SGLoader.java example

Explorer

cmn-project-master
- cmn
  - src
    - main
      - java
        Main.java
        core
        aws
        client
        AWS.java
        AutoScaling.java
        CloudWatch.java
        EC2.java
        EC2VPC.java
        ElasticLoadBalancing.java
        IAM.java
        S3.java
        env
        Cloud.java
        Context.java
        Environment.java
        Goal.java
        Param.java
        ParamValidator.java
        local
        DependencyResolver.java
        DependencyResolvers.java
        LocalResourceLoader.java
        ResourceNode.java
        ResourcesLoader.java
        as
        ASGroupLoader.java
        ec2
        EBSBuilder.java
        InstanceLoader.java
        InstanceProfileLoader.java
        SGLoader.java
        elb
        ELBLoader.java
        ServerCertLoader.java
        env
        EnvLoader.java
        image
        AMILoader.java
        AMIsLoader.java
        s3
        S3Loader.java
        vpc
        SubnetLoader.java
        plan
        Planner.java
        TaskPlanner.java
        as
        ASGroupTaskPlanner.java
        ec2
        InstanceTaskPlanner.java
        SGTaskPlanner.java
        elb
        ELBTaskPlanner.java
        vpc
        InternetGatewayTaskPlanner.java
        NATGatewayTaskPlanner.java
        RouteTableTaskPlanner.java
        SubnetTaskPlanner.java
        remote
        EnvTag.java
        Loader.java
        RemoteResourceLoader.java
        as
        ASGroupLoader.java
        ec2
        ImageLoader.java
        InstanceLoader.java
        InstanceProfileLoader.java
        KeyPairLoader.java
        SGLoader.java
        elb
        ELBLoader.java
        ServerCertLoader.java
        s3
        S3Loader.java
        vpc
        InternetGatewayLoader.java
        NATLoader.java
        RouteTableLoader.java
        SubnetLoader.java
        VPCLoader.java
        resource
        Resource.java
        ResourceStatus.java
        Resources.java
        ServerResource.java
        as
        ASGroup.java
        AutoScalingPolicy.java
        LaunchConfig.java
        ec2
        EBS.java
        Instance.java
        InstanceProfile.java
        InstanceProfileHelper.java
        InstanceState.java
        KeyPair.java
        Protocol.java
        SecurityGroup.java
        SecurityGroupRuleHelper.java
        elb
        ELB.java
        ServerCert.java
        image
        AMI.java
        Image.java
        Images.java
        PreBakedAMI.java
        s3
        Bucket.java
        vpc
        InternetGateway.java
        NATGateway.java
        RouteTable.java
        Subnet.java
        SubnetType.java
        VPC.java
        task
        TaskBuilder.java
        as
        ASGroupHelper.java
        CreateASGroupTask.java
        CreatePolicyTask.java
        DeleteASGroupTask.java
        DeletePolicyTask.java
        DeployASGroupTask.java
        DescribeASGroupTask.java
        RunCommandTask.java
        StartASGroupTask.java
        StopASGroupTask.java
        UpdateASGroupTask.java
        UploadTask.java
        ec2
        BakeAMITask.java
        CreateInstanceProfileTask.java
        CreateInstanceTask.java
        CreateKeyPairTask.java
        CreateSGRuleTask.java
        CreateSGTask.java
        DeleteImageTask.java
        DeleteInstanceProfileTask.java
        DeleteInstanceTask.java
        DeleteKeyPairTask.java
        DeleteSGRuleTask.java
        DeleteSGTask.java
        DescribeImageTask.java
        DescribeInstanceTask.java
        DescribeSGTask.java
        EC2TagHelper.java
        KeyPairHelper.java
        ProvisionInstanceTask.java
        RunCommandTask.java
        StartInstanceTask.java
        StopInstanceTask.java
        UpdateInstanceProfileTask.java
        UploadTask.java
        elb
        CreateELBListenerTask.java
        CreateELBTask.java
        CreateServerCertTask.java
        DeleteELBListenerTask.java
        DeleteELBTask.java
        DeleteServerCertTask.java
        DescribeELBTask.java
        ELBAccessLogBucketPolicyBuilder.java
        UpdateELBSGTask.java
        linux
        AnsibleProvisioner.java
        LinuxCommandRunner.java
        LinuxUploader.java
        SSHRunner.java
        s3
        CreateBucketTask.java
        DeleteBucketTask.java
        DescribeBucketTask.java
        vpc
        CreateInternetGatewayTask.java
        CreateNATGatewayTask.java
        CreateRouteTableTask.java
        CreateSubnetTask.java
        CreateVPCTask.java
        DeleteInternetGatewayTask.java
        DeleteNATGatewayTask.java
        DeleteRouteTableTask.java
        DeleteSubnetTask.java
        DeleteVPCTask.java
        DescribeSubnetTask.java
        DescribeVPCTask.java
        util
        Asserts.java
        Charsets.java
        ClasspathResources.java
        Encodings.java
        Exceptions.java
        Files.java
        InputStreams.java
        JSON.java
        Lists.java
        Maps.java
        Randoms.java
        Runner.java
        SSH.java
        StreamHelper.java
        Strings.java
        Tarball.java
        Threads.java
        ToStringHelper.java
        workflow
        Action.java
        Task.java
        TaskState.java
        Tasks.java
        Workflow.java
    - test
      - java
        core
        aws
        client
        IAMTest.java
        local
        as
        ASGroupLoaderTest.java
        ec2
        EBSBuilderTest.java
        plan
        ec2
        SGTaskPlannerTest.java
        remote
        s3
        S3LoaderTest.java
        resource
        ec2
        ImageTest.java
        InstanceProfileHelperTest.java
        KeyPairTest.java
        ProtocolTest.java
        elb
        ELBTest.java
        vpc
        SubnetTest.java
        task
        as
        DeployASGroupTaskTest.java
        util
        RandomsTest.java
        StreamHelperTest.java

package core.aws.local.ec2;

import com.amazonaws.services.ec2.model.IpRange;
import core.aws.env.Environment;
import core.aws.local.DependencyResolvers;
import core.aws.local.LocalResourceLoader;
import core.aws.local.ResourceNode;
import core.aws.resource.Resources;
import core.aws.resource.ec2.Protocol;
import core.aws.resource.ec2.SecurityGroup;
import core.aws.util.Asserts;
import core.aws.util.Randoms;

import java.util.ArrayList;
import java.util.HashMap;
import java.util.List;
import java.util.Map;

/**
 * @author neo
 */
public class SGLoader implements LocalResourceLoader {
    @Override
    @SuppressWarnings("unchecked")
    public void load(ResourceNode node, final Resources resources, DependencyResolvers resolvers, Environment env) {
        Map<Protocol, List<Source>> ingressRules = new HashMap<>();

        List<Map<String, Object>> rules = (List<Map<String, Object>>) node.listField("ingress");
        for (Map<String, Object> rule : rules) {
            String cidr = (String) rule.get("cidr");
            String sgId = (String) rule.get("security-group");
            Object protocolParam = Asserts.notNull(rule.get("protocol"), "protocol is required for ingress");

            List<Object> protocols;

            if (protocolParam instanceof List) {
                protocols = (List<Object>) protocolParam;
            } else {
                protocols = new ArrayList<>();
                protocols.add(protocolParam);
            }

            for (Object value : protocols) {
                Protocol protocol = Protocol.parse(String.valueOf(value));
                Source source = new Source();
                ingressRules.computeIfAbsent(protocol, key -> new ArrayList<>()).add(source);
                if (cidr != null) {
                    source.cidr = cidr;
                } else if (sgId != null) {
                    source.sgId = sgId;
                } else {
                    throw new Error("ingress requires cidr or security-group");
                }
            }
        }

        SecurityGroup securityGroup = resources.add(new SecurityGroup(node.id));
        securityGroup.name = env.name + ":" + node.id + ":" + Randoms.alphaNumeric(6);
        securityGroup.vpc = resources.vpc;

        resolvers.add(node, () -> {
            ingressRules.forEach((protocol, sources) ->
                sources.forEach(source -> addIngressRule(securityGroup, protocol, source, resources)));
        });
    }

    private void addIngressRule(SecurityGroup securityGroup, Protocol protocol, Source inputSource, Resources resources) {
        SecurityGroup.Source source = new SecurityGroup.Source();
        if (inputSource.sgId != null) {
            source.securityGroup = resources.get(SecurityGroup.class, inputSource.sgId);
        } else if (inputSource.cidr != null) {
            source.ipRange = new IpRange().withCidrIp(inputSource.cidr);
        }
        securityGroup.addIngressRule(protocol, source);
    }

    public static class Source {
        public String sgId;
        public String cidr;
    }
}