bim 1.0.0 → 1.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c6f9989b1a73b84f166b102c06b20f48bffa922f
-  data.tar.gz: 485d78106d2ed26cab37cfa6cb4e1cfb9131bd23
+  metadata.gz: a22460bf1ff35db4e0cbfe8f3fd22a46e739a549
+  data.tar.gz: 212c0cc27be235f2a1144f7d36faf5903cd73ca4
 SHA512:
-  metadata.gz: 9e378820b2071376e3a5353134c9ed16e7f6d1d0c68adb6b5b240bb6434051fea7f1ae0ca4d6e93bbbf51bd0225c62cc4b17d65f658f6fadc1f983d735c6a0d9
-  data.tar.gz: 0a8e22881900de573bf0969731351c25d053c431be7af6a1b836083afd2b606f715fff8c74120093cd6fcc7d98bc32baec6a4faed9275fe987dbfc0d41414fe1
+  metadata.gz: f159fae5b2c30d32531b6d4ab3d6dffb91d73cea666719b67f5e83a688f2a9193bd6a057c6dbd36b5e08b5be11279407ef565328f0337d5fc1ae5fc51c7e5569
+  data.tar.gz: 89022d1283c7f7931f4a7aa14906427b99ad5f722ade86f1a221f218d0b1b803d80bca4d975f15430d932b90936ee6c6f6c45ec3bd54fc564698ebdcc49312a0

data/README.md

@@ -35,23 +35,7 @@ if you want to use `--test` option, set TEST_VS vriable.
 - `TEST_VS`: set test virtual server
 
 ## Features
-There are many features for deployment SSL Certificate from CLI to BIGIP.
-
-#### Metadata
-- get active host in the device group  
-- get group name that BIGIP_HOST belongs
-
-#### Virtual Server
-- get virutal server list and detail configuration
-
-#### Sync
-- execute sync action  
-- get sync state
-
-#### SSL
-- upload key and certificate  
-- create ssl client profile  
-- replace old ssl client profile to new ssl client profile
+There are many features to help BIG_IP operation.
 
 ## Usage
 
@@ -77,7 +61,16 @@ $ bim meta device_groups
 $ bim vs list
 
 # output one of the virtual server list
-$ bim vs detail Virtual_Server_Name
+$ bim vs detail VS_Name
+
+# update global ip address
+$ bim vs update_global_address VS_Name GLOBAL_IPADDRESS PORT
+
+# change firewall policy 
+$ bim vs change_nf VS_NAME NETWORK_FIREWALL_FULLPATH
+
+# change pool
+$ bim vs change_pool VS_NAME POOL_FULLPATH
 ```
 
 #### Sync
@@ -100,7 +93,7 @@ $ bim ssl bundles
 $ bim ssl profiles
 
 # output specified ssl profile
-$ bim ssl detail SSL Profile Name
+$ bim ssl detail SSL_Profile_Name
 
 # upload and create_ssl_profile and replace.
 $ bim ssl deploy OLD_SSL_PROFILE_NAME NEW_SSL_PROFILE_NAME PRIVATE_KEYFILE CERTIFICATE_FILE CHAIN
@@ -127,6 +120,83 @@ $ bim ssl replace OLD_SSL_PROFILE_NAME NEW_SSL_PROFILE_NAME
 $ TEST_VS=test_virtual_server bim replace OLD_SSL_PROFILE_NAME NEW_SSL_PROFILE_NAME --test
 ```
 
+#### Firewall
+
+```sh
+# output firewall policy list
+$ bim fw ls
+
+# output firewall detail configuration
+$ bim fw detail FIREWALL_POLICY_NAME
+```
+
+#### Node
+
+```sh
+# output node list
+$ bim node ls
+
+# output node detail
+$ bim node detail NODE_NAME
+
+# create node
+$ bim node create NODE_NAME IP_ADDRESS
+
+# delete node
+$ bim node delete NODE_NAME
+```
+
+#### Pool
+
+```sh
+# output pool list
+$ bim pool ls
+
+# output members belongs pool
+$ bim pool members POOL_NAME
+
+# create pool
+$ bim pool create POOL_NAME [--monitor='monitor name'] [--slow-ramp-time=interger] [--members='[{"name": "NodeName:PORT", "address": "NodeAddress"}, {"name": "NodeName:PORT", "address": "NodeAddress"}]']
+
+# update pool
+$ bim pool update POOL_NAME [--monitor='monitor name'] [--slow-ramp-time=interger] [--members='[{"name": "NodeName:PORT", "address": "NodeAddress"}, {"name": "NodeName:PORT", "address": "NodeAddress"}]']
+
+# enable members 
+$ bim pool enable POOL_NAME --members=IP_ADDRESS:PORT IP_ADDRESS:PORT
+
+# disable members 
+$ bim pool disable POOL_NAME --members=IP_ADDRESS:PORT IP_ADDRESS:PORT
+
+# add members
+$ bim pool add POOL_NAME --members=NODENAME:PORT NODENAME:PORT
+
+# drop members
+$ bim pool drop POOL_NAME --members=NODENAME:PORT NODENAME:PORT
+```
+
+#### Snat
+
+```sh
+# output snat list
+$ bim snat ls
+
+# output snat configuration
+$ bim snat detail SNAT_NAME
+
+# create snat
+$ bim snat create SNAT_NAME --translation=GLOBAL_IPADDRESS --addresses=IPADDRESS/MASK IPADDRESS/MASK --vlans=VLAN1 VLAN2
+# ※ if not set vlans, set false to vlanEnabled and ALL* to vlans.
+
+# update snat
+$ bim snat update SNAT_NAME --translation=GLOBAL_IPADDRESS --addresses=IPADDRESS/MASK IPADDRESS/MASK --vlans=VLAN1 VLAN2
+
+# add address
+$ bim add_address SNAT_NAME --addresses=IPADDRESS/MASK IPADDRESS/MASK
+
+# remove address
+$ bim remove_address SNAT_NAME --addresses=IPADDRESS/MASK IPADDRESS/MASK
+```
+
 ## License
 
 The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).

data/completions/bim.bash

@@ -4,10 +4,10 @@ _bim() {
   _get_comp_words_by_ref -n : cur prev
 
   if [ "$COMP_CWORD" -eq 1 ]; then
-    COMPREPLY=( $(compgen -W "$(./bin/bim help | tail -n +2 | awk '{ print $2}')" -- "$cur") )
+    COMPREPLY=( $(compgen -W "$(bim help | tail -n +2 | awk '{ print $2}')" -- "$cur") )
   elif [ $COMP_CWORD -eq 2 ]; then
     if [ $prev = "ssl" ] || [ $prev = "meta" ] || [ $prev = "sync" ]; then
-      COMPREPLY=( $(compgen -W "$(./bin/bim $prev help | tail -n +2 | awk '{ print $3}')" -- $cur) )
+      COMPREPLY=( $(compgen -W "$(bim $prev help | tail -n +2 | awk '{ print $3}')" -- $cur) )
     fi
   fi
 }

data/lib/bim/action.rb

@@ -6,6 +6,7 @@ require 'bim/action/vs'
 require 'bim/action/node'
 require 'bim/action/pool'
 require 'bim/action/fw'
+require 'bim/action/snat'
 
 module Bim
   # Action module is namespace

data/lib/bim/action/pool.rb

@@ -18,11 +18,20 @@ module Bim
           end
         end
 
-        def create(name, members = nil)
-          j = members ? { 'name' => name, 'members' => JSON.parse(members) } : { 'name' => name }
+        def create(name, monitor, slow_ramp_time, members)
+          j = { 'name' => name, 'monitor' => monitor, 'slowRampTime' => slow_ramp_time }
+          j['members'] = JSON.parse(members.delete('\\')) unless members.nil?
           post(POOL_URI, j.to_json)
         end
 
+        def update(name, monitor, slow_ramp_time, members)
+          uri = URI(sub_localhost(specify_link_by_name(POOL_URI, name)))
+          j = { 'name' => name, 'monitor' => monitor, 'slowRampTime' => slow_ramp_time }
+          j['members'] = JSON.parse(members.delete('\\')) unless members.nil?
+          req = request(uri, Bim::AUTH, 'application/json', 'PATCH', j.to_json)
+          http(uri).request(req).body
+        end
+
         def members(name)
           cond = proc { |item| name == item['name'] }
           select_map(POOL_URI, cond) do |item|
@@ -32,6 +41,14 @@ module Bim
           end
         end
 
+        def enable(name, members)
+          { 'enabled_members': change_session(name, members, 'user-enabled') }
+        end
+
+        def disable(name, members)
+          { 'disabled_members': change_session(name, members, 'user-disabled') }
+        end
+
         def drop_members(name, members)
           members_link = specify_link(POOL_URI, %w[membersReference link]) do |item|
             item['name'] == name
@@ -67,6 +84,24 @@ module Bim
 
           { 'add_members': add_members }
         end
+
+        private
+
+        def change_session(name, members, session_value)
+          uri = URI(sub_localhost(specify_link_by_name(POOL_URI, name, %w[membersReference link])))
+
+          success_members = []
+          cond = proc { |item| members.include?(item['name']) }
+          JSON.parse(select_map(uri, cond) do |item|
+            { 'name': item['name'], 'self_link': sub_localhost(item['selfLink']) }
+          end).each do |item|
+            uri = URI.parse(item['self_link'])
+            req = request(uri, Bim::AUTH, 'application/json', 'PATCH', { session: session_value }.to_json)
+            success_members.push(item['name']) if http(uri).request(req).code == '200'
+          end
+
+          success_members
+        end
       end
     end
   end

data/lib/bim/action/snat.rb

@@ -0,0 +1,66 @@
+module Bim
+  module Action
+    # Snat class uses by Bim::Subcommands::Node
+    class Snat
+      extend Bim::Util
+
+      SNAT_PATH = '/mgmt/tm/ltm/snat'.freeze
+      SNAT_URI = URI.join(Bim::BASE_URL, Bim::Action::Snat::SNAT_PATH)
+
+      class << self
+        def ls
+          map(SNAT_URI) do |item|
+            {
+              'name': item['name'],
+              'translation': item['translation'],
+              'address_list': item['origins'].map { |origin| origin['name'] },
+              'vlans': item['vlans']
+            }
+          end
+        end
+
+        def detail(name)
+          specify(SNAT_URI) { |d| d['name'] == name }
+        end
+
+        def create(name, translation, address_list, vlans)
+          j = {
+            'name': name,
+            'translation': translation,
+            'origins': address_list.map { |address| { 'name': address } }
+          }
+          unless vlans.nil?
+            j['vlansEnabled'] = true
+            j['vlans'] = vlans.map { |vlan| "/Common/#{vlan}" }
+          end
+          post(SNAT_URI, j.to_json)
+        end
+
+        def update(name, translation, address_list, vlans)
+          j = {}
+          if address_list
+            j['origins'] = address_list.map { |address| { 'name': address } }
+          end
+          j['translation'] = translation if translation
+          unless vlans.nil?
+            j['vlansEnabled'] = true
+            j['vlans'] = vlans.map { |vlan| "/Common/#{vlan}" }
+          end
+          self_patch(name, SNAT_URI, j.to_json)
+        end
+
+        def add_address(name, addresses)
+          origins = specify_link_by_name(SNAT_URI, name, %(origins))
+          j = { 'origins': origins.push(addresses.map { |address| { 'name': address } }).flatten }
+          self_patch(name, SNAT_URI, j.to_json)
+        end
+
+        def remove_address(name, addresses)
+          origins = specify_link_by_name(SNAT_URI, name, %(origins))
+          j = { 'origins': (origins.map { |origin| origin['name'] } - addresses).map { |address| { 'name': address } } }
+          self_patch(name, SNAT_URI, j.to_json)
+        end
+      end
+    end
+  end
+end

data/lib/bim/action/vs.rb

@@ -22,16 +22,11 @@ module Bim
           specify(VS_URI) { |d| d['name'] == name }
         end
 
-        def update_dnat(name, dnat_addr, port)
+        def update_global_address(name, dnat_addr, port)
           j = { 'destination' => "#{dnat_addr}:#{port}" }.to_json
           self_patch(name, VS_URI, j)
         end
 
-        def update_snat(name, snat_addr, bitmask)
-          j = { 'source' => "#{snat_addr}/#{bitmask}" }.to_json
-          self_patch(name, VS_URI, j)
-        end
-
         def change_nf(name, nf_name)
           j = { 'fwEnforcedPolicy' => nf_name }.to_json
           self_patch(name, VS_URI, j)

data/lib/bim/subcommands.rb

@@ -6,6 +6,7 @@ require 'bim/subcommands/vs'
 require 'bim/subcommands/node'
 require 'bim/subcommands/pool'
 require 'bim/subcommands/fw'
+require 'bim/subcommands/snat'
 
 module Bim
   # Subcommands module is namespace

data/lib/bim/subcommands/pool.rb

@@ -11,35 +11,69 @@ module Bim
       end
 
       desc(
-        'create [NAME] [MEMBERS(optional: \'[{"name": "NodeName:Port", "address": "NodeAddress"}, {"name": "NodeName:Port", "address": "NodeAddress"}]\')]',
+        'create [NAME]',
         'create pool with node members'
       )
-      def create(name, members = nil)
-        puts Bim::Action::Pool.create(name, members)
+      option :monitor, desc: 'monitor expects string(ex: \'http\', \'http and https\')'
+      option :slow_ramp_time, desc: 'slow_ramp_time expects integer'
+      option :members, desc: 'members expects json array(members: \'[{"name": "NodeName:Port", "address": "NodeAddress"}, {"name": "NodeName:Port", "address": "NodeAddress"}]\')'
+      def create(name)
+        puts Bim::Action::Pool.create(name, options[:monitor], options[:slow_ramp_time], options[:members])
+      end
+
+      desc(
+        'update [NAME]',
+        'update pool with node members'
+      )
+      option :monitor, desc: 'monitor expects string(ex: \'http\', \'http and https\')'
+      option :slow_ramp_time, desc: 'slow_ramp_time expects integer'
+      option :members, desc: 'members expects json array(members: \'[{"name": "NodeName:Port", "address": "NodeAddress"}, {"name": "NodeName:Port", "address": "NodeAddress"}]\')'
+      def update(name)
+        puts Bim::Action::Pool.update(name, options[:monitor], options[:slow_ramp_time], options[:members])
       end
 
       desc(
         'members [NAME]',
-        'output members belongs to pool'
+        'output members belongs pool'
       )
       def members(name)
         puts Bim::Action::Pool.members(name)
       end
 
       desc(
-        'drop [NAME] [MEMBERS(NodeName:Port)]',
-        'drop node members (members are variable length)'
+        'enable [NAME]',
+        'enable node members'
+      )
+      option :members, required: true, type: :array, desc: 'members expects NodeName:Port format'
+      def enable(name)
+        puts Bim::Action::Pool.enable(name, options[:members])
+      end
+
+      desc(
+        'disable [NAME]',
+        'disable node members'
+      )
+      option :members, required: true, type: :array, desc: 'members expects NodeName:Port format'
+      def disable(name)
+        puts Bim::Action::Pool.disable(name, options[:members])
+      end
+
+      desc(
+        'add [NAME]',
+        'add node members'
       )
-      def drop(name, *members)
-        puts Bim::Action::Pool.drop_members(name, members)
+      option :members, required: true, type: :array, desc: 'members expects NodeName:Port format'
+      def add(name)
+        puts Bim::Action::Pool.add_members(name, options[:members])
       end
 
       desc(
-        'add [NAME] [MEMBERS(NodeName:Port)]',
-        'add node members (members aer variable length)'
+        'drop [NAME]',
+        'drop node members'
       )
-      def add(name, *members)
-        puts Bim::Action::Pool.add_members(name, members)
+      option :members, required: true, type: :array, desc: 'members expects NodeName:Port format'
+      def drop(name)
+        puts Bim::Action::Pool.drop_members(name, options[:members])
       end
     end
   end

data/lib/bim/subcommands/snat.rb

@@ -0,0 +1,62 @@
+module Bim
+  module Subcommands
+    # Snat class defines subcommands
+    class Snat < Thor
+      desc(
+        'ls',
+        'output snat list'
+      )
+      def ls
+        puts Bim::Action::Snat.ls
+      end
+
+      desc(
+        'detail [NAME]',
+        'output SNAT detail configuration'
+      )
+      def detail(name)
+        puts Bim::Action::Snat.detail(name)
+      end
+
+      desc(
+        'create [NAME]',
+        'create SNAT'
+      )
+      option :vlans, type: :array
+      option :translation, required: true
+      option :address_list, required: true, type: :array, desc: 'address_list expects CIDR format(IPADDR/Mask)'
+      def create(name)
+        puts Bim::Action::Snat.create(name, options[:translation], options[:address_list], options[:vlans])
+      end
+
+      desc(
+        'update [NAME]',
+        'update SNAT'
+      )
+      option :vlans, type: :array
+      option :translation, required: true
+      option :address_list, required: true, type: :array, desc: 'address_list expects CIDR format(IPADDR/Mask)'
+      def update(name)
+        puts Bim::Action::Snat.update(name, options[:translation], options[:address_list], options[:vlans])
+      end
+
+      desc(
+        'add_address [NAME]',
+        'add address for SNAT'
+      )
+      option :addresses, required: true, type: :array, desc: 'addresses expects CIDR format(IPADDR/Mask)'
+      def add_address(name)
+        puts Bim::Action::Snat.add_address(name, options[:addresses])
+      end
+
+      desc(
+        'remove_address [NAME]',
+        'remove address for SNAT'
+      )
+      option :addresses, required: true, type: :array, desc: 'addresses expects CIDR format(IPADDR/Mask)'
+      def remove_address(name)
+        puts Bim::Action::Snat.remove_address(name, options[:addresses])
+      end
+    end
+  end
+end

data/lib/bim/subcommands/vs.rb

@@ -19,19 +19,11 @@ module Bim
       end
 
       desc(
-        'update_dnat [NAME] [DNAT_ADDRESS] [PORT]',
-        'update dnat configuration'
+        'update_global_address [NAME] [GLOBAL_ADDRESS] [PORT]',
+        'update global ip address'
       )
-      def update_dnat(name, dnat_addr, port)
-        puts Bim::Action::VS.update_dnat(name, dnat_addr, port)
-      end
-
-      desc(
-        'update_snat [NAME] [SNAT_ADDRESS] [BIT_MASK]',
-        'update snat configuration'
-      )
-      def update_snat(name, snat_addr, bit_mask)
-        puts Bim::Action::VS.update_snat(name, snat_addr, bit_mask)
+      def update_global_address(name, global_addr, port)
+        puts Bim::Action::VS.update_global_address(name, global_addr, port)
       end
 
       desc(

data/lib/bim/version.rb

@@ -1,3 +1,3 @@
 module Bim
-  VERSION = '1.0.0'.freeze
+  VERSION = '1.1.0'.freeze
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: bim
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.1.0
 platform: ruby
 authors:
 - littlekbt
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2017-11-14 00:00:00.000000000 Z
+date: 2017-11-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: thor
@@ -90,6 +90,7 @@ files:
 - lib/bim/action/meta.rb
 - lib/bim/action/node.rb
 - lib/bim/action/pool.rb
+- lib/bim/action/snat.rb
 - lib/bim/action/ssl.rb
 - lib/bim/action/sync.rb
 - lib/bim/action/vs.rb
@@ -99,6 +100,7 @@ files:
 - lib/bim/subcommands/meta.rb
 - lib/bim/subcommands/node.rb
 - lib/bim/subcommands/pool.rb
+- lib/bim/subcommands/snat.rb
 - lib/bim/subcommands/ssl.rb
 - lib/bim/subcommands/sync.rb
 - lib/bim/subcommands/vs.rb