/ home / purestorage / purestorage.flashblade / 1.17.0 / module / purefb_userpolicy

purestorage.flashblade.purefb_userpolicy (1.17.0) — module

Manage FlashBlade Object Store User Access Policies

| "added in version" 1.6.0 of purestorage.flashblade"

Authors: Pure Storage Ansible Team (@sdodsley) <pure-ansible-team@purestorage.com>

preview | supported by community

Install collection

Install with ansible-galaxy collection install purestorage.flashblade:==1.17.0

Add to requirements.yml

  collections:
    - name: purestorage.flashblade
      version: 1.17.0

Description

Add or Remove FlashBlade Object Store Access Policies for Account User

Requirements

python >= 2.7
purity_fb >= 1.9
netaddr
pytz

Usage examples

Scanned by Steampunk Spotter

- name: List existng ruser access policies for a specific user
  purestorage.flashblade.purefb_userpolicy:
    state: show
    account: foo
    name: bar
    fb_url: 10.10.10.2
    api_token: T-68618f31-0c9e-4e57-aa44-5306a2cf10e3
  register: policy_list

Scanned by Steampunk Spotter

- name: List all available user access policies
  purestorage.flashblade.purefb_userpolicy:
    state: show
    fb_url: 10.10.10.2
    api_token: T-68618f31-0c9e-4e57-aa44-5306a2cf10e3
  register: policy_list

Scanned by Steampunk Spotter

- name: Add user access policies to account user foo/bar
  purestorage.flashblade.purefb_userpolicy:
    name: bar
    account: foo
    policy:
      - pure:policy/bucket-create
      - pure:policy/bucket-delete
    fb_url: 10.10.10.2
    api_token: T-68618f31-0c9e-4e57-aa44-5306a2cf10e3

Scanned by Steampunk Spotter

- name: Delete user access policies to account user foo/bar
  purestorage.flashblade.purefb_userpolicy:
    name: bar
    account: foo
    policy:
      - pure:policy/bucket-create
      - pure:policy/bucket-delete
    state: absent
    fb_url: 10.10.10.2
    api_token: T-68618f31-0c9e-4e57-aa44-5306a2cf10e3

Inputs

    
name:
    description:
    - Name of the Object Store User
    - The user to have the policy request applied to
    type: str

state:
    choices:
    - absent
    - present
    - show
    default: present
    description:
    - Define whether the Access Policy should be added or deleted
    - Option to list all available policies
    type: str

fb_url:
    description:
    - FlashBlade management IP address or Hostname.
    type: str

policy:
    description:
    - Policies to added or deleted from the Object Store User
    - Only valid policies can be used
    - use I(list) to see available policies
    elements: str
    type: list

account:
    description:
    - Name of the Object Store Account associated with the user
    type: str

api_token:
    description:
    - FlashBlade API token for admin privileged user.
    type: str

Outputs

policy_list:
  description:
  - Returns the list of access policies for a user
  - If no user specified returns all available access policies
  elements: str
  returned: always
  sample:
  - pure:policy/object-list
  - pure:policy/bucket-list
  - pure:policy/object-read
  - pure:policy/bucket-delete
  - pure:policy/full-access
  type: list