solo-lib 0.2.1

Library for the Solo tool, an app for cloud safety.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96

use std::collections::HashSet;

use anyhow::Result;
use http::Method;
use reqwest::Client;
use serde::{Deserialize, Serialize};

use super::{CommonResponse, parse_response};
use crate::sdk::rainyun::{BasicRequest, request_builder};

#[derive(Deserialize, Debug, Clone)]
pub struct DescribeFirewallRulesResponse {
    #[serde(rename = "Records")]
    pub records: Vec<Record>,
}

#[derive(Serialize, Deserialize, Debug, Clone)]
pub struct Record {
    #[serde(rename = "ID")]
    pub id: u32,
    pub is_enable: bool,
    pub pos: u32,
    pub source_address: String,
    pub dest_port: String,
    pub protocol: String,
    pub action: String,
    pub description: String,
}

pub async fn list_rules<'a>(
    client: &Client,
    instance_id: &'a str,
    token: &'a str,
) -> Result<CommonResponse<DescribeFirewallRulesResponse>> {
    let basic_request = BasicRequest {
        payload: String::new(),
        method: Method::GET,
        query: Some("?options=null".to_string()),

        instance_id,
        token,
    };
    let request = request_builder(client, basic_request)?;
    let result = client.execute(request).await?;
    let result = result.text().await?;

    parse_response::<CommonResponse<DescribeFirewallRulesResponse>>(&result)
}

pub fn compare_rules(
    records: &[Record],
    current_ipv4: &str,
    matched_descriptions: &[String],
) -> (Vec<Record>, bool) {
    let matched_set: HashSet<_> =
        matched_descriptions.iter().map(|s| s.as_str()).collect();

    let mut require_update = false;
    let mut recordss_to_be_modified: Vec<Record> = Vec::new();

    records.iter().for_each(|record| {
        if matched_set.contains(record.description.as_str())
            && record.source_address != current_ipv4
        {
            let mut record = record.clone();
            record.source_address = current_ipv4.to_string();
            recordss_to_be_modified.push(record);
            require_update = true;
        }
    });

    (recordss_to_be_modified, require_update)
}

pub async fn modify_rules<'a>(
    client: &Client,
    instance_id: &'a str,
    token: &'a str,
    firewall_rules: &[Record],
) -> Result<()> {
    for rule in firewall_rules {
        let payload = serde_json::to_string(rule)?;

        let basic_request = BasicRequest {
            payload,
            method: Method::POST,
            query: None,

            instance_id,
            token,
        };
        let request = request_builder(client, basic_request)?;
        client.execute(request).await?;
    }
    Ok(())
}