public/AWX
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
071c243f7307394ea154c12be9ec77784f70ab79
AWX/Sharepoint.yaml
mhorak 071c243f73 Update Sharepoint.yaml
2025-08-14 07:05:56 +00:00

140 lines
4.6 KiB
YAML
Raw Blame History

---
- name: Post patching results to SharePoint (Graph)
hosts: windows
gather_facts: false
vars:
tenant_id: "{{ lookup('env', 'SP_TENANT_ID') }}"
client_id: "{{ lookup('env', 'SP_CLIENT_ID') }}"
client_secret: "{{ lookup('env', 'SP_CLIENT_SECRET') }}"
site_id: "{{ lookup('env', 'SP_SITE_ID') }}"
list_id: "{{ lookup('env', 'SP_LIST_ID') }}"
# Helpful AWX vars (exist in AWX/Controller job context)
job_id: "{{ tower_job_id | default('n/a') }}"
job_name: "{{ tower_job_template_name | default('Patch run') }}"
job_url: "{{ tower_job_url | default('') }}"
status: "{{ (tower_job_failed | default(false)) | ternary('failed','successful') }}"
# Timestamps (avoid ansible_date_time since gather_facts: false)
run_start: "{{ lookup('pipe','date -u +%Y-%m-%dT%H:%M:%SZ') }}"
run_end: "{{ lookup('pipe','date -u +%Y-%m-%dT%H:%M:%SZ') }}"
summary_text: >-
Job {{ job_id }} {{ status }}.
Template={{ job_name }}.
URL={{ job_url }}.
tasks:
- name: Acquire Graph token (client credentials)
delegate_to: localhost
run_once: true
uri:
url: "https://login.microsoftonline.com/{{ tenant_id }}/oauth2/v2.0/token"
method: POST
headers:
Content-Type: "application/x-www-form-urlencoded"
body: >
client_id={{ client_id }}
&client_secret={{ client_secret | urlencode }}
&scope=https%3A%2F%2Fgraph.microsoft.com%2F.default
&grant_type=client_credentials
register: graph_token
no_log: true
failed_when: graph_token.status not in [200]
- name: Verify siteId resolves
delegate_to: localhost
run_once: true
uri:
url: "https://graph.microsoft.com/v1.0/sites/{{ site_id }}"
method: GET
headers:
Authorization: "Bearer {{ graph_token.json.access_token }}"
return_content: true
status_code: 200
register: site_probe
no_log: true
- name: List lists to confirm listId (name + id)
delegate_to: localhost
run_once: true
uri:
url: "https://graph.microsoft.com/v1.0/sites/{{ site_id }}/lists?$select=id,displayName"
method: GET
headers:
Authorization: "Bearer {{ graph_token.json.access_token }}"
return_content: true
status_code: 200
register: lists_probe
no_log: false
- name: Show lists (sanitized)
run_once: true
debug:
msg: "{{ (lists_probe.json.value | default([])) | map(attribute='displayName') | list }}"
- name: Inspect columns (internal names)
delegate_to: localhost
run_once: true
uri:
url: "https://graph.microsoft.com/v1.0/sites/{{ site_id }}/lists/{{ list_id }}/columns?$select=name,displayName,columnType"
method: GET
headers:
Authorization: "Bearer {{ graph_token.json.access_token }}"
return_content: true
status_code: 200
register: cols_probe
no_log: false
- name: Print internal names
run_once: true
debug:
var: cols_probe.json.value | map(attribute='name') | list
- name: Create SharePoint list item (Graph)
delegate_to: localhost
run_once: true
block:
- uri:
url: "https://graph.microsoft.com/v1.0/sites/{{ site_id }}/lists/{{ list_id }}/items"
method: POST
headers:
Authorization: "Bearer {{ graph_token.json.access_token }}"
Content-Type: "application/json"
body_format: json
return_content: true
status_code: [200, 201]
body:
fields:
Title: "{{ job_name }} ({{ job_id }})"
Status: "{{ status }}"
RunStart: "{{ run_start }}"
RunEnd: "{{ run_end }}"
Notes: "{{ summary_text }}"
register: sp_create
no_log: false
rescue:
- name: Sanitize and print the error
run_once: true
vars:
_json: "{{ sp_create.json | default({}) }}"
debug:
msg:
status: "{{ sp_create.status | default('n/a') }}"
graph_error: >-
{{ _json.error.message
| default(_json.message
| default(sp_create.msg | default('Unknown error'))) }}
hint: >
400: column internal names; 401: scope/audience; 403: permissions;
404: siteId/listId.
- fail:
msg: "Failed to create SharePoint item (see previous message)."
- name: Show created list item id
run_once: true
debug:
var: sp_create.json.id
Reference in New Issue View Git Blame Copy Permalink