iam_policy does nothing, just echos OK on nonexistant policy
7 views
Skip to first unread message
Michael Bushey
Jun 20, 2017, 5:40:03 PM6/20/17
to Ansible Project
Ansible claims the task is "OK", but it does not exist. Also I see no way to set the policy description field. Am I missing something or is the module completely broke?
╰─➤ dpkg -l | grep boto
ii python-boto 2.40.0-1ubuntu1 all Python interface to Amazon's Web Services - Python 2.x
ii python-boto3 1.4.2-1 all Python interface to Amazon's Web Services - Python 2.x
ii python-botocore 1.5.7-1 all Low-level, data-driven core of boto 3 (Python 2)
╰─➤ ansible --version
ansible 2.3.1.0
config file = /etc/ansible/ansible.cfg
configured module search path = Default w/o overrides
python version = 2.7.12 (default, Nov 19 2016, 06:48:10) [GCC 5.4.0 20160609]
╰─➤ cat aws_policy.yml
---
- name: Configure Policy Groups
hosts: localhost
gather_facts: no
connection: local
vars:
region: us-east-1
iam_name: S3_Full_Access_mysql.test
iam_type: role
tasks:
- name: AWS | set up policy
iam_policy:
iam_type: "{{ iam_type }}"
policy_name: "{{ iam_name }}"
region: "{{ region }}"
state: present
policy_document: "/home/ubuntu/ansible/files/ec2_policy/{{ iam_name }}.json"
tags: aws, policy
╰─➤ ansible-playbook -i /etc/ansible/ec2.py aws_policy.yml
PLAY [Configure Policy Groups] ****************************************************************************************************************************************************
TASK [AWS | set up policy] ********************************************************************************************************************************************************
ok: [localhost]
PLAY RECAP ************************************************************************************************************************************************************************
localhost : ok=1 changed=0 unreachable=0 failed=0
Thanks for reading this. :)
Michael Bushey
╰─➤ dpkg -l | grep boto
ii python-boto 2.40.0-1ubuntu1 all Python interface to Amazon's Web Services - Python 2.x
ii python-boto3 1.4.2-1 all Python interface to Amazon's Web Services - Python 2.x
ii python-botocore 1.5.7-1 all Low-level, data-driven core of boto 3 (Python 2)
╰─➤ ansible --version
ansible 2.3.1.0
config file = /etc/ansible/ansible.cfg
configured module search path = Default w/o overrides
python version = 2.7.12 (default, Nov 19 2016, 06:48:10) [GCC 5.4.0 20160609]
╰─➤ cat aws_policy.yml
---
- name: Configure Policy Groups
hosts: localhost
gather_facts: no
connection: local
vars:
region: us-east-1
iam_name: S3_Full_Access_mysql.test
iam_type: role
tasks:
- name: AWS | set up policy
iam_policy:
iam_type: "{{ iam_type }}"
policy_name: "{{ iam_name }}"
region: "{{ region }}"
state: present
policy_document: "/home/ubuntu/ansible/files/ec2_policy/{{ iam_name }}.json"
tags: aws, policy
╰─➤ ansible-playbook -i /etc/ansible/ec2.py aws_policy.yml
PLAY [Configure Policy Groups] ****************************************************************************************************************************************************
TASK [AWS | set up policy] ********************************************************************************************************************************************************
ok: [localhost]
PLAY RECAP ************************************************************************************************************************************************************************
localhost : ok=1 changed=0 unreachable=0 failed=0
Thanks for reading this. :)
Michael Bushey
Reply all
Reply to author
Forward
0 new messages