De-couple backend logic from module logic

Author: mariolenz

plugins/module_utils/clients/_vmware.py

@@ -0,0 +1,95 @@
+# -*- coding: utf-8 -*-
+
+# Copyright: (c) 2015, Joseph Callen <jcallen () csc.com>
+# Copyright: (c) 2018, Ansible Project
+# Copyright: (c) 2018, James E. King III (@jeking3) <jking@apache.org>
+# Copyright: (c) 2025, Mario Lenz (@mariolenz) <m@riolenz.de>
+# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+__metaclass__ = type
+
+import atexit
+import requests
+import ssl
+import traceback
+
+from ansible.module_utils.basic import missing_required_lib
+from pyVim import connect
+from pyVmomi import vim, vmodl
+
+
+class ApiAccessError(Exception):
+    def __init__(self, *args, **kwargs):
+        super(ApiAccessError, self).__init__(*args, **kwargs)
+
+class PyvmomiClient(object):
+    def __init__(self, hostname, username, password, port=443, validate_certs=True, http_proxy_host=None, http_proxy_port=None):
+        self.si, self.content = self._connect_to_api(hostname, username, password, port, validate_certs, http_proxy_host, http_proxy_port)
+
+    def _connect_to_api(self, hostname, username, password, port, validate_certs, http_proxy_host, http_proxy_port):
+        if not hostname:
+            raise ApiAccessError("Hostname parameter is missing.")
+
+        if not username:
+            raise ApiAccessError("Username parameter is missing.")
+
+        if not password:
+            raise ApiAccessError("Password parameter is missing.")
+
+        if validate_certs and not hasattr(ssl, 'SSLContext'):
+            _raise_or_fail(msg='pyVim does not support changing verification mode with python < 2.7.9. Either update '
+                               'python or use validate_certs=false.')
+        elif validate_certs:
+            ssl_context = ssl.SSLContext(ssl.PROTOCOL_SSLv23)
+            ssl_context.verify_mode = ssl.CERT_REQUIRED
+            ssl_context.check_hostname = True
+            ssl_context.load_default_certs()
+        elif hasattr(ssl, 'SSLContext'):
+            ssl_context = ssl.SSLContext(ssl.PROTOCOL_SSLv23)
+            ssl_context.verify_mode = ssl.CERT_NONE
+            ssl_context.check_hostname = False
+
+        service_instance = None
+
+        connect_args = dict(
+            host=hostname,
+            port=port,
+        )
+        if ssl_context:
+            connect_args.update(sslContext=ssl_context)
+
+        msg_suffix = ''
+        try:
+            if http_proxy_host:
+                msg_suffix = " [proxy: %s:%d]" % (http_proxy_host, http_proxy_port)
+                connect_args.update(httpProxyHost=http_proxy_host, httpProxyPort=http_proxy_port)
+                smart_stub = connect.SmartStubAdapter(**connect_args)
+                session_stub = connect.VimSessionOrientedStub(smart_stub, connect.VimSessionOrientedStub.makeUserLoginMethod(username, password))
+                service_instance = vim.ServiceInstance('ServiceInstance', session_stub)
+            else:
+                connect_args.update(user=username, pwd=password)
+                service_instance = connect.SmartConnect(**connect_args)
+        except vim.fault.InvalidLogin as invalid_login:
+            msg = "Unable to log on to vCenter or ESXi API at %s:%s " % (hostname, port)
+            _raise_or_fail(msg="%s as %s: %s" % (msg, username, invalid_login.msg) + msg_suffix)
+        except vim.fault.NoPermission as no_permission:
+            _raise_or_fail(msg="User %s does not have required permission"
+                           " to log on to vCenter or ESXi API at %s:%s : %s" % (username, hostname, port, no_permission.msg))
+        except (requests.ConnectionError, ssl.SSLError) as generic_req_exc:
+            _raise_or_fail(msg="Unable to connect to vCenter or ESXi API at %s on TCP/%s: %s" % (hostname, port, generic_req_exc))
+        except vmodl.fault.InvalidRequest as invalid_request:
+            # Request is malformed
+            msg = "Failed to get a response from server %s:%s " % (hostname, port)
+            _raise_or_fail(msg="%s as request is malformed: %s" % (msg, invalid_request.msg) + msg_suffix)
+        except Exception as generic_exc:
+            msg = "Unknown error while connecting to vCenter or ESXi API at %s:%s" % (hostname, port) + msg_suffix
+            _raise_or_fail(msg="%s : %s" % (msg, generic_exc))
+
+        if service_instance is None:
+            msg = "Unknown error while connecting to vCenter or ESXi API at %s:%s" % (hostname, port)
+            _raise_or_fail(msg=msg + msg_suffix)
+
+        atexit.register(connect.Disconnect, service_instance)
+
+        return service_instance, service_instance.RetrieveContent()

plugins/module_utils/vmware.py

@@ -6,7 +6,6 @@
 # GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
 # SPDX-License-Identifier: GPL-3.0-or-later
 
-from __future__ import absolute_import, division, print_function
 __metaclass__ = type
 
 import atexit
@@ -22,6 +21,7 @@
 import datetime
 from collections import OrderedDict
 from ansible.module_utils.compat.version import StrictVersion
+from ansible_collections.community.vmware.plugins.module_utils.clients._vmware import PyvmomiClient
 from random import randint
 
 
@@ -1067,11 +1067,8 @@ def quote_obj_name(object_name=None):
     return object_name
 
 
-class PyVmomi(object):
+class PyVmomi(PyvmomiClient):
     def __init__(self, module):
-        """
-        Constructor
-        """
         if not HAS_REQUESTS:
             module.fail_json(msg=missing_required_lib('requests'),
                              exception=REQUESTS_IMP_ERR)
@@ -1080,6 +1077,11 @@ def __init__(self, module):
             module.fail_json(msg=missing_required_lib('PyVmomi'),
                              exception=PYVMOMI_IMP_ERR)
 
+        super().__init__(module.params['hostname'], module.params['username'],
+                         module.params['password'], module.params['port'],
+                         module.params['validate_certs'],
+                         module.params['proxy_host'],
+                         module.params['proxy_port'])
         self.module = module
         self.params = module.params
         self.current_vm_obj = None