rds_instance: Add purge_security_groups #500
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
@s-hertel Could you please take a look at this? |
ansibullbot
added
WIP
* Sanity fix Signed-off-by: Alina Buzachis <[email protected]>
|
@alinabuzachis Yes, will review in a day or two. Thanks for fixing this! |
s-hertel
reviewed
Mar 29, 2021
There was a problem hiding this comment.
Looks great!
I was wondering if there is a way to only show security groups with an active status or however wait until a security group passes from "adding" to "active".
You could add a waiter to return only 'active' security groups by using a pathAll matcher - something like
"DBInstanceActiveSecurityGroups": {
"delay": 20,
"maxAttempts": 60,
"operation": "DescribeDBInstances",
"acceptors": [
{
"state": "success",
"matcher": "pathAll",
"argument": "DBInstances[].VpcSecurityGroups[].Status",
"expected": "active" # check if this is lowercase pre-camel_to_snake_case
},
{
"state": "success",
"matcher": "pathAll",
"argument": "DBInstances[].DBSecurityGroups[].Status",
"expected": "active"
},
}But I actually like this as it is, so it's your call/others can weigh in if that would be useful.
* Add changelog Signed-off-by: Alina Buzachis <[email protected]>
alinabuzachis
changed the title
s-hertel
approved these changes
Mar 30, 2021
tremble
requested changes
Apr 7, 2021
tests/integration/targets/rds_instance/tasks/test_vpc_security_groups.yml
Outdated
Show resolved
Hide resolved
tests/integration/targets/rds_instance/tasks/test_vpc_security_groups.yml
Outdated
Show resolved
Hide resolved
tremble
approved these changes
Apr 7, 2021
tremble
approved these changes
Apr 7, 2021
tests/integration/targets/rds_instance/tasks/test_vpc_security_groups.yml
Show resolved
Hide resolved
tests/integration/targets/rds_instance/tasks/test_vpc_security_groups.yml
Show resolved
Hide resolved
tests/integration/targets/rds_instance/tasks/test_vpc_security_groups.yml
Outdated
Show resolved
Hide resolved
tremble
reviewed
Apr 7, 2021
tests/integration/targets/rds_instance/tasks/test_vpc_security_groups.yml
Outdated
Show resolved
Hide resolved
|
Tests passed successfully after unrelated fixes. |
alinabuzachis
added a commit
to alinabuzachis/community.aws
that referenced
this pull request
Jul 19, 2021
* rds_instance: Add purge_security_groups feature for vpc_security_groups_ids. * Fixes: ansible-collections#385
alinabuzachis
added a commit
to alinabuzachis/community.aws
that referenced
this pull request
Jul 19, 2021
* rds_instance: Add purge_security_groups feature for vpc_security_groups_ids. * Fixes: ansible-collections#385
danielcotton
pushed a commit
to danielcotton/community.aws
that referenced
this pull request
Nov 23, 2021
* rds_instance: Add purge_security_groups feature for vpc_security_groups_ids. * Fixes: ansible-collections#385
alinabuzachis
pushed a commit
to alinabuzachis/community.aws
that referenced
this pull request
May 25, 2022
Add debugging info to ENI tests SUMMARY We're seeing some flakes, describe the ENIs before we nuke them to try and see where the issue might be. ISSUE TYPE Feature Pull Request COMPONENT NAME ec2_eni ADDITIONAL INFORMATION Example failure: waiter timeout: https://ebf5fd30c6ae7bcc0e77-bb555a5b613b25366f4ba04980cee756.ssl.cf1.rackcdn.com/488/2808477252b5339f2f1af24f1658f756c8b3b931/check/ansible-test-cloud-integration-aws-py36_1/975c9cb/job-output.txt Reviewed-by: None <None>
abikouo
pushed a commit
to abikouo/community.aws
that referenced
this pull request
Oct 24, 2023
* rds_instance: Add purge_security_groups feature for vpc_security_groups_ids. * Fixes: ansible-collections#385 This commit was initially merged in https://github.com/ansible-collections/community.aws See: ansible-collections@cd32e65
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
SUMMARY
rds_instance: Add
purge_security_groupsparameter for bothdb_security_groupsandvpc_security_groups_ids.Should fix: #385
ISSUE TYPE
COMPONENT NAME
rds_instance
ADDITIONAL INFORMATION
According to the boto3 documentation https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/rds.html#RDS.Client.describe_db_instances,
describe_db_instances()provides this information for the associated security groupsWith this patch the status is reflected accordingly as showed in the following example.
This gives:
And then if we want to set the a new security group
sg-3(purge_security_groups=True by default).The log produced:
Since some vpc security groups are reported "removing" status, do we want to show them? Others are also with "adding" state. I was wondering if there is a way to only show security groups with an active status or however wait until a security group passes from "adding" to "active".