thalesgroup.ciphertrust.cte_resource_set (1.0.0) — module

Create and manage CTE resource-sets

| "added in version" 1.0.0 of thalesgroup.ciphertrust"

Authors: Anurag Jain, Developer Advocate Thales Group

Install collection

Install with ansible-galaxy collection install thalesgroup.ciphertrust:==1.0.0


Add to requirements.yml

  collections:
    - name: thalesgroup.ciphertrust
      version: 1.0.0

Description

Create and edit CTE resource set or add, edit, or remove a resource to or from the resource set

Usage examples

  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: "Create CTE ResourceSet"
  thalesgroup.ciphertrust.cte_resource_set:
    localNode:
      server_ip: "IP/FQDN of CipherTrust Manager"
      server_private_ip: "Private IP in case that is different from above"
      server_port: 5432
      user: "CipherTrust Manager Username"
      password: "CipherTrust Manager Password"
      verify: false
    op_type: create
    name: "RS-Ans-001"
    description: "Created via Ansible"
    type: Directory
    resources:
      - directory: "/"
        file: "*"
        include_subfolders: true
        hdfs: false
  register: resource_set
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: "Add resource to a ResourceSet"
  thalesgroup.ciphertrust.cte_resource_set:
    localNode:
        server_ip: "IP/FQDN of CipherTrust Manager"
        server_private_ip: "Private IP in case that is different from above"
        server_port: 5432
        user: "CipherTrust Manager Username"
        password: "CipherTrust Manager Password"
        verify: false
    op_type: add_resource
    id: "{{ resource_set['response']['id'] }}"
    resources:
      - directory: "/tmp"
        file: "*"
        include_subfolders: true
        hdfs: false

Inputs

    
id:
    description:
    - Identifier of the CTE ResourceSet to be patched or deleted
    type: str

file:
    description:
    - file name of the Resource which shall be associated with the resource-set
    type: str

hdfs:
    description:
    - Whether the specified path is a HDFS path
    type: boolean

name:
    description:
    - Name of the resource set
    type: str

type:
    choices:
    - Directory
    - Classification
    description:
    - Type of the resource set i.e. Directory or Classification. Default value is Directory
    type: str

op_type:
    choices:
    - create
    - patch
    - add_resource
    - patch_resource
    - delete_resource
    description: Operation to be performed
    required: true
    type: str

directory:
    description:
    - directory path of the Resource which shall be associated with the resource-set
    type: str

localNode:
    description:
    - this holds the connection parameters required to communicate with an instance of
      CipherTrust Manager (CM)
    - holds IP/FQDN of the server, username, password, and port
    required: true
    suboptions:
      password:
        description: admin password of CM
        required: true
        type: str
      server_ip:
        description: CM Server IP or FQDN
        required: true
        type: str
      server_port:
        default: 5432
        description: Port on which CM server is listening
        required: true
        type: int
      server_private_ip:
        description: internal or private IP of the CM Server, if different from the server_ip
        required: true
        type: str
      user:
        description: admin username of CM
        required: true
        type: str
      verify:
        default: false
        description: if SSL verification is required
        required: true
        type: bool
    type: dict

resources:
    description:
    - List of resources to be added to the resource set
    elements: dict
    type: list

description:
    description:
    - Description of the resource set
    type: str

resourceIndex:
    description:
    - Identifier of the CTE Resource within ResourceSet to be patched or deleted
    type: str

include_subfolders:
    description:
    - Flag to include subfolders in the Resource
    type: boolean

classification_tags:
    description:
    - Classification set to be added to the resource set
    elements: dict
    type: list