Home Explore Help
Register Sign In
zhouyuhuan
/
Cloudpods
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 4e53efd173
Branches Tags
Cloudpods
/
backend
/
vendor
/
yunion.io
/
x
/
cloudmux
/
pkg
/
multicloud
/
ucloud
/
secgrouprules.go

secgrouprules.go 2.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899 
  1. // Copyright 2019 Yunion
    2. 

  2. //
    3. 

  3. // Licensed under the Apache License, Version 2.0 (the "License");
    4. 

  4. // you may not use this file except in compliance with the License.
    5. 

  5. // You may obtain a copy of the License at
    6. 

  6. //
    7. 

  7. //     http://www.apache.org/licenses/LICENSE-2.0
    8. 

  8. //
    9. 

  9. // Unless required by applicable law or agreed to in writing, software
    10. 

  10. // distributed under the License is distributed on an "AS IS" BASIS,
    11. 

  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12. 

  12. // See the License for the specific language governing permissions and
    13. 

  13. // limitations under the License.
    14. 

  14. 

  15. package ucloud
    16. 

  16. 

  17. import (
    18. 

  18. 	"fmt"
    19. 

  19. 	"strings"
    20. 

  20. 

  21. 	"yunion.io/x/cloudmux/pkg/cloudprovider"
    22. 

  22. 	"yunion.io/x/pkg/util/secrules"
    23. 

  23. )
    24. 

  24. 

  25. type SecurityGroupRule struct {
    26. 

  26. 	secgroup *SSecurityGroup
    27. 

  27. 

  28. 	DstPort      string `json:"DstPort"`
    29. 

  29. 	Priority     string `json:"Priority"`
    30. 

  30. 	ProtocolType string `json:"ProtocolType"`
    31. 

  31. 	RuleAction   string `json:"RuleAction"`
    32. 

  32. 	SrcIP        string `json:"SrcIP"`
    33. 

  33. 	Remark       string
    34. 

  34. }
    35. 

  35. 

  36. func (self SecurityGroupRule) String() string {
    37. 

  37. 	return fmt.Sprintf("%s|%s|%s|%s|%s|%s", self.ProtocolType, self.DstPort, self.SrcIP, self.RuleAction, self.Priority, self.Remark)
    38. 

  38. }
    39. 

  39. 

  40. func (self *SecurityGroupRule) GetGlobalId() string {
    41. 

  41. 	return fmt.Sprintf("%s|%s|%s|%s|%s", self.Priority, self.RuleAction, self.SrcIP, self.DstPort, self.ProtocolType)
    42. 

  42. }
    43. 

  43. 

  44. func (self *SecurityGroupRule) GetAction() secrules.TSecurityRuleAction {
    45. 

  45. 	if self.RuleAction == "ACCEPT" {
    46. 

  46. 		return secrules.SecurityRuleAllow
    47. 

  47. 	}
    48. 

  48. 	return secrules.SecurityRuleDeny
    49. 

  49. }
    50. 

  50. 

  51. func (self *SecurityGroupRule) GetDescription() string {
    52. 

  52. 	return self.Remark
    53. 

  53. }
    54. 

  54. 

  55. func (self *SecurityGroupRule) GetDirection() secrules.TSecurityRuleDirection {
    56. 

  56. 	return secrules.DIR_IN
    57. 

  57. }
    58. 

  58. 

  59. func (self *SecurityGroupRule) GetCIDRs() []string {
    60. 

  60. 	return []string{self.SrcIP}
    61. 

  61. }
    62. 

  62. 

  63. func (self *SecurityGroupRule) GetProtocol() string {
    64. 

  64. 	return strings.ToLower(self.ProtocolType)
    65. 

  65. }
    66. 

  66. 

  67. func (self *SecurityGroupRule) GetPorts() string {
    68. 

  68. 	return self.DstPort
    69. 

  69. }
    70. 

  70. 

  71. func (self *SecurityGroupRule) GetPriority() int {
    72. 

  72. 	switch self.Priority {
    73. 

  73. 	case "HIGH":
    74. 

  74. 		return 1
    75. 

  75. 	case "MEDIUM":
    76. 

  76. 		return 2
    77. 

  77. 	case "LOW":
    78. 

  78. 		return 3
    79. 

  79. 	}
    80. 

  80. 	return 1
    81. 

  81. }
    82. 

  82. 

  83. func (self *SecurityGroupRule) Delete() error {
    84. 

  84. 	params := NewUcloudParams()
    85. 

  85. 	params.Set("FWId", self.secgroup.FWID)
    86. 

  86. 	idx := 0
    87. 

  87. 	for _, rule := range self.secgroup.Rule {
    88. 

  88. 		if rule.GetGlobalId() == self.GetGlobalId() {
    89. 

  89. 			continue
    90. 

  90. 		}
    91. 

  91. 		params.Set(fmt.Sprintf("Rule.%d", idx), rule.String())
    92. 

  92. 		idx++
    93. 

  93. 	}
    94. 

  94. 	return self.secgroup.region.DoAction("UpdateFirewall", params, nil)
    95. 

  95. }
    96. 

  96. 

  97. func (self *SecurityGroupRule) Update(opts *cloudprovider.SecurityGroupRuleUpdateOptions) error {
    98. 

  98. 	return cloudprovider.ErrNotImplemented
    99. 

  99. }
    100.