Adds router rules support to router details

Adds a table display and grid display for router
rules on the router details page. Changes router
details page to tab style page.

Implements: blueprint horizon-routerrules

Change-Id: I86d81db31f09e2a8d3b66a327fb9c1fb055e9d94
This commit is contained in:
Kevin Benton 2013-07-03 10:12:39 -07:00
parent 60a99fb039
commit bb248e1d54
26 changed files with 1106 additions and 59 deletions

View File

@ -381,6 +381,17 @@ class Tab(html.HTMLElement):
"""
return True
def post(self, request, *args, **kwargs):
"""
Handles POST data sent to a tab.
Tab instances can override this method to have tab-specific POST logic
without polluting the TabView code.
The default behavior is to ignore POST data.
"""
pass
class TableTab(Tab):
"""

View File

@ -137,5 +137,15 @@ class TabbedTableView(tables.MultiTableMixin, TabView):
return self.handle_tabbed_response(context["tab_group"], context)
def post(self, request, *args, **kwargs):
# Direct POST to it's appropriate tab
targetslug = request.POST['action'].split('__')[0]
tabs = self.get_tabs(self.request, **self.kwargs).get_tabs()
matches = [tab for tab in tabs if tab.slug == targetslug]
if matches:
# Call POST on first match only. There shouldn't be a case where
# multiple tabs have the same slug and processing the request twice
# could lead to unpredictable behavior.
matches[0].post(request, *args, **kwargs)
# GET and POST handling are the same
return self.get(request, *args, **kwargs)

View File

@ -89,6 +89,25 @@ class IPField(forms.Field):
return str(getattr(self, "ip", ""))
class MultiIPField(IPField):
"""
Extends IPField to allow comma-separated lists of addresses
"""
def validate(self, value):
self.addresses = []
if value:
addresses = value.split(',')
for ip in addresses:
super(MultiIPField, self).validate(ip)
self.addresses.append(ip)
else:
super(MultiIPField, self).validate(value)
def clean(self, value):
super(MultiIPField, self).clean(value)
return str(','.join(getattr(self, "addresses", [])))
class SelectWidget(widgets.Select):
"""
Customizable select widget, that allows to render

View File

@ -665,6 +665,14 @@ def router_create(request, **kwargs):
return Router(router)
def router_update(request, r_id, **kwargs):
LOG.debug("router_update(): router_id=%s, kwargs=%s" % (r_id, kwargs))
body = {'router': {}}
body['router'].update(kwargs)
router = neutronclient(request).update_router(r_id, body=body)
return Router(router['router'])
def router_get(request, router_id, **params):
router = neutronclient(request).show_router(router_id,
**params).get('router')

View File

@ -0,0 +1,31 @@
# vim: tabstop=4 shiftwidth=4 softtabstop=4
# Copyright 2013, Big Switch Networks, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
from django.utils.translation import ugettext_lazy as _ # noqa
from horizon import tables
class RouterRulesTable(tables.DataTable):
source = tables.Column("source", verbose_name=_("Source CIDR"))
destination = tables.Column("destination",
verbose_name=_("Destination CIDR"))
action = tables.Column("action", verbose_name=_("Action"))
nexthops = tables.Column("nexthops", verbose_name=_("Next Hops"))
class Meta:
name = "routerrules"
verbose_name = _("Router Rules")

View File

@ -14,15 +14,23 @@
# License for the specific language governing permissions and limitations
# under the License.
from horizon import tabs
from openstack_dashboard.dashboards.admin.\
routers.extensions.routerrules import tables as rrtbl
from openstack_dashboard.dashboards.admin.routers.ports import tables as ptbl
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import tabs as rr_tabs
from openstack_dashboard.dashboards.project.routers import tabs as r_tabs
class OverviewTab(r_tabs.OverviewTab):
template_name = ("admin/routers/_detail_overview.html")
redirect_url = 'horizon:admin:routers:index'
class RouterRulesTab(rr_tabs.RouterRulesTab):
table_classes = (rrtbl.RouterRulesTable,)
class RouterDetailTabs(tabs.TabGroup):
class InterfacesTab(r_tabs.InterfacesTab):
table_classes = (ptbl.PortsTable,)
class RouterDetailTabs(r_tabs.RouterDetailTabs):
slug = "router_details"
tabs = (OverviewTab,)
tabs = (InterfacesTab, rr_tabs.RouterRulesTab)
sticky = True

View File

@ -8,8 +8,9 @@
{% block main %}
{% include "admin/routers/_detail_overview.html" %}
<hr>
<div id="interfaces">
{{ interfaces_table.render }}
<div class="row-fluid">
<div class="span12">
{{ tab_group.render }}
</div>
</div>
{% endblock %}

View File

@ -24,15 +24,13 @@ from django.utils.translation import ugettext_lazy as _ # noqa
from horizon import exceptions
from openstack_dashboard import api
from openstack_dashboard.dashboards.admin.networks import views as n_views
from openstack_dashboard.dashboards.admin.routers import tables as rtbl
from openstack_dashboard.dashboards.admin.routers import tabs as rtabs
from openstack_dashboard.dashboards.project.routers import views as r_views
from openstack_dashboard.dashboards.admin.routers.ports \
import tables as ports_tables
from openstack_dashboard.dashboards.admin.routers import tables
class IndexView(r_views.IndexView, n_views.IndexView):
table_class = tables.RoutersTable
table_class = rtbl.RoutersTable
template_name = 'admin/routers/index.html'
def _get_routers(self, search_opts=None):
@ -62,6 +60,6 @@ class IndexView(r_views.IndexView, n_views.IndexView):
class DetailView(r_views.DetailView):
table_classes = (ports_tables.PortsTable, )
tab_group_class = rtabs.RouterDetailTabs
template_name = 'admin/routers/detail.html'
failure_url = reverse_lazy('horizon:admin:routers:index')

View File

@ -0,0 +1,101 @@
# vim: tabstop=4 shiftwidth=4 softtabstop=4
# Copyright 2013, Big Switch Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import logging
from django.core.exceptions import ValidationError # noqa
from django.core.urlresolvers import reverse # noqa
from django.utils.translation import ugettext_lazy as _ # noqa
from horizon import exceptions
from horizon import forms
from horizon import messages
from horizon.utils import fields
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import rulemanager
LOG = logging.getLogger(__name__)
class RuleCIDRField(fields.IPField):
"""
Extends IPField to allow ('any','external') keywords and requires CIDR
"""
def __init__(self, *args, **kwargs):
kwargs['mask'] = True
super(RuleCIDRField, self).__init__(*args, **kwargs)
def validate(self, value):
keywords = ['any', 'external']
if value in keywords:
self.ip = value
else:
if '/' not in value:
raise ValidationError(_("Input must be in CIDR format"))
super(RuleCIDRField, self).validate(value)
class AddRouterRule(forms.SelfHandlingForm):
source = RuleCIDRField(label=_("Source CIDR"),
widget=forms.TextInput(), required=True)
destination = RuleCIDRField(label=_("Destination CIDR"),
widget=forms.TextInput(), required=True)
action = forms.ChoiceField(label=_("Action"), required=True)
nexthops = fields.MultiIPField(label=_("Optional: Next Hop "
"Addresses (comma delimited)"),
widget=forms.TextInput(), required=False)
router_id = forms.CharField(label=_("Router ID"),
widget=forms.TextInput(attrs={'readonly':
'readonly'}))
failure_url = 'horizon:project:routers:detail'
def __init__(self, request, *args, **kwargs):
super(AddRouterRule, self).__init__(request, *args, **kwargs)
self.fields['action'].choices = [('permit', _('Permit')),
('deny', _('Deny'))]
def handle(self, request, data, **kwargs):
try:
if 'rule_to_delete' in request.POST:
rulemanager.remove_rules(request,
[request.POST['rule_to_delete']],
router_id=data['router_id'])
except Exception:
exceptions.handle(request, _('Unable to delete router rule.'))
try:
if 'nexthops' not in data:
data['nexthops'] = ''
if data['source'] == '0.0.0.0/0':
data['source'] = 'any'
if data['destination'] == '0.0.0.0/0':
data['destination'] = 'any'
rule = {'action': data['action'],
'source': data['source'],
'destination': data['destination'],
'nexthops': data['nexthops'].split(',')}
rulemanager.add_rule(request,
router_id=data['router_id'],
newrule=rule)
msg = _('Router rule added')
LOG.debug(msg)
messages.success(request, msg)
return True
except Exception as e:
msg = _('Failed to add router rule %s') % e.message
LOG.info(msg)
messages.error(request, msg)
redirect = reverse(self.failure_url, args=[data['router_id']])
exceptions.handle(request, msg, redirect=redirect)

View File

@ -0,0 +1,105 @@
# vim: tabstop=4 shiftwidth=4 softtabstop=4
# Copyright 2013, Big Switch Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import logging
from openstack_dashboard.api import neutron as api
LOG = logging.getLogger(__name__)
class RuleObject(dict):
def __init__(self, rule):
# ID is constructed from source and destination because the
# database ID from neutron changes on every update, making a list of
# sequential operations based on the DB ID invalid after the first one
# occurs (e.g. deleting multiple from the table
rule['id'] = rule['source'] + rule['destination']
super(RuleObject, self).__init__(rule)
# Horizon references id property for table operations
self.id = rule['id']
# Flatten into csv for display
self.nexthops = ','.join(rule['nexthops'])
def routerrule_list(request, **params):
if 'router_id' in params:
params['device_id'] = params['router_id']
if 'router' in request.META:
router = request.META['router']
else:
router = api.router_get(request, params['device_id'])
try:
rules = router.router_rules
except AttributeError:
return (False, [])
return (True, rules)
def remove_rules(request, rule_ids, **kwargs):
LOG.debug("remove_rules(): param=%s", kwargs)
router_id = kwargs['router_id']
if 'reset_rules' in kwargs:
newrules = [{'source': 'any', 'destination': 'any',
'action': 'permit'}]
else:
supported, currentrules = routerrule_list(request, **kwargs)
if not supported:
LOG.error("router rules not supported by router %s" % router_id)
return
newrules = []
for oldrule in currentrules:
if RuleObject(oldrule).id not in rule_ids:
newrules.append(oldrule)
body = {'router_rules': format_for_api(newrules)}
new = api.router_update(request, router_id, **body)
if 'router' in request.META:
request.META['router'] = new
return new
def add_rule(request, router_id, newrule, **kwargs):
body = {'router_rules': []}
kwargs['router_id'] = router_id
supported, currentrules = routerrule_list(request, **kwargs)
if not supported:
LOG.error("router rules not supported by router %s" % router_id)
return
body['router_rules'] = format_for_api([newrule] + currentrules)
new = api.router_update(request, router_id, **body)
if 'router' in request.META:
request.META['router'] = new
return new
def format_for_api(rules):
apiformrules = []
for r in rules:
# make a copy so we don't damage original dict in rules
flattened = r.copy()
# nexthops should only be present if there are nexthop addresses
if 'nexthops' in flattened:
cleanednh = [nh.strip()
for nh in flattened['nexthops']
if nh.strip()]
if cleanednh:
flattened['nexthops'] = '+'.join(cleanednh)
else:
del flattened['nexthops']
if 'id' in flattened:
del flattened['id']
apiformrules.append(flattened)
return apiformrules

View File

@ -0,0 +1,66 @@
# vim: tabstop=4 shiftwidth=4 softtabstop=4
# Copyright 2013, Big Switch Networks, Inc
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import logging
from django.core.urlresolvers import reverse # noqa
from django.utils.translation import ugettext_lazy as _ # noqa
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import rulemanager
from horizon import tables
LOG = logging.getLogger(__name__)
class AddRouterRule(tables.LinkAction):
name = "create"
verbose_name = _("Add Router Rule")
url = "horizon:project:routers:addrouterrule"
classes = ("ajax-modal", "btn-create")
def get_link_url(self, datum=None):
router_id = self.table.kwargs['router_id']
return reverse(self.url, args=(router_id,))
class RemoveRouterRule(tables.DeleteAction):
data_type_singular = _("Router Rule")
data_type_plural = _("Router Rules")
failure_url = 'horizon:project:routers:detail'
def delete(self, request, obj_id):
router_id = self.table.kwargs['router_id']
rulemanager.remove_rules(request, [obj_id],
router_id=router_id)
class RouterRulesTable(tables.DataTable):
source = tables.Column("source", verbose_name=_("Source CIDR"))
destination = tables.Column("destination",
verbose_name=_("Destination CIDR"))
action = tables.Column("action", verbose_name=_("Action"))
nexthops = tables.Column("nexthops", verbose_name=_("Next Hops"))
def get_object_display(self, rule):
return "(%(action)s) %(source)s -> %(destination)s" % rule
class Meta:
name = "routerrules"
verbose_name = _("Router Rules")
table_actions = (AddRouterRule, RemoveRouterRule)
row_actions = (RemoveRouterRule, )

View File

@ -0,0 +1,229 @@
# vim: tabstop=4 shiftwidth=4 softtabstop=4
# Copyright 2013
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import netaddr
from django import template
from django.template.loader import render_to_string # noqa
from django.utils.translation import ugettext_lazy as _ # noqa
from horizon import tabs
from openstack_dashboard import api
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import rulemanager
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import tables as rrtbl
class RouterRulesTab(tabs.TableTab):
table_classes = (rrtbl.RouterRulesTable,)
name = _("Router Rules")
slug = "routerrules"
template_name = "horizon/common/_detail_table.html"
def allowed(self, request):
try:
getattr(self.tab_group.router, 'router_rules')
return True
except Exception:
return False
def get_routerrules_data(self):
try:
routerrules = getattr(self.tab_group.router, 'router_rules')
except Exception:
routerrules = []
return [rulemanager.RuleObject(r) for r in routerrules]
def post(self, request, *args, **kwargs):
if request.POST['action'] == 'routerrules__resetrules':
kwargs['reset_rules'] = True
rulemanager.remove_rules(request, [], **kwargs)
self.tab_group.router = api.neutron.router_get(request,
kwargs['router_id'])
class RulesGridTab(tabs.Tab):
name = _("Router Rules Grid")
slug = "rulesgrid"
template_name = ("project/routers/extensions/routerrules/grid.html")
def allowed(self, request):
try:
getattr(self.tab_group.router, 'router_rules')
return True
except Exception:
return False
def render(self):
context = template.RequestContext(self.request)
return render_to_string(self.get_template_name(self.request),
self.data, context_instance=context)
def get_context_data(self, request, **kwargs):
data = {'router': {'id':
self.tab_group.kwargs['router_id']}}
self.request = request
rules, supported = self.get_routerrules_data(checksupport=True)
if supported:
data["rulesmatrix"] = self.get_routerrulesgrid_data(rules)
return data
def get_routerrulesgrid_data(self, rules):
ports = self.tab_group.ports
networks = api.neutron.network_list_for_tenant(self.request,
self.request.user.tenant_id)
for n in networks:
n.set_id_as_name_if_empty()
netnamemap = {}
subnetmap = {}
for n in networks:
netnamemap[n['id']] = n['name']
for s in n.subnets:
subnetmap[s.id] = {'name': s.name,
'cidr': s.cidr}
matrix = []
subnets = []
for port in ports:
for ip in port['fixed_ips']:
if ip['subnet_id'] not in subnetmap:
continue
sub = {'ip': ip['ip_address'],
'subnetid': ip['subnet_id'],
'subnetname': subnetmap[ip['subnet_id']]['name'],
'networkid': port['network_id'],
'networkname': netnamemap[port['network_id']],
'cidr': subnetmap[ip['subnet_id']]['cidr']}
subnets.append(sub)
subnets.append({'ip': '0.0.0.0',
'subnetid': 'external',
'subnetname': '',
'networkname': 'external',
'networkid': 'external',
'cidr': '0.0.0.0/0'})
subnets.append({'ip': '0.0.0.0',
'subnetid': 'any',
'subnetname': '',
'networkname': 'any',
'networkid': 'any',
'cidr': '0.0.0.0/0'})
for source in subnets:
row = {'source': dict(source),
'targets': []}
for target in subnets:
target.update(self._get_subnet_connectivity(
source, target, rules))
row['targets'].append(dict(target))
matrix.append(row)
return matrix
def _get_subnet_connectivity(self, src_sub, dst_sub, rules):
v4_any_words = ['external', 'any']
connectivity = {'reachable': '',
'inverse_rule': {},
'rule_to_delete': False}
src = src_sub['cidr']
dst = dst_sub['cidr']
# differentiate between external and any
src_rulename = src_sub['subnetid'] if src == '0.0.0.0/0' else src
dst_rulename = dst_sub['subnetid'] if dst == '0.0.0.0/0' else dst
if str(src) == str(dst):
connectivity['reachable'] = 'full'
return connectivity
matchingrules = []
for rule in rules:
rd = rule['destination']
if rule['destination'] in v4_any_words:
rd = '0.0.0.0/0'
rs = rule['source']
if rule['source'] in v4_any_words:
rs = '0.0.0.0/0'
rs = netaddr.IPNetwork(rs)
src = netaddr.IPNetwork(src)
rd = netaddr.IPNetwork(rd)
dst = netaddr.IPNetwork(dst)
# check if cidrs are affected by rule first
if (int(dst.network) >= int(rd.broadcast) or
int(dst.broadcast) <= int(rd.network) or
int(src.network) >= int(rs.broadcast) or
int(src.broadcast) <= int(rs.network)):
continue
# skip matching rules for 'any' and 'external' networks
if (str(dst) == '0.0.0.0/0' and str(rd) != '0.0.0.0/0'):
continue
if (str(src) == '0.0.0.0/0' and str(rs) != '0.0.0.0/0'):
continue
# external network rules only affect external traffic
if (rule['source'] == 'external' and
src_rulename not in v4_any_words):
continue
if (rule['destination'] == 'external' and
dst_rulename not in v4_any_words):
continue
match = {'bitsinsrc': rs.prefixlen,
'bitsindst': rd.prefixlen,
'rule': rule}
matchingrules.append(match)
if not matchingrules:
connectivity['reachable'] = 'none'
connectivity['inverse_rule'] = {'source': src_rulename,
'destination': dst_rulename,
'action': 'permit'}
return connectivity
sortedrules = sorted(matchingrules,
key=lambda k: (k['bitsinsrc'], k['bitsindst']),
reverse=True)
match = sortedrules[0]
if (match['bitsinsrc'] > src.prefixlen or
match['bitsindst'] > dst.prefixlen):
connectivity['reachable'] = 'partial'
connectivity['conflicting_rule'] = match['rule']
return connectivity
if (match['rule']['source'] == src_rulename and
match['rule']['destination'] == dst_rulename):
connectivity['rule_to_delete'] = match['rule']
if match['rule']['action'] == 'permit':
connectivity['reachable'] = 'full'
inverseaction = 'deny'
else:
connectivity['reachable'] = 'none'
inverseaction = 'permit'
connectivity['inverse_rule'] = {'source': src_rulename,
'destination': dst_rulename,
'action': inverseaction}
return connectivity
def get_routerrules_data(self, checksupport=False):
try:
routerrules = getattr(self.tab_group.router, 'router_rules')
supported = True
except Exception:
routerrules = []
supported = False
if checksupport:
return routerrules, supported
return routerrules

View File

@ -0,0 +1,66 @@
# vim: tabstop=4 shiftwidth=4 softtabstop=4
# Copyright 2013, Big Switch Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import logging
from django.core.urlresolvers import reverse # noqa
from django.utils.translation import ugettext_lazy as _ # noqa
from horizon import exceptions
from horizon import forms
from openstack_dashboard import api
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import forms as rrforms
LOG = logging.getLogger(__name__)
class AddRouterRuleView(forms.ModalFormView):
form_class = rrforms.AddRouterRule
template_name = 'project/routers/extensions/routerrules/create.html'
success_url = 'horizon:project:routers:detail'
failure_url = 'horizon:project:routers:detail'
def get_success_url(self):
return reverse(self.success_url,
args=(self.kwargs['router_id'],))
def get_object(self):
if not hasattr(self, "_object"):
try:
router_id = self.kwargs["router_id"]
self._object = api.neutron.router_get(self.request,
router_id)
except Exception:
redirect = reverse(self.failure_url, args=[router_id])
msg = _("Unable to retrieve router.")
exceptions.handle(self.request, msg, redirect=redirect)
return self._object
def get_context_data(self, **kwargs):
context = super(AddRouterRuleView, self).get_context_data(**kwargs)
context['router'] = self.get_object()
return context
def get_initial(self):
router = self.get_object()
# store the router in the request so the rule manager doesn't have
# to request it again from the API
self.request.META['router'] = router
return {"router_id": self.kwargs['router_id'],
"router_name": router.name}

View File

@ -20,25 +20,40 @@ from django.utils.translation import ugettext_lazy as _ # noqa
from horizon import exceptions
from horizon import tabs
from openstack_dashboard import api
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import tabs as rr_tabs
from openstack_dashboard.dashboards.project.routers.ports import tables as ptbl
class OverviewTab(tabs.Tab):
name = _("Overview")
slug = "overview"
template_name = ("project/routers/_detail_overview.html")
redirect_url = 'horizon:project:routers:index'
class InterfacesTab(tabs.TableTab):
table_classes = (ptbl.PortsTable,)
name = _("Interfaces")
slug = "interfaces"
template_name = "horizon/common/_detail_table.html"
def get_context_data(self, request):
router_id = self.tab_group.kwargs['router_id']
try:
router = api.neutron.router_get(request, router_id)
except Exception:
exceptions.handle(self.request,
_('Unable to retrieve router details.'),
redirect=reverse(self.redirect_url))
return {'router': router}
def get_interfaces_data(self):
ports = self.tab_group.ports
for p in ports:
p.set_id_as_name_if_empty()
return ports
class RouterDetailTabs(tabs.TabGroup):
slug = "router_details"
tabs = (OverviewTab,)
tabs = (InterfacesTab, rr_tabs.RulesGridTab, rr_tabs.RouterRulesTab)
sticky = True
def __init__(self, request, **kwargs):
rid = kwargs['router_id']
self.router = {}
if 'router' in kwargs:
self.router = kwargs['router']
else:
self.router = api.neutron.router_get(request, rid)
try:
self.ports = api.neutron.port_list(request, device_id=rid)
except Exception:
self.ports = []
msg = _('Unable to retrieve router details.')
exceptions.handle(request, msg)
super(RouterDetailTabs, self).__init__(request, **kwargs)

View File

@ -8,8 +8,9 @@
{% block main %}
{% include "project/routers/_detail_overview.html" %}
<hr>
<div id="interfaces">
{{ interfaces_table.render }}
<div class="row-fluid">
<div class="span12">
{{ tab_group.render }}
</div>
</div>
{% endblock %}

View File

@ -0,0 +1,29 @@
{% extends "horizon/common/_modal_form.html" %}
{% load i18n %}
{% load url from future %}
{% block form_id %}add_routerrule_form{% endblock %}
{% block form_action %}{% url 'horizon:project:routers:addrouterrule' router.id %}
{% endblock %}
{% block modal-header %}{% trans "Add Router Rule" %}{% endblock %}
{% block modal-body %}
<div class="left">
<fieldset>
{% include "horizon/common/_form_fields.html" %}
</fieldset>
</div>
<div class="right">
<h3>{% trans "Description" %}:</h3>
<p>
{% trans "Routing rules to apply to router. Rules are matched by most specific source first and then by most specific destination." %}<br/>
{% trans "The next hop addresses can be used to override the router used by the client." %}
</p>
</div>
{% endblock %}
{% block modal-footer %}
<input class="btn btn-primary pull-right" type="submit" value="{% trans "Add rule" %}" />
<a href="{% url 'horizon:project:routers:index' %}" class="btn secondary cancel close">{% trans "Cancel" %}</a>
{% endblock %}

View File

@ -0,0 +1,11 @@
{% extends 'base.html' %}
{% load i18n %}
{% block title %}{% trans "Add Router Rule" %}{% endblock %}
{% block page_header %}
{% include "horizon/common/_page_header.html" with title=_("Add Router Rule") %}
{% endblock page_header %}
{% block main %}
{% include "project/routers/extensions/routerrules/_create.html" %}
{% endblock %}

View File

@ -0,0 +1,146 @@
{% load i18n %}
{% block main %}
<div id="routerrules_clickgrid">
<table class="table table-bordered datatable table-hover table-condensed">
<thead>
<tr class='table_caption'>
<th class='table_header' colspan='{{ rulesmatrix|length|add:1 }}'>
<h3 class='table_title'>{% trans "Router Rule Grid" %}</h3>
<div class="table_actions clearfix">
<form action="./" method="POST"
style='display: inline; background-color: transparent; float: none; margin-left: 0;'>
{% csrf_token %}
<input type="hidden" name="router_id" value="{{ router.id }}"/>
<button class="btn btn-small btn-danger btn-delete"
type="submit" href="#" name="action" value="routerrules__resetrules">{% trans "Reset to Default" %}</button>
</form>
</div>
</th>
</tr>
<tr>
<th>{% trans "Destination" %}&rarr;<br/>&darr;{% trans "Source" %}</th>
{% with src=rulesmatrix|first %}
{% for dest in src.targets %}
<th>
{{ dest.networkname }}<br/>
{% if dest.subnetname|length > 0 %}
{% trans "Subnet" %}: {{ dest.subnetname }}</br>
{% endif %}
{{ dest.cidr }}
</th>
{% endfor %}
{% endwith %}
</tr>
</thead>
<tbody>
{% for row in rulesmatrix %}
<tr>
<td>
<b>{{ row.source.networkname }}
{% if row.source.subnetname|length > 0 %}
<br/>{% trans "Subnet" %}: {{ row.source.subnetname }}
{% endif %}
<br/>
{{ row.source.cidr }}
</b>
</td>
{% for dest in row.targets %}
<td id="td_{{ dest.subnetid|add:row.source.subnetid }}"
data-mirrortd="td_{{ row.source.subnetid|add:dest.subnetid }}"
onMouseOver="highLightMirror(this);"
onMouseOut="unHighLightMirror(this);"
{% if dest.reachable == 'none' %}
style="background-color:#FFB2B2;"
{% elif dest.reachable == 'partial' %}
style="background-color:#FFFF66;"
{% else %}
style="background-color:#CCFFCC;"
{% endif %}
>
<form action="./addrouterrule" method="POST"
style='display: inline; background-color: transparent; float: none; margin-left: 0;'>
{% csrf_token %}
<input type="hidden" name="router_id" value="{{ router.id }}">
<input type="hidden" name="source" value="{{ dest.inverse_rule.source }}">
<input type="hidden" name="destination" value="{{ dest.inverse_rule.destination }}">
<input type="hidden" name="action" value="{{ dest.inverse_rule.action }}">
{% if dest.rule_to_delete %}
<center><input type="hidden" name="rule_to_delete" value="{{ dest.rule_to_delete.id }}"/></center>
{% endif %}
{% if dest.reachable == 'none' %}
<center>
<i class="icon-ban-circle"></i>
<button type="submit" class="btn btn-mini" href="#"><i class="icon-random"></i></button></center>
{% elif dest.reachable == 'full' %}
<center>
<i class="icon-ok"></i>
{% if not dest.cidr == row.source.cidr %}
<button type="submit" class="btn btn-mini" href="#"><i class="icon-random"></i></button>
{% else %}
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
{% endif %}
</center>
{% else %}
<center><a type="button" class="btn btn-mini" href="#modal_{{ dest.subnetid|add:row.source.subnetid }}" data-toggle="modal"><i class="icon-exclamation-sign"></i> Conflict</a></center>
<div class="modal hide" id="modal_{{ dest.subnetid|add:row.source.subnetid }}">
<div class="modal-header">
<a class="close" data-dismiss="modal">&times;</a>
<h3>{% trans "Rule Conflict" %}</h3>
</div>
<div class="modal-body">
<p>{% blocktrans %}A more specific rule affects a portion of this traffic so a rule cannot be automatically generated to control the behavior of the entire source/destination combination.{% endblocktrans %}</p>
<hr>
<h4>Conflicting Rule:</h4>
<b>{% trans "Source" %}:</b> {{ dest.conflicting_rule.source }}<br>
<b>{% trans "Destination" %}:</b> {{ dest.conflicting_rule.destination }}<br>
<b>{% trans "Action" %}:</b> {{ dest.conflicting_rule.action }}<br>
</div>
<div class="modal-footer">
<a href="#" class="btn" data-dismiss="modal">{% trans "Close" %}</a>
</div>
</div>
{% endif %}
</form>
</td>
{% endfor %}
{% endfor %}
</tr>
</tbody>
<tfoot>
<tr>
<td colspan="{{ rulesmatrix|length|add:1}}">
<span class="table_count"></span>
</td>
</tr>
</tfoot>
</table>
<h3>Description:</h3>
<p>{% blocktrans %}The color and icon of an intersection indicates whether or not traffic is permitted from the source (row) to the destination (column).
Clicking the <i class="icon-random"></i> button in the intersection will install a rule to switch the traffic behavior.<br/>
<b>Note:</b> Rules only affect one direction of traffic. The opposite direction is outlined when hovering over an intersection.
{% endblocktrans %} </p>
</div>
<script type="text/javascript">
function highLightMirror(td){
var mirror = document.getElementById(td.getAttribute("data-mirrortd"));
if (mirror.id == td.id){
return;
}
mirror.style.borderWidth="medium";
td.style.borderWidth="medium";
}
function unHighLightMirror(td){
var mirror = document.getElementById(td.getAttribute("data-mirrortd"));
if (mirror.id == td.id){
return;
}
mirror.style.borderWidth="thin";
td.style.borderWidth="thin";
}
</script>
{% endblock %}

View File

@ -13,11 +13,15 @@
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import copy
from django.core.urlresolvers import reverse # noqa
from django import http
from mox import IsA # noqa
from openstack_dashboard import api
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import rulemanager
from openstack_dashboard.test import helpers as test
@ -89,14 +93,11 @@ class RouterTests(test.TestCase):
ports = res.context['interfaces_table'].data
self.assertItemsEqual(ports, [self.ports.first()])
@test.create_stubs({api.neutron: ('router_get', 'port_list')})
@test.create_stubs({api.neutron: ('router_get',)})
def test_router_detail_exception(self):
router = self.routers.first()
api.neutron.router_get(IsA(http.HttpRequest), router.id)\
.AndRaise(self.exceptions.neutron)
api.neutron.port_list(IsA(http.HttpRequest),
device_id=router.id)\
.AndReturn([self.ports.first()])
self.mox.ReplayAll()
res = self.client.get(reverse('horizon:%s'
@ -315,3 +316,181 @@ class RouterActionTests(test.TestCase):
self.assertNoFormErrors(res)
detail_url = self.INDEX_URL
self.assertRedirectsNoFollow(res, detail_url)
class RouterRuleTests(test.TestCase):
DASHBOARD = 'project'
INDEX_URL = reverse('horizon:%s:routers:index' % DASHBOARD)
DETAIL_PATH = 'horizon:%s:routers:detail' % DASHBOARD
def _mock_external_network_get(self, router):
ext_net_id = router.external_gateway_info['network_id']
ext_net = self.networks.list()[2]
api.neutron.network_get(IsA(http.HttpRequest), ext_net_id,
expand_subnet=False).AndReturn(ext_net)
def _mock_network_list(self, tenant_id):
api.neutron.network_list(
IsA(http.HttpRequest),
shared=False,
tenant_id=tenant_id).AndReturn(self.networks.list())
api.neutron.network_list(
IsA(http.HttpRequest),
shared=True).AndReturn([])
@test.create_stubs({api.neutron: ('router_get', 'port_list',
'network_get')})
def test_extension_hides_without_rules(self):
router = self.routers.first()
api.neutron.router_get(IsA(http.HttpRequest), router.id)\
.AndReturn(self.routers.first())
api.neutron.port_list(IsA(http.HttpRequest),
device_id=router.id)\
.AndReturn([self.ports.first()])
self._mock_external_network_get(router)
self.mox.ReplayAll()
res = self.client.get(reverse('horizon:%s'
':routers:detail' % self.DASHBOARD,
args=[router.id]))
self.assertTemplateUsed(res, '%s/routers/detail.html' % self.DASHBOARD)
self.assertTemplateNotUsed(res,
'%s/routers/extensions/routerrules/grid.html' % self.DASHBOARD)
@test.create_stubs({api.neutron: ('router_get', 'port_list',
'network_get', 'network_list')})
def test_routerrule_detail(self):
router = self.routers_with_rules.first()
api.neutron.router_get(IsA(http.HttpRequest), router.id)\
.AndReturn(self.routers_with_rules.first())
api.neutron.port_list(IsA(http.HttpRequest),
device_id=router.id)\
.AndReturn([self.ports.first()])
self._mock_external_network_get(router)
if self.DASHBOARD == 'project':
api.neutron.network_list(
IsA(http.HttpRequest),
shared=False,
tenant_id=router['tenant_id']).AndReturn(self.networks.list())
api.neutron.network_list(
IsA(http.HttpRequest),
shared=True).AndReturn([])
self.mox.ReplayAll()
res = self.client.get(reverse('horizon:%s'
':routers:detail' % self.DASHBOARD,
args=[router.id]))
self.assertTemplateUsed(res, '%s/routers/detail.html' % self.DASHBOARD)
if self.DASHBOARD == 'project':
self.assertTemplateUsed(res,
'%s/routers/extensions/routerrules/grid.html' % self.DASHBOARD)
rules = res.context['routerrules_table'].data
self.assertItemsEqual(rules, router['router_rules'])
def _test_router_addrouterrule(self, raise_error=False):
pre_router = self.routers_with_rules.first()
post_router = copy.deepcopy(pre_router)
rule = {'source': '1.2.3.4/32', 'destination': '4.3.2.1/32', 'id': 99,
'action': 'permit', 'nexthops': ['1.1.1.1', '2.2.2.2']}
post_router['router_rules'].insert(0, rule)
api.neutron.router_get(IsA(http.HttpRequest),
pre_router.id).AndReturn(pre_router)
params = {}
params['router_rules'] = rulemanager.format_for_api(
post_router['router_rules'])
router_update = api.neutron.router_update(IsA(http.HttpRequest),
pre_router.id, **params)
if raise_error:
router_update.AndRaise(self.exceptions.neutron)
else:
router_update.AndReturn({'router': post_router})
self.mox.ReplayAll()
form_data = {'router_id': pre_router.id,
'source': rule['source'],
'destination': rule['destination'],
'action': rule['action'],
'nexthops': ','.join(rule['nexthops'])}
url = reverse('horizon:%s:routers:addrouterrule' % self.DASHBOARD,
args=[pre_router.id])
res = self.client.post(url, form_data)
self.assertNoFormErrors(res)
detail_url = reverse(self.DETAIL_PATH, args=[pre_router.id])
self.assertRedirectsNoFollow(res, detail_url)
@test.create_stubs({api.neutron: ('router_get',
'router_update')})
def test_router_addrouterrule(self):
self._test_router_addrouterrule()
@test.create_stubs({api.neutron: ('router_get',
'router_update')})
def test_router_addrouterrule_exception(self):
self._test_router_addrouterrule(raise_error=True)
@test.create_stubs({api.neutron: ('router_get', 'router_update',
'port_list', 'network_get')})
def test_router_removerouterrule(self):
pre_router = self.routers_with_rules.first()
post_router = copy.deepcopy(pre_router)
rule = post_router['router_rules'].pop()
api.neutron.router_get(IsA(http.HttpRequest),
pre_router.id).AndReturn(pre_router)
params = {}
params['router_rules'] = rulemanager.format_for_api(
post_router['router_rules'])
api.neutron.router_get(IsA(http.HttpRequest),
pre_router.id).AndReturn(pre_router)
router_update = api.neutron.router_update(IsA(http.HttpRequest),
pre_router.id, **params)
router_update.AndReturn({'router': post_router})
api.neutron.router_get(IsA(http.HttpRequest),
pre_router.id).AndReturn(pre_router)
api.neutron.port_list(IsA(http.HttpRequest),
device_id=pre_router.id)\
.AndReturn([self.ports.first()])
self._mock_external_network_get(pre_router)
self.mox.ReplayAll()
form_rule_id = rule['source'] + rule['destination']
form_data = {'router_id': pre_router.id,
'action': 'routerrules__delete__%s' % form_rule_id}
url = reverse(self.DETAIL_PATH, args=[pre_router.id])
res = self.client.post(url, form_data)
self.assertNoFormErrors(res)
@test.create_stubs({api.neutron: ('router_get', 'router_update',
'network_list', 'port_list',
'network_get')})
def test_router_resetrouterrules(self):
pre_router = self.routers_with_rules.first()
post_router = copy.deepcopy(pre_router)
default_rules = [{'source': 'any', 'destination': 'any',
'action': 'permit', 'nexthops': [], 'id': '2'}]
del post_router['router_rules'][:]
post_router['router_rules'].extend(default_rules)
api.neutron.router_get(IsA(http.HttpRequest),
pre_router.id).AndReturn(post_router)
params = {}
params['router_rules'] = rulemanager.format_for_api(
post_router['router_rules'])
router_update = api.neutron.router_update(IsA(http.HttpRequest),
pre_router.id, **params)
router_update.AndReturn({'router': post_router})
api.neutron.router_get(IsA(http.HttpRequest),
pre_router.id).AndReturn(post_router)
api.neutron.port_list(IsA(http.HttpRequest),
device_id=pre_router.id)\
.AndReturn([self.ports.first()])
self._mock_external_network_get(pre_router)
self._mock_network_list(pre_router['tenant_id'])
api.neutron.router_get(IsA(http.HttpRequest),
pre_router.id).AndReturn(post_router)
self.mox.ReplayAll()
form_data = {'router_id': pre_router.id,
'action': 'routerrules__resetrules'}
url = reverse(self.DETAIL_PATH, args=[pre_router.id])
res = self.client.post(url, form_data)
self.assertNoFormErrors(res)

View File

@ -17,6 +17,8 @@
from django.conf.urls.defaults import patterns # noqa
from django.conf.urls.defaults import url # noqa
from openstack_dashboard.dashboards.project.routers.extensions.routerrules\
import views as rr_views
from openstack_dashboard.dashboards.project.routers.ports \
import views as port_views
from openstack_dashboard.dashboards.project.routers import views
@ -31,6 +33,9 @@ urlpatterns = patterns('horizon.dashboards.project.routers.views',
url(r'^(?P<router_id>[^/]+)/addinterface',
port_views.AddInterfaceView.as_view(),
name='addinterface'),
url(r'^(?P<router_id>[^/]+)/addrouterrule',
rr_views.AddRouterRuleView.as_view(),
name='addrouterrule'),
url(r'^(?P<router_id>[^/]+)/setgateway',
port_views.SetGatewayView.as_view(),
name='setgateway'),

View File

@ -1,6 +1,7 @@
# vim: tabstop=4 shiftwidth=4 softtabstop=4
# Copyright 2012, Nachi Ueno, NTT MCL, Inc.
# Copyright 2013, Big Switch Networks, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
@ -25,18 +26,16 @@ from django.utils.translation import ugettext_lazy as _ # noqa
from horizon import exceptions
from horizon import forms
from horizon import tables
from horizon import tabs
from openstack_dashboard import api
from openstack_dashboard.dashboards.project.routers \
from openstack_dashboard.dashboards.project.routers\
import forms as project_forms
from openstack_dashboard.dashboards.project.routers.ports \
import tables as port_tables
from openstack_dashboard.dashboards.project.routers \
import tables as project_tables
from openstack_dashboard.dashboards.project.routers import tables as rtables
from openstack_dashboard.dashboards.project.routers import tabs as rdtabs
class IndexView(tables.DataTableView):
table_class = project_tables.RoutersTable
table_class = rtables.RoutersTable
template_name = 'project/routers/index.html'
def _get_routers(self, search_opts=None):
@ -86,8 +85,8 @@ class IndexView(tables.DataTableView):
exceptions.handle(self.request, msg)
class DetailView(tables.MultiTableView):
table_classes = (port_tables.PortsTable, )
class DetailView(tabs.TabbedTableView):
tab_group_class = rdtabs.RouterDetailTabs
template_name = 'project/routers/detail.html'
failure_url = reverse_lazy('horizon:project:routers:index')
@ -101,7 +100,6 @@ class DetailView(tables.MultiTableView):
msg = _('Unable to retrieve details for router "%s".') \
% (router_id)
exceptions.handle(self.request, msg, redirect=self.failure_url)
if router.external_gateway_info:
ext_net_id = router.external_gateway_info['network_id']
try:
@ -123,18 +121,10 @@ class DetailView(tables.MultiTableView):
context["router"] = self._get_data()
return context
def get_interfaces_data(self):
try:
device_id = self.kwargs['router_id']
ports = api.neutron.port_list(self.request,
device_id=device_id)
except Exception:
ports = []
msg = _('Port list can not be retrieved.')
exceptions.handle(self.request, msg)
for p in ports:
p.set_id_as_name_if_empty()
return ports
def get(self, request, *args, **kwargs):
router = self._get_data()
self.kwargs['router'] = router
return super(DetailView, self).get(request, *args, **kwargs)
class CreateView(forms.ModalFormView):

View File

@ -31,6 +31,7 @@ def data(TEST):
TEST.subnets = utils.TestDataContainer()
TEST.ports = utils.TestDataContainer()
TEST.routers = utils.TestDataContainer()
TEST.routers_with_rules = utils.TestDataContainer()
TEST.q_floating_ips = utils.TestDataContainer()
TEST.q_secgroups = utils.TestDataContainer()
TEST.q_secgroup_rules = utils.TestDataContainer()
@ -291,6 +292,23 @@ def data(TEST):
'tenant_id': '1'}
TEST.api_routers.add(router_dict)
TEST.routers.add(neutron.Router(router_dict))
router_dict = {'id': '71fb25e9-cd9f-4a44-a780-85ec3bd8bdd7',
'name': 'rulerouter',
'external_gateway_info':
{'network_id': ext_net['id']},
'tenant_id': '1',
'router_rules': [{'id': '101',
'action': 'deny',
'source': 'any',
'destination': 'any',
'nexthops': []},
{'id': '102',
'action': 'permit',
'source': 'any',
'destination': '8.8.8.8/32',
'nexthops': ['1.0.0.2', '1.0.0.1']}]}
TEST.api_routers.add(router_dict)
TEST.routers_with_rules.add(neutron.Router(router_dict))
#------------------------------------------------------------
# floating IP