zhouyuhuan
/
Cloudpods


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153
							// Copyright 2019 Yunion
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package apsara

import (
	"yunion.io/x/jsonutils"
	"yunion.io/x/log"

	"yunion.io/x/cloudmux/pkg/apis"
	"yunion.io/x/cloudmux/pkg/cloudprovider"
	"yunion.io/x/cloudmux/pkg/multicloud"
)

type AclEntrys struct {
	AclEntry []AclEntry
}

type AclEntry struct {
	AclEntryComment string
	AclEntryIP      string
}

type SLoadbalancerAcl struct {
	multicloud.SResourceBase
	ApsaraTags
	region *SRegion

	AclId   string
	AclName string

	AclEntrys AclEntrys

	DepartmentInfo
}

func (acl *SLoadbalancerAcl) GetName() string {
	return acl.AclName
}

func (acl *SLoadbalancerAcl) GetId() string {
	return acl.AclId
}

func (acl *SLoadbalancerAcl) GetGlobalId() string {
	return acl.AclId
}

func (acl *SLoadbalancerAcl) GetStatus() string {
	return apis.STATUS_AVAILABLE
}

func (acl *SLoadbalancerAcl) Refresh() error {
	loadbalancerAcl, err := acl.region.GetLoadbalancerAclDetail(acl.AclId)
	if err != nil {
		return err
	}
	return jsonutils.Update(acl, loadbalancerAcl)
}

func (acl *SLoadbalancerAcl) GetAclEntries() []cloudprovider.SLoadbalancerAccessControlListEntry {
	detail, err := acl.region.GetLoadbalancerAclDetail(acl.AclId)
	if err != nil {
		log.Errorf("GetLoadbalancerAclDetail %s failed: %v", acl.AclId, err)
		return nil
	}
	entrys := []cloudprovider.SLoadbalancerAccessControlListEntry{}
	for _, entry := range detail.AclEntrys.AclEntry {
		entrys = append(entrys, cloudprovider.SLoadbalancerAccessControlListEntry{CIDR: entry.AclEntryIP, Comment: entry.AclEntryComment})
	}
	return entrys
}

func (region *SRegion) UpdateAclName(aclId, name string) error {
	params := map[string]string{}
	params["RegionId"] = region.RegionId
	params["AclId"] = aclId
	params["AclName"] = name
	_, err := region.lbRequest("SetAccessControlListAttribute", params)
	return err
}

func (region *SRegion) RemoveAccessControlListEntry(aclId string, data jsonutils.JSONObject) error {
	params := map[string]string{}
	params["RegionId"] = region.RegionId
	params["AclId"] = aclId
	params["AclEntrys"] = data.String()
	_, err := region.lbRequest("RemoveAccessControlListEntry", params)
	return err
}

func (acl *SLoadbalancerAcl) Delete() error {
	params := map[string]string{}
	params["RegionId"] = acl.region.RegionId
	params["AclId"] = acl.AclId
	_, err := acl.region.lbRequest("DeleteAccessControlList", params)
	return err
}

func (region *SRegion) GetLoadbalancerAclDetail(aclId string) (*SLoadbalancerAcl, error) {
	params := map[string]string{}
	params["RegionId"] = region.RegionId
	params["AclId"] = aclId
	body, err := region.lbRequest("DescribeAccessControlListAttribute", params)
	if err != nil {
		return nil, err
	}
	detail := SLoadbalancerAcl{region: region}
	return &detail, body.Unmarshal(&detail)
}

func (region *SRegion) GetLoadBalancerAcls() ([]SLoadbalancerAcl, error) {
	params := map[string]string{}
	params["RegionId"] = region.RegionId
	body, err := region.lbRequest("DescribeAccessControlLists", params)
	if err != nil {
		return nil, err
	}
	acls := []SLoadbalancerAcl{}
	return acls, body.Unmarshal(&acls, "Acls", "Acl")
}

func (acl *SLoadbalancerAcl) Sync(_acl *cloudprovider.SLoadbalancerAccessControlList) error {
	if acl.AclName != _acl.Name {
		if err := acl.region.UpdateAclName(acl.AclId, _acl.Name); err != nil {
			return err
		}
	}
	entrys := jsonutils.NewArray()
	for _, entry := range acl.AclEntrys.AclEntry {
		entrys.Add(jsonutils.Marshal(map[string]string{"entry": entry.AclEntryIP, "comment": entry.AclEntryComment}))
	}
	if entrys.Length() > 0 {
		if err := acl.region.RemoveAccessControlListEntry(acl.AclId, entrys); err != nil && !isError(err, "Acl does not have any entry") {
			return err
		}
	}
	if len(_acl.Entrys) > 0 {
		return acl.region.AddAccessControlListEntry(acl.AclId, _acl.Entrys)
	}
	return nil
}