ubicloud/model/firewall.rb

# frozen_string_literal: true

require_relative "../model"

class Firewall < Sequel::Model
  many_to_one :project
  one_to_many :firewall_rules, key: :firewall_id
  many_to_many :private_subnets
  many_to_one :location
  plugin :association_dependencies, firewall_rules: :destroy

  plugin ResourceMethods
  include ObjectTag::Cleanup

  dataset_module Pagination

  def display_location
    location.display_name
  end

  def path
    "/location/#{display_location}/firewall/#{name}"
  end

  def remove_firewall_rule(firewall_rule)
    firewall_rules_dataset.where(id: firewall_rule.id).destroy
    update_private_subnet_firewall_rules
  end

  def insert_firewall_rule(cidr, port_range)
    fwr = add_firewall_rule(cidr:, port_range:)
    update_private_subnet_firewall_rules
    fwr
  end

  def replace_firewall_rules(new_firewall_rules)
    firewall_rules.each(&:destroy)
    new_firewall_rules.each do
      add_firewall_rule(it)
    end

    update_private_subnet_firewall_rules
  end

  def before_destroy
    update_private_subnet_firewall_rules
    remove_all_private_subnets
    super
  end

  def associate_with_private_subnet(private_subnet, apply_firewalls: true)
    add_private_subnet(private_subnet)
    private_subnet.incr_update_firewall_rules if apply_firewalls
  end

  def disassociate_from_private_subnet(private_subnet, apply_firewalls: true)
    remove_private_subnet(private_subnet)
    private_subnet.incr_update_firewall_rules if apply_firewalls
  end

  private

  def update_private_subnet_firewall_rules
    private_subnets.each(&:incr_update_firewall_rules)
  end
end

# Table: firewall
# Columns:
#  id          | uuid                        | PRIMARY KEY
#  name        | text                        | NOT NULL DEFAULT 'Default'::text
#  description | text                        | NOT NULL DEFAULT 'Default firewall'::text
#  created_at  | timestamp without time zone | NOT NULL DEFAULT CURRENT_TIMESTAMP
#  project_id  | uuid                        | NOT NULL
#  location_id | uuid                        | NOT NULL
# Indexes:
#  firewall_pkey                             | PRIMARY KEY btree (id)
#  firewall_project_id_location_id_name_uidx | UNIQUE btree (project_id, location_id, name)
# Foreign key constraints:
#  firewall_location_id_fkey | (location_id) REFERENCES location(id)
#  firewall_project_id_fkey  | (project_id) REFERENCES project(id)
# Referenced By:
#  firewall_rule             | firewall_rule_firewall_id_fkey             | (firewall_id) REFERENCES firewall(id)
#  firewalls_private_subnets | firewalls_private_subnets_firewall_id_fkey | (firewall_id) REFERENCES firewall(id)