Gapic firewall samples (GoogleCloudPlatform#5995)

Sita04 · web-flow · commit 05be6e7b6a4e · 2021-09-14T23:49:46.000+05:30
* docs(samples): added samples to demonstrate GCE default values with firewall

* fix: increasing the image list count to 100

* refactor: lint fix

* refactor(samples): lint fix

* docs(samples): added/modified comments

* docs(samples): lint fix
diff --git a/compute/cloud-client/src/main/java/compute/CreateFirewallRule.java b/compute/cloud-client/src/main/java/compute/CreateFirewallRule.java
@@ -0,0 +1,88 @@
+/*
+ * Copyright 2021 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package compute;
+
+// [START compute_firewall_create]
+
+import com.google.cloud.compute.v1.Allowed;
+import com.google.cloud.compute.v1.Firewall;
+import com.google.cloud.compute.v1.Firewall.Direction;
+import com.google.cloud.compute.v1.FirewallsClient;
+import com.google.cloud.compute.v1.GlobalOperationsClient;
+import com.google.cloud.compute.v1.InsertFirewallRequest;
+import com.google.cloud.compute.v1.Operation;
+import java.io.IOException;
+import java.util.UUID;
+
+public class CreateFirewallRule {
+
+  public static void main(String[] args) throws IOException {
+    // TODO(developer): Replace these variables before running the sample
+    /* project: project ID or project number of the Cloud project you want to use.
+       firewallRuleName: name of the rule that is created.
+       network: name of the network the rule will be applied to. Available name formats:
+        * https://www.googleapis.com/compute/v1/projects/{project_id}/global/networks/{network}
+        * projects/{project_id}/global/networks/{network}
+        * global/networks/{network} */
+    String project = "your-project-id";
+    String firewallRuleName = "firewall-rule-name-" + UUID.randomUUID();
+    String network = "global/networks/default";
+
+    // The rule will be created with default priority of 1000.
+    createFirewall(project, firewallRuleName, network);
+  }
+
+  // Creates a simple firewall rule allowing for incoming HTTP and 
+  // HTTPS access from the entire Internet.
+  public static void createFirewall(String project, String firewallRuleName, String network)
+      throws IOException {
+    /* Initialize client that will be used to send requests. This client only needs to be created
+       once, and can be reused for multiple requests. After completing all of your requests, call
+       the `firewallsClient.close()` method on the client to safely
+       clean up any remaining background resources. */
+    try (FirewallsClient firewallsClient = FirewallsClient.create();
+        GlobalOperationsClient operationsClient = GlobalOperationsClient.create()) {
+
+      // The below firewall rule is created in the default network.
+      Firewall firewallRule = Firewall.newBuilder()
+          .setName(firewallRuleName)
+          .setDirection(Direction.INGRESS)
+          .addAllowed(
+              Allowed.newBuilder().addPorts("80").addPorts("443").setIPProtocol("tcp").build())
+          .addSourceRanges("0.0.0.0/0")
+          .setNetwork(network)
+          .setDescription("Allowing TCP traffic on port 80 and 443 from Internet.")
+          .build();
+
+      /* Note that the default value of priority for the firewall API is 1000.
+         If you check the value of `firewallRule.getPriority()` at this point it
+         will be equal to 0, however it is not treated as "set" by the library and thus
+         the default will be applied to the new rule. If you want to create a rule that
+         has priority == 0, you'll need to explicitly set it so: setPriority(0) */
+
+      InsertFirewallRequest insertFirewallRequest = InsertFirewallRequest.newBuilder()
+          .setFirewallResource(firewallRule)
+          .setProject(project).build();
+
+      Operation operation = firewallsClient.insert(insertFirewallRequest);
+      operationsClient.wait(project, operation.getName());
+
+      System.out.println("Firewall rule created successfully ! ");
+    }
+  }
+}
+// [END compute_firewall_create]
diff --git a/compute/cloud-client/src/main/java/compute/DeleteFirewallRule.java b/compute/cloud-client/src/main/java/compute/DeleteFirewallRule.java
@@ -0,0 +1,54 @@
+/*
+ * Copyright 2021 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package compute;
+
+// [START compute_firewall_delete]
+
+import com.google.cloud.compute.v1.FirewallsClient;
+import com.google.cloud.compute.v1.GlobalOperationsClient;
+import com.google.cloud.compute.v1.Operation;
+import java.io.IOException;
+import java.util.UUID;
+
+public class DeleteFirewallRule {
+
+  public static void main(String[] args) throws IOException {
+    // TODO(developer): Replace these variables before running the sample
+    // project: project ID or project number of the Cloud project you want to use.
+    // firewallRuleName: name of the firewall rule you want to delete.
+    String project = "your-project-id";
+    String firewallRuleName = "firewall-rule-name-" + UUID.randomUUID();
+    deleteFirewallRule(project, firewallRuleName);
+  }
+
+
+  // Deletes a firewall rule from the project.
+  public static void deleteFirewallRule(String project, String firewallRuleName)
+      throws IOException {
+    /* Initialize client that will be used to send requests. This client only needs to be created
+       once, and can be reused for multiple requests. After completing all of your requests, call
+       the `firewallsClient.close()` method on the client to safely
+       clean up any remaining background resources. */
+    try (FirewallsClient firewallsClient = FirewallsClient.create();
+        GlobalOperationsClient operationsClient = GlobalOperationsClient.create()) {
+
+      Operation operation = firewallsClient.delete(project, firewallRuleName);
+      operationsClient.wait(project, operation.getName());
+    }
+  }
+}
+// [END compute_firewall_delete]
diff --git a/compute/cloud-client/src/main/java/compute/GetFirewallRule.java b/compute/cloud-client/src/main/java/compute/GetFirewallRule.java
@@ -0,0 +1,49 @@
+/*
+ * Copyright 2021 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package compute;
+
+import com.google.cloud.compute.v1.Firewall;
+import com.google.cloud.compute.v1.FirewallsClient;
+import java.io.IOException;
+import java.util.UUID;
+
+public class GetFirewallRule {
+
+
+  public static void main(String[] args) throws IOException {
+    // TODO(developer): Replace these variables before running the sample
+    // project: project ID or project number of the Cloud project you want to use.
+    // firewallRuleName: name of the rule that is created.
+    String project = "your-project-id";
+    String firewallRuleName = "firewall-rule-name-" + UUID.randomUUID();
+    getFirewallRule(project, firewallRuleName);
+  }
+
+
+  // Retrieves the firewall rule given by the firewallRuleName if present.
+  public static void getFirewallRule(String project, String firewallRuleName)
+      throws IOException {
+    /* Initialize client that will be used to send requests. This client only needs to be created
+       once, and can be reused for multiple requests. After completing all of your requests, call
+       the `firewallsClient.close()` method on the client to safely
+       clean up any remaining background resources. */
+    try (FirewallsClient firewallsClient = FirewallsClient.create()) {
+      Firewall response = firewallsClient.get(project, firewallRuleName);
+      System.out.println(response);
+    }
+  }
+}
diff --git a/compute/cloud-client/src/main/java/compute/ListFirewallRules.java b/compute/cloud-client/src/main/java/compute/ListFirewallRules.java
@@ -0,0 +1,52 @@
+/*
+ * Copyright 2021 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package compute;
+
+// [START compute_firewall_list]
+
+import com.google.cloud.compute.v1.Firewall;
+import com.google.cloud.compute.v1.FirewallsClient;
+import com.google.cloud.compute.v1.FirewallsClient.ListPagedResponse;
+import java.io.IOException;
+
+public class ListFirewallRules {
+
+  public static void main(String[] args) throws IOException {
+    // TODO(developer): Replace these variables before running the sample
+    // project: project ID or project number of the Cloud project you want to use.
+    String project = "your-project-id";
+    listFirewallRules(project);
+  }
+
+  // Return a list of all the firewall rules in specified project.
+  // Also prints the list of firewall names and their descriptions.
+  public static ListPagedResponse listFirewallRules(String project)
+      throws IOException {
+    /* Initialize client that will be used to send requests. This client only needs to be created
+       once, and can be reused for multiple requests. After completing all of your requests, call
+       the `firewallsClient.close()` method on the client to safely
+       clean up any remaining background resources. */
+    try (FirewallsClient firewallsClient = FirewallsClient.create()) {
+      ListPagedResponse firewallResponse = firewallsClient.list(project);
+      for (Firewall firewall : firewallResponse.iterateAll()) {
+        System.out.println(firewall.getName());
+      }
+      return firewallResponse;
+    }
+  }
+}
+// [END compute_firewall_list]
diff --git a/compute/cloud-client/src/main/java/compute/ListImages.java b/compute/cloud-client/src/main/java/compute/ListImages.java
@@ -36,7 +36,7 @@ public static void main(String[] args) throws IOException {
     listImages(project);
 
     // page_size: size of the pages you want the API to return on each call.
-    int pageSize = 2;
+    int pageSize = 100;
     listImagesByPage(project, pageSize);
   }
 
@@ -52,7 +52,7 @@ public static void listImages(String project) throws IOException {
       // Listing only non-deprecated images to reduce the size of the reply.
       ListImagesRequest imagesRequest = ListImagesRequest.newBuilder()
           .setProject(project)
-          .setMaxResults(2)
+          .setMaxResults(100)
           .setFilter("deprecated.state != DEPRECATED")
           .build();
 
diff --git a/compute/cloud-client/src/main/java/compute/PatchFirewallRule.java b/compute/cloud-client/src/main/java/compute/PatchFirewallRule.java
@@ -0,0 +1,69 @@
+/*
+ * Copyright 2021 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package compute;
+
+// [START compute_firewall_patch]
+
+import com.google.cloud.compute.v1.Firewall;
+import com.google.cloud.compute.v1.FirewallsClient;
+import com.google.cloud.compute.v1.GlobalOperationsClient;
+import com.google.cloud.compute.v1.Operation;
+import com.google.cloud.compute.v1.PatchFirewallRequest;
+import java.io.IOException;
+import java.util.UUID;
+
+public class PatchFirewallRule {
+
+  public static void main(String[] args) throws IOException {
+    // TODO(developer): Replace these variables before running the sample
+    // project: project ID or project number of the Cloud project you want to use.
+    // firewallRuleName: name of the rule you want to modify.
+    // priority: the new priority to be set for the rule.
+    String project = "your-project-id";
+    String firewallRuleName = "firewall-rule-name-" + UUID.randomUUID();
+    int priority = 10;
+
+    patchFirewallPriority(project, firewallRuleName, priority);
+  }
+
+  // Modifies the priority of a given firewall rule.
+  public static void patchFirewallPriority(String project, String firewallRuleName, int priority)
+      throws IOException {
+    /* Initialize client that will be used to send requests. This client only needs to be created
+       once, and can be reused for multiple requests. After completing all of your requests, call
+       the `firewallsClient.close()` method on the client to safely
+       clean up any remaining background resources. */
+    try (FirewallsClient firewallsClient = FirewallsClient.create();
+        GlobalOperationsClient operationsClient = GlobalOperationsClient.create()) {
+
+      /* The patch operation doesn't require the full definition of a Firewall object. It will only 
+         update the values that were set in it, in this case it will only change the priority. */
+      Firewall firewall = Firewall.newBuilder()
+          .setPriority(priority).build();
+
+      PatchFirewallRequest patchFirewallRequest = PatchFirewallRequest.newBuilder()
+          .setProject(project)
+          .setFirewall(firewallRuleName)
+          .setFirewallResource(firewall).build();
+
+      Operation operation = firewallsClient.patch(patchFirewallRequest);
+      operationsClient.wait(project, operation.getName());
+      System.out.println("Firewall Patch applied successfully ! ");
+    }
+  }
+}
+// [END compute_firewall_patch]
diff --git a/compute/cloud-client/src/test/java/compute/SnippetsIT.java b/compute/cloud-client/src/test/java/compute/SnippetsIT.java
