fog--fog/lib/fog/aws/requests/compute/revoke_security_group_ingress.rb

module Fog
  module Compute
    class AWS
      class Real

        require 'fog/aws/parsers/compute/basic'

        # Remove permissions from a security group
        #
        # ==== Parameters
        # * group_name<~String> - Name of group
        # * options<~Hash>:
        #   * 'SourceSecurityGroupName'<~String> - Name of security group to authorize
        #   * 'SourceSecurityGroupOwnerId'<~String> - Name of owner to authorize
        #   or
        #   * 'CidrIp'<~String> - CIDR range
        #   * 'FromPort'<~Integer> - Start of port range (or -1 for ICMP wildcard)
        #   * 'IpProtocol'<~String> - Ip protocol, must be in ['tcp', 'udp', 'icmp']
        #   * 'ToPort'<~Integer> - End of port range (or -1 for ICMP wildcard)
        #   or
        #   * 'IpPermissions'<~Array>:
        #     * permission<~Hash>:
        #       * 'FromPort'<~Integer> - Start of port range (or -1 for ICMP wildcard)
        #       * 'Groups'<~Array>:
        #         * group<~Hash>:
        #           * 'GroupName'<~String> - Name of security group to authorize
        #           * 'UserId'<~String> - Name of owner to authorize
        #       * 'IpProtocol'<~String> - Ip protocol, must be in ['tcp', 'udp', 'icmp']
        #       * 'IpRanges'<~Array>:
        #         * ip_range<~Hash>:
        #           * 'CidrIp'<~String> - CIDR range
        #       * 'ToPort'<~Integer> - End of port range (or -1 for ICMP wildcard)
        #
        # === Returns
        # * response<~Excon::Response>:
        #   * body<~Hash>:
        #     * 'requestId'<~String> - Id of request
        #     * 'return'<~Boolean> - success?
        #
        # {Amazon API Reference}[http://docs.amazonwebservices.com/AWSEC2/latest/APIReference/ApiReference-query-RevokeSecurityGroupIngress.html]
        def revoke_security_group_ingress(group_name, options = {})
          if group_name.is_a?(Hash)
            Fog::Logger.deprecation("Fog::AWS::Compute#revoke_security_group_ingress now requires the 'group_name' parameter. Only specifying an options hash is now deprecated [light_black](#{caller.first})[/]")
            options = group_name
            group_name = options.delete('GroupName')
          end

          if ip_permissions = options.delete('IpPermissions')
            options.merge!(indexed_ip_permissions_params(ip_permissions))
          end

          request({
            'Action'    => 'RevokeSecurityGroupIngress',
            'GroupName' => group_name,
            :idempotent => true,
            :parser     => Fog::Parsers::Compute::AWS::Basic.new
          }.merge!(options))
        end

      end

      class Mock

        def revoke_security_group_ingress(group_name, options = {})
          if group_name.is_a?(Hash)
            Fog::Logger.deprecation("Fog::AWS::Compute#revoke_security_group_ingress now requires the 'group_name' parameter. Only specifying an options hash is now deprecated [light_black](#{caller.first})[/]")
            options = group_name
            group_name = options.delete('GroupName')
          end

          response = Excon::Response.new
          group = self.data[:security_groups][group_name]

          if group
            normalized_permissions = normalize_permissions(options)

            normalized_permissions.each do |permission|
              if matching_permission = find_matching_permission(group, permission)
                matching_permission['ipRanges'] -= permission['ipRanges']
                matching_permission['groups'] -= permission['groups']

                if matching_permission['ipRanges'].empty? && matching_permission['groups'].empty?
                  group['ipPermissions'].delete(matching_permission)
                end
              end
            end

            response.status = 200
            response.body = {
              'requestId' => Fog::AWS::Mock.request_id,
              'return'    => true
            }
            response
          else
            raise Fog::Compute::AWS::NotFound.new("The security group '#{group_name}' does not exist")
          end
        end

      end
    end
  end
end
[ec2] cleaner mocking/dependencies 2010-03-16 18:46:21 -04:00			`module Fog`
[compute] refactor provider/service namespacing 2011-06-16 19:28:54 -04:00			`module Compute`
			`class AWS`
[ec2] cleaner mocking/dependencies 2010-03-16 18:46:21 -04:00			`class Real`
first pass at security group mocks 2009-09-16 23:02:32 -04:00
[compute\|aws] move aws compute to its own shared area (namespacing should probably be corrected) 2011-08-24 21:37:00 -04:00			`require 'fog/aws/parsers/compute/basic'`
[aws\|compute] fixed missing require line for basic parser 2011-02-22 22:05:14 -05:00
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`# Remove permissions from a security group`
			`#`
			`# ==== Parameters`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00			`# * group_name<~String> - Name of group`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`# * options<~Hash>:`
			`# * 'SourceSecurityGroupName'<~String> - Name of security group to authorize`
			`# * 'SourceSecurityGroupOwnerId'<~String> - Name of owner to authorize`
			`# or`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00			`# * 'CidrIp'<~String> - CIDR range`
			`# * 'FromPort'<~Integer> - Start of port range (or -1 for ICMP wildcard)`
			`# * 'IpProtocol'<~String> - Ip protocol, must be in ['tcp', 'udp', 'icmp']`
			`# * 'ToPort'<~Integer> - End of port range (or -1 for ICMP wildcard)`
			`# or`
			`# * 'IpPermissions'<~Array>:`
			`# * permission<~Hash>:`
			`# * 'FromPort'<~Integer> - Start of port range (or -1 for ICMP wildcard)`
			`# * 'Groups'<~Array>:`
			`# * group<~Hash>:`
			`# * 'GroupName'<~String> - Name of security group to authorize`
			`# * 'UserId'<~String> - Name of owner to authorize`
			`# * 'IpProtocol'<~String> - Ip protocol, must be in ['tcp', 'udp', 'icmp']`
			`# * 'IpRanges'<~Array>:`
			`# * ip_range<~Hash>:`
			`# * 'CidrIp'<~String> - CIDR range`
			`# * 'ToPort'<~Integer> - End of port range (or -1 for ICMP wildcard)`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`#`
			`# === Returns`
fix docs to show that Excon::Response is returned 2009-11-02 21:48:49 -05:00			`# * response<~Excon::Response>:`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`# * body<~Hash>:`
			`# * 'requestId'<~String> - Id of request`
			`# * 'return'<~Boolean> - success?`
Add Amazon API reference link to requests' documentation 2011-05-19 12:31:56 -04:00			`#`
			`# {Amazon API Reference}[http://docs.amazonwebservices.com/AWSEC2/latest/APIReference/ApiReference-query-RevokeSecurityGroupIngress.html]`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`def revoke_security_group_ingress(group_name, options = {})`
			`if group_name.is_a?(Hash)`
[core] separate loggers for deprecations/warnings distinctly styles deprecations for clarity gives better flexibility for redirecting logs reduces possibility of missing deprecations because warnings are ignored 2011-10-19 15:49:34 -04:00			`Fog::Logger.deprecation("Fog::AWS::Compute#revoke_security_group_ingress now requires the 'group_name' parameter. Only specifying an options hash is now deprecated [light_black](#{caller.first})[/]")`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`options = group_name`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00			`group_name = options.delete('GroupName')`
			`end`

			`if ip_permissions = options.delete('IpPermissions')`
			`options.merge!(indexed_ip_permissions_params(ip_permissions))`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`end`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`request({`
[ec2] make things that shouldn't cost money idempotent 2010-05-24 17:22:35 -04:00			`'Action' => 'RevokeSecurityGroupIngress',`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`'GroupName' => group_name,`
[ec2] make things that shouldn't cost money idempotent 2010-05-24 17:22:35 -04:00			`:idempotent => true,`
[compute] refactor provider/service namespacing 2011-06-16 19:28:54 -04:00			`:parser => Fog::Parsers::Compute::AWS::Basic.new`
[ec2] simplify request method signature 2010-03-16 01:15:33 -04:00			`}.merge!(options))`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`end`

first pass at security group editing stuff 2009-07-14 18:02:56 -04:00			`end`
first pass at security group mocks 2009-09-16 23:02:32 -04:00
[ec2] cleaner mocking/dependencies 2010-03-16 18:46:21 -04:00			`class Mock`
first pass at security group editing stuff 2009-07-14 18:02:56 -04:00
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`def revoke_security_group_ingress(group_name, options = {})`
			`if group_name.is_a?(Hash)`
[core] separate loggers for deprecations/warnings distinctly styles deprecations for clarity gives better flexibility for redirecting logs reduces possibility of missing deprecations because warnings are ignored 2011-10-19 15:49:34 -04:00			`Fog::Logger.deprecation("Fog::AWS::Compute#revoke_security_group_ingress now requires the 'group_name' parameter. Only specifying an options hash is now deprecated [light_black](#{caller.first})[/]")`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`options = group_name`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00			`group_name = options.delete('GroupName')`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`end`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00
[ec2] fix gaps in mocking revealed by new shindo tests 2010-05-24 20:41:01 -04:00			`response = Excon::Response.new`
[mock] cleanup and reset related fixes 2011-05-19 18:35:33 -04:00			`group = self.data[:security_groups][group_name]`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00
[ec2] fix gaps in mocking revealed by new shindo tests 2010-05-24 20:41:01 -04:00			`if group`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00			`normalized_permissions = normalize_permissions(options)`

			`normalized_permissions.each do \|permission\|`
			`if matching_permission = find_matching_permission(group, permission)`
			`matching_permission['ipRanges'] -= permission['ipRanges']`
			`matching_permission['groups'] -= permission['groups']`

			`if matching_permission['ipRanges'].empty? && matching_permission['groups'].empty?`
			`group['ipPermissions'].delete(matching_permission)`
[compute\|aws] Apparently passing a nil value works against live AWS. Only use SourceSecurityGroupOwnerId in mocks if supplied. 2011-08-23 15:09:55 -04:00			`end`
			`end`
[ec2] fix gaps in mocking revealed by new shindo tests 2010-05-24 20:41:01 -04:00			`end`
[aws\|compute] Update security group operations. Changes and features include: * Bulk operations support via indexed params * Mocking updated for bulk operations * Mocking updated to reflect more real behavior * Many more tests 2011-10-26 10:08:48 -04:00
nicer and more explicit messaging around mocks that are not yet implemented 2010-02-02 01:53:18 -05:00			`response.status = 200`
			`response.body = {`
			`'requestId' => Fog::AWS::Mock.request_id,`
			`'return' => true`
			`}`
[ec2] nicer error messaging, and more accurate errors from mocks 2010-05-26 01:26:20 -04:00			`response`
[ec2] fix gaps in mocking revealed by new shindo tests 2010-05-24 20:41:01 -04:00			`else`
[compute] refactor provider/service namespacing 2011-06-16 19:28:54 -04:00			`raise Fog::Compute::AWS::NotFound.new("The security group '#{group_name}' does not exist")`
nicer and more explicit messaging around mocks that are not yet implemented 2010-02-02 01:53:18 -05:00			`end`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`end`

			`end`
first pass at security group editing stuff 2009-07-14 18:02:56 -04:00			`end`
			`end`
			`end`