my $additional_param_hash = {};
+sub allow_groups {
+ return 1;
+}
+
sub additional_parameters {
my ($class, $new_value) = @_;
my $properties = $class->additional_parameters();
my $create_rule_properties = PVE::Firewall::add_rule_properties($properties);
-
+ $create_rule_properties->{action}->{optional} = 0;
+ $create_rule_properties->{type}->{optional} = 0;
+
$class->register_method({
name => 'create_rule',
path => '',
my ($fw_conf, $rules) = $class->load_config($param);
my $digest = $fw_conf->{digest};
-
- my $rule = { type => 'out', action => 'ACCEPT', enable => 0};
+
+ my $rule = {};
PVE::Firewall::copy_rule_data($rule, $param);
+ PVE::Firewall::verify_rule($rule, $class->allow_groups());
+
+ $rule->{enable} = 0 if !defined($param->{enable});
unshift @$rules, $rule;
optional => 1,
};
+ $properties->{delete} = {
+ type => 'string', format => 'pve-configid-list',
+ description => "A list of settings you want to delete.",
+ optional => 1,
+ };
+
my $update_rule_properties = PVE::Firewall::add_rule_properties($properties);
$class->register_method({
push @$newrules, $rule if $moveto >= scalar(@$rules);
$rules = $newrules;
} else {
+ raise_param_exc({ type => "property is missing"})
+ if !defined($param->{type});
+ raise_param_exc({ action => "property is missing"})
+ if !defined($param->{action});
+
PVE::Firewall::copy_rule_data($rule, $param);
+
+ PVE::Firewall::delete_rule_properties($rule, $param->{'delete'}) if $param->{'delete'};
+
+ PVE::Firewall::verify_rule($rule, $class->allow_groups());
}
$class->save_rules($param, $fw_conf, $rules);
maxLength => 20, # fixme: what length?
}});
+sub allow_groups {
+ return 0;
+}
+
sub load_config {
my ($class, $param) = @_;
projects / pve-firewall.git / blobdiff