]>
git.proxmox.com Git - pve-network.git/blob - PVE/API2/Network/SDN/Zones.pm
1 package PVE
::API2
::Network
::SDN
::Zones
;
6 use Storable
qw(dclone);
8 use PVE
::Cluster
qw(cfs_read_file cfs_write_file);
9 use PVE
::Exception
qw(raise raise_param_exc);
10 use PVE
::JSONSchema
qw(get_standard_option);
11 use PVE
::RPCEnvironment
;
13 use PVE
::Tools
qw(extract_param);
15 use PVE
::Network
::SDN
::Dns
;
16 use PVE
::Network
::SDN
::Subnets
;
17 use PVE
::Network
::SDN
::Vnets
;
18 use PVE
::Network
::SDN
;
20 use PVE
::Network
::SDN
::Zones
::EvpnPlugin
;
21 use PVE
::Network
::SDN
::Zones
::FaucetPlugin
;
22 use PVE
::Network
::SDN
::Zones
::Plugin
;
23 use PVE
::Network
::SDN
::Zones
::QinQPlugin
;
24 use PVE
::Network
::SDN
::Zones
::SimplePlugin
;
25 use PVE
::Network
::SDN
::Zones
::VlanPlugin
;
26 use PVE
::Network
::SDN
::Zones
::VxlanPlugin
;
27 use PVE
::Network
::SDN
::Zones
;
30 use base
qw(PVE::RESTHandler);
32 my $sdn_zones_type_enum = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup_types();
34 my $api_sdn_zones_config = sub {
37 my $scfg = dclone
(PVE
::Network
::SDN
::Zones
::sdn_zones_config
($cfg, $id));
39 $scfg->{digest
} = $cfg->{digest
};
42 $scfg->{nodes
} = PVE
::Network
::SDN
::encode_value
($scfg->{type
}, 'nodes', $scfg->{nodes
});
45 if ($scfg->{exitnodes
}) {
46 $scfg->{exitnodes
} = PVE
::Network
::SDN
::encode_value
($scfg->{type
}, 'exitnodes', $scfg->{exitnodes
});
49 my $pending = $scfg->{pending
};
50 if ($pending->{nodes
}) {
51 $pending->{nodes
} = PVE
::Network
::SDN
::encode_value
($scfg->{type
}, 'nodes', $pending->{nodes
});
54 if ($pending->{exitnodes
}) {
55 $pending->{exitnodes
} = PVE
::Network
::SDN
::encode_value
($scfg->{type
}, 'exitnodes', $pending->{exitnodes
});
61 __PACKAGE__-
>register_method ({
65 description
=> "SDN zones index.",
67 description
=> "Only list entries where you have 'SDN.Audit' or 'SDN.Allocate' permissions on '/sdn/zones/<zone>'",
71 additionalProperties
=> 0,
74 description
=> "Only list SDN zones of specific type",
76 enum
=> $sdn_zones_type_enum,
82 description
=> "Display running config.",
87 description
=> "Display pending config.",
95 properties
=> { zone
=> { type
=> 'string'},
96 type
=> { type
=> 'string'},
97 mtu
=> { type
=> 'integer', optional
=> 1 },
98 dns
=> { type
=> 'string', optional
=> 1},
99 reversedns
=> { type
=> 'string', optional
=> 1},
100 dnszone
=> { type
=> 'string', optional
=> 1},
101 ipam
=> { type
=> 'string', optional
=> 1},
102 pending
=> { optional
=> 1},
103 state => { type
=> 'string', optional
=> 1},
104 nodes
=> { type
=> 'string', optional
=> 1},
107 links
=> [ { rel
=> 'child', href
=> "{zone}" } ],
112 my $rpcenv = PVE
::RPCEnvironment
::get
();
113 my $authuser = $rpcenv->get_user();
116 if ($param->{pending
}) {
117 my $running_cfg = PVE
::Network
::SDN
::running_config
();
118 my $config = PVE
::Network
::SDN
::Zones
::config
();
119 $cfg = PVE
::Network
::SDN
::pending_config
($running_cfg, $config, 'zones');
120 } elsif ($param->{running
}) {
121 my $running_cfg = PVE
::Network
::SDN
::running_config
();
122 $cfg = $running_cfg->{zones
};
124 $cfg = PVE
::Network
::SDN
::Zones
::config
();
127 my @sids = PVE
::Network
::SDN
::Zones
::sdn_zones_ids
($cfg);
130 my $privs = [ 'SDN.Audit', 'SDN.Allocate' ];
131 next if !$rpcenv->check_any($authuser, "/sdn/zones/$id", $privs, 1);
133 my $scfg = &$api_sdn_zones_config($cfg, $id);
134 next if $param->{type
} && $param->{type
} ne $scfg->{type
};
136 my $plugin_config = $cfg->{ids
}->{$id};
137 my $plugin = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup($plugin_config->{type
});
144 __PACKAGE__-
>register_method ({
148 description
=> "Read sdn zone configuration.",
150 check
=> ['perm', '/sdn/zones/{zone}', ['SDN.Allocate']],
154 additionalProperties
=> 0,
156 zone
=> get_standard_option
('pve-sdn-zone-id'),
160 description
=> "Display running config.",
165 description
=> "Display pending config.",
169 returns
=> { type
=> 'object' },
174 if ($param->{pending
}) {
175 my $running_cfg = PVE
::Network
::SDN
::running_config
();
176 my $config = PVE
::Network
::SDN
::Zones
::config
();
177 $cfg = PVE
::Network
::SDN
::pending_config
($running_cfg, $config, 'zones');
178 } elsif ($param->{running
}) {
179 my $running_cfg = PVE
::Network
::SDN
::running_config
();
180 $cfg = $running_cfg->{zones
};
182 $cfg = PVE
::Network
::SDN
::Zones
::config
();
185 return &$api_sdn_zones_config($cfg, $param->{zone
});
188 __PACKAGE__-
>register_method ({
193 description
=> "Create a new sdn zone object.",
195 check
=> ['perm', '/sdn/zones', ['SDN.Allocate']],
197 parameters
=> PVE
::Network
::SDN
::Zones
::Plugin-
>createSchema(),
198 returns
=> { type
=> 'null' },
202 my $type = extract_param
($param, 'type');
203 my $id = extract_param
($param, 'zone');
205 my $plugin = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup($type);
206 my $opts = $plugin->check_config($id, $param, 1, 1);
208 PVE
::Cluster
::check_cfs_quorum
();
209 mkdir("/etc/pve/sdn");
211 PVE
::Network
::SDN
::lock_sdn_config
(sub {
212 my $zone_cfg = PVE
::Network
::SDN
::Zones
::config
();
213 my $controller_cfg = PVE
::Network
::SDN
::Controllers
::config
();
214 my $dns_cfg = PVE
::Network
::SDN
::Dns
::config
();
217 if ($scfg = PVE
::Network
::SDN
::Zones
::sdn_zones_config
($zone_cfg, $id, 1)) {
218 die "sdn zone object ID '$id' already defined\n";
221 my $dnsserver = $opts->{dns
};
222 raise_param_exc
({ dns
=> "$dnsserver don't exist"})
223 if $dnsserver && !$dns_cfg->{ids
}->{$dnsserver};
225 my $reversednsserver = $opts->{reversedns
};
226 raise_param_exc
({ reversedns
=> "$reversednsserver don't exist"})
227 if $reversednsserver && !$dns_cfg->{ids
}->{$reversednsserver};
229 my $dnszone = $opts->{dnszone
};
230 raise_param_exc
({ dnszone
=> "missing dns server"})
231 if $dnszone && !$dnsserver;
233 my $ipam = $opts->{ipam
};
234 my $ipam_cfg = PVE
::Network
::SDN
::Ipams
::config
();
235 raise_param_exc
({ ipam
=> "$ipam not existing"}) if $ipam && !$ipam_cfg->{ids
}->{$ipam};
237 $zone_cfg->{ids
}->{$id} = $opts;
238 $plugin->on_update_hook($id, $zone_cfg, $controller_cfg);
240 PVE
::Network
::SDN
::Zones
::write_config
($zone_cfg);
242 }, "create sdn zone object failed");
247 __PACKAGE__-
>register_method ({
252 description
=> "Update sdn zone object configuration.",
254 check
=> ['perm', '/sdn/zones', ['SDN.Allocate']],
256 parameters
=> PVE
::Network
::SDN
::Zones
::Plugin-
>updateSchema(),
257 returns
=> { type
=> 'null' },
261 my $id = extract_param
($param, 'zone');
262 my $digest = extract_param
($param, 'digest');
264 PVE
::Network
::SDN
::lock_sdn_config
(sub {
265 my $zone_cfg = PVE
::Network
::SDN
::Zones
::config
();
266 my $controller_cfg = PVE
::Network
::SDN
::Controllers
::config
();
267 my $dns_cfg = PVE
::Network
::SDN
::Dns
::config
();
269 PVE
::SectionConfig
::assert_if_modified
($zone_cfg, $digest);
271 my $scfg = PVE
::Network
::SDN
::Zones
::sdn_zones_config
($zone_cfg, $id);
273 my $plugin = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup($scfg->{type
});
274 my $opts = $plugin->check_config($id, $param, 0, 1);
276 if ($opts->{ipam
} && !$scfg->{ipam
} || $opts->{ipam
} ne $scfg->{ipam
}) {
278 # don't allow ipam change if subnet are defined for now, need to implement resync ipam content
279 my $subnets_cfg = PVE
::Network
::SDN
::Subnets
::config
();
280 for my $subnetid (sort keys %{$subnets_cfg->{ids
}}) {
281 my $subnet = PVE
::Network
::SDN
::Subnets
::sdn_subnets_config
($subnets_cfg, $subnetid);
282 raise_param_exc
({ ipam
=> "can't change ipam if a subnet is already defined in this zone"})
283 if $subnet->{zone
} eq $id;
288 $scfg->{$k} = $opts->{$k};
291 my $dnsserver = $opts->{dns
};
292 raise_param_exc
({ dns
=> "$dnsserver don't exist"}) if $dnsserver && !$dns_cfg->{ids
}->{$dnsserver};
294 my $reversednsserver = $opts->{reversedns
};
295 raise_param_exc
({ reversedns
=> "$reversednsserver don't exist"}) if $reversednsserver && !$dns_cfg->{ids
}->{$reversednsserver};
297 my $dnszone = $opts->{dnszone
};
298 raise_param_exc
({ dnszone
=> "missing dns server"}) if $dnszone && !$dnsserver;
300 my $ipam = $opts->{ipam
};
301 my $ipam_cfg = PVE
::Network
::SDN
::Ipams
::config
();
302 raise_param_exc
({ ipam
=> "$ipam not existing"}) if $ipam && !$ipam_cfg->{ids
}->{$ipam};
304 $plugin->on_update_hook($id, $zone_cfg, $controller_cfg);
306 PVE
::Network
::SDN
::Zones
::write_config
($zone_cfg);
308 }, "update sdn zone object failed");
313 __PACKAGE__-
>register_method ({
318 description
=> "Delete sdn zone object configuration.",
320 check
=> ['perm', '/sdn/zones', ['SDN.Allocate']],
323 additionalProperties
=> 0,
325 zone
=> get_standard_option
('pve-sdn-zone-id', {
326 completion
=> \
&PVE
::Network
::SDN
::Zones
::complete_sdn_zones
,
330 returns
=> { type
=> 'null' },
334 my $id = extract_param
($param, 'zone');
336 PVE
::Network
::SDN
::lock_sdn_config
(sub {
337 my $cfg = PVE
::Network
::SDN
::Zones
::config
();
338 my $scfg = PVE
::Network
::SDN
::Zones
::sdn_zones_config
($cfg, $id);
340 my $plugin = PVE
::Network
::SDN
::Zones
::Plugin-
>lookup($scfg->{type
});
341 my $vnet_cfg = PVE
::Network
::SDN
::Vnets
::config
();
343 $plugin->on_delete_hook($id, $vnet_cfg);
345 delete $cfg->{ids
}->{$id};
347 PVE
::Network
::SDN
::Zones
::write_config
($cfg);
348 }, "delete sdn zone object failed");