--- /dev/null
+package PVE::API2::Firewall::Cluster;
+
+use strict;
+use warnings;
+use PVE::JSONSchema qw(get_standard_option);
+
+use PVE::Firewall;
+use PVE::API2::Firewall::Groups;
+
+use Data::Dumper; # fixme: remove
+
+use base qw(PVE::RESTHandler);
+
+__PACKAGE__->register_method ({
+ subclass => "PVE::API2::Firewall::Groups",
+ path => 'groups',
+});
+
+__PACKAGE__->register_method({
+ name => 'index',
+ path => '',
+ method => 'GET',
+ permissions => { user => 'all' },
+ description => "Directory index.",
+ parameters => {
+ additionalProperties => 0,
+ },
+ returns => {
+ type => 'array',
+ items => {
+ type => "object",
+ properties => {},
+ },
+ links => [ { rel => 'child', href => "{name}" } ],
+ },
+ code => sub {
+ my ($param) = @_;
+
+ my $result = [
+ { name => 'rules' },
+ { name => 'options' },
+ { name => 'groups' },
+ { name => 'netgroups' },
+ ];
+
+ return $result;
+ }});
path => '',
method => 'GET',
description => "List security groups.",
- proxyto => 'node',
parameters => {
additionalProperties => 0,
- properties => {
- node => get_standard_option('pve-node'),
- },
},
returns => {
type => 'array',
path => '{group}',
method => 'GET',
description => "List security groups rules.",
- proxyto => 'node',
parameters => {
additionalProperties => 0,
properties => {
- node => get_standard_option('pve-node'),
group => {
description => "Security group name.",
type => 'string',
path => '{group}/{pos}',
method => 'GET',
description => "Get single rule data.",
- proxyto => 'node',
parameters => {
additionalProperties => 0,
properties => {
- node => get_standard_option('pve-node'),
group => {
description => "Security group name.",
type => 'string',
path => '{group}',
method => 'POST',
description => "Create new rule.",
- proxyto => 'node',
protected => 1,
parameters => {
additionalProperties => 0,
properties => PVE::Firewall::add_rule_properties({
- node => get_standard_option('pve-node'),
group => {
description => "Security group name.",
type => 'string',
path => '{group}/{pos}',
method => 'PUT',
description => "Modify rule data.",
- proxyto => 'node',
protected => 1,
parameters => {
additionalProperties => 0,
properties => PVE::Firewall::add_rule_properties({
- node => get_standard_option('pve-node'),
group => {
description => "Security group name.",
type => 'string',
path => '{group}/{pos}',
method => 'DELETE',
description => "Delete rule.",
- proxyto => 'node',
protected => 1,
parameters => {
additionalProperties => 0,
properties => {
- node => get_standard_option('pve-node'),
group => {
description => "Security group name.",
type => 'string',