ovirt.ovirt.ovirt_permission_info – Retrieve information about one or more oVirt/RHV permissions
Note
This plugin is part of the ovirt.ovirt collection (version 1.2.4).
To install it use: ansible-galaxy collection install ovirt.ovirt.
To use it in a playbook, specify: ovirt.ovirt.ovirt_permission_info.
New in version 1.0.0: of ovirt.ovirt
Synopsis
- Retrieve information about one or more oVirt/RHV permissions.
- This module was called ovirt_permission_factsbefore Ansible 2.9, returningansible_facts. Note that the ovirt.ovirt.ovirt_permission_info module no longer returnsansible_facts!
Requirements
The below requirements are needed on the host that executes this module.
- python >= 2.7
- ovirt-engine-sdk-python >= 4.4.0
Parameters
| Parameter | Choices/Defaults | Comments | 
|---|---|---|
| auth  dictionary / required  | Dictionary with values needed to create HTTP/HTTPS connection to oVirt: username[required] - The name of the user, something like admin@internal. Default value is set by OVIRT_USERNAME environment variable.password[required] - The password of the user. Default value is set by OVIRT_PASSWORD environment variable.url- A string containing the API URL of the server, usually something like `https://server.example.com/ovirt-engine/api`. Default value is set by OVIRT_URL environment variable. Eitherurlorhostnameis required.hostname- A string containing the hostname of the server, usually something like `server.example.com`. Default value is set by OVIRT_HOSTNAME environment variable. Eitherurlorhostnameis required.token- Token to be used instead of login with username/password. Default value is set by OVIRT_TOKEN environment variable.insecure- A boolean flag that indicates if the server TLS certificate and host name should be checked.ca_file- A PEM file containing the trusted CA certificates. The certificate presented by the server will be verified using these CA certificates. If `ca_file` parameter is not set, system wide CA certificate store is used. Default value is set by OVIRT_CAFILE environment variable.kerberos- A boolean flag indicating if Kerberos authentication should be used instead of the default basic authentication.headers- Dictionary of HTTP headers to be added to each API call. | |
| authz_name  string / required  | Authorization provider of the user/group. In previous versions of oVirt/RHV known as domain. aliases: domain | |
| fetch_nested  boolean  | 
 | If yes the module will fetch additional data from the API. It will fetch only IDs of nested entity. It doesn't fetch multiple levels of nested attributes. Only the attributes of the current entity. User can configure to fetch other attributes of the nested entities by specifying  nested_attributes. | 
| group_name  string  | Name of the group to manage. | |
| namespace  string  | Namespace of the authorization provider, where user/group resides. | |
| nested_attributes  list / elements=string  | Specifies list of the attributes which should be fetched from the API. This parameter apply only when  fetch_nestedis true. | |
| user_name  string  | Username of the user to manage. In most LDAPs it's uid of the user, but in Active Directory you must specify UPN of the user. | 
Notes
Note
- This module returns a variable ovirt_permissions, which contains a list of permissions. You need to register the result with the register keyword to use it.
- In order to use this module you have to install oVirt Python SDK. To ensure it’s installed with correct version you can create the following task: pip: name=ovirt-engine-sdk-python version=4.4.0
Examples
# Examples don't contain auth parameter for simplicity,
# look at ovirt_auth module to see how to reuse authentication:
# Gather information about all permissions of user with username C(john):
- ovirt.ovirt.ovirt_permission_info:
    user_name: john
    authz_name: example.com-authz
  register: result
- ansible.builtin.debug:
    msg: "{{ result.ovirt_permissions }}"
   Return Values
Common return values are documented here, the following are the fields unique to this module:
| Key | Returned | Description | 
|---|---|---|
| ovirt_permissions  list / elements=string  | On success. | List of dictionaries describing the permissions. Permission attributes are mapped to dictionary keys, all permissions attributes can be found at following url: http://ovirt.github.io/ovirt-engine-api-model/master/#types/permission. | 
Authors
- Ondra Machacek (@machacekondra)
- Martin Necas (@mnecas)
    © 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
    https://docs.ansible.com/ansible/2.10/collections/ovirt/ovirt/ovirt_permission_info_module.html