We use cookies to ensure you get the best experience on our website
Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
0ct0pu5
/
lxconsole
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu kéo về 0 Wiki
Tree: 919f510f1f
Branches Tags
lxconsole
/
lxconsole
/
api
/
network_acl.py

network_acl.py 4.4 KB
Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103 
  1. from flask import jsonify, request
    2. 

  2. import json
    3. 

  3. import requests
    4. 

  4. from lxconsole import db
    5. 

  5. from lxconsole.models import Server
    6. 

  6. from flask_login import login_required
    7. 

  7. from lxconsole.api.access_controls import privilege_check
    8. 

  8. 

  9. 

  10. def get_client_crt():
    11. 

  11.   return 'certs/client.crt'
    12. 

  12. 

  13. def get_client_key():
    14. 

  14.   return 'certs/client.key'
    15. 

  15. 

  16. @login_required
    17. 

  17. def api_network_acl_endpoint(endpoint):
    18. 

  18. 

  19.   if not privilege_check(endpoint, request.args.get('id')):
    20. 

  20.     return jsonify({'data': [], 'metadata':[], 'error': 'not authorized', 'error_code': 403})
    21. 

  21. 

  22. 

  23.   if endpoint == 'add_network_acl':
    24. 

  24.     id = request.args.get('id')
    25. 

  25.     project = request.args.get('project')
    26. 

  26.     acl = request.args.get('acl')
    27. 

  27.     type = request.form.get('type')
    28. 

  28.     server = Server.query.filter_by(id=id).first()
    29. 

  29.     url = 'https://' + server.addr + ':' + str(server.port) + '/1.0/network-acls/' + acl + '?project=' + project
    30. 

  30.     client_cert = get_client_crt()
    31. 

  31.     client_key = get_client_key()
    32. 

  32. 

  33.     if request.form.get('json'):
    34. 

  34.       data = request.form.get('json')
    35. 

  35.       results = requests.post(url, verify=server.ssl_verify, cert=(client_cert, client_key), data=data)
    36. 

  36.       return jsonify(results.json())
    37. 

  37. 

  38.     results = requests.get(url, verify=server.ssl_verify, cert=(client_cert, client_key))
    39. 

  39.     data = json.dumps(results.json())
    40. 

  40.     data = json.loads(data)
    41. 

  41.     
    42. 

  42.     config = {}
    43. 

  43.     config.update({'action': request.form.get('action')}) if request.form.get('action') else False
    44. 

  44.     config.update({'description': request.form.get('description')}) if request.form.get('description') else False
    45. 

  45.     config.update({'destination': request.form.get('destination')}) if request.form.get('destination') else False
    46. 

  46.     config.update({'destination_port': request.form.get('destination_port')}) if request.form.get('destination_port') else False
    47. 

  47.     config.update({'icmp_code': request.form.get('icmp_code')}) if request.form.get('icmp_code') else False
    48. 

  48.     config.update({'icmp_type': request.form.get('icmp_type')}) if request.form.get('icmp_type') else False
    49. 

  49.     config.update({'protocol': request.form.get('protocol')}) if request.form.get('protocol') else False
    50. 

  50.     config.update({'source': request.form.get('source')}) if request.form.get('source') else False
    51. 

  51.     config.update({'source_port': request.form.get('source_port')}) if request.form.get('source_port') else False
    52. 

  52.     config.update({'state': request.form.get('state')}) if request.form.get('state') else False
    53. 

  53. 

  54.     data['metadata'][type] += [config]
    55. 

  55.     
    56. 

  56.     results = requests.put(url, verify=server.ssl_verify, cert=(client_cert, client_key), json=data['metadata'])    
    57. 

  57.     return jsonify(results.json())
    58. 

  58. 

  59. 

  60.   if endpoint == 'delete_network_acl':
    61. 

  61.     id = request.args.get('id')
    62. 

  62.     project = request.args.get('project')
    63. 

  63.     acl = request.args.get('acl')
    64. 

  64.     index = request.form.get('index')
    65. 

  65.     type = request.form.get('type')
    66. 

  66.     server = Server.query.filter_by(id=id).first()
    67. 

  67.     url = 'https://' + server.addr + ':' + str(server.port) + '/1.0/network-acls/' + acl + '?project=' + project
    68. 

  68.     client_cert = get_client_crt()
    69. 

  69.     client_key = get_client_key()
    70. 

  70.     results = requests.get(url, verify=server.ssl_verify, cert=(client_cert, client_key))
    71. 

  71.     data = json.dumps(results.json())
    72. 

  72.     data = json.loads(data)
    73. 

  73.     data['metadata'][type].pop(int(index))
    74. 

  74.     results = requests.put(url, verify=server.ssl_verify, cert=(client_cert, client_key), json=data['metadata'])
    75. 

  75.     return jsonify(results.json())
    76. 

  76. 

  77. 

  78.   if endpoint == 'list_network_acls':
    79. 

  79.     id = request.args.get('id')
    80. 

  80.     project = request.args.get('project')
    81. 

  81.     acl = request.args.get('acl')
    82. 

  82.     server = Server.query.filter_by(id=id).first()
    83. 

  83.     recursion = request.args.get('recursion')
    84. 

  84.     if recursion == '1':
    85. 

  85.       url = 'https://' + server.addr + ':' + str(server.port) + '/1.0/network-acls/'+acl+'?recursion=1&project=' + project
    86. 

  86.     else:
    87. 

  87.       url = 'https://' + server.addr + ':' + str(server.port) + '/1.0/network-acls/'+acl+'?project=' + project
    88. 

  88.     client_cert = get_client_crt()
    89. 

  89.     client_key = get_client_key()
    90. 

  90.     results = requests.get(url, verify=server.ssl_verify, cert=(client_cert, client_key))
    91. 

  91.     data = json.dumps(results.json())
    92. 

  92.     data = json.loads(data)
    93. 

  93.     length = len(data['metadata']['ingress'])
    94. 

  94.     i = 0
    95. 

  95.     while i < length:
    96. 

  96.       data['metadata']['ingress'][i]['index'] = i
    97. 

  97.       i += 1
    98. 

  98.     length = len(data['metadata']['egress'])
    99. 

  99.     i = 0
    100. 

  100.     while i < length:
    101. 

  101.       data['metadata']['egress'][i]['index'] = i
    102. 

  102.       i += 1
    103. 

  103.     return jsonify(data)
    104.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5