-
Notifications
You must be signed in to change notification settings - Fork 32
/
firewall_policy.go
89 lines (73 loc) · 2.25 KB
/
firewall_policy.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
package types
import (
"context"
"github.com/Juniper/asf/pkg/errutil"
"github.com/Juniper/contrail/pkg/models"
"github.com/Juniper/contrail/pkg/services"
)
// CreateFirewallPolicy performs pre create type specific validation.
func (sv *ContrailTypeLogicService) CreateFirewallPolicy(
ctx context.Context,
request *services.CreateFirewallPolicyRequest,
) (response *services.CreateFirewallPolicyResponse, err error) {
err = sv.InTransactionDoer.DoInTransaction(
ctx,
func(ctx context.Context) error {
fp := request.GetFirewallPolicy()
if err = checkDraftModeState(ctx, fp); err != nil {
return err
}
if err = sv.complementRefs(ctx, fp); err != nil {
return err
}
if err = fp.CheckAssociatedRefsInSameScope(fp.GetFQName()); err != nil {
return errutil.ErrorBadRequest(err.Error())
}
response, err = sv.BaseService.CreateFirewallPolicy(ctx, request)
return err
})
return response, err
}
// UpdateFirewallPolicy performs pre update checks for the firewall policy.
func (sv *ContrailTypeLogicService) UpdateFirewallPolicy(
ctx context.Context,
request *services.UpdateFirewallPolicyRequest,
) (response *services.UpdateFirewallPolicyResponse, err error) {
err = sv.InTransactionDoer.DoInTransaction(
ctx,
func(ctx context.Context) error {
fp := request.GetFirewallPolicy()
if err = checkDraftModeState(ctx, fp); err != nil {
return err
}
var fqName []string
fqName, err = sv.getFirewallPolicyFQName(ctx, fp)
if err != nil {
return err
}
if err = sv.complementRefs(ctx, fp); err != nil {
return err
}
if err = fp.CheckAssociatedRefsInSameScope(fqName); err != nil {
return errutil.ErrorBadRequest(err.Error())
}
response, err = sv.BaseService.UpdateFirewallPolicy(ctx, request)
return err
})
return response, err
}
func (sv *ContrailTypeLogicService) getFirewallPolicyFQName(
ctx context.Context, fp *models.FirewallPolicy,
) ([]string, error) {
if len(fp.GetFQName()) > 0 {
return fp.GetFQName(), nil
}
firewallPolicyResponse, err := sv.ReadService.GetFirewallPolicy(
ctx,
&services.GetFirewallPolicyRequest{
ID: fp.GetUUID(),
Fields: []string{models.FirewallPolicyFieldFQName},
},
)
return firewallPolicyResponse.GetFirewallPolicy().GetFQName(), err
}