Example 1 with Insert
use of com.google.api.services.compute.Compute.Firewalls.Insert in project cloudbreak by hortonworks.
the class GcpFirewallInternalResourceBuilder method build.
@Override
public CloudResource build(GcpContext context, AuthenticatedContext auth, Network network, Security security, CloudResource buildableResource) throws Exception {
String projectId = context.getProjectId();
Firewall firewall = new Firewall();
Allowed allowed1 = new Allowed();
allowed1.setIPProtocol("tcp");
allowed1.setPorts(Collections.singletonList("1-65535"));
Allowed allowed2 = new Allowed();
allowed2.setIPProtocol("icmp");
Allowed allowed3 = new Allowed();
allowed3.setIPProtocol("udp");
allowed3.setPorts(Collections.singletonList("1-65535"));
firewall.setTargetTags(Collections.singletonList(GcpStackUtil.getClusterTag(auth.getCloudContext())));
firewall.setAllowed(Arrays.asList(allowed1, allowed2, allowed3));
firewall.setName(buildableResource.getName());
if (isLegacyNetwork(network)) {
Networks.Get networkRequest = context.getCompute().networks().get(projectId, getCustomNetworkId(network));
com.google.api.services.compute.model.Network existingNetwork = networkRequest.execute();
firewall.setSourceRanges(Collections.singletonList(existingNetwork.getIPv4Range()));
} else if (isNewNetworkAndSubnet(network) || isNewSubnetInExistingNetwork(network)) {
firewall.setSourceRanges(Collections.singletonList(network.getSubnet().getCidr()));
} else {
Get sn = context.getCompute().subnetworks().get(projectId, context.getLocation().getRegion().value(), getSubnetId(network));
com.google.api.services.compute.model.Subnetwork existingSubnet = sn.execute();
firewall.setSourceRanges(Collections.singletonList(existingSubnet.getIpCidrRange()));
}
firewall.setNetwork(String.format("https://www.googleapis.com/compute/v1/projects/%s/global/networks/%s", projectId, context.getParameter(GcpNetworkResourceBuilder.NETWORK_NAME, String.class)));
Insert firewallInsert = context.getCompute().firewalls().insert(projectId, firewall);
try {
Operation operation = firewallInsert.execute();
if (operation.getHttpErrorStatusCode() != null) {
throw new GcpResourceException(operation.getHttpErrorMessage(), resourceType(), buildableResource.getName());
}
return createOperationAwareCloudResource(buildableResource, operation);
} catch (GoogleJsonResponseException e) {
throw new GcpResourceException(checkException(e), resourceType(), buildableResource.getName());
}
}
Also used :
Networks(com.google.api.services.compute.Compute.Networks)
Operation(com.google.api.services.compute.model.Operation)
Insert(com.google.api.services.compute.Compute.Firewalls.Insert)
Allowed(com.google.api.services.compute.model.Firewall.Allowed)
Firewall(com.google.api.services.compute.model.Firewall)
GoogleJsonResponseException(com.google.api.client.googleapis.json.GoogleJsonResponseException)
Get(com.google.api.services.compute.Compute.Subnetworks.Get)
GcpResourceException(com.sequenceiq.cloudbreak.cloud.gcp.GcpResourceException)
Aggregations
GoogleJsonResponseException (com.google.api.client.googleapis.json.GoogleJsonResponseException)1
Insert (com.google.api.services.compute.Compute.Firewalls.Insert)1
Networks (com.google.api.services.compute.Compute.Networks)1
Get (com.google.api.services.compute.Compute.Subnetworks.Get)1
Firewall (com.google.api.services.compute.model.Firewall)1
Allowed (com.google.api.services.compute.model.Firewall.Allowed)1
Operation (com.google.api.services.compute.model.Operation)1
GcpResourceException (com.sequenceiq.cloudbreak.cloud.gcp.GcpResourceException)1
