fog--fog/lib/fog/aws/requests/compute/revoke_security_group_ingress.rb

module Fog
  module Compute
    class AWS
      class Real

        require 'fog/aws/parsers/compute/basic'

        # Remove permissions from a security group
        #
        # ==== Parameters
        # * 'GroupName'<~String> - Name of group
        # * options<~Hash>:
        #   * 'SourceSecurityGroupName'<~String> - Name of security group to authorize
        #   * 'SourceSecurityGroupOwnerId'<~String> - Name of owner to authorize
        #   or
        #   * 'CidrIp' - CIDR range
        #   * 'FromPort' - Start of port range (or -1 for ICMP wildcard)
        #   * 'IpProtocol' - Ip protocol, must be in ['tcp', 'udp', 'icmp']
        #   * 'ToPort' - End of port range (or -1 for ICMP wildcard)
        #
        # === Returns
        # * response<~Excon::Response>:
        #   * body<~Hash>:
        #     * 'requestId'<~String> - Id of request
        #     * 'return'<~Boolean> - success?
        #
        # {Amazon API Reference}[http://docs.amazonwebservices.com/AWSEC2/latest/APIReference/ApiReference-query-RevokeSecurityGroupIngress.html]
        def revoke_security_group_ingress(group_name, options = {})
          if group_name.is_a?(Hash)
            Fog::Logger.warning("Fog::AWS::Compute#revoke_security_group_ingress now requires the 'group_name' parameter. Only specifying an options hash is now deprecated [light_black](#{caller.first})[/]")
            options = group_name
            group_name = options['GroupName']
          end
          request({
            'Action'    => 'RevokeSecurityGroupIngress',
            'GroupName' => group_name,
            :idempotent => true,
            :parser     => Fog::Parsers::Compute::AWS::Basic.new
          }.merge!(options))
        end

      end

      class Mock

        def revoke_security_group_ingress(group_name, options = {})
          if group_name.is_a?(Hash)
            Fog::Logger.warning("Fog::AWS::Compute#revoke_security_group_ingress now requires the 'group_name' parameter. Only specifying an options hash is now deprecated [light_black](#{caller.first})[/]")
            options = group_name
            group_name = options['GroupName']
          end
          response = Excon::Response.new
          group = self.data[:security_groups][group_name]
          if group
            if source_group_name = options['SourceSecurityGroupName']
              group['ipPermissions'].delete_if do |permission|
                if source_owner_id = options['SourceSecurityGroupOwnerId']
                  permission['groups'].first['groupName'] == source_group_name && permission['groups'].first['userId'] == source_owner_id
                else
                  permission['groups'].first['groupName'] == source_group_name
                end
              end
            else
              ingress = group['ipPermissions'].select {|permission|
                permission['fromPort']    == options['FromPort'] &&
                permission['ipProtocol']  == options['IpProtocol'] &&
                permission['toPort']      == options['ToPort'] &&
                (
                  permission['ipRanges'].empty? ||
                  (
                    permission['ipRanges'].first &&
                    permission['ipRanges'].first['cidrIp'] == options['CidrIp']
                  )
                )
              }.first
              group['ipPermissions'].delete(ingress)
            end
            response.status = 200
            response.body = {
              'requestId' => Fog::AWS::Mock.request_id,
              'return'    => true
            }
            response
          else
            raise Fog::Compute::AWS::NotFound.new("The security group '#{group_name}' does not exist")
          end
        end

      end
    end
  end
end
[ec2] cleaner mocking/dependencies 2010-03-16 18:46:21 -04:00			`module Fog`
[compute] refactor provider/service namespacing 2011-06-16 19:28:54 -04:00			`module Compute`
			`class AWS`
[ec2] cleaner mocking/dependencies 2010-03-16 18:46:21 -04:00			`class Real`
first pass at security group mocks 2009-09-16 23:02:32 -04:00
[compute\|aws] move aws compute to its own shared area (namespacing should probably be corrected) 2011-08-24 21:37:00 -04:00			`require 'fog/aws/parsers/compute/basic'`
[aws\|compute] fixed missing require line for basic parser 2011-02-22 22:05:14 -05:00
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`# Remove permissions from a security group`
			`#`
			`# ==== Parameters`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`# * 'GroupName'<~String> - Name of group`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`# * options<~Hash>:`
			`# * 'SourceSecurityGroupName'<~String> - Name of security group to authorize`
			`# * 'SourceSecurityGroupOwnerId'<~String> - Name of owner to authorize`
			`# or`
			`# * 'CidrIp' - CIDR range`
			`# * 'FromPort' - Start of port range (or -1 for ICMP wildcard)`
			`# * 'IpProtocol' - Ip protocol, must be in ['tcp', 'udp', 'icmp']`
			`# * 'ToPort' - End of port range (or -1 for ICMP wildcard)`
			`#`
			`# === Returns`
fix docs to show that Excon::Response is returned 2009-11-02 21:48:49 -05:00			`# * response<~Excon::Response>:`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`# * body<~Hash>:`
			`# * 'requestId'<~String> - Id of request`
			`# * 'return'<~Boolean> - success?`
Add Amazon API reference link to requests' documentation 2011-05-19 12:31:56 -04:00			`#`
			`# {Amazon API Reference}[http://docs.amazonwebservices.com/AWSEC2/latest/APIReference/ApiReference-query-RevokeSecurityGroupIngress.html]`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`def revoke_security_group_ingress(group_name, options = {})`
			`if group_name.is_a?(Hash)`
[core] use logger throughout for warnings 2011-09-02 13:30:10 -04:00			`Fog::Logger.warning("Fog::AWS::Compute#revoke_security_group_ingress now requires the 'group_name' parameter. Only specifying an options hash is now deprecated [light_black](#{caller.first})[/]")`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`options = group_name`
			`group_name = options['GroupName']`
			`end`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`request({`
[ec2] make things that shouldn't cost money idempotent 2010-05-24 17:22:35 -04:00			`'Action' => 'RevokeSecurityGroupIngress',`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`'GroupName' => group_name,`
[ec2] make things that shouldn't cost money idempotent 2010-05-24 17:22:35 -04:00			`:idempotent => true,`
[compute] refactor provider/service namespacing 2011-06-16 19:28:54 -04:00			`:parser => Fog::Parsers::Compute::AWS::Basic.new`
[ec2] simplify request method signature 2010-03-16 01:15:33 -04:00			`}.merge!(options))`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`end`

first pass at security group editing stuff 2009-07-14 18:02:56 -04:00			`end`
first pass at security group mocks 2009-09-16 23:02:32 -04:00
[ec2] cleaner mocking/dependencies 2010-03-16 18:46:21 -04:00			`class Mock`
first pass at security group editing stuff 2009-07-14 18:02:56 -04:00
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`def revoke_security_group_ingress(group_name, options = {})`
			`if group_name.is_a?(Hash)`
[core] use logger throughout for warnings 2011-09-02 13:30:10 -04:00			`Fog::Logger.warning("Fog::AWS::Compute#revoke_security_group_ingress now requires the 'group_name' parameter. Only specifying an options hash is now deprecated [light_black](#{caller.first})[/]")`
[aws\|compute] fix revoke_security_group method signature 2011-03-03 18:44:49 -05:00			`options = group_name`
			`group_name = options['GroupName']`
			`end`
[ec2] fix gaps in mocking revealed by new shindo tests 2010-05-24 20:41:01 -04:00			`response = Excon::Response.new`
[mock] cleanup and reset related fixes 2011-05-19 18:35:33 -04:00			`group = self.data[:security_groups][group_name]`
[ec2] fix gaps in mocking revealed by new shindo tests 2010-05-24 20:41:01 -04:00			`if group`
[compute\|aws] Apparently passing a nil value works against live AWS. Only use SourceSecurityGroupOwnerId in mocks if supplied. 2011-08-23 15:09:55 -04:00			`if source_group_name = options['SourceSecurityGroupName']`
			`group['ipPermissions'].delete_if do \|permission\|`
			`if source_owner_id = options['SourceSecurityGroupOwnerId']`
			`permission['groups'].first['groupName'] == source_group_name && permission['groups'].first['userId'] == source_owner_id`
			`else`
			`permission['groups'].first['groupName'] == source_group_name`
			`end`
			`end`
[ec2] fix gaps in mocking revealed by new shindo tests 2010-05-24 20:41:01 -04:00			`else`
			`ingress = group['ipPermissions'].select {\|permission\|`
			`permission['fromPort'] == options['FromPort'] &&`
			`permission['ipProtocol'] == options['IpProtocol'] &&`
			`permission['toPort'] == options['ToPort'] &&`
			`(`
			`permission['ipRanges'].empty? \|\|`
			`(`
			`permission['ipRanges'].first &&`
			`permission['ipRanges'].first['cidrIp'] == options['CidrIp']`
			`)`
			`)`
			`}.first`
			`group['ipPermissions'].delete(ingress)`
			`end`
nicer and more explicit messaging around mocks that are not yet implemented 2010-02-02 01:53:18 -05:00			`response.status = 200`
			`response.body = {`
			`'requestId' => Fog::AWS::Mock.request_id,`
			`'return' => true`
			`}`
[ec2] nicer error messaging, and more accurate errors from mocks 2010-05-26 01:26:20 -04:00			`response`
[ec2] fix gaps in mocking revealed by new shindo tests 2010-05-24 20:41:01 -04:00			`else`
[compute] refactor provider/service namespacing 2011-06-16 19:28:54 -04:00			`raise Fog::Compute::AWS::NotFound.new("The security group '#{group_name}' does not exist")`
nicer and more explicit messaging around mocks that are not yet implemented 2010-02-02 01:53:18 -05:00			`end`
first pass at security group mocks 2009-09-16 23:02:32 -04:00			`end`

			`end`
first pass at security group editing stuff 2009-07-14 18:02:56 -04:00			`end`
			`end`
			`end`