NETWAYS
diff --git a/‎.github/workflows/test_elasticsearch_modules.yml
Lines changed: 63 additions & 0 deletions b/‎.github/workflows/test_elasticsearch_modules.yml
Lines changed: 63 additions & 0 deletions
diff --git a/‎docs/module-elasticsearch_role.md
Lines changed: 21 additions & 2 deletions b/‎docs/module-elasticsearch_role.md
Lines changed: 21 additions & 2 deletions
diff --git a/‎docs/module-elasticsearch_user.md
Lines changed: 21 additions & 4 deletions b/‎docs/module-elasticsearch_user.md
Lines changed: 21 additions & 4 deletions
diff --git a/‎molecule/elasticsearch_test_modules/converge.yml
Lines changed: 2 additions & 3 deletions b/‎molecule/elasticsearch_test_modules/converge.yml
Lines changed: 2 additions & 3 deletions
diff --git a/‎molecule/elasticsearch_test_modules/molecule.yml
Lines changed: 1 addition & 11 deletions b/‎molecule/elasticsearch_test_modules/molecule.yml
Lines changed: 1 addition & 11 deletions
diff --git a/‎plugins/module_utils/api.py
Lines changed: 6 additions & 140 deletions b/‎plugins/module_utils/api.py
Lines changed: 6 additions & 140 deletions
@@ -0,0 +1,63 @@
+---
+name: Test Elasticsearch modules
+on:
+  workflow_dispatch:
+    inputs:
+      logLevel:
+        description: 'Log level'
+        required: true
+        default: 'warning'
+        type: choice
+        options:
+          - info
+          - warning
+          - debug
+  pull_request:
+    paths:
+      - '.github/workflows/test_elasticsearch_modules.yml'
+      - 'molecule/elasticsearch_test_modules/*'
+
+jobs:
+  molecule_elasticsearch_modules:
+    runs-on: ubuntu-latest
+
+    env:
+      COLLECTION_NAMESPACE: netways
+      COLLECTION_NAME: elasticstack
+
+    strategy:
+      fail-fast: false
+      matrix:
+        distro: [ubuntu2204]
+        scenario:
+          - elasticsearch_test_modules
+        release:
+          - 8
+
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v4
+
+      - name: Set up Python 3.8
+        uses: actions/setup-python@v5
+        with:
+          python-version: 3.8
+
+      - name: Install dependencies
+        run: |
+          python3 -m pip install --upgrade pip
+          python3 -m pip install -r requirements-test.txt
+
+      - name: Install collection
+        run: |
+          mkdir -p ~/.ansible/collections/ansible_collections/$COLLECTION_NAMESPACE
+          cp -a ../ansible-collection-$COLLECTION_NAME ~/.ansible/collections/ansible_collections/$COLLECTION_NAMESPACE/$COLLECTION_NAME
+
+      - name: Test with molecule
+        run: |
+          molecule test -s ${{ matrix.scenario }}
+        env:
+          MOLECULE_DISTRO: ${{ matrix.distro }}
+          PY_COLORS: '1'
+          ANSIBLE_FORCE_COLOR: '1'
+          ELASTIC_RELEASE: ${{ matrix.release }}
@@ -29,9 +29,28 @@ Module arguments
 Example usage
 ---
 ```
-    - name: Create elasticsearch role 'new-role'
+    - name: Create elasticsearch role 'new-role1'
       netways.elasticstack.elasticsearch_role:
-        name: new-role
+        name: new-role1
+        cluster:
+          - manage_own_api_key
+          - delegate_pki
+        indicies:
+          - names:
+              - default01
+            privileges:
+              - read
+              - write
+        state: present
+        host: https://localhost:9200
+        auth_user: elastic
+        auth_pass: changeMe123!
+        verify_certs: true
+        ca_certs: /etc/elasticsearch/certs/http_ca.crt
+
+    - name: Create elasticsearch role 'new-role2'
+      netways.elasticstack.elasticsearch_role:
+        name: new-role2
         cluster:
           - manage_own_api_key
           - delegate_pki
 
@@ -30,12 +30,29 @@ Module arguments
 Example usage
 ---
 ```
-    - name: Create elasticsearch user 'new-user'
+    - name: Create elasticsearch user 'new-user1'
       netways.elasticstack.elasticsearch_user:
-        name: new-user
-        fullname: New User
+        name: new-user1
+        fullname: New User 1
         password: changeMe321!
-        email: [email protected]
+        email: [email protected]
+        roles:
+          - new-role
+          - logstash-writer
+        enabled: true
+        state: present
+        host: https://localhost:9200
+        auth_user: elastic
+        auth_pass: changeMe123!
+        verify_certs: true
+        ca_certs: /etc/elasticsearch/certs/http_ca.crt
+
+    - name: Create elasticsearch user 'new-user2'
+      netways.elasticstack.elasticsearch_user:
+        name: new-user2
+        fullname: New User 2
+        password: changeMe321!
+        email: [email protected]
         roles:
           - new-role
           - logstash-writer
 
@@ -10,7 +10,7 @@
     elasticstack_full_stack: false
     elasticsearch_jna_workaround: true
     elasticsearch_disable_systemcallfilterchecks: true
-    elasticstack_release: 8
+    elasticstack_release: "{{ lookup('env', 'ELASTIC_RELEASE') | int}}"
     elasticsearch_heap: "1"
     elasticstack_no_log: false
   tasks:
@@ -46,7 +46,6 @@
         auth_user: elastic
         auth_pass: "{{ elasticstack_password.stdout }}"
         verify_certs: false
-        #ca_certs: /etc/elasticsearch/certs/http_ca.crt
 
     - name: Create elasticsearch user 'new-user'
       netways.elasticstack.elasticsearch_user:
@@ -63,4 +62,4 @@
         auth_user: elastic
         auth_pass: "{{ elasticstack_password.stdout }}"
         verify_certs: false
-        #ca_certs: /etc/elasticsearch/certs/http_ca.crt
+        ca_certs: /etc/elasticsearch/certs/http_ca.crt
@@ -6,7 +6,7 @@ dependency:
 driver:
   name: docker
 platforms:
-  - name: elasticsearch_default1
+  - name: elasticsearch_default
     groups:
       - elasticsearch
     image: "geerlingguy/docker-${MOLECULE_DISTRO:-debian11}-ansible:latest"
@@ -16,16 +16,6 @@ platforms:
     cgroupns_mode: host
     privileged: true
     pre_build_image: true
-  #- name: elasticsearch_default2
-  #  groups:
-  #    - elasticsearch
-  #  image: "geerlingguy/docker-${MOLECULE_DISTRO:-debian11}-ansible:latest"
-  #  command: ${MOLECULE_DOCKER_COMMAND:-""}
-  #  volumes:
-  #    - /sys/fs/cgroup:/sys/fs/cgroup:rw
-  #  cgroupns_mode: host
-  #  privileged: true
-  #  pre_build_image: true
 provisioner:
   name: ansible
   env:
 
@@ -7,143 +7,9 @@
 from elasticsearch import Elasticsearch
 import ssl
 
-def new_client_basic_auth(host, auth_user, auth_pass, ca_certs, verify_certs) -> Elasticsearch:
-    ctx = ssl.create_default_context(cafile=ca_certs)
-    ctx.check_hostname = False
-    ctx.verify_mode = False
-    return Elasticsearch(hosts=[host], basic_auth=(auth_user, auth_pass), ssl_context=ctx, verify_certs=verify_certs)
-
-
-class Role():
-    def __init__(self, result, role_name, cluster, indicies, state, host, auth_user, auth_pass, verify_certs, ca_certs): 
-        self.role_name = role_name
-        self.cluster = cluster
-        self.indicies = indicies
-        self.state = state
-        self.result = result
-
-        self.client = new_client_basic_auth(host=host, auth_user=auth_user, auth_pass=auth_pass, verify_certs=verify_certs, ca_certs=ca_certs)
-
-        self.handle()
-
-
-    def return_result(self) -> dict:
-        return self.result
-  
-
-    def handle(self):
-        all_roles = self.get_all()
-
-        if self.state == 'absent':
-            if self.role_name in all_roles:
-                res = self.delete()
-                if res['found'] == True:
-                    self.result['changed'] = True
-                    self.result['msg'] = self.role_name + " has been deleted"
-                return
-
-        elif self.state == 'present':
-            if self.role_name in all_roles.raw:
-                pre_role = self.get()
-            else:
-                pre_role = None
-
-            res = self.put()
-
-            if res.raw['role']['created'] == True:
-                self.result['changed'] = True
-                self.result['msg'] = self.role_name + " has been created"
-                return
-
-            if pre_role != None:
-                if pre_role.raw != self.get().raw:
-                    self.result['changed'] = True
-                    self.result['msg'] = self.role_name + " has been updated"
-                    return
-        
-        return
-        
-
-    def get_all(self):
-        return self.client.security.get_role()
-
-
-    def get(self):
-        return self.client.security.get_role(name=self.role_name)
-
-
-    def put(self):
-        return self.client.security.put_role(name=self.role_name, cluster=self.cluster, indices=self.indicies)
-
-    
-    def delete(self):
-        return self.client.security.delete_role(name=self.role_name)
-
-
-class User():
-    def __init__(self, result, user_name, full_name, password, email, roles, enabled, state, host, auth_user, auth_pass, verify_certs, ca_certs):
-        self.user_name = user_name
-        self.full_name = full_name
-        self.password = password
-        self.email = email
-        self.roles = roles
-        self.enabled = enabled
-        self.state = state
-        self.result = result
-
-        self.client = new_client_basic_auth(host=host, auth_user=auth_user, auth_pass=auth_pass, ca_certs=ca_certs, verify_certs=verify_certs)
-
-        self.handle()
-
-    
-    def return_result(self) -> dict:
-        return self.result
-    
-
-    def handle(self):
-        all_users = self.get_all()
-
-        if self.state == 'absent':
-            if self.user_name in all_users:
-                res = self.delete()
-                if res['found'] == True:
-                    self.result['changed'] = True
-                    self.result['msg'] = self.user_name + " has been deleted"
-            return
-        
-        elif self.state == 'present':
-            if self.user_name in all_users.raw:
-                pre_user = self.get()
-            else:
-                pre_user = None
-
-            res = self.put()
-
-            if res.raw['created'] == True:
-                self.result['changed'] = True
-                self.result['msg'] = self.user_name + " has been created"
-                return
-            
-            if pre_user != None:
-                if pre_user.raw != self.get().raw:
-                    self.result['changed'] = True
-                    self.result['msg'] = self.user_name + " has beed updated"
-                    return
-
-        return
-
-
-    def get_all(self):
-        return self.client.security.get_user()
-
-
-    def get(self):
-        return self.client.security.get_user(username=self.user_name)
-
-    
-    def put(self):
-        return self.client.security.put_user(username=self.user_name, password=self.password, email=self.email, full_name=self.full_name, enabled=self.enabled, roles=self.roles)
-
-    
-    def delete(self):
-        return self.client.security.delete_user(username=self.user_name)
+class Api():
+    def new_client_basic_auth(host, auth_user, auth_pass, ca_certs, verify_certs) -> Elasticsearch:
+        ctx = ssl.create_default_context(cafile=ca_certs)
+        ctx.check_hostname = False
+        ctx.verify_mode = False
+        return Elasticsearch(hosts=[host], basic_auth=(auth_user, auth_pass), ssl_context=ctx, verify_certs=verify_certs)