matt/ansible-windows
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

updated inventory file with user auth check

Browse Source
This commit is contained in:
phermeys
2025-10-26 13:18:04 -07:00
parent 4751d96bf4
commit d71bb9b6d7
1 changed files with 21 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
inventory/inventory.sh
View File

@ -112,14 +112,33 @@ all:
" "
# Loop through each IP in the comma-separated list # Loop through each IP in the comma-separated list
# skip if restricted user and subnet
IFS=',' read -ra IPS <<< "$IP_LIST" IFS=',' read -ra IPS <<< "$IP_LIST"
for IP in "${IPS[@]}"; do for IP in "${IPS[@]}"; do
ip_check=$(curl -s http://172.25.100.15:15010/ip_check?ip=${IP} | jq .in_subnets) ip_check=$(curl -s http://172.25.100.15:15010/ip_check?ip=${IP} | jq .in_subnets)
echo $ip_check echo $ip_check
echo $allsubnet_group
echo $SERVER_SUBNET_GROUP
# if this is a restricted subnet, then check the group
if $ip_check; then
echo "Subnet restricted, checking group membership"
if [ "$allsubnet_group" == "$SERVER_SUBNET_GROUP" ]; then
echo "IP Check Passed, adding endpoint ${IP} to inventory"
inventory_content+=" ${IP}:
ansible_host: ${IP}
inventory_content+=" ${IP}: "
else
echo "Warning: User ${JENKINS_USER} not member of ${SERVER_SUBNET_GROUP}!"
echo "Auth Check Failed for endpoint ${IP}, not adding to inventory"
fi
# if the subnet is not restricted, just add the endpoint to the inventory
else
echo "Unrestricted subnet, adding endpoint ${IP} to inventory"
inventory_content+=" ${IP}:
ansible_host: ${IP} ansible_host: ${IP}
" "
fi
done done
inventory_content+=" vars: inventory_content+=" vars: