lywsvip/cloudpods
1
0
Fork 0
mirror of https://github.com/yunionio/cloudpods.git synced 2026-05-31 04:50:10 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
8fa4e577dd8064cbda8a95a085b8225209dbec44
cloudpods/pkg/multicloud/openstack/loadbalanceracl.go
Qu Xuan 4af24a2928 fix(region): split provider tag sync
2021-05-28 20:18:10 +08:00

188 lines
5.7 KiB
Go
Raw Blame History

// Copyright 2019 Yunion
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package openstack
import (
"fmt"
"time"
"github.com/pkg/errors"
"yunion.io/x/jsonutils"
"yunion.io/x/onecloud/pkg/cloudprovider"
"yunion.io/x/onecloud/pkg/multicloud"
)
type AclEntrys struct {
AclEntry []AclEntry
}
type AclEntry struct {
AclEntryComment string
AclEntryIP string
}
type SLoadbalancerAcl struct {
multicloud.SResourceBase
multicloud.OpenStackTags
listener *SLoadbalancerListener
}
func (acl *SLoadbalancerAcl) GetAclListenerID() string {
return acl.listener.ID
}
func (acl *SLoadbalancerAcl) GetName() string {
return acl.listener.Name + "AllowedCidrs"
}
func (acl *SLoadbalancerAcl) GetId() string {
return acl.listener.ID
}
func (acl *SLoadbalancerAcl) GetGlobalId() string {
return acl.listener.ID
}
func (acl *SLoadbalancerAcl) GetStatus() string {
return ""
}
func (acl *SLoadbalancerAcl) IsEmulated() bool {
return false
}
func (acl *SLoadbalancerAcl) Refresh() error {
return acl.listener.Refresh()
}
func (acl *SLoadbalancerAcl) GetAclEntries() []cloudprovider.SLoadbalancerAccessControlListEntry {
aclEntrys := []cloudprovider.SLoadbalancerAccessControlListEntry{}
for i := 0; i < len(acl.listener.AllowedCidrs); i++ {
aclEntry := cloudprovider.SLoadbalancerAccessControlListEntry{}
aclEntry.CIDR = acl.listener.AllowedCidrs[i]
aclEntry.Comment = "AllowedCidr"
aclEntrys = append(aclEntrys, aclEntry)
}
return aclEntrys
}
func (region *SRegion) UpdateLoadbalancerListenerAllowedCidrs(listenerId string, cidrs []string) error {
params := jsonutils.NewDict()
listenerParam := jsonutils.NewDict()
listenerParam.Add(jsonutils.NewStringArray(cidrs), "allowed_cidrs")
params.Add(listenerParam, "listener")
_, err := region.lbUpdate(fmt.Sprintf("/v2/lbaas/listeners/%s", listenerId), params)
if err != nil {
return errors.Wrapf(err, `region.lbUpdate(/v2/lbaas/listeners/%s, params)`, listenerId)
}
return nil
}
func (acl *SLoadbalancerAcl) Delete() error {
// ensure listener status
err := waitLbResStatus(acl.listener, 10*time.Second, 8*time.Minute)
if err != nil {
return errors.Wrap(err, `waitLbResStatus(acl.listener, 10*time.Second, 8*time.Minute)`)
}
err = acl.listener.region.UpdateLoadbalancerListenerAllowedCidrs(acl.listener.ID, []string{})
if err != nil {
return errors.Wrap(err, `acl.listener.region.UpdateLoadbalancerListenerAllowedCidrs(acl.listener.ID, []string{})`)
}
err = waitLbResStatus(acl.listener, 10*time.Second, 8*time.Minute)
if err != nil {
return errors.Wrap(err, `waitLbResStatus(acl.listener, 10*time.Second, 8*time.Minute)`)
}
return nil
}
func (region *SRegion) GetLoadbalancerAclDetail(aclId string) (*SLoadbalancerAcl, error) {
listener, err := region.GetLoadbalancerListenerbyId(aclId)
if err != nil {
return nil, errors.Wrapf(err, "region.GetLoadbalancerListenerbyId(%s)", aclId)
}
acl := SLoadbalancerAcl{}
acl.listener = listener
return &acl, nil
}
func (region *SRegion) GetLoadBalancerAcls() ([]SLoadbalancerAcl, error) {
listeners, err := region.GetLoadbalancerListeners()
if err != nil {
return nil, errors.Wrap(err, "region.GetLoadbalancerListeners()")
}
acls := []SLoadbalancerAcl{}
for i := 0; i < len(listeners); i++ {
if len(listeners[i].AllowedCidrs) < 1 {
continue
}
acl := new(SLoadbalancerAcl)
acl.listener = &listeners[i]
acls = append(acls, *acl)
}
return acls, nil
}
func (region *SRegion) CreateLoadBalancerAcl(acl *cloudprovider.SLoadbalancerAccessControlList) (*SLoadbalancerAcl, error) {
if !acl.AccessControlEnable {
return nil, errors.Wrap(fmt.Errorf("only support allowed cidrs"), "CreateLoadBalancerAcl")
}
if len(acl.ListenerId) < 1 {
return nil, errors.Wrap(fmt.Errorf("loadbalanceracl must band to a loadbalancerlistener"), "CreateLoadBalancerAcl")
}
cidrs := []string{}
for i := 0; i < len(acl.Entrys); i++ {
cidrs = append(cidrs, acl.Entrys[i].CIDR)
}
sacl, err := region.GetLoadbalancerAclDetail(acl.ListenerId)
if err != nil {
return nil, errors.Wrapf(err, "region.GetLoadbalancerAclDetail(%s)", acl.ListenerId)
}
// ensure listener status
err = waitLbResStatus(sacl.listener, 10*time.Second, 8*time.Minute)
if err != nil {
return nil, errors.Wrap(err, `waitLbResStatus(sacl.listener, 10*time.Second, 8*time.Minute)`)
}
return sacl, region.UpdateLoadbalancerListenerAllowedCidrs(acl.ListenerId, cidrs)
}
func (acl *SLoadbalancerAcl) Sync(_acl *cloudprovider.SLoadbalancerAccessControlList) error {
// ensure listener status
err := waitLbResStatus(acl.listener, 10*time.Second, 8*time.Minute)
if err != nil {
return errors.Wrap(err, "waitLbResStatus(acl.listener, 10*time.Second, 8*time.Minute)")
}
cidrs := []string{}
for i := 0; i < len(_acl.Entrys); i++ {
cidrs = append(cidrs, _acl.Entrys[i].CIDR)
}
err = acl.listener.region.UpdateLoadbalancerListenerAllowedCidrs(acl.listener.ID, cidrs)
if err != nil {
return errors.Wrapf(err, "UpdateLoadbalancerListenerAllowedCidrs(%s, cidrs)", acl.listener.ID)
}
err = waitLbResStatus(acl.listener, 10*time.Second, 8*time.Minute)
if err != nil {
return errors.Wrap(err, "waitLbResStatus(acl.listener, 10*time.Second, 8*time.Minute)")
}
return nil
}
func (acl *SLoadbalancerAcl) GetProjectId() string {
return acl.listener.ProjectID
}
Reference in New Issue View Git Blame Copy Permalink