lae · lae · May 22, 2021 · Mar 27, 2021 · Mar 27, 2021 · Mar 27, 2021
diff --git a/.cache/roles/Musee Ullah.netbox b/.cache/roles/Musee Ullah.netbox
@@ -0,0 +1 @@
+../..
diff --git a/README.adoc b/README.adoc
@@ -129,12 +129,16 @@ netbox_git_uri: "https://github.com/netbox-community/netbox.git"
 netbox_superuser_username: admin
 #netbox_superuser_password: changeme
 netbox_superuser_email: admin@localhost
+superuser_enabled: false
+netbox_superuser_token: false
 ----
 
 It is *required* to set the superuser password. This role will create a new
 superuser if the user does not exist, or will modify an existing user if they're
 not a superuser/have a different email or password. (Yes, you can use this to
-reset your superuser password if you forget it.)
+reset your superuser password if you forget it.) it is possible to set a random
+generate API-token for the superuser. You can create a superuser and configure LDAP.
+
 
 [source,yaml]
 ----

diff --git a/defaults/main.yml b/defaults/main.yml
@@ -10,9 +10,11 @@ netbox_git_uri: "https://github.com/netbox-community/netbox.git"
 
 netbox_install_epel: true
 
+netbox_superuser_enabled: false
 netbox_superuser_username: admin
 # netbox_superuser_password: changeme
 netbox_superuser_email: admin@localhost
+netbox_superuser_create_token: false
 
 netbox_database: netbox
 netbox_database_user: netbox

diff --git a/molecule/default/playbook.yml → molecule/default/converge.yml b/molecule/default/playbook.yml → molecule/default/converge.yml
@@ -3,9 +3,12 @@
   hosts: all
   become: true
   vars:
+    redis_version: 6.2.1
+    netbox_stable_version: 2.10.8
     netbox_stable: true
     netbox_socket: "0.0.0.0:80"
     netbox_superuser_password: netbox
+    netbox_superuser_create_token: true
     netbox_config:
       ALLOWED_HOSTS:
         - "{{ inventory_hostname }}"

diff --git a/tasks/deploy_netbox.yml b/tasks/deploy_netbox.yml
@@ -128,7 +128,16 @@
       register: _netbox_superuser_result
       changed_when: "'changed' in _netbox_superuser_result.stdout"
       when:
-        - not netbox_ldap_enabled
+        - (not netbox_ldap_enabled) or (netbox_superuser_enabled)
+
+    - name: Create a super user token for NetBox
+      shell: "printf '{{ netbox_superuser_token }}' |\
+              {{ netbox_virtualenv_path }}/bin/python {{ netbox_current_path }}/netbox/manage.py shell"
+      register: _netbox_superuser_token
+      changed_when: "'changed' in _netbox_superuser_token.stdout"
+      when:
+        - netbox_superuser_create_token
+        - (not netbox_ldap_enabled) or (netbox_superuser_enabled)
 
     - name: Generate static assets for NetBox
       django_manage:

diff --git a/tests/group_vars/netbox b/tests/group_vars/netbox
@@ -22,7 +22,9 @@ netbox_reports:
   - src: reports/nothing.py
     name: nothing
 netbox_napalm_enabled: true
+netbox_superuser_enabled: false
 netbox_superuser_password: netbox
+netbox_superuser_token: true
 netbox_database: "netbox_{{ inventory_hostname_short }}"
 netbox_database_host: 10.0.3.1
 netbox_database_password:

diff --git a/vars/main.yml b/vars/main.yml
@@ -29,3 +29,13 @@ netbox_superuser_script: |
           user.set_password(password)
           user.save()
           print("changed")
+
+netbox_superuser_token: |
+    from users.models import Token
+    from django.contrib.auth.models import User
+    user = User.objects.get(username="{{ netbox_superuser_username }}")
+    query = Token.objects.filter(user=user)
+    if not query.exists():
+        token = Token.objects.create(user=user)
+        print("api-token: " + token.key)
+        print("changed")