2017-11-07 11:08:23 -05:00
|
|
|
from django.conf import settings
|
2019-04-19 16:58:39 -04:00
|
|
|
from django.db.models import Count
|
2017-11-07 11:08:23 -05:00
|
|
|
from django.shortcuts import get_object_or_404
|
2019-12-13 11:52:59 -08:00
|
|
|
from django_pglocks import advisory_lock
|
2017-06-30 16:51:31 -04:00
|
|
|
from rest_framework import status
|
2018-06-29 11:48:21 -04:00
|
|
|
from rest_framework.decorators import action
|
2017-06-30 16:51:31 -04:00
|
|
|
from rest_framework.exceptions import PermissionDenied
|
2017-06-28 16:23:17 -04:00
|
|
|
from rest_framework.response import Response
|
2016-03-01 11:23:03 -05:00
|
|
|
|
2017-01-24 17:12:16 -05:00
|
|
|
from extras.api.views import CustomFieldModelViewSet
|
2017-11-07 11:08:23 -05:00
|
|
|
from ipam import filters
|
|
|
|
|
from ipam.models import Aggregate, IPAddress, Prefix, RIR, Role, Service, VLAN, VLANGroup, VRF
|
2017-11-07 15:36:10 -05:00
|
|
|
from utilities.api import FieldChoicesViewSet, ModelViewSet
|
2019-12-13 11:52:59 -08:00
|
|
|
from utilities.constants import ADVISORY_LOCK_KEYS
|
2019-04-19 16:09:22 -04:00
|
|
|
from utilities.utils import get_subquery
|
2016-05-18 16:20:30 -04:00
|
|
|
from . import serializers
|
2016-03-01 11:23:03 -05:00
|
|
|
|
|
|
|
|
|
2017-10-10 16:41:35 -04:00
|
|
|
#
|
|
|
|
|
# Field choices
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
class IPAMFieldChoicesViewSet(FieldChoicesViewSet):
|
|
|
|
|
fields = (
|
2020-01-15 09:59:44 -05:00
|
|
|
(serializers.AggregateSerializer, ['family']),
|
|
|
|
|
(serializers.PrefixSerializer, ['family', 'status']),
|
|
|
|
|
(serializers.IPAddressSerializer, ['family', 'status', 'role']),
|
|
|
|
|
(serializers.VLANSerializer, ['status']),
|
|
|
|
|
(serializers.ServiceSerializer, ['protocol']),
|
2017-10-10 16:41:35 -04:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
2016-07-15 13:26:54 -04:00
|
|
|
#
|
|
|
|
|
# VRFs
|
|
|
|
|
#
|
|
|
|
|
|
2017-11-07 15:36:10 -05:00
|
|
|
class VRFViewSet(CustomFieldModelViewSet):
|
2019-08-19 01:53:39 -04:00
|
|
|
queryset = VRF.objects.prefetch_related('tenant').prefetch_related('tags').annotate(
|
2019-04-19 16:50:42 -04:00
|
|
|
ipaddress_count=get_subquery(IPAddress, 'vrf'),
|
|
|
|
|
prefix_count=get_subquery(Prefix, 'vrf')
|
2019-04-12 17:07:56 -04:00
|
|
|
)
|
2016-05-18 16:20:30 -04:00
|
|
|
serializer_class = serializers.VRFSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.VRFFilterSet
|
2016-03-01 11:23:03 -05:00
|
|
|
|
|
|
|
|
|
2016-07-15 13:26:54 -04:00
|
|
|
#
|
|
|
|
|
# RIRs
|
|
|
|
|
#
|
|
|
|
|
|
2017-01-24 17:12:16 -05:00
|
|
|
class RIRViewSet(ModelViewSet):
|
2019-04-12 17:07:56 -04:00
|
|
|
queryset = RIR.objects.annotate(
|
|
|
|
|
aggregate_count=Count('aggregates')
|
|
|
|
|
)
|
2016-05-18 16:20:30 -04:00
|
|
|
serializer_class = serializers.RIRSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.RIRFilterSet
|
2016-03-01 11:23:03 -05:00
|
|
|
|
|
|
|
|
|
2016-07-15 13:26:54 -04:00
|
|
|
#
|
|
|
|
|
# Aggregates
|
|
|
|
|
#
|
|
|
|
|
|
2017-11-07 15:36:10 -05:00
|
|
|
class AggregateViewSet(CustomFieldModelViewSet):
|
2019-08-19 01:53:39 -04:00
|
|
|
queryset = Aggregate.objects.prefetch_related('rir').prefetch_related('tags')
|
2016-05-18 16:20:30 -04:00
|
|
|
serializer_class = serializers.AggregateSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.AggregateFilterSet
|
2016-03-01 11:23:03 -05:00
|
|
|
|
|
|
|
|
|
2017-06-19 16:10:18 -04:00
|
|
|
#
|
|
|
|
|
# Roles
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
class RoleViewSet(ModelViewSet):
|
2019-04-12 17:07:56 -04:00
|
|
|
queryset = Role.objects.annotate(
|
2019-04-19 16:09:22 -04:00
|
|
|
prefix_count=get_subquery(Prefix, 'role'),
|
|
|
|
|
vlan_count=get_subquery(VLAN, 'role')
|
2019-04-12 17:07:56 -04:00
|
|
|
)
|
2017-06-19 16:10:18 -04:00
|
|
|
serializer_class = serializers.RoleSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.RoleFilterSet
|
2017-06-19 16:10:18 -04:00
|
|
|
|
|
|
|
|
|
2016-07-15 13:26:54 -04:00
|
|
|
#
|
|
|
|
|
# Prefixes
|
|
|
|
|
#
|
|
|
|
|
|
2017-11-07 15:36:10 -05:00
|
|
|
class PrefixViewSet(CustomFieldModelViewSet):
|
2019-08-19 01:53:39 -04:00
|
|
|
queryset = Prefix.objects.prefetch_related('site', 'vrf__tenant', 'tenant', 'vlan', 'role', 'tags')
|
2016-05-18 16:20:30 -04:00
|
|
|
serializer_class = serializers.PrefixSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.PrefixFilterSet
|
2016-03-01 11:23:03 -05:00
|
|
|
|
2018-06-29 11:48:21 -04:00
|
|
|
@action(detail=True, url_path='available-prefixes', methods=['get', 'post'])
|
2019-12-13 11:52:59 -08:00
|
|
|
@advisory_lock(ADVISORY_LOCK_KEYS['available-prefixes'])
|
2017-11-09 16:59:50 -05:00
|
|
|
def available_prefixes(self, request, pk=None):
|
|
|
|
|
"""
|
|
|
|
|
A convenience method for returning available child prefixes within a parent.
|
2019-12-13 11:52:59 -08:00
|
|
|
|
|
|
|
|
The advisory lock decorator uses a PostgreSQL advisory lock to prevent this API from being
|
|
|
|
|
invoked in parallel, which results in a race condition where multiple insertions can occur.
|
2017-11-09 16:59:50 -05:00
|
|
|
"""
|
|
|
|
|
prefix = get_object_or_404(Prefix, pk=pk)
|
|
|
|
|
available_prefixes = prefix.get_available_prefixes()
|
|
|
|
|
|
|
|
|
|
if request.method == 'POST':
|
|
|
|
|
|
|
|
|
|
# Permissions check
|
|
|
|
|
if not request.user.has_perm('ipam.add_prefix'):
|
|
|
|
|
raise PermissionDenied()
|
|
|
|
|
|
2017-11-15 13:52:14 -05:00
|
|
|
# Normalize to a list of objects
|
2017-11-09 16:59:50 -05:00
|
|
|
requested_prefixes = request.data if isinstance(request.data, list) else [request.data]
|
|
|
|
|
|
|
|
|
|
# Allocate prefixes to the requested objects based on availability within the parent
|
2018-06-29 15:10:30 -04:00
|
|
|
for i, requested_prefix in enumerate(requested_prefixes):
|
|
|
|
|
|
|
|
|
|
# Validate requested prefix size
|
2018-11-20 13:00:57 -05:00
|
|
|
prefix_length = requested_prefix.get('prefix_length')
|
|
|
|
|
if prefix_length is None:
|
|
|
|
|
return Response(
|
|
|
|
|
{
|
|
|
|
|
"detail": "Item {}: prefix_length field missing".format(i)
|
|
|
|
|
},
|
|
|
|
|
status=status.HTTP_400_BAD_REQUEST
|
2018-06-29 15:18:30 -04:00
|
|
|
)
|
2018-11-20 13:00:57 -05:00
|
|
|
try:
|
|
|
|
|
prefix_length = int(prefix_length)
|
|
|
|
|
except ValueError:
|
|
|
|
|
return Response(
|
|
|
|
|
{
|
|
|
|
|
"detail": "Item {}: Invalid prefix length ({})".format(i, prefix_length),
|
|
|
|
|
},
|
|
|
|
|
status=status.HTTP_400_BAD_REQUEST
|
2018-06-29 15:18:30 -04:00
|
|
|
)
|
2018-11-20 13:00:57 -05:00
|
|
|
if prefix.family == 4 and prefix_length > 32:
|
|
|
|
|
return Response(
|
|
|
|
|
{
|
|
|
|
|
"detail": "Item {}: Invalid prefix length ({}) for IPv4".format(i, prefix_length),
|
|
|
|
|
},
|
|
|
|
|
status=status.HTTP_400_BAD_REQUEST
|
2018-06-29 15:18:30 -04:00
|
|
|
)
|
2018-11-20 13:00:57 -05:00
|
|
|
elif prefix.family == 6 and prefix_length > 128:
|
2018-06-29 15:18:30 -04:00
|
|
|
return Response(
|
|
|
|
|
{
|
2018-11-20 13:00:57 -05:00
|
|
|
"detail": "Item {}: Invalid prefix length ({}) for IPv6".format(i, prefix_length),
|
2018-06-29 15:18:30 -04:00
|
|
|
},
|
|
|
|
|
status=status.HTTP_400_BAD_REQUEST
|
|
|
|
|
)
|
2017-11-09 16:59:50 -05:00
|
|
|
|
|
|
|
|
# Find the first available prefix equal to or larger than the requested size
|
|
|
|
|
for available_prefix in available_prefixes.iter_cidrs():
|
|
|
|
|
if requested_prefix['prefix_length'] >= available_prefix.prefixlen:
|
|
|
|
|
allocated_prefix = '{}/{}'.format(available_prefix.network, requested_prefix['prefix_length'])
|
|
|
|
|
requested_prefix['prefix'] = allocated_prefix
|
|
|
|
|
requested_prefix['vrf'] = prefix.vrf.pk if prefix.vrf else None
|
|
|
|
|
break
|
|
|
|
|
else:
|
|
|
|
|
return Response(
|
|
|
|
|
{
|
|
|
|
|
"detail": "Insufficient space is available to accommodate the requested prefix size(s)"
|
|
|
|
|
},
|
2018-11-20 13:00:57 -05:00
|
|
|
status=status.HTTP_204_NO_CONTENT
|
2017-11-09 16:59:50 -05:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
# Remove the allocated prefix from the list of available prefixes
|
|
|
|
|
available_prefixes.remove(allocated_prefix)
|
|
|
|
|
|
|
|
|
|
# Initialize the serializer with a list or a single object depending on what was requested
|
2018-08-08 16:16:49 -04:00
|
|
|
context = {'request': request}
|
2017-11-09 16:59:50 -05:00
|
|
|
if isinstance(request.data, list):
|
2018-08-08 16:16:49 -04:00
|
|
|
serializer = serializers.PrefixSerializer(data=requested_prefixes, many=True, context=context)
|
2017-11-09 16:59:50 -05:00
|
|
|
else:
|
2018-08-08 16:16:49 -04:00
|
|
|
serializer = serializers.PrefixSerializer(data=requested_prefixes[0], context=context)
|
2017-11-09 16:59:50 -05:00
|
|
|
|
|
|
|
|
# Create the new Prefix(es)
|
|
|
|
|
if serializer.is_valid():
|
|
|
|
|
serializer.save()
|
|
|
|
|
return Response(serializer.data, status=status.HTTP_201_CREATED)
|
|
|
|
|
|
|
|
|
|
return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)
|
|
|
|
|
|
|
|
|
|
else:
|
|
|
|
|
|
|
|
|
|
serializer = serializers.AvailablePrefixSerializer(available_prefixes.iter_cidrs(), many=True, context={
|
|
|
|
|
'request': request,
|
|
|
|
|
'vrf': prefix.vrf,
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
return Response(serializer.data)
|
|
|
|
|
|
2018-06-29 11:48:21 -04:00
|
|
|
@action(detail=True, url_path='available-ips', methods=['get', 'post'])
|
2019-12-13 11:52:59 -08:00
|
|
|
@advisory_lock(ADVISORY_LOCK_KEYS['available-ips'])
|
2017-06-28 16:23:17 -04:00
|
|
|
def available_ips(self, request, pk=None):
|
|
|
|
|
"""
|
|
|
|
|
A convenience method for returning available IP addresses within a prefix. By default, the number of IPs
|
|
|
|
|
returned will be equivalent to PAGINATE_COUNT. An arbitrary limit (up to MAX_PAGE_SIZE, if set) may be passed,
|
|
|
|
|
however results will not be paginated.
|
2019-12-13 11:52:59 -08:00
|
|
|
|
|
|
|
|
The advisory lock decorator uses a PostgreSQL advisory lock to prevent this API from being
|
|
|
|
|
invoked in parallel, which results in a race condition where multiple insertions can occur.
|
2017-06-28 16:23:17 -04:00
|
|
|
"""
|
|
|
|
|
prefix = get_object_or_404(Prefix, pk=pk)
|
|
|
|
|
|
2017-06-30 16:51:31 -04:00
|
|
|
# Create the next available IP within the prefix
|
|
|
|
|
if request.method == 'POST':
|
|
|
|
|
|
|
|
|
|
# Permissions check
|
|
|
|
|
if not request.user.has_perm('ipam.add_ipaddress'):
|
|
|
|
|
raise PermissionDenied()
|
|
|
|
|
|
2017-11-15 13:52:14 -05:00
|
|
|
# Normalize to a list of objects
|
|
|
|
|
requested_ips = request.data if isinstance(request.data, list) else [request.data]
|
|
|
|
|
|
2017-11-08 13:48:33 -05:00
|
|
|
# Determine if the requested number of IPs is available
|
2018-06-29 14:52:37 -04:00
|
|
|
available_ips = prefix.get_available_ips()
|
|
|
|
|
if available_ips.size < len(requested_ips):
|
2017-06-30 16:51:31 -04:00
|
|
|
return Response(
|
|
|
|
|
{
|
2017-11-08 13:48:33 -05:00
|
|
|
"detail": "An insufficient number of IP addresses are available within the prefix {} ({} "
|
2017-11-15 13:52:14 -05:00
|
|
|
"requested, {} available)".format(prefix, len(requested_ips), len(available_ips))
|
2017-06-30 16:51:31 -04:00
|
|
|
},
|
2018-11-20 13:00:57 -05:00
|
|
|
status=status.HTTP_204_NO_CONTENT
|
2017-06-30 16:51:31 -04:00
|
|
|
)
|
|
|
|
|
|
2017-11-15 13:52:14 -05:00
|
|
|
# Assign addresses from the list of available IPs and copy VRF assignment from the parent prefix
|
2018-06-29 14:52:37 -04:00
|
|
|
available_ips = iter(available_ips)
|
2018-07-18 15:27:45 -04:00
|
|
|
prefix_length = prefix.prefix.prefixlen
|
2017-11-15 13:52:14 -05:00
|
|
|
for requested_ip in requested_ips:
|
2018-07-18 15:27:45 -04:00
|
|
|
requested_ip['address'] = '{}/{}'.format(next(available_ips), prefix_length)
|
2017-11-15 13:52:14 -05:00
|
|
|
requested_ip['vrf'] = prefix.vrf.pk if prefix.vrf else None
|
2017-11-08 13:48:33 -05:00
|
|
|
|
2017-11-15 13:52:14 -05:00
|
|
|
# Initialize the serializer with a list or a single object depending on what was requested
|
2018-08-08 16:16:49 -04:00
|
|
|
context = {'request': request}
|
2017-11-15 13:52:14 -05:00
|
|
|
if isinstance(request.data, list):
|
2018-08-08 16:16:49 -04:00
|
|
|
serializer = serializers.IPAddressSerializer(data=requested_ips, many=True, context=context)
|
2017-11-08 13:48:33 -05:00
|
|
|
else:
|
2018-08-08 16:16:49 -04:00
|
|
|
serializer = serializers.IPAddressSerializer(data=requested_ips[0], context=context)
|
2017-11-08 13:48:33 -05:00
|
|
|
|
|
|
|
|
# Create the new IP address(es)
|
2017-06-30 16:51:31 -04:00
|
|
|
if serializer.is_valid():
|
|
|
|
|
serializer.save()
|
|
|
|
|
return Response(serializer.data, status=status.HTTP_201_CREATED)
|
2017-11-08 13:48:33 -05:00
|
|
|
|
2017-06-30 16:51:31 -04:00
|
|
|
return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)
|
|
|
|
|
|
2017-11-08 13:48:33 -05:00
|
|
|
# Determine the maximum number of IPs to return
|
2017-06-30 16:51:31 -04:00
|
|
|
else:
|
|
|
|
|
try:
|
|
|
|
|
limit = int(request.query_params.get('limit', settings.PAGINATE_COUNT))
|
|
|
|
|
except ValueError:
|
|
|
|
|
limit = settings.PAGINATE_COUNT
|
|
|
|
|
if settings.MAX_PAGE_SIZE:
|
|
|
|
|
limit = min(limit, settings.MAX_PAGE_SIZE)
|
|
|
|
|
|
|
|
|
|
# Calculate available IPs within the prefix
|
2017-08-03 10:09:37 -04:00
|
|
|
ip_list = []
|
|
|
|
|
for index, ip in enumerate(prefix.get_available_ips(), start=1):
|
|
|
|
|
ip_list.append(ip)
|
|
|
|
|
if index == limit:
|
|
|
|
|
break
|
2017-06-30 16:51:31 -04:00
|
|
|
serializer = serializers.AvailableIPSerializer(ip_list, many=True, context={
|
|
|
|
|
'request': request,
|
|
|
|
|
'prefix': prefix.prefix,
|
|
|
|
|
'vrf': prefix.vrf,
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
return Response(serializer.data)
|
2017-06-28 16:23:17 -04:00
|
|
|
|
2016-03-01 11:23:03 -05:00
|
|
|
|
2016-07-15 13:26:54 -04:00
|
|
|
#
|
|
|
|
|
# IP addresses
|
|
|
|
|
#
|
|
|
|
|
|
2017-11-07 15:36:10 -05:00
|
|
|
class IPAddressViewSet(CustomFieldModelViewSet):
|
2019-08-19 01:53:39 -04:00
|
|
|
queryset = IPAddress.objects.prefetch_related(
|
|
|
|
|
'vrf__tenant', 'tenant', 'nat_inside', 'interface__device__device_type', 'interface__virtual_machine',
|
2018-09-28 16:44:05 -04:00
|
|
|
'nat_outside', 'tags',
|
2017-08-18 16:57:20 -04:00
|
|
|
)
|
2016-05-18 16:20:30 -04:00
|
|
|
serializer_class = serializers.IPAddressSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.IPAddressFilterSet
|
2016-03-01 11:23:03 -05:00
|
|
|
|
|
|
|
|
|
2016-07-15 13:26:54 -04:00
|
|
|
#
|
|
|
|
|
# VLAN groups
|
|
|
|
|
#
|
|
|
|
|
|
2017-11-07 15:36:10 -05:00
|
|
|
class VLANGroupViewSet(ModelViewSet):
|
2019-08-19 01:53:39 -04:00
|
|
|
queryset = VLANGroup.objects.prefetch_related('site').annotate(
|
2019-04-12 17:07:56 -04:00
|
|
|
vlan_count=Count('vlans')
|
|
|
|
|
)
|
2016-07-15 13:26:54 -04:00
|
|
|
serializer_class = serializers.VLANGroupSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.VLANGroupFilterSet
|
2016-07-15 13:26:54 -04:00
|
|
|
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
|
# VLANs
|
|
|
|
|
#
|
|
|
|
|
|
2017-11-07 15:36:10 -05:00
|
|
|
class VLANViewSet(CustomFieldModelViewSet):
|
2019-08-19 01:53:39 -04:00
|
|
|
queryset = VLAN.objects.prefetch_related(
|
|
|
|
|
'site', 'group', 'tenant', 'role', 'tags'
|
2019-04-19 16:50:42 -04:00
|
|
|
).annotate(
|
|
|
|
|
prefix_count=get_subquery(Prefix, 'role')
|
|
|
|
|
)
|
2016-05-18 16:20:30 -04:00
|
|
|
serializer_class = serializers.VLANSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.VLANFilterSet
|
2016-03-01 11:23:03 -05:00
|
|
|
|
|
|
|
|
|
2016-12-15 15:32:58 -05:00
|
|
|
#
|
|
|
|
|
# Services
|
|
|
|
|
#
|
|
|
|
|
|
2017-11-07 15:36:10 -05:00
|
|
|
class ServiceViewSet(ModelViewSet):
|
2019-08-19 01:53:39 -04:00
|
|
|
queryset = Service.objects.prefetch_related('device').prefetch_related('tags')
|
2016-12-15 15:32:58 -05:00
|
|
|
serializer_class = serializers.ServiceSerializer
|
2020-01-09 20:37:26 -05:00
|
|
|
filterset_class = filters.ServiceFilterSet
|
