Ejemplo n.º 1
0
 def test_update_security_profile_rules_noingress(self):
     sec_prof = secgrouplib.create_security_profile(self.fake_cluster,
                                                    _uuid(), 'pippo',
                                                    {'name': 'test'})
     hidden_ingress_rule = {
         'ethertype': 'IPv4',
         'ip_prefix': '127.0.0.1/32'
     }
     egress_rule = {'ethertype': 'IPv4', 'profile_uuid': 'xyz'}
     new_rules = {
         'logical_port_egress_rules': [egress_rule],
         'logical_port_ingress_rules': []
     }
     secgrouplib.update_security_group_rules(self.fake_cluster,
                                             sec_prof['uuid'], new_rules)
     sec_prof_res = nsxlib.do_request(nsxlib.HTTP_GET,
                                      nsxlib._build_uri_path(
                                          'security-profile',
                                          resource_id=sec_prof['uuid']),
                                      cluster=self.fake_cluster)
     self.assertEqual(sec_prof['uuid'], sec_prof_res['uuid'])
     # Check for builtin rules
     self.assertEqual(len(sec_prof_res['logical_port_egress_rules']), 2)
     self.assertIn(egress_rule, sec_prof_res['logical_port_egress_rules'])
     self.assertEqual(len(sec_prof_res['logical_port_ingress_rules']), 1)
     self.assertIn(hidden_ingress_rule,
                   sec_prof_res['logical_port_ingress_rules'])
Ejemplo n.º 2
0
 def test_update_security_profile_rules(self):
     sec_prof = secgrouplib.create_security_profile(
         self.fake_cluster, _uuid(), 'pippo', {'name': 'test'})
     ingress_rule = {'ethertype': 'IPv4'}
     egress_rule = {'ethertype': 'IPv4', 'profile_uuid': 'xyz'}
     new_rules = {'logical_port_egress_rules': [egress_rule],
                  'logical_port_ingress_rules': [ingress_rule]}
     secgrouplib.update_security_group_rules(
         self.fake_cluster, sec_prof['uuid'], new_rules)
     sec_prof_res = nsxlib.do_request(
         nsxlib.HTTP_GET,
         nsxlib._build_uri_path('security-profile',
                                resource_id=sec_prof['uuid']),
         cluster=self.fake_cluster)
     self.assertEqual(sec_prof['uuid'], sec_prof_res['uuid'])
     # Check for builtin rules
     self.assertEqual(len(sec_prof_res['logical_port_egress_rules']), 2)
     self.assertIn(egress_rule,
                   sec_prof_res['logical_port_egress_rules'])
     self.assertEqual(len(sec_prof_res['logical_port_ingress_rules']), 1)
     self.assertIn(ingress_rule,
                   sec_prof_res['logical_port_ingress_rules'])