FWaaSv2 CRUD firewall-groups

Georg Schreiber · schreibergeorg · commit b38015374681 · 2020-11-10T15:00:39.000+01:00
FWaaSv2 Create firewall-groups
FWaaSv2 Update &amp; Delete firewall-groups
acc tests for fwaasv2 firewall groups
diff --git a/acceptance/openstack/networking/v2/extensions/fwaas/fwaas.go b/acceptance/openstack/networking/v2/extensions/fwaas/fwaas.go
@@ -14,7 +14,7 @@ import (
 	th "github.com/gophercloud/gophercloud/testhelper"
 )
 
-// CreateFirewall will create a Firewaill with a random name and a specified
+// CreateFirewall will create a Firewall with a random name and a specified
 // policy ID. An error will be returned if the firewall could not be created.
 func CreateFirewall(t *testing.T, client *gophercloud.ServiceClient, policyID string) (*firewalls.Firewall, error) {
 	firewallName := tools.RandomString("TESTACC-", 8)
diff --git a/acceptance/openstack/networking/v2/extensions/fwaas_v2/fwaas_v2.go b/acceptance/openstack/networking/v2/extensions/fwaas_v2/fwaas_v2.go
@@ -7,6 +7,7 @@ import (
 
 	"github.com/gophercloud/gophercloud"
 	"github.com/gophercloud/gophercloud/acceptance/tools"
+	"github.com/gophercloud/gophercloud/openstack/networking/v2/extensions/fwaas_v2/groups"
 	"github.com/gophercloud/gophercloud/openstack/networking/v2/extensions/fwaas_v2/rules"
 	th "github.com/gophercloud/gophercloud/testhelper"
 )
@@ -65,3 +66,47 @@ func DeleteRule(t *testing.T, client *gophercloud.ServiceClient, ruleID string)
 
 	t.Logf("Deleted rule: %s", ruleID)
 }
+
+// CreateGroup will create a Firewall Group. An error will be returned if the
+// firewall group could not be created.
+func CreateGroup(t *testing.T, client *gophercloud.ServiceClient) (*groups.Group, error) {
+
+	groupName := tools.RandomString("TESTACC-", 8)
+	description := tools.RandomString("TESTACC-", 8)
+	adminStateUp := true
+	shared := false
+
+	createOpts := groups.CreateOpts{
+		Name:         groupName,
+		Description:  description,
+		AdminStateUp: &adminStateUp,
+		Shared:       &shared,
+	}
+
+	t.Logf("Attempting to create firewall group %s",
+		groupName)
+
+	group, err := groups.Create(client, createOpts).Extract()
+	if err != nil {
+		return group, err
+	}
+
+	t.Logf("firewall group %s successfully created", groupName)
+
+	th.AssertEquals(t, group.Name, groupName)
+	return group, nil
+}
+
+// DeleteGroup will delete a group with a specified ID. A fatal error will occur
+// if the delete was not successful. This works best when used as a deferred
+// function.
+func DeleteGroup(t *testing.T, client *gophercloud.ServiceClient, groupId string) {
+	t.Logf("Attempting to delete firewall group %s", groupId)
+
+	err := groups.Delete(client, groupId).ExtractErr()
+	if err != nil {
+		t.Fatalf("Unable to delete firewall group %s: %v", groupId, err)
+	}
+
+	t.Logf("Deleted firewall group %s", groupId)
+}
diff --git a/acceptance/openstack/networking/v2/extensions/fwaas_v2/groups_test.go b/acceptance/openstack/networking/v2/extensions/fwaas_v2/groups_test.go
@@ -0,0 +1,62 @@
+// +build acceptance networking fwaas_v2
+
+package fwaas_v2
+
+import (
+	"testing"
+
+	"github.com/gophercloud/gophercloud/acceptance/clients"
+	"github.com/gophercloud/gophercloud/acceptance/tools"
+	"github.com/gophercloud/gophercloud/openstack/networking/v2/extensions/fwaas_v2/groups"
+	th "github.com/gophercloud/gophercloud/testhelper"
+)
+
+func TestGroupCRUD(t *testing.T) {
+
+	client, err := clients.NewNetworkV2Client()
+	th.AssertNoErr(t, err)
+
+	createdGroup, err := CreateGroup(t, client)
+	th.AssertNoErr(t, err)
+	defer DeleteGroup(t, client, createdGroup.ID)
+
+	tools.PrintResource(t, createdGroup)
+
+	groupName := tools.RandomString("TESTACC-", 8)
+	adminStateUp := false
+	description := ("Some firewall group description")
+	updateOpts := groups.UpdateOpts{
+		Name:         &groupName,
+		Description:  &description,
+		AdminStateUp: &adminStateUp,
+	}
+
+	groupUpdated, err := groups.Update(client, createdGroup.ID, updateOpts).Extract()
+	if err != nil {
+		t.Fatalf("Unable to update firewall group %s: %v", createdGroup.ID, err)
+	}
+
+	th.AssertNoErr(t, err)
+	th.AssertEquals(t, groupUpdated.Name, groupName)
+	th.AssertEquals(t, groupUpdated.Description, description)
+	th.AssertEquals(t, groupUpdated.AdminStateUp, adminStateUp)
+
+	t.Logf("Updated firewall group %s", groupUpdated.ID)
+
+	allPages, err := groups.List(client, nil).AllPages()
+	th.AssertNoErr(t, err)
+
+	allGroups, err := groups.ExtractGroups(allPages)
+	th.AssertNoErr(t, err)
+
+	t.Logf("Attempting to find firewall group %s\n", createdGroup.ID)
+	var found bool
+	for _, group := range allGroups {
+		if group.ID == createdGroup.ID {
+			found = true
+			t.Logf("Found firewall group %s\n", group.ID)
+		}
+	}
+
+	th.AssertEquals(t, found, true)
+}
diff --git a/openstack/networking/v2/extensions/fwaas_v2/groups/requests.go b/openstack/networking/v2/extensions/fwaas_v2/groups/requests.go
@@ -0,0 +1,153 @@
+package groups
+
+import (
+	"github.com/gophercloud/gophercloud"
+	"github.com/gophercloud/gophercloud/pagination"
+)
+
+// ListOptsBuilder allows extensions to add additional parameters to the
+// List request.
+type ListOptsBuilder interface {
+	ToGroupListQuery() (string, error)
+}
+
+// ListOpts allows the filtering and sorting of paginated collections through
+// the API. Filtering is achieved by passing in struct field values that map to
+// the firewall group attributes you want to see returned. SortKey allows you
+// to sort by a particular firewall group attribute. SortDir sets the direction,
+// and is either `asc' or `desc'. Marker and Limit are used for pagination.
+type ListOpts struct {
+	TenantID                string    `q:"tenant_id"`
+	Name                    string    `q:"name"`
+	Description             string    `q:"description"`
+	IngressFirewallPolicyID string    `q:"ingress_firewall_policy_id"`
+	EgressFirewallPolicyID  string    `q:"egress_firewall_policy_id"`
+	AdminStateUp            *bool     `q:"admin_state_up"`
+	Ports                   *[]string `q:"ports"`
+	Status                  string    `q:"status"`
+	ID                      string    `q:"id"`
+	Shared                  *bool     `q:"shared"`
+	ProjectID               string    `q:"project_id"`
+	Limit                   int       `q:"limit"`
+	Marker                  string    `q:"marker"`
+	SortKey                 string    `q:"sort_key"`
+	SortDir                 string    `q:"sort_dir"`
+}
+
+// ToGroupListQuery formats a ListOpts into a query string.
+func (opts ListOpts) ToGroupListQuery() (string, error) {
+	q, err := gophercloud.BuildQueryString(opts)
+	if err != nil {
+		return "", err
+	}
+	return q.String(), err
+}
+
+// List returns a Pager which allows you to iterate over a collection of
+// firewall groups. It accepts a ListOpts struct, which allows you to filter
+// and sort the returned collection for greater efficiency.
+//
+// Default group settings return only those firewall groups that are owned by the
+// tenant who submits the request, unless an admin user submits the request.
+func List(c *gophercloud.ServiceClient, opts ListOptsBuilder) pagination.Pager {
+	url := rootURL(c)
+
+	if opts != nil {
+		query, err := opts.ToGroupListQuery()
+		if err != nil {
+			return pagination.Pager{Err: err}
+		}
+		url += query
+	}
+
+	return pagination.NewPager(c, url, func(r pagination.PageResult) pagination.Page {
+		return GroupPage{pagination.LinkedPageBase{PageResult: r}}
+	})
+}
+
+// Get retrieves a particular firewall group based on its unique ID.
+func Get(c *gophercloud.ServiceClient, id string) (r GetResult) {
+	_, r.Err = c.Get(resourceURL(c, id), &r.Body, nil)
+	return
+}
+
+// CreateOptsBuilder is the interface options structs have to satisfy in order
+// to be used in the main Create operation in this package. Since many
+// extensions decorate or modify the common logic, it is useful for them to
+// satisfy a basic interface in order for them to be used.
+type CreateOptsBuilder interface {
+	ToFirewallGroupCreateMap() (map[string]interface{}, error)
+}
+
+// CreateOpts contains all the values needed to create a new firewall group.
+type CreateOpts struct {
+	ID                      string   `json:"id,omitempty"`
+	TenantID                string   `json:"tenant_id,omitempty"`
+	Name                    string   `json:"name,omitempty"`
+	Description             string   `json:"description,omitempty"`
+	IngressFirewallPolicyID string   `json:"ingress_firewall_policy_id,omitempty"`
+	EgressFirewallPolicyID  string   `json:"egress_firewall_policy_id,omitempty"`
+	AdminStateUp            *bool    `json:"admin_state_up,omitempty"`
+	Ports                   []string `json:"ports,omitempty"`
+	Shared                  *bool    `json:"shared,omitempty"`
+	ProjectID               string   `json:"project_id,omitempty"`
+}
+
+// ToFirewallGroupCreateMap casts a CreateOpts struct to a map.
+func (opts CreateOpts) ToFirewallGroupCreateMap() (map[string]interface{}, error) {
+	return gophercloud.BuildRequestBody(opts, "firewall_group")
+}
+
+// Create accepts a CreateOpts struct and uses the values to create a new firewall group
+func Create(c *gophercloud.ServiceClient, opts CreateOptsBuilder) (r CreateResult) {
+	b, err := opts.ToFirewallGroupCreateMap()
+	if err != nil {
+		r.Err = err
+		return
+	}
+	_, r.Err = c.Post(rootURL(c), b, &r.Body, nil)
+	return
+}
+
+// UpdateOptsBuilder is the interface options structs have to satisfy in order
+// to be used in the main Update operation in this package. Since many
+// extensions decorate or modify the common logic, it is useful for them to
+// satisfy a basic interface in order for them to be used.
+type UpdateOptsBuilder interface {
+	ToFirewallGroupUpdateMap() (map[string]interface{}, error)
+}
+
+// UpdateOpts contains the values used when updating a firewall group.
+type UpdateOpts struct {
+	Name                    *string  `json:"name,omitempty"`
+	Description             *string  `json:"description,omitempty"`
+	IngressFirewallPolicyID *string  `json:"ingress_firewall_policy_id,omitempty"`
+	EgressFirewallPolicyID  *string  `json:"egress_firewall_policy_id,omitempty"`
+	AdminStateUp            *bool    `json:"admin_state_up,omitempty"`
+	Ports                   []string `json:"ports,omitempty"`
+	Shared                  *bool    `json:"shared,omitempty"`
+}
+
+// ToFirewallGroupUpdateMap casts a CreateOpts struct to a map.
+func (opts UpdateOpts) ToFirewallGroupUpdateMap() (map[string]interface{}, error) {
+	return gophercloud.BuildRequestBody(opts, "firewall_group")
+}
+
+// Update allows firewall groups to be updated.
+func Update(c *gophercloud.ServiceClient, id string, opts UpdateOptsBuilder) (r UpdateResult) {
+	b, err := opts.ToFirewallGroupUpdateMap()
+	if err != nil {
+		r.Err = err
+		return
+	}
+	_, r.Err = c.Put(resourceURL(c, id), b, &r.Body, &gophercloud.RequestOpts{
+		OkCodes: []int{200},
+	})
+	return
+}
+
+// Delete will permanently delete a particular firewall group based on its unique ID.
+func Delete(c *gophercloud.ServiceClient, id string) (r DeleteResult) {
+	_, r.Err = c.Delete(resourceURL(c, id), nil)
+	return
+}
diff --git a/openstack/networking/v2/extensions/fwaas_v2/groups/results.go b/openstack/networking/v2/extensions/fwaas_v2/groups/results.go
@@ -0,0 +1,91 @@
+package groups
+
+import (
+	"github.com/gophercloud/gophercloud"
+	"github.com/gophercloud/gophercloud/pagination"
+)
+
+// Group is a firewall group.
+type Group struct {
+	ID                      string   `json:"id"`
+	TenantID                string   `json:"tenant_id"`
+	Name                    string   `json:"name"`
+	Description             string   `json:"description"`
+	IngressFirewallPolicyID string   `json:"ingress_firewall_policy_id"`
+	EgressFirewallPolicyID  string   `json:"egress_firewall_policy_id"`
+	AdminStateUp            bool     `json:"admin_state_up"`
+	Ports                   []string `json:"ports"`
+	Status                  string   `json:"status"`
+	Shared                  bool     `json:"shared"`
+	ProjectID               string   `json:"project_id"`
+}
+
+type commonResult struct {
+	gophercloud.Result
+}
+
+// Extract is a function that accepts a result and extracts a firewall group.
+func (r commonResult) Extract() (*Group, error) {
+	var s struct {
+		Group *Group `json:"firewall_group"`
+	}
+	err := r.ExtractInto(&s)
+	return s.Group, err
+}
+
+// GroupPage is the page returned by a pager when traversing over a
+// collection of firewall groups.
+type GroupPage struct {
+	pagination.LinkedPageBase
+}
+
+// NextPageURL is invoked when a paginated collection of firewall groups has
+// reached the end of a page and the pager seeks to traverse over a new one.
+// In order to do this, it needs to construct the next page's URL.
+func (r GroupPage) NextPageURL() (string, error) {
+	var s struct {
+		Links []gophercloud.Link `json:"firewall_groups_links"`
+	}
+	err := r.ExtractInto(&s)
+	if err != nil {
+		return "", err
+	}
+	return gophercloud.ExtractNextURL(s.Links)
+}
+
+// IsEmpty checks whether a GroupPage struct is empty.
+func (r GroupPage) IsEmpty() (bool, error) {
+	is, err := ExtractGroups(r)
+	return len(is) == 0, err
+}
+
+// ExtractGroups accepts a Page struct, specifically a GroupPage struct,
+// and extracts the elements into a slice of Group structs. In other words,
+// a generic collection is mapped into a relevant slice.
+func ExtractGroups(r pagination.Page) ([]Group, error) {
+	var s struct {
+		Groups []Group `json:"firewall_groups"`
+	}
+	err := (r.(GroupPage)).ExtractInto(&s)
+	return s.Groups, err
+}
+
+// GetResult represents the result of a get operation.
+type GetResult struct {
+	commonResult
+}
+
+// CreateResult represents the result of a create operation.
+type CreateResult struct {
+	commonResult
+}
+
+// UpdateResult represents the result of an update operation.
+type UpdateResult struct {
+	commonResult
+}
+
+// DeleteResult represents the result of a delete operation.
+type DeleteResult struct {
+	gophercloud.ErrResult
+}
diff --git a/openstack/networking/v2/extensions/fwaas_v2/groups/testing/doc.go b/openstack/networking/v2/extensions/fwaas_v2/groups/testing/doc.go
@@ -0,0 +1,2 @@
+// networking_extensions_fwaas_groups_v2
+package testing
diff --git a/openstack/networking/v2/extensions/fwaas_v2/groups/testing/requests_test.go b/openstack/networking/v2/extensions/fwaas_v2/groups/testing/requests_test.go
diff --git a/openstack/networking/v2/extensions/fwaas_v2/groups/urls.go b/openstack/networking/v2/extensions/fwaas_v2/groups/urls.go

Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,7 @@ import (`
`14`	`14`	`th "github.com/gophercloud/gophercloud/testhelper"`
`15`	`15`	`)`
`16`	`16`
`17`		`-// CreateFirewall will create a Firewaill with a random name and a specified`
	`17`	`+// CreateFirewall will create a Firewall with a random name and a specified`
`18`	`18`	`// policy ID. An error will be returned if the firewall could not be created.`
`19`	`19`	`func CreateFirewall(t testing.T, client gophercloud.ServiceClient, policyID string) (*firewalls.Firewall, error) {`
`20`	`20`	`firewallName := tools.RandomString("TESTACC-", 8)`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+// networking_extensions_fwaas_groups_v2`
	`2`	`+package testing`