Skip to content

Issue #1300 - nb_inventory injecting a variable as api_endpoint #1301

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 6 commits into
base: devel
Choose a base branch
from
Open

Issue #1300 - nb_inventory injecting a variable as api_endpoint #1301

wants to merge 6 commits into from

Conversation

bookshark13
Copy link

Fixes issue-#1300
allows api_endpoint to be a variable and string

Related Issue

#1300

New Behavior

calls the templar.template module to transform the api_endpoint if referenced as a variable e.g: "{{ fake_var }}"

Contrast to Current Behavior

fake_var: "https://netbox.test.domain.com"
Current behavior for a inventory file is referencing api_endpoint: "{{ fake_var }}"
for the above example you would receive an error to the affect of

[WARNING]: * Failed to parse <location of your netbox plugin> with auto plugin: unknown url type: "{{ fake_var }}/api/status"

this solves that issue and the result is no error and we can see
Fetching: https://netbox.test.domain.com/api/status

Discussion: Benefits and Drawbacks

  • This could be beneficial to the plugin as a whole, not everyone has one netbox environment. As well nor do they share domain names. This change allows for dynamically calling the api_endpoint. While also not changing anyones current setup
  • I believe there are no real drawbacks for this change. It does not take away functionality. Truly it only increases the way you can call the api_endpoint
  • Yes it is backwards-compatible

Changes to the Documentation

N/A

Proposed Release Note Entry

netbox.nb_inventory: api_endpoint option can now take variable calls E.G: api_endpoint: "{{ netbox_url }}"

Double Check

  • I have read the comments and followed the CONTRIBUTING.md.
  • I have explained my PR according to the information in the comments or in a linked issue.
  • My PR targets the devel branch.

@sc68cal
Copy link
Contributor

sc68cal commented Dec 25, 2024

The netbox inventory plugin already supports the environment variable NETBOX_API as documented here.

Can you shed some light on why this change is required when we already have this environment variable?

sc68cal
sc68cal requested changes Dec 29, 2024
View reviewed changes
Copy link
Contributor

@sc68cal sc68cal left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nb_inventory plugin already supports an environment variable, please see the existing documentation.

There has been discussion about the Ansible modules being able to use the environment variable, which both your issue and #1363 discusses, but this code only touches the nb_inventory plugin which already has support.

@Woefdram
Copy link

This would really help. Setting an environment variable is a primitive solution if you work with several people in several environments.

Being able to specify the netbox_api somewhere else would solve a lot of hassle for me.

@andrewleininger
Copy link

Another use case for templar here is lookup plugins pulling the API endpoint value from a secrets manager or parameter store (community.general.onepassword, amazon.aws.ssm_parameter, community.general.consul_kv, etc.).

I'd like to be able to do:

---
plugin: netbox.netbox.nb_inventory
# api_endpoint: https://my.netbox.fqdn
api_endpoint: "{{ lookup('community.general.onepassword', 'My NetBox Item', vault='My Vault', section='API', field='endpoint') }}"
token: "{{ lookup('community.general.onepassword', 'My NetBox Item', vault='My Vault', section='API', field='ro-token') }}"

@bookshark13
Copy link
Author

@sc68cal I believe why I did this was as @Woefdram said, our organization viewed setting the environment variable as a more primitive solution. Also for the reasonings he mentioned we have three different environments. We create one inventory file(for each inventory) for all three environments. We personally use ansible controller and use credentials within ansible controller, this allows us to statically set the token and URL for each of our environments. This allows us the security of keeping the token encrypted as well. Along those lines it is also easier when the token expires as it's a quick on the fly change to update the token.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sc68cal sc68cal sc68cal requested changes

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@bookshark13 @sc68cal @Woefdram @andrewleininger