bigip_security_log_profile missing application

[slawekww]

Is your feature request related to a problem? Please describe.

It is not possible to manage F5 Security Log profile via ansible (nor Terraform BTW).

Please extend task https://clouddocs.f5.com/products/orchestration/ansible/devel/f5_bigip/modules_2_0/bigip_security_log_profile_module.html to manage application properties.

For now it is only possible via tmsh command like:

create /security log profile /particition/name { application replace-all-with /partition/name { filter ... }}

Describe the solution you'd like

Possibility to manage the same as ansible task like:

bigip_security_log_profile:
  application:
    <properties>

Describe alternatives you've considered

Support it via Terraform if possible however preference is to support it via ansible.

Additional context

Goal is to automate F5 Security Log Profile creation/modification for sending WAF event logs to remote system.

[pgouband]

Hi @slawekww,

Here is the link to AS3 Ansible module with examples: https://clouddocs.f5.com/products/orchestration/ansible/devel/f5_bigip/modules_2_0/bigip_as3_deploy_module.html#bigip-as3-deploy-module-2

Here is the link to AS3 declaration examples: https://clouddocs.f5.com/products/extensions/f5-appsvcs-extension/latest/declarations/

[slawekww]

@pgouband Thank you for tip with AS3 Ansible. For now I use ansible task bigip_command to create, modify and delete Security Log profile - command is rendered via ansible template with all parameters. So in practice my understanding is that there is no difference between usage bigip_command and bigip_as3_deploy, just a different way of sending request to F5 (tmsh vs API).

My request is to extend task bigip_security_log_profile to allow manage it in declarative mode.

[pgouband]

Hi,

Thanks for reporting. Added to the backlog and internal tracking ID for this request is: INFRAANO-1523.