Add neutron security group plugin
Add neutron security group support; this didn't make it into mitaka for scheduling reasons. Neutron provides notifications for security groups though it would be good to get created_
It's difficult to link security group names to ports since there's no hierarchical relationship. To denormalize or not to denormalize, that is the question.
Blueprint information
- Status:
- Complete
- Approver:
- Travis Tripp
- Priority:
- High
- Drafter:
- Steve McLellan
- Direction:
- Approved
- Assignee:
- Rick Aulino
- Definition:
- Approved
- Series goal:
- Accepted for newton
- Implementation:
- Implemented
- Milestone target:
- newton-2
- Started by
- Travis Tripp
- Completed by
- Travis Tripp
Related branches
Related bugs
Sprints
Whiteboard
Notifications are reasonably complete but don't include dates. Neutron treats security group rules as an entity apart from groups; it would make things simpler for SL to do that but is a bit weird logically.
API (after creating group and adding a rule):
{'security_groups': [{u'description': u'A test security group',
u'id': u'223c7074-
u'name': u'test-group',
u'security_
u'direction': u'ingress',
u'ethertype': u'IPv4',
u'id': u'8452586b-
u'
u'
u'protocol': u'tcp',
u'
u'
u'
u'tenant_id': u'3307049f95b74
{u'
u'direction': u'egress',
u'ethertype': u'IPv4',
u'id': u'c36445af-
u'
u'
u'protocol': None,
u'
u'
u'
u'tenant_id': u'3307049f95b74
{u'
u'direction': u'egress',
u'ethertype': u'IPv6',
u'id': u'e230cd58-
u'
u'
u'protocol': None,
u'
u'
u'
u'tenant_id': u'3307049f95b74
u'tenant_id': u'3307049f95b74
}]}
CREATE GROUP
{
"event_type": "security_
"payload": {
"security_
"tenant_id": "3307049f95b740
"name": "test-group",
"
"
{
"id": "c36445af-
},
{
"id": "e230cd58-
}
],
"id": "223c7074-
}
},
ADD RULE
{
"event_type": "security_
"payload": {
"security_
"
"direction": "ingress",
"protocol": "tcp",
"
"ethertype": "IPv4",
"
"
"
"
"tenant_id": "3307049f95b740
"id": "8452586b-
}
},
DELETE RULE (note no sec group id)
{
"event_type": "security_
"payload": {
"security_
},
DELETE GROUP
{
"event_type": "security_
"payload": {
"security_
},
https:/
Gerrit topic: https:/
Addressed by: https:/
Add Neutron security group plugin