]>
git.proxmox.com Git - pve-network.git/blob - PVE/API2/Network/SDN/Zones.pm
5bbdd36ef18228b15af63a9f326a505e0bec3dfd
1 package PVE
::API2
::Network
::SDN
::Zones
;
7 use PVE
::Tools
qw(extract_param);
8 use PVE
::Cluster
qw(cfs_read_file cfs_write_file);
10 use PVE
::Network
::SDN
::Vnets
;
11 use PVE
::Network
::SDN
::Zones
;
12 use PVE
::Network
::SDN
::Subnets
;
13 use PVE
::Network
::SDN
::Dns
;
14 use PVE
::Network
::SDN
::Zones
::Plugin
;
15 use PVE
::Network
::SDN
::Zones
::VlanPlugin
;
16 use PVE
::Network
::SDN
::Zones
::QinQPlugin
;
17 use PVE
::Network
::SDN
::Zones
::VxlanPlugin
;
18 use PVE
::Network
::SDN
::Zones
::EvpnPlugin
;
19 use PVE
::Network
::SDN
::Zones
::FaucetPlugin
;
20 use PVE
::Network
::SDN
::Zones
::SimplePlugin
;
22 use Storable
qw(dclone);
23 use PVE
::JSONSchema
qw(get_standard_option);
24 use PVE
::RPCEnvironment
;
25 use PVE
::Exception
qw(raise raise_param_exc);
29 use base
qw(PVE::RESTHandler);
31 my $sdn_zones_type_enum = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup_types();
33 my $api_sdn_zones_config = sub {
36 my $scfg = dclone
(PVE
::Network
::SDN
::Zones
::sdn_zones_config
($cfg, $id));
38 $scfg->{digest
} = $cfg->{digest
};
41 $scfg->{nodes
} = PVE
::Network
::SDN
::encode_value
($scfg->{type
}, 'nodes', $scfg->{nodes
});
44 if ($scfg->{exitnodes
}) {
45 $scfg->{exitnodes
} = PVE
::Network
::SDN
::encode_value
($scfg->{type
}, 'exitnodes', $scfg->{exitnodes
});
48 my $pending = $scfg->{pending
};
49 if ($pending->{nodes
}) {
50 $pending->{nodes
} = PVE
::Network
::SDN
::encode_value
($scfg->{type
}, 'nodes', $pending->{nodes
});
53 if ($pending->{exitnodes
}) {
54 $pending->{exitnodes
} = PVE
::Network
::SDN
::encode_value
($scfg->{type
}, 'exitnodes', $pending->{exitnodes
});
60 __PACKAGE__-
>register_method ({
64 description
=> "SDN zones index.",
66 description
=> "Only list entries where you have 'SDN.Audit' or 'SDN.Allocate' permissions on '/sdn/zones/<zone>'",
70 additionalProperties
=> 0,
73 description
=> "Only list sdn zones of specific type",
75 enum
=> $sdn_zones_type_enum,
81 description
=> "Display running config.",
86 description
=> "Display pending config.",
94 properties
=> { zone
=> { type
=> 'string'},
95 type
=> { type
=> 'string'},
96 mtu
=> { type
=> 'integer', optional
=> 1 },
97 dns
=> { type
=> 'string', optional
=> 1},
98 reversedns
=> { type
=> 'string', optional
=> 1},
99 dnszone
=> { type
=> 'string', optional
=> 1},
100 ipam
=> { type
=> 'string', optional
=> 1},
101 pending
=> { optional
=> 1},
102 state => { type
=> 'string', optional
=> 1},
103 nodes
=> { type
=> 'string', optional
=> 1},
106 links
=> [ { rel
=> 'child', href
=> "{zone}" } ],
111 my $rpcenv = PVE
::RPCEnvironment
::get
();
112 my $authuser = $rpcenv->get_user();
115 if($param->{pending
}) {
116 my $running_cfg = PVE
::Network
::SDN
::config
();
117 my $config = PVE
::Network
::SDN
::Zones
::config
();
118 $cfg = PVE
::Network
::SDN
::pending_config
($running_cfg, $config, 'zones');
119 } elsif ($param->{running
}) {
120 my $running_cfg = PVE
::Network
::SDN
::config
();
121 $cfg = $running_cfg->{zones
};
123 $cfg = PVE
::Network
::SDN
::Zones
::config
();
126 my @sids = PVE
::Network
::SDN
::Zones
::sdn_zones_ids
($cfg);
128 foreach my $id (@sids) {
129 my $privs = [ 'SDN.Audit', 'SDN.Allocate' ];
130 next if !$rpcenv->check_any($authuser, "/sdn/zones/$id", $privs, 1);
132 my $scfg = &$api_sdn_zones_config($cfg, $id);
133 next if $param->{type
} && $param->{type
} ne $scfg->{type
};
135 my $plugin_config = $cfg->{ids
}->{$id};
136 my $plugin = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup($plugin_config->{type
});
143 __PACKAGE__-
>register_method ({
147 description
=> "Read sdn zone configuration.",
149 check
=> ['perm', '/sdn/zones/{zone}', ['SDN.Allocate']],
153 additionalProperties
=> 0,
155 zone
=> get_standard_option
('pve-sdn-zone-id'),
159 description
=> "Display running config.",
164 description
=> "Display pending config.",
168 returns
=> { type
=> 'object' },
173 if($param->{pending
}) {
174 my $running_cfg = PVE
::Network
::SDN
::config
();
175 my $config = PVE
::Network
::SDN
::Zones
::config
();
176 $cfg = PVE
::Network
::SDN
::pending_config
($running_cfg, $config, 'zones');
177 } elsif ($param->{running
}) {
178 my $running_cfg = PVE
::Network
::SDN
::config
();
179 $cfg = $running_cfg->{zones
};
181 $cfg = PVE
::Network
::SDN
::Zones
::config
();
184 return &$api_sdn_zones_config($cfg, $param->{zone
});
187 __PACKAGE__-
>register_method ({
192 description
=> "Create a new sdn zone object.",
194 check
=> ['perm', '/sdn/zones', ['SDN.Allocate']],
196 parameters
=> PVE
::Network
::SDN
::Zones
::Plugin-
>createSchema(),
197 returns
=> { type
=> 'null' },
201 my $type = extract_param
($param, 'type');
202 my $id = extract_param
($param, 'zone');
204 my $plugin = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup($type);
205 my $opts = $plugin->check_config($id, $param, 1, 1);
207 # create /etc/pve/sdn directory
208 PVE
::Cluster
::check_cfs_quorum
();
209 mkdir("/etc/pve/sdn");
211 PVE
::Network
::SDN
::lock_sdn_config
(
214 my $zone_cfg = PVE
::Network
::SDN
::Zones
::config
();
215 my $controller_cfg = PVE
::Network
::SDN
::Controllers
::config
();
216 my $dns_cfg = PVE
::Network
::SDN
::Dns
::config
();
219 if ($scfg = PVE
::Network
::SDN
::Zones
::sdn_zones_config
($zone_cfg, $id, 1)) {
220 die "sdn zone object ID '$id' already defined\n";
223 my $dnsserver = $opts->{dns
};
224 my $reversednsserver = $opts->{reversedns
};
225 my $dnszone = $opts->{dnszone
};
226 raise_param_exc
({ dns
=> "$dnsserver don't exist"}) if $dnsserver && !$dns_cfg->{ids
}->{$dnsserver};
227 raise_param_exc
({ reversedns
=> "$reversednsserver don't exist"}) if $reversednsserver && !$dns_cfg->{ids
}->{$reversednsserver};
228 raise_param_exc
({ dnszone
=> "missing dns server"}) if $dnszone && !$dnsserver;
230 my $ipam = $opts->{ipam
};
231 my $ipam_cfg = PVE
::Network
::SDN
::Ipams
::config
();
232 raise_param_exc
({ ipam
=> "$ipam not existing"}) if $ipam && !$ipam_cfg->{ids
}->{$ipam};
234 $zone_cfg->{ids
}->{$id} = $opts;
235 $plugin->on_update_hook($id, $zone_cfg, $controller_cfg);
237 PVE
::Network
::SDN
::Zones
::write_config
($zone_cfg);
239 }, "create sdn zone object failed");
244 __PACKAGE__-
>register_method ({
249 description
=> "Update sdn zone object configuration.",
251 check
=> ['perm', '/sdn/zones', ['SDN.Allocate']],
253 parameters
=> PVE
::Network
::SDN
::Zones
::Plugin-
>updateSchema(),
254 returns
=> { type
=> 'null' },
258 my $id = extract_param
($param, 'zone');
259 my $digest = extract_param
($param, 'digest');
261 PVE
::Network
::SDN
::lock_sdn_config
(
264 my $zone_cfg = PVE
::Network
::SDN
::Zones
::config
();
265 my $controller_cfg = PVE
::Network
::SDN
::Controllers
::config
();
266 my $dns_cfg = PVE
::Network
::SDN
::Dns
::config
();
268 PVE
::SectionConfig
::assert_if_modified
($zone_cfg, $digest);
270 my $scfg = PVE
::Network
::SDN
::Zones
::sdn_zones_config
($zone_cfg, $id);
272 my $plugin = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup($scfg->{type
});
273 my $opts = $plugin->check_config($id, $param, 0, 1);
275 if($opts->{ipam
} ne $scfg->{ipam
}) {
277 #don't allow ipam change if subnet are defined
278 my $subnets_cfg = PVE
::Network
::SDN
::Subnets
::config
();
279 foreach my $subnetid (sort keys %{$subnets_cfg->{ids
}}) {
280 my $subnet = PVE
::Network
::SDN
::Subnets
::sdn_subnets_config
($subnets_cfg, $subnetid);
281 raise_param_exc
({ ipam
=> "can't change ipam if subnet if already defined for this zone"}) if $subnet->{zone
} eq $id;
285 foreach my $k (%$opts) {
286 $scfg->{$k} = $opts->{$k};
289 my $dnsserver = $opts->{dns
};
290 my $reversednsserver = $opts->{reversedns
};
291 my $dnszone = $opts->{dnszone
};
292 raise_param_exc
({ dns
=> "$dnsserver don't exist"}) if $dnsserver && !$dns_cfg->{ids
}->{$dnsserver};
293 raise_param_exc
({ reversedns
=> "$reversednsserver don't exist"}) if $reversednsserver && !$dns_cfg->{ids
}->{$reversednsserver};
294 raise_param_exc
({ dnszone
=> "missing dns server"}) if $dnszone && !$dnsserver;
296 my $ipam = $opts->{ipam
};
297 my $ipam_cfg = PVE
::Network
::SDN
::Ipams
::config
();
298 raise_param_exc
({ ipam
=> "$ipam not existing"}) if $ipam && !$ipam_cfg->{ids
}->{$ipam};
300 $plugin->on_update_hook($id, $zone_cfg, $controller_cfg);
302 PVE
::Network
::SDN
::Zones
::write_config
($zone_cfg);
304 }, "update sdn zone object failed");
309 __PACKAGE__-
>register_method ({
314 description
=> "Delete sdn zone object configuration.",
316 check
=> ['perm', '/sdn/zones', ['SDN.Allocate']],
319 additionalProperties
=> 0,
321 zone
=> get_standard_option
('pve-sdn-zone-id', {
322 completion
=> \
&PVE
::Network
::SDN
::Zones
::complete_sdn_zones
,
326 returns
=> { type
=> 'null' },
330 my $id = extract_param
($param, 'zone');
332 PVE
::Network
::SDN
::lock_sdn_config
(
335 my $cfg = PVE
::Network
::SDN
::Zones
::config
();
337 my $scfg = PVE
::Network
::SDN
::Zones
::sdn_zones_config
($cfg, $id);
339 my $plugin = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup($scfg->{type
});
341 my $vnet_cfg = PVE
::Network
::SDN
::Vnets
::config
();
343 $plugin->on_delete_hook($id, $vnet_cfg);
345 delete $cfg->{ids
}->{$id};
346 PVE
::Network
::SDN
::Zones
::write_config
($cfg);
348 }, "delete sdn zone object failed");