.
  • Changed default to omit for several fields for notification templates and inventor sources.
  • These changes are in line with the modules required fields.
  • warn on default if the api list fed to controller_object_diff lookup is empty
  • added diff plugin and tests for diff plugin to aid in removal tasks
  • Added new options for adding manifest to Ansible Controller inc. from a URL and from b64 encoded content
  • added tests for the project and inventory source skips
  • Fixed readme's to point in right direction for workflows and the export model in examples
  • Moved Example playbooks to the example directory
  • Removes json_query which is not in a RH Certified collection so does not receive support and replaced with native ansible filters
  • Updated workflow inventory option to be able to use workflows from the export model.
  • added default to organization as null on project as it is not required for the module, but it is highly recommended.
  • added when to skip inventory source update when item is absent
  • added when to skip project update when item is absent
  • Created awx and controller playbook that users can invoke for using the collection
  • Additional module options have been added such as instance_groups and copy_from where applicable.
  • All role tests have been converted to use one format.
  • Created Readme for playbook in the playbooks directory
  • Removed the playbook configs folder, it was previously moved to the .github/playbooks directory
  • All references to tower have been changed to Controller.
  • Changed all module names to be in line with changes to awx.awx as of 19.2.1.
  • Changed variable names for all objects from tower_* to controller_*.
  • Removed depreciated module options for notification Templates.
  • Changed all references for ansible.tower to ansible.controller
  • Fixed issue where credential was not working for project and instead the old scm_credential option remained.
  • Removed testing via playbook install that was removed in awx 18.0.0.
  • Updated testing via playbook to use minikube + operator install.
  • Examples can also be found in the playbooks/tower_configs_export_model/tower_workflows.yml
  • If you do not change the data model, change the variable 'workflow_nodes' to 'simplified_workflow_nodes'.
  • More information can be found either in the Workflow Job Template Readme or on the awx.awx.tower_workflow_job_template Documentation.
  • The Tower export model is now the default to use under workflow nodes. This is documented in the workflow job templates Readme.
  • Users using the tower export model previously, do not need to make any changes.
  • Workflow Schemas to describe Workflow nodes have changed.
  • Allow tower_hostname and tower_validate_certs to not be set in favour of environment variables being set as per module defaults.
  • Changes all boolean variables to have their default values omitted rather than using the value 'default(omit, true)' which prevents a falsy value being supplied.
  • Added execution environments option for multiple roles.
  • Added execution environments role.
  • Fix tower_templates default
  • Fixed an issue where certain roles were not taking in tower_validate_certs
  • removed awx.awx implicit dependency, it will now be required to manually install awx.awx or ansible.tower collection
  • Added the following roles - ad_hoc_command, ad_hoc_command_cancel, inventory_source_update, job_launch, job_cancel, project_update, workflow_launch
  • Updated collection to use and comply with ansible-lint v5
  • Fixed default filters to use true when neccessary and changed a few defaults to omit rather then a value or empty string.
  • updated various Readmes to fix typos and missing information.
  • Removed kind from to credentials role. This will be depreciated in a few months. Kind arguments are replaced by the credential_type and inputs fields.
  • Updated to allow use of either awx.awx or ansible.tower
  • Corrected README for tower_validate_certs variable defaults on all roles
  • added alias option for survey to survey_spec in workflows.
  • updated documentation on surveys for workflows and job templates
  • Updated Roles to use the tower_export model from the awx command line.
  • credential_types Updated to use the tower_export model from the awx command line.
  • credentials Updated to use the tower_export model from the awx command line.
  • inventory Updated to use the tower_export model from the awx command line.
  • inventory_sources Updated to use the tower_export model from the awx command line.
  • job_templates Updated to use the tower_export model from the awx command line.
  • projects Updated to use the tower_export model from the awx command line.
  • teams Updated to use the tower_export model from the awx command line.
  • users Updated to use the tower_export model from the awx command line.
  • updated to allow vars in messages for notifications.
  • updated tower workflows related role workflow_job_templates to include survey_enabled defaulting to false which is a module default and omit the survey_spec if not passed.
  • updated various roles to include oauth token and tower config file.
  • Removed depreciated options in inventory sources role (source_regions, instance_filters, group_by)
  • Renamed notifications role to notification_templates role as in awx.awx:15.0. The variable is not tower_notification_templates.
  • Changelog release cycle
  • Added pre-commit hook for local development and automated testing purposes
  • Standardised and corrected all READMEs
  • Removed defaulted objects for all roles so that they were not always run if using a conditional against the variable. (see #68)
  • Groups role - Added groups role to the collection
  • Labels role - Added labels role to the collection
  • Notifications role - Added many options to notifications role
  • Workflow Job Templates role - Added many options to WJT role
  • GitHub Workflows - Added workflows to run automated linting and integration tests against the codebase
  • Hosts role - Added new_name and enabled options to hosts role
  • Housekeeping - Added CONTRIBUTING guide and pull request template
  • Inventory Sources role - Added notification_templates_started, success, and error options. Also added verbosity and source_regions options.
  • Teams role - Added new_name option to teams role
  • Test Configs - Added full range of test objects for integration testing
  • Fixed an issue where tower_validate_certs and validate_certs were both used as vars. Now changed to tower_validate_certs