2010-03-16 22:46:21 +00:00
|
|
|
module Fog
|
|
|
|
|
module AWS
|
|
|
|
|
module EC2
|
|
|
|
|
class Real
|
2009-09-17 03:02:32 +00:00
|
|
|
|
|
|
|
|
# Remove permissions from a security group
|
|
|
|
|
#
|
|
|
|
|
# ==== Parameters
|
|
|
|
|
# * options<~Hash>:
|
|
|
|
|
# * 'GroupName'<~String> - Name of group
|
|
|
|
|
# * 'SourceSecurityGroupName'<~String> - Name of security group to authorize
|
|
|
|
|
# * 'SourceSecurityGroupOwnerId'<~String> - Name of owner to authorize
|
|
|
|
|
# or
|
|
|
|
|
# * 'CidrIp' - CIDR range
|
|
|
|
|
# * 'FromPort' - Start of port range (or -1 for ICMP wildcard)
|
|
|
|
|
# * 'GroupName' - Name of group to modify
|
|
|
|
|
# * 'IpProtocol' - Ip protocol, must be in ['tcp', 'udp', 'icmp']
|
|
|
|
|
# * 'ToPort' - End of port range (or -1 for ICMP wildcard)
|
|
|
|
|
#
|
|
|
|
|
# === Returns
|
2009-11-03 02:48:49 +00:00
|
|
|
# * response<~Excon::Response>:
|
2009-09-17 03:02:32 +00:00
|
|
|
# * body<~Hash>:
|
|
|
|
|
# * 'requestId'<~String> - Id of request
|
|
|
|
|
# * 'return'<~Boolean> - success?
|
|
|
|
|
def revoke_security_group_ingress(options = {})
|
|
|
|
|
request({
|
2010-05-24 21:22:35 +00:00
|
|
|
'Action' => 'RevokeSecurityGroupIngress',
|
|
|
|
|
:idempotent => true,
|
|
|
|
|
:parser => Fog::Parsers::AWS::EC2::Basic.new
|
2010-03-16 05:15:33 +00:00
|
|
|
}.merge!(options))
|
2009-09-17 03:02:32 +00:00
|
|
|
end
|
|
|
|
|
|
2009-07-14 22:02:56 +00:00
|
|
|
end
|
2009-09-17 03:02:32 +00:00
|
|
|
|
2010-03-16 22:46:21 +00:00
|
|
|
class Mock
|
2009-07-14 22:02:56 +00:00
|
|
|
|
2009-09-17 03:02:32 +00:00
|
|
|
def revoke_security_group_ingress(options = {})
|
2010-05-25 00:41:01 +00:00
|
|
|
response = Excon::Response.new
|
|
|
|
|
group = @data[:security_groups][options['GroupName']]
|
|
|
|
|
if group
|
|
|
|
|
if options['GroupName'] && options['SourceSecurityGroupName'] && options['SourceSecurityGroupOwnerId']
|
|
|
|
|
group['ipPermissions'].delete_if {|permission|
|
|
|
|
|
permission['groups'].first['groupName'] == options['GroupName']
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
ingress = group['ipPermissions'].select {|permission|
|
|
|
|
|
permission['fromPort'] == options['FromPort'] &&
|
|
|
|
|
permission['ipProtocol'] == options['IpProtocol'] &&
|
|
|
|
|
permission['toPort'] == options['ToPort'] &&
|
|
|
|
|
(
|
|
|
|
|
permission['ipRanges'].empty? ||
|
|
|
|
|
(
|
|
|
|
|
permission['ipRanges'].first &&
|
|
|
|
|
permission['ipRanges'].first['cidrIp'] == options['CidrIp']
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
}.first
|
|
|
|
|
group['ipPermissions'].delete(ingress)
|
|
|
|
|
end
|
2010-02-02 06:53:18 +00:00
|
|
|
response.status = 200
|
|
|
|
|
response.body = {
|
|
|
|
|
'requestId' => Fog::AWS::Mock.request_id,
|
|
|
|
|
'return' => true
|
|
|
|
|
}
|
2010-05-25 00:41:01 +00:00
|
|
|
else
|
|
|
|
|
response.status = 400
|
|
|
|
|
raise(Excon::Errors.status_error({:expects => 200}, response))
|
2010-02-02 06:53:18 +00:00
|
|
|
end
|
2010-05-25 00:41:01 +00:00
|
|
|
response
|
2009-09-17 03:02:32 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
end
|
2009-07-14 22:02:56 +00:00
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
