pulp
diff --git a/‎meta/runtime.yml‎
Lines changed: 42 additions & 40 deletions b/‎meta/runtime.yml‎
Lines changed: 42 additions & 40 deletions
diff --git a/‎plugins/module_utils/pulp_glue.py‎
Lines changed: 5 additions & 2 deletions b/‎plugins/module_utils/pulp_glue.py‎
Lines changed: 5 additions & 2 deletions
diff --git a/‎plugins/modules/group.py‎
Lines changed: 92 additions & 0 deletions b/‎plugins/modules/group.py‎
Lines changed: 92 additions & 0 deletions
diff --git a/‎plugins/modules/user.py‎
Lines changed: 167 additions & 0 deletions b/‎plugins/modules/user.py‎
Lines changed: 167 additions & 0 deletions
diff --git a/‎requirements.txt‎
Lines changed: 1 addition & 1 deletion b/‎requirements.txt‎
Lines changed: 1 addition & 1 deletion
@@ -1,44 +1,46 @@
 ---
 action_groups:
   squeezer:
-    - access_policy
-    - ansible_distribution
-    - ansible_remote
-    - ansible_repository
-    - ansible_role
-    - ansible_sync
-    - api_call
-    - artifact
-    - container_distribution
-    - container_remote
-    - container_repository
-    - container_sync
-    - deb_distribution
-    - deb_publication
-    - deb_remote
-    - deb_repository
-    - deb_sync
-    - delete_orphans
-    - file_content
-    - file_distribution
-    - file_publication
-    - file_remote
-    - file_repository
-    - file_sync
-    - purge_tasks
-    - python_distribution
-    - python_publication
-    - python_remote
-    - python_repository
-    - python_sync
-    - repair
-    - rpm_distribution
-    - rpm_publication
-    - rpm_remote
-    - rpm_repository
-    - rpm_sync
-    - status
-    - task
-    - x509_cert_guard
-requires_ansible: ">=2.15.0,<2.19"
+  - access_policy
+  - ansible_distribution
+  - ansible_remote
+  - ansible_repository
+  - ansible_role
+  - ansible_sync
+  - api_call
+  - artifact
+  - container_distribution
+  - container_remote
+  - container_repository
+  - container_sync
+  - deb_distribution
+  - deb_publication
+  - deb_remote
+  - deb_repository
+  - deb_sync
+  - delete_orphans
+  - file_content
+  - file_distribution
+  - file_publication
+  - file_remote
+  - file_repository
+  - file_sync
+  - group
+  - purge_tasks
+  - python_distribution
+  - python_publication
+  - python_remote
+  - python_repository
+  - python_sync
+  - repair
+  - rpm_distribution
+  - rpm_publication
+  - rpm_remote
+  - rpm_repository
+  - rpm_sync
+  - status
+  - task
+  - user
+  - x509_cert_guard
+requires_ansible: '>=2.15.0,<2.19'
 ...
@@ -10,7 +10,7 @@
 
 from ansible.module_utils.basic import AnsibleModule, env_fallback, missing_required_lib
 
-GLUE_VERSION_SPEC = ">=0.29.2,<0.32"
+GLUE_VERSION_SPEC = ">=0.29.2,<0.35"
 GLUE_DEB_VERSION_SPEC = ">=0.3.0,<0.4"
 
 
@@ -184,7 +184,7 @@ def process(self, natural_key, desired_attributes, defaults=None):
                 self.process_special(desired_attributes, defaults=defaults),
             )
             return
-        changed, before, after = self.context.converge(desired_entity, defaults=defaults)
+        changed, before, after = self.process_converge(desired_entity, defaults=defaults)
         if before is not None:
             before = self.represent(before)
         if after is not None:
@@ -195,6 +195,9 @@ def process(self, natural_key, desired_attributes, defaults=None):
             self.record_diff_state(after)
         self.set_result(self.entity_singular, after)
 
+    def process_converge(self, desired_entity, defaults=None):
+        return self.context.converge(desired_entity, defaults=defaults)
+
     def process_info(self, natural_key, desired_attributes):
         if any((value is not None for value in desired_attributes.values())):
             raise SqueezerException("Cannot use attributes when querying entities.")
 
@@ -0,0 +1,92 @@
+#!/usr/bin/python
+
+# copyright (c) 2025, Matthias Dellweg
+# GNU General Public License v3.0+ (see LICENSE or https://www.gnu.org/licenses/gpl-3.0.txt)
+
+
+DOCUMENTATION = r"""
+---
+module: group
+short_description: Manage groups of a pulp api server instance
+description:
+  - "This performs CRUD operations on groups in a pulp api server instance."
+options:
+  group:
+    description:
+      - Group object to manipulate
+    type: dict
+    suboptions:
+      name:
+        description:
+          - Name of the group to query or manipulate
+        type: str
+        required: true
+extends_documentation_fragment:
+  - pulp.squeezer.pulp.entity_state
+  - pulp.squeezer.pulp
+author:
+  - Matthias Dellweg (@mdellweg)
+"""
+
+EXAMPLES = r"""
+- name: Read list of groups from pulp api server
+  pulp.squeezer.group:
+    pulp_url: https://pulp.example.org
+    username: admin
+    password: password
+  register: groups
+- name: Report groups
+  debug:
+    var: groups
+"""
+
+RETURN = r"""
+  users:
+    description: List of groups
+    type: list
+    returned: when no group is given
+  user:
+    description: group details
+    type: dict
+    returned: when group.name is given
+"""
+
+
+import traceback
+
+from ansible_collections.pulp.squeezer.plugins.module_utils.pulp_glue import PulpEntityAnsibleModule
+
+try:
+    from pulp_glue.core.context import PulpGroupContext
+
+    PULP_GLUE_IMPORT_ERR = None
+except ImportError:
+    PULP_GLUE_IMPORT_ERR = traceback.format_exc()
+    PulpGroupContext = None
+
+
+def main():
+    with PulpEntityAnsibleModule(
+        context_class=PulpGroupContext,
+        entity_singular="group",
+        entity_plural="groups",
+        import_errors=[("pulp-glue", PULP_GLUE_IMPORT_ERR)],
+        argument_spec={
+            "group": {
+                "type": "dict",
+                "options": {
+                    "name": {"required": True},
+                },
+            }
+        },
+        required_if=[("state", "present", ["group"]), ("state", "absent", ["group"])],
+    ) as module:
+        group = module.params["group"]
+        natural_key = {"name": group and group["name"]}
+        desired_attributes = {}
+
+        module.process(natural_key, desired_attributes)
+
+
+if __name__ == "__main__":
+    main()
@@ -0,0 +1,167 @@
+#!/usr/bin/python
+
+# copyright (c) 2025, Matthias Dellweg
+# GNU General Public License v3.0+ (see LICENSE or https://www.gnu.org/licenses/gpl-3.0.txt)
+
+
+DOCUMENTATION = r"""
+---
+module: user
+short_description: Manage users of a pulp api server instance
+description:
+  - "This performs CRUD operations on users in a pulp api server instance."
+options:
+  user:
+    description:
+      - User object to manipulate
+    type: dict
+    suboptions:
+      username:
+        description:
+          - Username of the user to query or manipulate
+        type: str
+        required: true
+      password:
+        description:
+          - Users password
+        type: str
+      first_name:
+        description:
+          - Users first name
+        type: str
+      last_name:
+        description:
+          - Users last name
+        type: str
+      email:
+        description:
+          - Users e-mail
+        type: str
+      is_active:
+        description:
+          - Whether the user can log in
+        type: bool
+      is_staff:
+        description:
+          - Whether the user belongs to the staff
+          - This django attribute has no effect on pulp operations
+        type: bool
+      groups:
+        description:
+          - List of groups the user should be in
+        type: list
+        elements: str
+extends_documentation_fragment:
+  - pulp.squeezer.pulp.entity_state
+  - pulp.squeezer.pulp
+author:
+  - Matthias Dellweg (@mdellweg)
+"""
+
+EXAMPLES = r"""
+- name: Read list of users from pulp api server
+  pulp.squeezer.user:
+    pulp_url: https://pulp.example.org
+    username: admin
+    password: password
+  register: users
+- name: Report users
+  debug:
+    var: users
+"""
+
+RETURN = r"""
+  users:
+    description: List of users
+    type: list
+    returned: when no user is given
+  user:
+    description: user details
+    type: dict
+    returned: when user.username is given
+"""
+
+
+import traceback
+
+from ansible_collections.pulp.squeezer.plugins.module_utils.pulp_glue import PulpEntityAnsibleModule
+
+try:
+    from pulp_glue.core.context import PulpGroupContext, PulpGroupUserContext, PulpUserContext
+
+    PULP_GLUE_IMPORT_ERR = None
+except ImportError:
+    PULP_GLUE_IMPORT_ERR = traceback.format_exc()
+    PulpUserContext = None
+    PulpGroupContext = None
+    PulpGroupUserContext = None
+
+
+class PulpUserAnsibleModule(PulpEntityAnsibleModule):
+    def process_converge(self, desired_entity, defaults=None):
+        # Ideally glue would do this for us...
+        groups = desired_entity and desired_entity.pop("groups", None)
+        changed, before, after = super().process_converge(desired_entity, defaults=defaults)
+        if self.check_mode and after is not None:
+            # Fake the groups.
+            after.setdefault("groups", [])
+        if groups is not None:
+            desired_groups = set(groups)
+            actual_groups = {g["name"] for g in after["groups"]}
+            missing_groups = desired_groups - actual_groups
+            superfluous_groups = actual_groups - desired_groups
+            for group in missing_groups:
+                group_ctx = PulpGroupContext(self.pulp_ctx, entity={"name": group})
+                # Apparently pulp_glue did never implement this.
+                # group_ctx.add_user(after["username"])
+                # ---8<--- Workaround ----8<----
+                group_user_ctx = PulpGroupUserContext(self.pulp_ctx, group_ctx)
+                group_user_ctx.create(body={"username": self.context.entity["username"]})
+                # ---8<-------8<----
+                after["groups"].append(group_ctx.entity)
+                changed = True
+            for group in superfluous_groups:
+                group_ctx = PulpGroupContext(self.pulp_ctx, entity={"name": group})
+                group_ctx.remove_user(self.context)
+                after["groups"] = [g for g in after["groups"] if g["name"] != group]
+                changed = True
+
+        return changed, before, after
+
+
+def main():
+    with PulpUserAnsibleModule(
+        context_class=PulpUserContext,
+        entity_singular="user",
+        entity_plural="users",
+        import_errors=[("pulp-glue", PULP_GLUE_IMPORT_ERR)],
+        argument_spec={
+            "user": {
+                "type": "dict",
+                "options": {
+                    "username": {"required": True},
+                    "password": {"no_log": True},
+                    "first_name": {},
+                    "last_name": {},
+                    "email": {},
+                    "is_active": {"type": "bool"},
+                    "is_staff": {"type": "bool"},
+                    "groups": {"type": "list", "elements": "str"},
+                },
+            }
+        },
+        required_if=[("state", "present", ["user"]), ("state", "absent", ["user"])],
+    ) as module:
+        user = module.params["user"]
+        natural_key = {"username": user and user["username"]}
+        desired_attributes = {}
+        if user is not None:
+            for key, value in user.items():
+                if key not in ["username"] and value is not None:
+                    desired_attributes[key] = value
+
+        module.process(natural_key, desired_attributes)
+
+
+if __name__ == "__main__":
+    main()
@@ -1,4 +1,4 @@
-pulp-glue<0.32,>=0.29.2
+pulp-glue<0.35,>=0.29.2
 pulp-glue-deb<0.4.0,>=0.3.0
 
 ansible_runner<2.3; python_version < '3.7'
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-pulp-glue<0.32,>=0.29.2`
	`1`	`+pulp-glue<0.35,>=0.29.2`
`2`	`2`	`pulp-glue-deb<0.4.0,>=0.3.0`
`3`	`3`
`4`	`4`	`ansible_runner<2.3; python_version < '3.7'`