--- - name: Test hostgroup membermanagers hosts: ipaserver become: true gather_facts: false tasks: - include_tasks: ../env_freeipa_facts.yml - name: Tests requiring IPA version 4.8.4+ block: - name: Ensure host-group testhostgroup is absent ipahostgroup: ipaadmin_password: SomeADMINpassword name: - testhostgroup state: absent - name: Ensure user manangeruser1 and manageruser2 is absent ipauser: ipaadmin_password: SomeADMINpassword name: manageruser1,manageruser2,unknown_user state: absent - name: Ensure group managergroup1 and managergroup2 are absent ipagroup: ipaadmin_password: SomeADMINpassword name: managergroup1,managergroup2 state: absent - name: Ensure host-group testhostgroup is present ipahostgroup: ipaadmin_password: SomeADMINpassword name: - testhostgroup - name: Ensure user manageruser1 and manageruser2 are present ipauser: ipaadmin_password: SomeADMINpassword users: - name: manageruser1 first: manageruser1 last: Last1 - name: manageruser2 first: manageruser2 last: Last2 register: result failed_when: not result.changed - name: Ensure managergroup1 is present ipagroup: ipaadmin_password: SomeADMINpassword name: managergroup1 register: result failed_when: not result.changed - name: Ensure managergroup2 is present ipagroup: ipaadmin_password: SomeADMINpassword name: managergroup2 register: result failed_when: not result.changed - name: Ensure membermanager user1 is present for testhostgroup ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1 register: result failed_when: not result.changed - name: Ensure membermanager user1 is present for testhostgroup again ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1 register: result failed_when: result.changed - name: Ensure membermanager group1 is present for testhostgroup ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_group: managergroup1 register: result failed_when: not result.changed - name: Ensure membermanager group1 is present for testhostgroup again ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_group: managergroup1 register: result failed_when: result.changed - name: Ensure membermanager user2 and group2 members are present for testhostgroup ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser2 membermanager_group: managergroup2 action: member register: result failed_when: not result.changed - name: Ensure membermanager user2 and group2 members are present for testhostgroup again ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser2 membermanager_group: managergroup2 action: member register: result failed_when: result.changed - name: Ensure membermanager user and group members are present for testhostgroup again ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1,manageruser2 membermanager_group: managergroup1,managergroup2 action: member register: result failed_when: result.changed - name: Ensure membermanager user1 and group1 members are absent for testhostgroup ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1 membermanager_group: managergroup1 action: member state: absent register: result failed_when: not result.changed - name: Ensure membermanager user1 and group1 members are absent for testhostgroup again ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1 membermanager_group: managergroup1 action: member state: absent register: result failed_when: result.changed - name: Ensure membermanager user1 and group1 members are present for testhostgroup ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1 membermanager_group: managergroup1 action: member register: result failed_when: not result.changed - name: Ensure membermanager user1 and group1 members are present for testhostgroup again ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1 membermanager_group: managergroup1 action: member register: result failed_when: result.changed - name: Ensure membermanager user and group members are absent for testhostgroup ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1,manageruser2 membermanager_group: managergroup1,managergroup2 action: member state: absent register: result failed_when: not result.changed - name: Ensure membermanager user and group members are absent for testhostgroup again ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: manageruser1,manageruser2 membermanager_group: managergroup1,managergroup2 action: member state: absent register: result failed_when: result.changed - name: Ensure user manangeruser1 and manageruser2 is absent ipauser: ipaadmin_password: SomeADMINpassword name: manageruser1,manageruser2 state: absent register: result failed_when: not result.changed - name: Ensure group managergroup1 and managergroup2 are absent ipagroup: ipaadmin_password: SomeADMINpassword name: managergroup1,managergroup2 state: absent register: result failed_when: not result.changed - name: Ensure unknown membermanager_user member failure ipahostgroup: ipaadmin_password: SomeADMINpassword name: testhostgroup membermanager_user: unknown_user action: member register: result failed_when: result.changed or "no such entry" not in result.msg - name: Ensure host-group testhostgroup is absent ipahostgroup: ipaadmin_password: SomeADMINpassword name: - testhostgroup state: absent register: result failed_when: not result.changed when: ipa_version is version('4.8.4', '>=')