def remove(request, id_vlan, network):
try:
# Get user
auth = AuthSession(request.session)
client = auth.get_clientFactory()
vlan = client.create_vlan().get(id_vlan).get("vlan")
environment = client.create_ambiente().buscar_por_id(
vlan.get("ambiente")).get("ambiente")
key_acl = acl_key(network)
if vlan.get(key_acl) is None:
messages.add_message(request, messages.ERROR,
acl_messages.get("error_acl_not_exist"))
return HttpResponseRedirect(
reverse('vlan.edit.by.id', args=[id_vlan]))
if network == NETWORK_TYPES.v4:
client.create_vlan().invalidate(id_vlan)
else:
client.create_vlan().invalidate_ipv6(id_vlan)
deleteAclGit(vlan.get(key_acl), environment, network,
AuthSession(request.session).get_user())
messages.add_message(request, messages.SUCCESS,
acl_messages.get("success_remove"))
except (NetworkAPIClientError, GITError, ValueError), e:
logger.error(e)
messages.add_message(request, messages.ERROR, e)
def template_delete(request):
auth = AuthSession(request.session)
client = auth.get_clientFactory()
if request.method == 'POST':
form = DeleteForm(request.POST)
if form.is_valid():
# Get user
user = AuthSession(request.session).get_user()
# All ids to be deleted
ids = split_to_array(form.cleaned_data['ids'])
for id in ids:
id_split = id.split('+')
template_name = id_split[0]
template_name = urllib.unquote_plus(str(template_name))
network = id_split[1]
if check_template(template_name, network, user):
client.create_ambiente().set_template(
0, template_name, network)
delete_template(template_name, network, user)
messages.add_message(request, messages.SUCCESS,
acl_messages.get("success_remove"))
else:
messages.add_message(request, messages.ERROR,
error_messages.get("select_one"))
return HttpResponseRedirect(reverse('acl.template.list'))
def script(request, id_vlan, network):
try:
# Get user
auth = AuthSession(request.session)
client = auth.get_clientFactory()
vlan = client.create_vlan().get(id_vlan).get("vlan")
environment = client.create_ambiente().buscar_por_id(
vlan.get("ambiente")).get("ambiente")
key_acl = acl_key(network)
if vlan.get(key_acl) is None:
messages.add_message(request, messages.ERROR,
acl_messages.get("error_acl_not_exist"))
return HttpResponseRedirect(
reverse('vlan.edit.by.id', args=[id_vlan]))
if network == NETWORK_TYPES.v4:
template_name = environment['ipv4_template']
else:
template_name = environment['ipv6_template']
scriptAclGit(vlan.get(key_acl), vlan, environment, network,
AuthSession(request.session).get_user(), template_name)
except (NetworkAPIClientError, GITError, ValueError), e:
logger.error(e)
messages.add_message(request, messages.ERROR, e)
def __valid_add_form(request, name_ipv4, content_ipv4, name_ipv6,
content_ipv6):
if not name_ipv4 and not content_ipv4 and not name_ipv6 and not content_ipv6:
messages.add_message(request, messages.ERROR,
acl_messages.get('field_required'))
return False
elif (not name_ipv4 and content_ipv4) or (name_ipv4 and not content_ipv4):
messages.add_message(request, messages.ERROR,
acl_messages.get('field_required'))
return False
elif (not name_ipv6 and content_ipv6) or (name_ipv6 and not content_ipv6):
messages.add_message(request, messages.ERROR,
acl_messages.get('field_required'))
return False
return True
def apply_acl_for_network_v6(request, client, equipments_v6, vlan, environment):
try:
if equipments_v6:
if vlan['vlan']['acl_valida_v6'] == 'True':
apply_acl_for_network(
request, client, equipments_v6, vlan, environment, 'v6')
messages.add_message(
request, messages.SUCCESS, acl_messages.get("seccess_apply_valid_acl") % 'ipv6')
else:
messages.add_message(
request, messages.WARNING, acl_messages.get("error_apply_ivalid_acl") % 'ipv6')
except Exception, e:
logger.error(e)
messages.add_message(request, messages.WARNING, acl_messages.get(
"error_apply_acl_for_network") % 'ipv6')
def template_edit(request, template_name, network):
try:
# Get user
user = AuthSession(request.session).get_user()
lists = dict()
lists['template_name'] = template_name
lists['network'] = network
if check_template(template_name, network, user):
content = get_template_edit(template_name, network, user)
else:
messages.add_message(request, messages.ERROR,
acl_messages.get("invalid_template"))
return redirect('acl.template.list')
lists['form'] = TemplateForm(True,
initial={
'name': template_name,
'content': content
})
if request.method == 'POST':
form = TemplateForm(True, request.POST)
lists['form'] = form
if form.is_valid():
alter_template(template_name, network,
form.cleaned_data['content'], user)
messages.add_message(request, messages.SUCCESS,
acl_messages.get("success_template_edit"))
return redirect('acl.template.list')
except (NetworkAPIClientError, GITError, ValueError), e:
logger.error(e)
messages.add_message(request, messages.ERROR, e)
def validate(request, id_vlan, network):
try:
auth = AuthSession(request.session)
client_vlan = auth.get_clientFactory().create_vlan()
client_vlan.get(id_vlan)
if network == NETWORK_TYPES.v4:
client_vlan.validar(id_vlan)
else:
client_vlan.validate_ipv6(id_vlan)
messages.add_message(request, messages.SUCCESS,
acl_messages.get("success_validate") % network)
except NetworkAPIClientError, e:
logger.error(e)
messages.add_message(request, messages.ERROR, e)
def create(request, id_vlan, network):
try:
# Get user
auth = AuthSession(request.session)
client = auth.get_clientFactory()
vlan = client.create_vlan().get(id_vlan).get("vlan")
environment = client.create_ambiente().buscar_por_id(
vlan.get("ambiente")).get("ambiente")
key_acl = acl_key(network)
createAclGit(vlan.get(key_acl), environment, network,
AuthSession(request.session).get_user())
messages.add_message(request, messages.SUCCESS,
acl_messages.get("success_create"))
except (NetworkAPIClientError, GITError, ValueError), e:
logger.error(e)
messages.add_message(request, messages.ERROR, e)
def template_add(request):
try:
auth = AuthSession(request.session)
client = auth.get_clientFactory()
# Get user
user = AuthSession(request.session).get_user()
environment = client.create_ambiente().list_all()
lists = dict()
lists['form'] = TemplateAddForm(environment)
if request.method == 'POST':
form = TemplateAddForm(environment, request.POST)
lists['form'] = form
name_ipv4 = request.POST['name']
content_ipv4 = request.POST['content']
name_ipv6 = request.POST['name_ipv6']
content_ipv6 = request.POST['content_ipv6']
environment = request.POST['environment']
if form.is_valid() and __valid_add_form(
request, name_ipv4, content_ipv4, name_ipv6, content_ipv6):
duplicate = False
if name_ipv4 and content_ipv4:
if check_template(name_ipv4, IP_VERSION.IPv4[1], user):
duplicate = True
messages.add_message(
request, messages.ERROR,
acl_messages.get("field_duplicated") % name_ipv4)
else:
create_template(name_ipv4, IP_VERSION.IPv4[1],
content_ipv4, user)
if int(environment) != 0:
client.create_ambiente().set_template(
environment, name_ipv4, IP_VERSION.IPv4[1])
if name_ipv6 and content_ipv6:
if check_template(name_ipv6, IP_VERSION.IPv6[1], user):
duplicate = True
messages.add_message(
request, messages.ERROR,
acl_messages.get("field_duplicated") % name_ipv6)
else:
create_template(name_ipv6, IP_VERSION.IPv6[1],
content_ipv6, user)
if int(environment) != 0:
client.create_ambiente().set_template(
environment, name_ipv6, IP_VERSION.IPv6[1])
if not duplicate:
messages.add_message(
request, messages.SUCCESS,
acl_messages.get("success_template_edit"))
return redirect('acl.template.list')
except (NetworkAPIClientError, GITError, ValueError), e:
logger.error(e)
messages.add_message(request, messages.ERROR, e)
def apply_acl(request, id_vlan, network):
lists = dict()
lists['id_vlan'] = id_vlan
lists['form'] = DeleteForm()
try:
# Get user
auth = AuthSession(request.session)
client = auth.get_clientFactory()
vlan = client.create_vlan().get(id_vlan).get("vlan")
environment = client.create_ambiente().buscar_por_id(
vlan.get("ambiente")).get("ambiente")
key_acl = acl_key(network)
if vlan.get(key_acl) is None:
messages.add_message(request, messages.ERROR,
acl_messages.get("error_acl_not_exist"))
return HttpResponseRedirect(
reverse('vlan.edit.by.id', args=[id_vlan]))
lists['vlan'] = vlan
lists['environment'] = "%s - %s - %s" % (
environment.get("nome_divisao"),
environment.get("nome_ambiente_logico"),
environment.get("nome_grupo_l3"))
# Type Network
lists['network'] = network
if request.method == "POST":
form = DeleteForm(request.POST)
if form.is_valid():
client_equip = client.create_equipamento()
# All ids to be apply
ids = split_to_array(form.cleaned_data['ids'])
equipments = []
for _id in ids:
try:
equip = client_equip.listar_por_id(_id)
equipments.append(equip)
except NetworkAPIClientError, e:
logger.error(e)
messages.add_message(request, messages.ERROR, e)
if equipments is not None and equipments != "":
#is_apply, result = applyAcl(equipments, vlan, environment, network, AuthSession(request.session).get_user())
apply_result = client.create_vlan().apply_acl(
equipments, vlan, environment, network)
is_apply = apply_result.get('is_apply')
result = apply_result.get('result')
if is_apply == '0':
lists['result'] = result
messages.add_message(request, messages.SUCCESS,
acl_messages.get("success_apply"))
return render_to_response(
ACL_APPLY_RESULT,
lists,
context_instance=RequestContext(request))
else:
messages.add_message(request, messages.ERROR,
acl_messages.get("error_apply"))
else:
messages.add_message(request, messages.ERROR,
error_messages.get("select_one"))
list_equipments = []
if len(vlan["redeipv4"]) > 0 and network == NETWORK_TYPES.v4:
for net in vlan["redeipv4"]:
try:
ips = client.create_ip().find_ip4_by_network(
net["id"]).get('ips')
for ip in ips:
equipment = {}
equipment["description"] = ip["descricao"]
equipment["ip"] = "%s.%s.%s.%s" % (
ip["oct1"], ip["oct2"], ip["oct3"], ip["oct4"])
equips = validates_dict(ip, "equipamento")
for equip in equips:
equipment_base = clone(equipment)
equipment_base["id"] = equip["id"]
equipment_base["name"] = equip["nome"]
list_equipments.append(equipment_base)
except (NetworkAPIClientError, Exception), e:
pass
def edit(request, id_vlan, network):
lists = dict()
lists['id_vlan'] = id_vlan
# Type Network
lists['network'] = network
try:
# Get user
auth = AuthSession(request.session)
client = auth.get_clientFactory()
vlan = client.create_vlan().get(id_vlan).get("vlan")
environment = client.create_ambiente().buscar_por_id(
vlan.get("ambiente")).get("ambiente")
if network == NETWORK_TYPES.v4:
template_name = environment['ipv4_template']
else:
template_name = environment['ipv6_template']
key_acl = acl_key(network)
if vlan.get(key_acl) is None:
messages.add_message(request, messages.ERROR,
acl_messages.get("error_acl_not_exist"))
return HttpResponseRedirect(
reverse('vlan.edit.by.id', args=[id_vlan]))
lists['vlan'] = vlan
vlan['ambiente'] = "%s - %s - %s" % (environment.get(
"nome_divisao"), environment.get("nome_ambiente_logico"),
environment.get("nome_grupo_l3"))
if request.method == "POST":
form = AclForm(request.POST)
lists['form'] = form
if form.is_valid():
acl = form.cleaned_data['acl']
comments = form.cleaned_data['comments']
apply_acl = form.cleaned_data['apply_acl']
alterAclGit(vlan.get(key_acl), acl, environment, comments,
network,
AuthSession(request.session).get_user())
#Remove Draft
client.create_api_vlan().acl_remove_draft(id_vlan, network)
if network == NETWORK_TYPES.v4:
vlan["acl_draft"] = None
else:
vlan["acl_draft_v6"] = None
lists['form'] = AclForm(initial={
'acl': form.cleaned_data['acl'],
'comments': ''
})
messages.add_message(request, messages.SUCCESS,
acl_messages.get("success_edit"))
# If click apply ACL
if apply_acl == True:
return HttpResponseRedirect(
reverse('acl.apply', args=[id_vlan, network]))
else:
content = getAclGit(vlan.get(key_acl), environment, network,
AuthSession(request.session).get_user())
lists['form'] = AclForm(initial={'acl': content, 'comments': ''})
if network == NETWORK_TYPES.v4:
if vlan["acl_draft"] == content:
vlan["acl_draft"] = None
else:
if vlan["acl_draft_v6"] == content:
vlan["acl_draft_v6"] = None
if content is None or content == "":
lists['script'] = script_template(
environment.get("nome_ambiente_logico"),
environment.get("nome_divisao"),
environment.get("nome_grupo_l3"), template_name)
list_ips = []
if len(vlan["redeipv4"]) > 0 and network == NETWORK_TYPES.v4:
for net in vlan["redeipv4"]:
n = {}
n["ip"] = "%s.%s.%s.%s" % (net["oct1"], net["oct2"],
net["oct3"], net["oct4"])
n["mask"] = "%s.%s.%s.%s" % (
net["mask_oct1"], net["mask_oct2"], net["mask_oct3"],
net["mask_oct4"])
n["network_type"] = net["network_type"]
list_ips.append(n)
elif len(vlan["redeipv6"]) > 0 and network == NETWORK_TYPES.v6:
for net in vlan["redeipv6"]:
n = {}
n["ip"] = "%s:%s:%s:%s:%s:%s:%s:%s" % (
net["block1"], net["block2"], net["block3"], net["block4"],
net["block5"], net["block6"], net["block7"], net["block8"])
n["mask"] = "%s:%s:%s:%s:%s:%s:%s:%s" % (
net["mask1"], net["mask2"], net["mask3"], net["mask4"],
net["mask5"], net["mask6"], net["mask7"], net["mask8"])
n["network_type"] = net["network_type"]
list_ips.append(n)
# Replace id network_type for name network_type
vlan['network'] = replace_id_to_name(
list_ips,
client.create_tipo_rede().listar().get('net_type'), "network_type",
"id", "name")
except (NetworkAPIClientError, GITError, ValueError), e:
logger.error(e)
messages.add_message(request, messages.ERROR, e)