ec2_vpc_igw: migrate to boto3 #45346
Conversation
zeenlym
changed the title
|
The test The test |
|
Hi @zeenlym, Thank you for the pullrequest, just so you are aware we have a dedicated Working Group for aws. |
ansibot
added
affects_2.8
mkrizek
removed
the
needs_triage
| 'tags': igw.tags, | ||
| 'vpc_id': igw.vpc_id | ||
| } | ||
| class AnsibleEc2Igw(object): |
There was a problem hiding this comment.
Most AWS modules don't implement classes as using a few functions is often more readable.
There was a problem hiding this comment.
I find it easier to read within a class, and using attributes prevent from passing lots of parameters to functions.
I think if all AWS modules uses classes even if module complexity is very high or very low readability will be the same.
| def get_resource_tags(vpc_conn, resource_id): | ||
| return dict((t.name, t.value) for t in | ||
| vpc_conn.get_all_tags(filters={'resource-id': resource_id})) | ||
| def connect(self): |
There was a problem hiding this comment.
You don't need to access get_aws_connection_info and boto3_conn directly and any errors with the connection should be handled by boto3_conn. After creating the module by module = AnsibleAWSModule(... the connection can be created with module.client('ec2').
| igws = response['InternetGateways'] | ||
| except botocore.exceptions.ClientError as e: | ||
| self.fail(msg=str(e)) | ||
|
|
There was a problem hiding this comment.
Remove some extra whitespace
| if igw is None: | ||
| if check_mode: | ||
| return {'changed': True, 'gateway_id': None} | ||
| self.start_timer() |
There was a problem hiding this comment.
This doesn't appear to do anything for the module.
There was a problem hiding this comment.
That's rigth, sorry for this
|
|
||
| igw.vpc_id = vpc_id | ||
| if to_delete and not add_only: |
There was a problem hiding this comment.
I think rather than checking for to_delete and add_only here (and having two hardcoded values for add_only and the purge_tags parameter for compare_aws_tags), I'd consolidate the options since they do the same thing and only have one hardcoded value:
purge_tags = bool(not add_only)
to_update, to_delete = compare_aws_tags(boto3_tag_list_to_ansible_dict(cur_tags.get('Tags')), tags, purge_tags)
And then to_delete will only be populated if tags are being removed and you don't have to reference add_only in other places.
|
|
||
| from ansible.module_utils.aws.core import AnsibleAWSModule | ||
| from ansible.module_utils.ec2 import ( | ||
| AnsibleAWSError, |
ansibot
added
committer_review
|
@s-hertel has said what I would say in regard to integration tests. |
| tags_list.append({'Key': key}) | ||
|
|
||
| AWSRetry.exponential_backoff( | ||
| catch_extra_error_codes=['InvalidSubnetID.NotFound'] |
There was a problem hiding this comment.
This doesn't seem right to me - you may not need the catch_extra_error_codes
There was a problem hiding this comment.
Ok some copy paste from other modules, but I couldn't understand purpose. I am removing it.
| try: | ||
| response = self._connection.describe_internet_gateways(Filters=filters) | ||
| igws = response.get('InternetGateways', []) | ||
| except botocore.exceptions.ClientError as e: |
There was a problem hiding this comment.
need to catch BotoCoreError here too.
| 'changed': changed, | ||
| 'gateway': igw_info | ||
| } | ||
| def fail(self, **kwargs): |
There was a problem hiding this comment.
I don't think this is really needed (and doesn't seem to be used)
| final_tags.update(to_update) | ||
| else: | ||
| AWSRetry.exponential_backoff( | ||
| catch_extra_error_codes=['InvalidInternetID.NotFound'] |
There was a problem hiding this comment.
InvalidInternetID doesn't seem to exist according to botocore's source
ansibot
added
needs_revision
|
The test |
ansibot
removed
the
ci_verified
|
@willthames Do I need to remove classes ? |
|
@zeenlym no, you don't need to. It has been our preference to not use classes where not required, but the classes might be useful in future anyway. Once there is a test suite, this should be good to merge. |
|
Why is there no helper to update of aws resource tags ? The only changes are client, resource-id and resource-type ? |
|
@zeenlym, the reason why there is no update tag helper is that each AWS resource type implements their tag management API differently. Other than that, the reason is that no-one has written one. |
ansibot
added
stale_ci
|
Thanks for all checks, for the next 2 weeks I cannot fix nether add integration tests, I will do it after. |
ansibot
added
committer_review
|
I've created a test suite in #45903 (based almost entirely on the egress_igw tests). I ran it before this change, then re-ran it with this change, and it's all good. The test suite can be merged separately. |
|
Thanks so much for the boto3 migration @zeenlym, what a great first contribution! |
SUMMARY
AWS boto only modules present issues with corporate internet proxies. Migrate to boto3 solves problems. Code is simplier and more ansible aws helpers are used.
Fixes #44889
ISSUE TYPE
COMPONENT NAME
ANSIBLE VERSION
ADDITIONAL INFORMATION