Google Git
Sign in
apache / cloudstack / 7de8a6d0826130e7ca004b56621406755e1aa391 / . / ui / src / views / network / EgressRulesTab.vue
blob: 9d315416e2a507fc13aa4bccf70997dac9e61c15 [file] [log] [blame]
// Licensed to the Apache Software Foundation (ASF) under one
// or more contributor license agreements. See the NOTICE file
// distributed with this work for additional information
// regarding copyright ownership. The ASF licenses this file
// to you under the Apache License, Version 2.0 (the
// "License"); you may not use this file except in compliance
// with the License. You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing,
// software distributed under the License is distributed on an
// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
// KIND, either express or implied. See the License for the
// specific language governing permissions and limitations
// under the License.
<template>
<div>
<div>
<a-alert
type="info">
<template #message>
<div
v-html="$t('message.egress.rules.info.for.network').replace('%x', resource.egressdefaultpolicy ? '<b>' + $t('label.allow') + '</b>' :
'<b>' + $t('label.deny') + '</b>').replace('%y', resource.egressdefaultpolicy ? '<b>' + $t('message.denied') + '</b>' : '<b>' + $t('message.allowed') + '</b>.')" />
</template>
</a-alert>
<a-divider />
<div class="form" v-ctrl-enter="addRule">
<div class="form__item">
<div class="form__label">{{ $t('label.sourcecidr') }}</div>
<a-input v-model:value="newRule.cidrlist" v-focus="true"></a-input>
</div>
<div class="form__item">
<div class="form__label">{{ $t('label.destcidr') }}</div>
<a-input v-model:value="newRule.destcidrlist"></a-input>
</div>
<div class="form__item">
<div class="form__label">{{ $t('label.protocol') }}</div>
<a-select
v-model:value="newRule.protocol"
style="width: 100%;"
@change="resetRulePorts"
showSearch
optionFilterProp="label"
:filterOption="(input, option) => {
return option.label.toLowerCase().indexOf(input.toLowerCase()) >= 0
}" >
<a-select-option value="tcp" :label="$t('label.tcp')">{{ capitalise($t('label.tcp')) }}</a-select-option>
<a-select-option value="udp" :label="$t('label.udp')">{{ capitalise($t('label.udp')) }}</a-select-option>
<a-select-option value="icmp" :label="$t('label.icmp')">{{ capitalise($t('label.icmp')) }}</a-select-option>
<a-select-option value="all" :label="$t('label.all')">{{ $t('label.all') }}</a-select-option>
</a-select>
</div>
<div v-show="newRule.protocol === 'tcp' || newRule.protocol === 'udp'" class="form__item">
<div class="form__label">{{ $t('label.startport') }}</div>
<a-input v-model:value="newRule.startport"></a-input>
</div>
<div v-show="newRule.protocol === 'tcp' || newRule.protocol === 'udp'" class="form__item">
<div class="form__label">{{ $t('label.endport') }}</div>
<a-input v-model:value="newRule.endport"></a-input>
</div>
<div v-show="newRule.protocol === 'icmp'" class="form__item">
<div class="form__label">{{ $t('label.icmptype') }}</div>
<a-select
v-model:value="newRule.icmptype"
@change="val => { updateIcmpCodes(val) }"
showSearch
optionFilterProp="label"
:filterOption="(input, option) => {
return option.children[0].children.toLowerCase().indexOf(input.toLowerCase()) >= 0
}" >
<a-select-option v-for="(opt) in icmpTypes" :key="opt.index" :label="opt.description">
{{ opt.index + ' - ' + opt.description }}
</a-select-option>
</a-select>
</div>
<div v-show="newRule.protocol === 'icmp'" class="form__item">
<div class="form__label">{{ $t('label.icmpcode') }}</div>
<a-select
v-model:value="newRule.icmpcode"
showSearch
optionFilterProp="label"
:filterOption="(input, option) => {
return option.children[0].children.toLowerCase().indexOf(input.toLowerCase()) >= 0
}" >
<a-select-option v-for="(opt) in icmpCodes" :key="opt.code" :label="opt.description">
{{ opt.code + ' - ' + opt.description }}
</a-select-option>
</a-select>
</div>
<div class="form__item">
<a-button ref="submit" :disabled="!('createEgressFirewallRule' in $store.getters.apis)" type="primary" @click="addRule">
<template #icon><plus-outlined /></template>
{{ $t('label.add') }}
</a-button>
</div>
</div>
</div>
<a-divider/>
<a-button
v-if="(('deleteEgressFirewallRule' in $store.getters.apis) && this.selectedRowKeys.length > 0)"
type="primary"
danger
style="width: 100%; margin-bottom: 15px"
@click="bulkActionConfirmation()">
<template #icon><delete-outlined /></template>
{{ $t('label.action.bulk.delete.egress.firewall.rules') }}
</a-button>
<a-table
size="small"
style="overflow-y: auto"
:loading="loading"
:columns="columns"
:dataSource="egressRules"
:pagination="false"
:rowSelection="{selectedRowKeys: selectedRowKeys, onChange: onSelectChange}"
:rowKey="record => record.id">
<template #bodyCell="{ column, record }">
<template v-if="column.key === 'protocol'">
{{ getCapitalise(record.protocol) }}
</template>
<template v-if="column.key === 'startport'">
{{ record.icmptype >= 0 ? String(record.icmptype): record.startport >= 0 ? String(record.startport): 'All' }}
</template>
<template v-if="column.key === 'endport'">
{{ record.icmpcode >= 0 ? String(record.icmpcode): record.endport >= 0 ? String(record.endport): 'All' }}
</template>
<template v-if="column.key === 'actions'">
<tooltip-button
:tooltip="$t('label.delete')"
:disabled="!('deleteEgressFirewallRule' in $store.getters.apis)"
type="primary"
:danger="true"
icon="delete-outlined"
@onClick="deleteRule(record)" />
</template>
</template>
</a-table>
<a-pagination
class="pagination"
size="small"
:current="page"
:pageSize="pageSize"
:total="totalCount"
:showTotal="total => `${$t('label.total')} ${total} ${$t('label.items')}`"
:pageSizeOptions="['10', '20', '40', '80', '100']"
@change="handleChangePage"
@showSizeChange="handleChangePageSize"
showSizeChanger>
<template #buildOptionText="props">
<span>{{ props.value }} / {{ $t('label.page') }}</span>
</template>
</a-pagination>
<bulk-action-view
v-if="showConfirmationAction || showGroupActionModal"
:showConfirmationAction="showConfirmationAction"
:showGroupActionModal="showGroupActionModal"
:items="egressRules"
:selectedRowKeys="selectedRowKeys"
:selectedItems="selectedItems"
:columns="columns"
:selectedColumns="selectedColumns"
action="deleteEgressFirewallRule"
:loading="loading"
:message="message"
@group-action="deleteRules"
@handle-cancel="handleCancel"
@close-modal="closeModal" />
</div>
</template>
<script>
import { api } from '@/api'
import Status from '@/components/widgets/Status'
import TooltipButton from '@/components/widgets/TooltipButton'
import BulkActionView from '@/components/view/BulkActionView'
import eventBus from '@/config/eventBus'
export default {
name: 'EgressRulesTab',
components: {
Status,
TooltipButton,
BulkActionView
},
props: {
resource: {
type: Object,
required: true
}
},
data () {
return {
selectedRowKeys: [],
showGroupActionModal: false,
selectedItems: [],
selectedColumns: [],
filterColumns: ['Actions'],
showConfirmationAction: false,
message: {
title: this.$t('label.action.bulk.delete.egress.firewall.rules'),
confirmMessage: this.$t('label.confirm.delete.egress.firewall.rules')
},
loading: true,
egressRules: [],
newRule: {
protocol: 'tcp',
cidrlist: null,
destcidrlist: null,
networkid: this.resource.id,
icmptype: null,
icmpcode: null,
startport: null,
endport: null
},
protocolNumbers: [],
icmpTypes: [],
icmpCodes: [],
totalCount: 0,
page: 1,
pageSize: 10,
columns: [
{
title: this.$t('label.sourcecidr'),
dataIndex: 'cidrlist'
},
{
title: this.$t('label.destcidr'),
dataIndex: 'destcidrlist'
},
{
key: 'protocol',
title: this.$t('label.protocol')
},
{
key: 'startport',
title: this.$t('label.icmptype.start.port')
},
{
key: 'endport',
title: this.$t('label.icmpcode.end.port')
},
{
key: 'actions',
title: this.$t('label.actions')
}
]
}
},
computed: {
hasSelected () {
return this.selectedRowKeys.length > 0
}
},
created () {
this.fetchNetworkProtocols()
this.fetchData()
},
watch: {
resource: {
deep: true,
handler (newItem) {
if (!newItem || !newItem.id) {
return
}
this.fetchData()
}
}
},
inject: ['parentFetchData'],
methods: {
fetchNetworkProtocols () {
api('listNetworkProtocols', {
option: 'protocolnumber'
}).then(json => {
this.protocolNumbers = json.listnetworkprotocolsresponse?.networkprotocol || []
})
api('listNetworkProtocols', {
option: 'icmptype'
}).then(json => {
this.icmpTypes.push({ index: -1, description: this.$t('label.all') })
const results = json.listnetworkprotocolsresponse?.networkprotocol || []
for (const result of results) {
this.icmpTypes.push(result)
}
})
},
updateIcmpCodes (val) {
this.newRule.icmpcode = -1
this.icmpCodes = []
this.icmpCodes.push({ code: -1, description: this.$t('label.all') })
const icmpType = this.icmpTypes.find(icmpType => icmpType.index === val)
if (icmpType && icmpType.details) {
const icmpTypeDetails = icmpType.details
for (const k of Object.keys(icmpTypeDetails)) {
this.icmpCodes.push({ code: parseInt(k), description: icmpTypeDetails[k] })
}
}
},
fetchData () {
this.loading = true
api('listEgressFirewallRules', {
listAll: true,
networkid: this.resource.id,
page: this.page,
pageSize: this.pageSize
}).then(response => {
this.egressRules = response.listegressfirewallrulesresponse.firewallrule || []
this.totalCount = response.listegressfirewallrulesresponse.count || 0
}).finally(() => {
this.loading = false
})
},
setSelection (selection) {
this.selectedRowKeys = selection
this.$emit('selection-change', this.selectedRowKeys)
this.selectedItems = (this.egressRules.filter(function (item) {
return selection.indexOf(item.id) !== -1
}))
},
resetSelection () {
this.setSelection([])
},
onSelectChange (selectedRowKeys, selectedRows) {
this.setSelection(selectedRowKeys)
},
bulkActionConfirmation () {
this.showConfirmationAction = true
this.selectedColumns = this.columns.filter(column => {
return !this.filterColumns.includes(column.title)
})
this.selectedItems = this.selectedItems.map(v => ({ ...v, status: 'InProgress' }))
},
handleCancel () {
eventBus.emit('update-bulk-job-status', { items: this.selectedItems, action: false })
this.showGroupActionModal = false
this.selectedItems = []
this.selectedColumns = []
this.selectedRowKeys = []
this.parentFetchData()
},
deleteRules (e) {
this.showConfirmationAction = false
this.selectedColumns.splice(0, 0, {
key: 'status',
dataIndex: 'status',
title: this.$t('label.operation.status'),
filters: [
{ text: 'In Progress', value: 'InProgress' },
{ text: 'Success', value: 'success' },
{ text: 'Failed', value: 'failed' }
]
})
if (this.selectedRowKeys.length > 0) {
this.showGroupActionModal = true
}
for (const rule of this.selectedItems) {
this.deleteRule(rule)
}
},
getCapitalise (val) {
if (val === 'all') return this.$t('label.all')
return val.toUpperCase()
},
deleteRule (rule) {
this.loading = true
api('deleteEgressFirewallRule', { id: rule.id }).then(response => {
const jobId = response.deleteegressfirewallruleresponse.jobid
eventBus.emit('update-job-details', { jobId, resourceId: null })
this.$pollJob({
title: this.$t('label.action.delete.egress.firewall'),
description: rule.id,
jobId: jobId,
successMessage: this.$t('message.success.remove.egress.rule'),
successMethod: () => {
if (this.selectedItems.length > 0) {
eventBus.emit('update-resource-state', { selectedItems: this.selectedItems, resource: rule.id, state: 'success' })
}
this.fetchData()
},
errorMessage: this.$t('message.remove.egress.rule.failed'),
errorMethod: () => {
if (this.selectedItems.length > 0) {
eventBus.emit('update-resource-state', { selectedItems: this.selectedItems, resource: rule.id, state: 'failed' })
}
this.fetchData()
},
loadingMessage: this.$t('message.remove.egress.rule.processing'),
catchMessage: this.$t('error.fetching.async.job.result'),
catchMethod: () => this.fetchData(),
bulkAction: `${this.selectedItems.length > 0}` && this.showGroupActionModal
})
}).catch(error => {
this.$notifyError(error)
this.fetchData()
}).finally(() => {
this.loading = false
})
},
addRule () {
if (this.loading) return
this.loading = true
api('createEgressFirewallRule', { ...this.newRule }).then(response => {
this.$pollJob({
jobId: response.createegressfirewallruleresponse.jobid,
successMessage: this.$t('message.success.add.egress.rule'),
successMethod: () => {
this.resetAllRules()
this.fetchData()
},
errorMessage: this.$t('message.add.egress.rule.failed'),
errorMethod: () => {
this.resetAllRules()
this.fetchData()
},
loadingMessage: this.$t('message.add.egress.rule.processing'),
catchMessage: this.$t('error.fetching.async.job.result'),
catchMethod: () => {
this.resetAllRules()
this.fetchData()
}
})
}).catch(error => {
this.$notifyError(error)
this.resetAllRules()
this.fetchData()
})
},
resetAllRules () {
this.newRule.protocol = 'tcp'
this.newRule.cidrlist = null
this.newRule.destcidrlist = null
this.newRule.networkid = this.resource.id
this.resetRulePorts()
},
resetRulePorts () {
this.newRule.icmptype = null
this.newRule.icmpcode = null
this.newRule.startport = null
this.newRule.endport = null
},
closeModal () {
this.showConfirmationAction = false
},
handleChangePage (page, pageSize) {
this.page = page
this.pageSize = pageSize
this.fetchData()
},
handleChangePageSize (currentPage, pageSize) {
this.page = currentPage
this.pageSize = pageSize
this.fetchData()
},
capitalise (val) {
return val.toUpperCase()
}
}
}
</script>
<style scoped lang="scss">
.rule {
&-container {
display: flex;
width: 100%;
flex-wrap: wrap;
margin-right: -20px;
margin-bottom: -10px;
}
&__item {
padding-right: 20px;
margin-bottom: 20px;
@media (min-width: 760px) {
flex: 1;
}
}
&__title {
font-weight: bold;
}
}
.add-btn {
width: 100%;
padding-top: 15px;
padding-bottom: 15px;
height: auto;
}
.add-actions {
display: flex;
justify-content: flex-end;
margin-right: -20px;
margin-bottom: 20px;
@media (min-width: 760px) {
margin-top: 20px;
}
button {
margin-right: 20px;
}
}
.form {
display: flex;
margin-right: -20px;
margin-bottom: 20px;
flex-direction: column;
align-items: flex-end;
@media (min-width: 760px) {
flex-direction: row;
}
&__item {
display: flex;
flex-direction: column;
flex: 1;
padding-right: 20px;
margin-bottom: 20px;
@media (min-width: 760px) {
margin-bottom: 0;
}
input,
.ant-select {
margin-top: auto;
}
}
&__label {
font-weight: bold;
}
}
.pagination {
margin-top: 20px;
}
</style>