// Copyright 2019 Yunion // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. package ksyun import ( "time" api "yunion.io/x/cloudmux/pkg/apis/cloudid" "yunion.io/x/cloudmux/pkg/cloudprovider" ) type SGroup struct { client *SKsyunClient Description string UserGroupId string GroupName string CreateDate time.Time Krn string UserCount int PolicyCount int } func (group *SGroup) GetName() string { return group.GroupName } func (group *SGroup) GetGlobalId() string { return group.GroupName } func (group *SGroup) GetDescription() string { return group.Description } func (group *SGroup) GetICloudusers() ([]cloudprovider.IClouduser, error) { return nil, cloudprovider.ErrNotSupported } func (group *SGroup) GetICloudpolicies() ([]cloudprovider.ICloudpolicy, error) { policies, err := group.client.ListGroupPolicies(group.GroupName) if err != nil { return nil, err } ret := []cloudprovider.ICloudpolicy{} for i := range policies { policies[i].client = group.client ret = append(ret, &policies[i]) } return ret, nil } func (group *SGroup) AddUser(name string) error { return group.client.AddUserToGroup(name, group.GroupName) } func (group *SGroup) RemoveUser(name string) error { return group.client.RemoveUserFromGroup(name, group.GroupName) } func (group *SGroup) AttachPolicy(policyName string, policyType api.TPolicyType) error { return group.client.AttachGroupPolicy(group.GroupName, policyName) } func (group *SGroup) DetachPolicy(policyName string, policyType api.TPolicyType) error { return group.client.DetachGroupPolicy(group.GroupName, policyName) } func (group *SGroup) Delete() error { return group.client.DeleteGroup(group.GroupName) } func (client *SKsyunClient) CreateICloudgroup(name string, desc string) (cloudprovider.ICloudgroup, error) { group, err := client.CreateGroup(name, desc) if err != nil { return nil, err } return group, nil } func (client *SKsyunClient) GetICloudgroups() ([]cloudprovider.ICloudgroup, error) { groups, err := client.ListGroups() if err != nil { return nil, err } ret := []cloudprovider.ICloudgroup{} for i := range groups { groups[i].client = client ret = append(ret, &groups[i]) } return ret, nil } func (client *SKsyunClient) ListGroups() ([]SGroup, error) { params := map[string]interface{}{ "MaxItems": "100", } ret := []SGroup{} for { resp, err := client.iamRequest("", "ListGroups", params) if err != nil { return nil, err } part := struct { Groups struct { Member []SGroup } Marker string }{} err = resp.Unmarshal(&part) if err != nil { return nil, err } ret = append(ret, part.Groups.Member...) if len(part.Marker) == 0 || len(part.Groups.Member) == 0 { break } params["Marker"] = part.Marker } return ret, nil } func (client *SKsyunClient) ListGroupPolicies(name string) ([]SPolicy, error) { params := map[string]interface{}{ "GroupName": name, "MaxItems": "100", } ret := []SPolicy{} for { resp, err := client.iamRequest("", "ListGroupPolicies", params) if err != nil { return nil, err } part := struct { AttachedPolicies struct { Member []SPolicy } Marker string }{} err = resp.Unmarshal(&part) if err != nil { return nil, err } ret = append(ret, part.AttachedPolicies.Member...) if len(part.Marker) == 0 || len(part.AttachedPolicies.Member) == 0 { break } params["Marker"] = part.Marker } return ret, nil } func (client *SKsyunClient) AttachGroupPolicy(name, policy string) error { params := map[string]interface{}{ "GroupName": name, "PolicyKrn": policy, } _, err := client.iamRequest("", "AttachGroupPolicy", params) return err } func (client *SKsyunClient) DetachGroupPolicy(name, policy string) error { params := map[string]interface{}{ "GroupName": name, "PolicyKrn": policy, } _, err := client.iamRequest("", "DetachGroupPolicy", params) return err } func (client *SKsyunClient) DeleteGroup(name string) error { params := map[string]interface{}{ "GroupName": name, } _, err := client.iamRequest("", "DeleteGroup", params) return err } func (client *SKsyunClient) AddUserToGroup(user, group string) error { params := map[string]interface{}{ "GroupName": group, "UserName": user, } _, err := client.iamRequest("", "AddUserToGroup", params) return err } func (client *SKsyunClient) RemoveUserFromGroup(user, group string) error { params := map[string]interface{}{ "GroupName": group, "UserName": user, } _, err := client.iamRequest("", "RemoveUserFromGroup", params) return err } func (client *SKsyunClient) CreateGroup(name, desc string) (*SGroup, error) { params := map[string]interface{}{ "GroupName": name, "Description": desc, } resp, err := client.iamRequest("", "CreateGroup", params) if err != nil { return nil, err } ret := &SGroup{client: client} err = resp.Unmarshal(ret, "Group") if err != nil { return nil, err } return ret, nil } func (client *SKsyunClient) GetICloudgroupByName(name string) (cloudprovider.ICloudgroup, error) { group, err := client.GetGroup(name) if err != nil { return nil, err } return group, nil } func (client *SKsyunClient) GetGroup(name string) (*SGroup, error) { params := map[string]interface{}{ "GroupName": name, } resp, err := client.iamRequest("", "GetGroup", params) if err != nil { return nil, err } ret := &SGroup{client: client} err = resp.Unmarshal(ret, "UserGroup") if err != nil { return nil, err } return ret, nil }