jumpserver/apps/accounts/automations/change_secret/custom/ssh/main.yml

- hosts: custom
  gather_facts: no
  vars:
    ansible_connection: local

  tasks:
    - name: Test privileged account
      ssh_ping:
        login_host: "{{ jms_asset.address }}"
        login_port: "{{ jms_asset.port }}"
        login_user: "{{ jms_account.username }}"
        login_password: "{{ jms_account.secret }}"
        login_secret_type: "{{ jms_account.secret_type }}"
        login_private_key_path: "{{ jms_account.private_key_path }}"
      register: ping_info

    - name: Change asset password
      custom_command:
        login_user: "{{ jms_account.username }}"
        login_password: "{{ jms_account.secret }}"
        login_host: "{{ jms_asset.address }}"
        login_port: "{{ jms_asset.port }}"
        login_secret_type: "{{ jms_account.secret_type }}"
        login_private_key_path: "{{ jms_account.private_key_path }}"
        name: "{{ account.username }}"
        password: "{{ account.secret }}"
        commands: "{{ params.commands }}"
        first_conn_delay_time: "{{ first_conn_delay_time | default(0.5) }}"
      when: ping_info is succeeded
      register: change_info

    - name: Verify password
      ssh_ping:
        login_user: "{{ account.username }}"
        login_password: "{{ account.secret }}"
        login_host: "{{ jms_asset.address }}"
        login_port: "{{ jms_asset.port }}"
      when:
        - ping_info is succeeded
        - change_info is succeeded
feat: 支持部分资源的自定义自动化任务(Ping/VerifyAccount/ChangeSecret) (#9947) * feat: 支持部分资源的自定义自动化任务(Ping/VerifyAccount/ChangeSecret) * perf: 去掉无用的属性 * perf: 优化自定义改密逻辑 * feat: 支持ssh_key认证 * perf: 去掉无用注释 * perf: 优化 * perf: 优化逻辑 * perf: 优化标题 * perf: 去掉一些无用的函数 * perf: 优化helptext 2023-04-14 10:31:09 +00:00			`- hosts: custom`
			`gather_facts: no`
			`vars:`
			`ansible_connection: local`

			`tasks:`
			`- name: Test privileged account`
			`ssh_ping:`
			`login_host: "{{ jms_asset.address }}"`
			`login_port: "{{ jms_asset.port }}"`
			`login_user: "{{ jms_account.username }}"`
			`login_password: "{{ jms_account.secret }}"`
			`login_secret_type: "{{ jms_account.secret_type }}"`
			`login_private_key_path: "{{ jms_account.private_key_path }}"`
			`register: ping_info`

			`- name: Change asset password`
			`custom_command:`
			`login_user: "{{ jms_account.username }}"`
			`login_password: "{{ jms_account.secret }}"`
			`login_host: "{{ jms_asset.address }}"`
			`login_port: "{{ jms_asset.port }}"`
			`login_secret_type: "{{ jms_account.secret_type }}"`
			`login_private_key_path: "{{ jms_account.private_key_path }}"`
			`name: "{{ account.username }}"`
			`password: "{{ account.secret }}"`
			`commands: "{{ params.commands }}"`
			`first_conn_delay_time: "{{ first_conn_delay_time \| default(0.5) }}"`
			`when: ping_info is succeeded`
			`register: change_info`

			`- name: Verify password`
			`ssh_ping:`
			`login_user: "{{ account.username }}"`
			`login_password: "{{ account.secret }}"`
			`login_host: "{{ jms_asset.address }}"`
			`login_port: "{{ jms_asset.port }}"`
			`when:`
			`- ping_info is succeeded`
			`- change_info is succeeded`