Role of subelement module in an Ansible playbook

0 votes

I am unable to understand what the subelement module in an Ansible playbook does. Can I get a clear explanation?

I found this example on the documentation 

- name: show var structure as it is needed for example to make sense
  hosts: all
  vars:
    users:
      - name: alice
        authorized:
          - /tmp/alice/onekey.pub
          - /tmp/alice/twokey.pub
        mysql:
            password: mysql-password
            hosts:
              - "%"
              - "127.0.0.1"
              - "::1"
              - "localhost"
            privs:
              - "*.*:SELECT"
              - "DB1.*:ALL"
        groups:
          - wheel
      - name: bob
        authorized:
          - /tmp/bob/id_rsa.pub
        mysql:
            password: other-mysql-password
            hosts:
              - "db1"
            privs:
              - "*.*:SELECT"
              - "DB2.*:ALL"
  tasks:
    - name: Set authorized ssh key, extracting just that data from 'users'
      authorized_key:
        user: "{{ item.0.name }}"
        key: "{{ lookup('file', item.1) }}"
      with_subelements:
         - "{{ users }}"
         - authorized

    - name: Setup MySQL users, given the mysql hosts and privs subkey lists
      mysql_user:
        name: "{{ item.0.name }}"
        password: "{{ item.0.mysql.password }}"
        host: "{{ item.1 }}"
        priv: "{{ item.0.mysql.privs | join('/') }}"
      with_subelements:
        - "{{ users }}"
        - mysql.hosts

    - name: list groups for users that have them, don't error if groups key is missing
      debug: var=item
      loop: "{{lookup('subelements', users, 'groups', {'skip_missing': True})}}"

I dont understnad what item.0 and item.1 stands for?

Jan 16, 2019 in Ansible by Rahul
edited Jan 16, 2019 2,945 views

1 answer to this question.

0 votes

Hey @Rahul thanks for a better question description. 

So basically 

Subelements goes through a list of dictionaries and then traverses a list with a given (nested sub-)key inside of those records.

Here the nested list is over the variable users

users:
      - name: alice
        authorized:
          - /tmp/alice/onekey.pub
          - /tmp/alice/twokey.pub
        mysql:
            password: mysql-password
            hosts:
              - "%"
              - "127.0.0.1"
              - "::1"
              - "localhost"
            privs:
              - "*.*:SELECT"
              - "DB1.*:ALL"
        groups:
          - wheel
      - name: bob
        authorized:
          - /tmp/bob/id_rsa.pub
        mysql:
            password: other-mysql-password
            hosts:
              - "db1"
            privs:
              - "*.*:SELECT"
              - "DB2.*:ALL"

ietm.0 refers the the first item in the list, in this case the username Alice and item.1 to Bob.

So when you encounter 

item.0.name - it refers to Alice

item.0.mysql.password - refers to the mysql password of Alice and so on. 

answered Jan 16, 2019 by Emily

Related Questions In Ansible

0 votes
1 answer

Ansible playbook to automate security configurations of an EC2 instance

Hey @Kiara, your indentation is very wrong. ...READ MORE

answered Jan 24, 2019 in Ansible by Harsh
 1,342 views
0 votes
1 answer

Error saying "ERROR: sudo_pass is not a legal parameter at this level in an Ansible Playbook"

Here sudo_pass is where you're going wrong. ...READ MORE

answered Jan 29, 2019 in Ansible by Hatim
 1,948 views
0 votes
1 answer

How do I use my static and dynamic inventory files together in an ansible playbook?

Add both your static and dynamic inventories ...READ MORE

answered Feb 9, 2019 in Ansible by Monish
 3,017 views
0 votes
1 answer

Check status of an operation running in the background - Ansible

Hey @Neel, According to the documentation, Long running ...READ MORE

answered Mar 6, 2019 in Ansible by Yesha
 2,421 views
+6 votes
1 answer

Web UI (Dashboard): https://kubernetes.io/docs/tasks/access-application-cluster/web-ui-dashboard/

Hey @nmentityvibes, you seem to be using ...READ MORE

answered Dec 13, 2018 in Kubernetes by Kalgi
 • 52,340 points 9,288 views
+15 votes
2 answers

Git management technique when there are multiple customers and need multiple customization?

Consider this - In 'extended' Git-Flow, (Git-Multi-Flow, ...READ MORE

answered Mar 27, 2018 in DevOps & Agile by DragonLord999
 • 8,450 points 6,944 views
+4 votes
1 answer

How do I go from development docker-compose.yml to deployed docker-compose.yml in AWS

It can work if you try to put ...READ MORE

answered Jun 7, 2018 in AWS by Cloud gunner
 • 4,670 points 8,655 views
+2 votes
1 answer

How to store data in Hyperledger Fabric after restart?

When you use docker-compose down, all the ...READ MORE

answered Jul 27, 2018 in Blockchain by digger
 • 26,740 points 5,831 views
0 votes
1 answer

Is it possible to run an Ansible Playbook in python script?

Hey @Cerci, Of course its possible. You ...READ MORE

answered Jan 17, 2019 in Ansible by Nicolas
 16,668 views
0 votes
1 answer

Error saying " mapping values are not allowed in this context" while executing an ansible playbook

Hey, @Nishit seems like you've made a ...READ MORE

answered Jan 21, 2019 in Ansible by Emily
 16,795 views
webinar REGISTER FOR FREE WEBINAR X
REGISTER NOW
webinar_success Thank you for registering Join Edureka Meetup community for 100+ Free Webinars each month JOIN MEETUP GROUP
"PMP®","PMI®", "PMI-ACP®" and "PMBOK®" are registered marks of the Project Management Institute, Inc. MongoDB®, Mongo and the leaf logo are the registered trademarks of MongoDB, Inc.