def _update_default_virtual_network_perms2(self, ns_name, proj_uuid, oper='add'): if DBBaseKM.is_nested(): return try: vn_fq_name = vnc_kube_config.cluster_default_pod_network_fq_name() pod_vn_obj = self._vnc_lib.virtual_network_read(fq_name=vn_fq_name) vn_fq_name = vnc_kube_config.cluster_default_service_network_fq_name( ) service_vn_obj = self._vnc_lib.virtual_network_read( fq_name=vn_fq_name) except NoIdError: return for vn_obj in [pod_vn_obj, service_vn_obj]: perms2 = vn_obj.perms2 share = perms2.share tenant_found = False for item in share: if item.tenant == proj_uuid: tenant_found = True break if oper == 'add': if tenant_found == True: continue else: share_item = ShareType(tenant=proj_uuid, tenant_access=PERMS_R) share.append(share_item) else: share.remove(item) perms2.share = share vn_obj.perms2 = perms2 self._vnc_lib.virtual_network_update(vn_obj)
def _get_cluster_service_network(self, service_namespace): ns = self._get_namespace(service_namespace) if ns and ns.is_isolated(): vn_fq_name = ns.get_isolated_service_network_fq_name() else: vn_fq_name = vnc_kube_config.cluster_default_service_network_fq_name( ) try: vn_obj = self._vnc_lib.virtual_network_read(fq_name=vn_fq_name) except NoIdError: return None return vn_obj