def _update_default_virtual_network_perms2(self,
ns_name,
proj_uuid,
oper='add'):
if DBBaseKM.is_nested():
return
try:
vn_fq_name = vnc_kube_config.cluster_default_pod_network_fq_name()
pod_vn_obj = self._vnc_lib.virtual_network_read(fq_name=vn_fq_name)
vn_fq_name = vnc_kube_config.cluster_default_service_network_fq_name(
)
service_vn_obj = self._vnc_lib.virtual_network_read(
fq_name=vn_fq_name)
except NoIdError:
return
for vn_obj in [pod_vn_obj, service_vn_obj]:
perms2 = vn_obj.perms2
share = perms2.share
tenant_found = False
for item in share:
if item.tenant == proj_uuid:
tenant_found = True
break
if oper == 'add':
if tenant_found == True:
continue
else:
share_item = ShareType(tenant=proj_uuid,
tenant_access=PERMS_R)
share.append(share_item)
else:
share.remove(item)
perms2.share = share
vn_obj.perms2 = perms2
self._vnc_lib.virtual_network_update(vn_obj)
def _get_cluster_service_network(self, service_namespace):
ns = self._get_namespace(service_namespace)
if ns and ns.is_isolated():
vn_fq_name = ns.get_isolated_service_network_fq_name()
else:
vn_fq_name = vnc_kube_config.cluster_default_service_network_fq_name(
)
try:
vn_obj = self._vnc_lib.virtual_network_read(fq_name=vn_fq_name)
except NoIdError:
return None
return vn_obj
