Merge branch 'softlayer:master' into master

ko101 · web-flow · commit f4cc9fa2eb01 · 2022-06-01T00:03:25.000+05:30
diff --git a/README.rst b/README.rst
@@ -153,11 +153,16 @@ If you are using the library directly in python, you can do something like this.
 
 System Requirements
 -------------------
-* Python 3.5, 3.6, 3.7, 3.8, or 3.9.
+* Python 3.8, 3.9, or 3.10.
 * A valid SoftLayer API username and key.
 * A connection to SoftLayer's private network is required to use
   our private network API endpoints.
 
+Python 3.6 Support
+------------------
+As of version 6.0.0 SoftLayer-Python will no longer support python3.6, which is `End of Life as of 2022 <https://endoflife.date/python>`_.
+If you cannot install python 3.8+ for some reason, you will need to use a version of softlayer-python <= 6.0.0
+
 Python 2.7 Support
 ------------------
 As of version 5.8.0 SoftLayer-Python will no longer support python2.7, which is `End Of Life as of 2020 <https://www.python.org/dev/peps/pep-0373/>`_ .
@@ -167,12 +172,15 @@ If you cannot install python 3.6+ for some reason, you will need to use a versio
 
 Python Packages
 ---------------
-* prettytable >= 2.0.0
-* click >= 7
+* prettytable >= 2.5.0
+* click >= 8.0.4
 * requests >= 2.20.0
 * prompt_toolkit >= 2
 * pygments >= 2.0.0
 * urllib3 >= 1.24
+* rich == 12.3.0
+
+*NOTE* If `ptable` (not prettytable) is installed, this will cause issues rendering tables.
 
 Copyright
 ---------
diff --git a/SoftLayer/CLI/firewall/detail.py b/SoftLayer/CLI/firewall/detail.py
@@ -12,31 +12,77 @@
 
 @click.command(cls=SoftLayer.CLI.command.SLCommand, )
 @click.argument('identifier')
+@click.option('--credentials', type=click.BOOL,
+              help="Display FortiGate username and FortiGate password to multi vlans.")
 @environment.pass_env
-def cli(env, identifier):
-    """Detail firewall."""
+def cli(env, identifier, credentials):
+    """Detail firewall.
+
+    EXAMPLES:
+
+        slcli firewall detail vs:12345
+
+        slcli firewall detail --credentials true multiVlan:456789
+    """
 
     mgr = SoftLayer.FirewallManager(env.client)
 
     firewall_type, firewall_id = firewall.parse_id(identifier)
-    _firewall = mgr.get_instance(firewall_id)
 
-    table = formatting.KeyValueTable(['name', 'value'])
-    table.align['name'] = 'r'
-    table.align['value'] = 'l'
+    if firewall_type in ('vs', 'server', 'vlan', 'multiVlan'):
+
+        if firewall_type == 'vlan':
+            _firewall = mgr.get_instance(firewall_id)
+
+            table = formatting.KeyValueTable(['name', 'value'])
+            table.align['name'] = 'r'
+            table.align['value'] = 'l'
+
+            table.add_row(['id', _firewall.get('id')])
+            table.add_row(['primaryIpAddress', _firewall.get('primaryIpAddress')])
+            table.add_row(['datacenter', utils.lookup(_firewall, 'datacenter', 'longName')])
+            table.add_row(['networkVlan', utils.lookup(_firewall, 'networkVlan', 'name')])
+            table.add_row(['networkVlaniD', utils.lookup(_firewall, 'networkVlan', 'id')])
+
+            rules = mgr.get_dedicated_fwl_rules(firewall_id)
+            table.add_row(['rules', get_rules_table(rules)])
+
+        if firewall_type == 'multiVlan':
+            _firewall = mgr.get_instance(firewall_id)
+
+            table = formatting.KeyValueTable(['name', 'value'])
+            table.align['name'] = 'r'
+            table.align['value'] = 'l'
+
+            table.add_row(['name', utils.lookup(_firewall, 'networkGateway', 'name')])
+            table.add_row(['datacenter', utils.lookup(_firewall, 'datacenter', 'longName')])
+            table.add_row(['public ip', utils.lookup(_firewall, 'networkGateway', 'publicIpAddress', 'ipAddress')])
+            table.add_row(['private ip', utils.lookup(_firewall, 'networkGateway', 'privateIpAddress', 'ipAddress')])
+            table.add_row(['public  ipv6', utils.lookup(_firewall, 'networkGateway', 'publicIpv6Address', 'ipAddress')])
+            table.add_row(['public vlan', utils.lookup(_firewall, 'networkGateway', 'publicVlan', 'vlanNumber')])
+            table.add_row(['private vlan', utils.lookup(_firewall, 'networkGateway', 'privateVlan', 'vlanNumber')])
+            table.add_row(['type', _firewall.get('firewallType')])
+
+            if credentials:
+                table.add_row(['fortiGate username', utils.lookup(_firewall, 'managementCredentials', 'username')])
+                table.add_row(['fortiGate password', utils.lookup(_firewall, 'managementCredentials', 'password')])
+
+            rules = mgr.get_dedicated_fwl_rules(firewall_id)
+            if len(rules) != 0:
+                table.add_row(['rules', get_rules_table(rules)])
+            else:
+                table.add_row(['rules', '-'])
+
+        if firewall_type == 'vs' or firewall_type == 'server':
+            rules = mgr.get_standard_fwl_rules(firewall_id)
+            table = get_rules_table(rules)
 
-    table.add_row(['id', _firewall.get('id')])
-    table.add_row(['primaryIpAddress', _firewall.get('primaryIpAddress')])
-    table.add_row(['datacenter', utils.lookup(_firewall, 'datacenter', 'longName')])
-    table.add_row(['networkVlan', utils.lookup(_firewall, 'networkVlan', 'name')])
-    table.add_row(['networkVlaniD', utils.lookup(_firewall, 'networkVlan', 'id')])
+        env.fout(table)
 
-    if firewall_type == 'vlan':
-        rules = mgr.get_dedicated_fwl_rules(firewall_id)
     else:
-        rules = mgr.get_standard_fwl_rules(firewall_id)
-    table.add_row(['rules', get_rules_table(rules)])
-    env.fout(table)
+        click.secho('Invalid firewall type %s: firewall type should be either vlan, multiVlan, vs or server.'
+                    % firewall_type, fg='red')
+        return
 
 
 def get_rules_table(rules):
diff --git a/SoftLayer/CLI/firewall/list.py b/SoftLayer/CLI/firewall/list.py
@@ -18,7 +18,7 @@ def cli(env):
     table = formatting.Table(['firewall id',
                               'type',
                               'features',
-                              'server/vlan id'])
+                              'server/vlan id'], title='Single Server Firewalls')
     fwvlans = mgr.get_firewalls()
     dedicated_firewalls = [firewall for firewall in fwvlans
                            if firewall['dedicatedFirewallFlag']]
@@ -70,7 +70,27 @@ def cli(env):
                              'hardwareId')
             ])
 
+    table_gatewalls = formatting.Table(['Id',
+                                        'firewall',
+                                        'type',
+                                        'Hostname',
+                                        'Location',
+                                        'Public Ip',
+                                        'Private Ip',
+                                        'Associated vlan',
+                                        'status'], title='Multi Vlan Firewall')
+    fw_gatewwalls = mgr.get_firewalls_gatewalls()
+
+    for gatewalls in fw_gatewwalls:
+        table_gatewalls.add_row([gatewalls['networkFirewall']['id'], gatewalls.get('name'),
+                                 gatewalls['networkFirewall']['firewallType'],
+                                 gatewalls['members'][0]['hardware']['hostname'],
+                                 gatewalls['networkFirewall']['datacenter']['name'],
+                                 gatewalls['publicIpAddress']['ipAddress'],
+                                 gatewalls['privateIpAddress']['ipAddress'],
+                                 len(gatewalls['insideVlans']), gatewalls['status']['keyName']])
     env.fout(table)
+    env.fout(table_gatewalls)
 
 
 def has_firewall_component(server):
diff --git a/SoftLayer/fixtures/SoftLayer_Account.py b/SoftLayer/fixtures/SoftLayer_Account.py
@@ -1228,3 +1228,41 @@
     'projectedPublicBandwidthUsage': 9.88,
     'totalBandwidthAllocated': 3361
 }]
+
+getNetworkGateways = [{
+    'id': 615448,
+    'name': 'testFirewall-cgallo',
+    'networkSpace': 'BOTH',
+    'insideVlans': [],
+    'members': [
+        {
+            'id': 687820,
+            'hardware': {
+                'hostname': 'dft03.pod03.dal13'
+            }
+        }
+    ],
+    'networkFirewall': {
+        'id': 17438,
+        'datacenter': {
+            'name': 'dal13'
+        },
+        'firewallType': 'fortigate-security-appliance-10gb',
+        'rules': []
+    },
+    'privateIpAddress': {
+        'ipAddress': '10.37.115.70'
+    },
+    'publicIpAddress': {
+        'ipAddress': '67.228.206.245'
+    },
+    'publicVlan': {
+        'id': 3228726,
+        'primaryRouter': {
+            'hostname': 'fcr03a.dal13'
+        }
+    },
+    'status': {
+        'keyName': 'ACTIVE'
+    }
+}]
diff --git a/SoftLayer/fixtures/SoftLayer_Network_Vlan_Firewall.py b/SoftLayer/fixtures/SoftLayer_Network_Vlan_Firewall.py
@@ -49,6 +49,133 @@
             }
         ]
     },
+    "firewallType": "fortigate-security-appliance-10gb",
+    "managementCredentials": {
+        "createDate": "2022-05-17T13:59:17-06:00",
+        "id": 74604882,
+        "modifyDate": "2022-05-17T13:59:17-06:00",
+        "password": "test1234",
+        "port": 23,
+        "softwareId": 67804284,
+        "username": "myusername"
+    },
+    "networkGateway": {
+        "accountId": 307608,
+        "groupNumber": 1,
+        "id": 615448,
+        "name": "testFirewall",
+        "networkSpace": "BOTH",
+        "privateIpAddressId": 188996652,
+        "privateVlanId": 3228724,
+        "publicIpAddressId": 188996794,
+        "publicIpv6AddressId": 188996808,
+        "publicVlanId": 3228726,
+        "statusId": 1,
+        "insideVlans": [],
+        "members": [
+            {
+                "hardwareId": 3222842,
+                "id": 687820,
+                "networkGatewayId": 615448,
+                "priority": 254,
+                "networkGateway": None
+            }
+        ],
+        "privateIpAddress": {
+            "id": 188996652,
+            "ipAddress": "10.37.115.70",
+            "isBroadcast": False,
+            "isGateway": False,
+            "isNetwork": False,
+            "isReserved": True,
+            "subnetId": 2552734,
+            "subnet": {
+                "broadcastAddress": "10.37.115.127",
+                "cidr": 26,
+                "gateway": "10.37.115.65",
+                "id": 2552734,
+                "isCustomerOwned": False,
+                "isCustomerRoutable": False,
+                "modifyDate": "2022-05-17T13:59:16-06:00",
+                "netmask": "255.255.255.192",
+                "networkIdentifier": "10.37.115.64",
+                "networkVlanId": 3228724,
+                "sortOrder": "1",
+                "subnetType": "ADDITIONAL_PRIMARY",
+                "totalIpAddresses": "64",
+                "usableIpAddressCount": "61",
+                "version": 4
+            }
+        },
+        "privateVlan": {
+            "accountId": 307608,
+            "fullyQualifiedName": "dal13.bcr03.1330",
+            "id": 3228724,
+            "modifyDate": "2022-05-17T14:01:14-06:00",
+            "primarySubnetId": 2625456,
+            "vlanNumber": 1330
+        },
+        "publicIpAddress": {
+            "id": 188996794,
+            "ipAddress": "67.228.206.245",
+            "isBroadcast": False,
+            "isGateway": False,
+            "isNetwork": False,
+            "isReserved": True,
+            "subnetId": 66444,
+            "subnet": {
+                "broadcastAddress": "67.228.206.247",
+                "cidr": 29,
+                "gateway": "67.228.206.241",
+                "id": 66444,
+                "isCustomerOwned": False,
+                "isCustomerRoutable": False,
+                "modifyDate": "2022-05-17T13:59:16-06:00",
+                "netmask": "255.255.255.248",
+                "networkIdentifier": "67.228.206.240",
+                "networkVlanId": 3228726,
+                "sortOrder": "1",
+                "subnetType": "ADDITIONAL_PRIMARY",
+                "totalIpAddresses": "8",
+                "usableIpAddressCount": "5",
+                "version": 4
+            }
+        },
+        "publicIpv6Address": {
+            "id": 188996808,
+            "ipAddress": "2607:f0d0:2703:0039:0000:0000:0000:0004",
+            "isBroadcast": False,
+            "isGateway": False,
+            "isNetwork": False,
+            "isReserved": True,
+            "subnetId": 2547678,
+            "subnet": {
+                "broadcastAddress": "",
+                "cidr": 64,
+                "gateway": "2607:f0d0:2703:0039:0000:0000:0000:0001",
+                "id": 2547678,
+                "isCustomerOwned": False,
+                "isCustomerRoutable": False,
+                "modifyDate": "2022-05-17T13:59:16-06:00",
+                "netmask": "ffff:ffff:ffff:ffff:0000:0000:0000:0000",
+                "networkIdentifier": "2607:f0d0:2703:0039:0000:0000:0000:0000",
+                "networkVlanId": 3228726,
+                "sortOrder": "4",
+                "subnetType": "PRIMARY_6",
+                "totalIpAddresses": "18446744073709551616",
+                "usableIpAddressCount": "18446744073709551614",
+                "version": 6
+            }
+        },
+        "publicVlan": {
+            "accountId": 307608,
+            "fullyQualifiedName": "dal13.fcr03.1255",
+            "id": 3228726,
+            "modifyDate": "2022-05-17T14:00:42-06:00",
+            "primarySubnetId": 2623338,
+            "vlanNumber": 1255
+        }
+    },
     "rules": [
         {'destinationIpAddress': 'any on server',
          'protocol': 'tcp',
diff --git a/SoftLayer/managers/firewall.py b/SoftLayer/managers/firewall.py
@@ -297,8 +297,25 @@ def get_instance(self, firewall_id, mask=None):
         :param integer firewall_id: the instance ID of the standard firewall
         """
         if not mask:
-            mask = 'mask[datacenter,networkVlan]'
+            mask = 'mask[firewallType,networkGateway[insideVlans,members,privateIpAddress,publicIpAddress,' \
+                   'publicIpv6Address,privateVlan,publicVlan],datacenter,managementCredentials,networkVlan]'
 
         svc = self.client['Network_Vlan_Firewall']
 
         return svc.getObject(id=firewall_id, mask=mask)
+
+    def get_firewalls_gatewalls(self):
+        """Returns a list of all gateway firewalls (gatewalls) on the account.
+
+        returns: A list of gateway firewalls (gatewalls) on the current account.
+        """
+        mask = 'mask[id,networkSpace,name,' \
+               'networkFirewall[id,firewallType,datacenter[name]],' \
+               'status[keyName],' \
+               'insideVlans[id],' \
+               'privateIpAddress[ipAddress],' \
+               'publicVlan[id,primaryRouter[hostname]],' \
+               'publicIpAddress[ipAddress],members[id,hardware[hostname]]]'
+        _filter = {"networkGateways": {"networkFirewall": {"operation": "not null"}}}
+
+        return self.account.getNetworkGateways(mask=mask, filter=_filter)
diff --git a/tests/CLI/modules/firewall_tests.py b/tests/CLI/modules/firewall_tests.py
diff --git a/tests/managers/firewall_tests.py b/tests/managers/firewall_tests.py
