com.azure.resourcemanager.network.implementation.ApplicationGatewayImpl Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of azure-resourcemanager-network Show documentation
Show all versions of azure-resourcemanager-network Show documentation
This package contains Microsoft Azure Network Management SDK. For documentation on how to use this package, please see https://aka.ms/azsdk/java/mgmt
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT License.
package com.azure.resourcemanager.network.implementation;
import com.azure.core.management.SubResource;
import com.azure.resourcemanager.network.NetworkManager;
import com.azure.resourcemanager.network.fluent.ApplicationGatewaysClient;
import com.azure.resourcemanager.network.fluent.models.ApplicationGatewayAuthenticationCertificateInner;
import com.azure.resourcemanager.network.fluent.models.ApplicationGatewayInner;
import com.azure.resourcemanager.network.fluent.models.ApplicationGatewayIpConfigurationInner;
import com.azure.resourcemanager.network.fluent.models.ApplicationGatewayProbeInner;
import com.azure.resourcemanager.network.fluent.models.ApplicationGatewayRedirectConfigurationInner;
import com.azure.resourcemanager.network.fluent.models.ApplicationGatewayRequestRoutingRuleInner;
import com.azure.resourcemanager.network.fluent.models.ApplicationGatewaySslCertificateInner;
import com.azure.resourcemanager.network.fluent.models.ApplicationGatewayUrlPathMapInner;
import com.azure.resourcemanager.network.models.ApplicationGateway;
import com.azure.resourcemanager.network.models.ApplicationGatewayAuthenticationCertificate;
import com.azure.resourcemanager.network.models.ApplicationGatewayAutoscaleConfiguration;
import com.azure.resourcemanager.network.models.ApplicationGatewayBackend;
import com.azure.resourcemanager.network.models.ApplicationGatewayBackendAddressPool;
import com.azure.resourcemanager.network.models.ApplicationGatewayBackendHealth;
import com.azure.resourcemanager.network.models.ApplicationGatewayBackendHealthPool;
import com.azure.resourcemanager.network.models.ApplicationGatewayBackendHttpConfiguration;
import com.azure.resourcemanager.network.models.ApplicationGatewayBackendHttpSettings;
import com.azure.resourcemanager.network.models.ApplicationGatewayFirewallMode;
import com.azure.resourcemanager.network.models.ApplicationGatewayFrontend;
import com.azure.resourcemanager.network.models.ApplicationGatewayFrontendIpConfiguration;
import com.azure.resourcemanager.network.models.ApplicationGatewayFrontendPort;
import com.azure.resourcemanager.network.models.ApplicationGatewayHttpListener;
import com.azure.resourcemanager.network.models.ApplicationGatewayIpConfiguration;
import com.azure.resourcemanager.network.models.ApplicationGatewayListener;
import com.azure.resourcemanager.network.models.ApplicationGatewayOperationalState;
import com.azure.resourcemanager.network.models.ApplicationGatewayProbe;
import com.azure.resourcemanager.network.models.ApplicationGatewayRedirectConfiguration;
import com.azure.resourcemanager.network.models.ApplicationGatewayRequestRoutingRule;
import com.azure.resourcemanager.network.models.ApplicationGatewayRequestRoutingRuleType;
import com.azure.resourcemanager.network.models.ApplicationGatewaySku;
import com.azure.resourcemanager.network.models.ApplicationGatewaySkuName;
import com.azure.resourcemanager.network.models.ApplicationGatewaySslCertificate;
import com.azure.resourcemanager.network.models.ApplicationGatewaySslCipherSuite;
import com.azure.resourcemanager.network.models.ApplicationGatewaySslPolicy;
import com.azure.resourcemanager.network.models.ApplicationGatewaySslPolicyName;
import com.azure.resourcemanager.network.models.ApplicationGatewaySslPolicyType;
import com.azure.resourcemanager.network.models.ApplicationGatewaySslProtocol;
import com.azure.resourcemanager.network.models.ApplicationGatewayTier;
import com.azure.resourcemanager.network.models.ApplicationGatewayUrlPathMap;
import com.azure.resourcemanager.network.models.ApplicationGatewayWebApplicationFirewallConfiguration;
import com.azure.resourcemanager.network.models.IpAllocationMethod;
import com.azure.resourcemanager.network.models.KnownWebApplicationGatewayManagedRuleSet;
import com.azure.resourcemanager.network.models.ManagedServiceIdentity;
import com.azure.resourcemanager.network.models.Network;
import com.azure.resourcemanager.network.models.PublicIpAddress;
import com.azure.resourcemanager.network.models.Subnet;
import com.azure.resourcemanager.network.models.TagsObject;
import com.azure.resourcemanager.network.models.WebApplicationFirewallMode;
import com.azure.resourcemanager.network.models.WebApplicationFirewallPolicy;
import com.azure.resourcemanager.resources.fluentcore.arm.AvailabilityZoneId;
import com.azure.resourcemanager.resources.fluentcore.arm.ResourceUtils;
import com.azure.resourcemanager.resources.fluentcore.arm.models.Resource;
import com.azure.resourcemanager.resources.fluentcore.model.Creatable;
import com.azure.resourcemanager.resources.fluentcore.utils.ResourceManagerUtils;
import reactor.core.publisher.Flux;
import reactor.core.publisher.Mono;
import java.lang.reflect.InvocationTargetException;
import java.util.ArrayList;
import java.util.Collection;
import java.util.Collections;
import java.util.HashMap;
import java.util.LinkedHashMap;
import java.util.List;
import java.util.Map;
import java.util.Map.Entry;
import java.util.Objects;
import java.util.Set;
import java.util.TreeMap;
import java.util.TreeSet;
import java.util.stream.Collectors;
/**
* Implementation of the ApplicationGateway interface.
*/
class ApplicationGatewayImpl
extends GroupableParentResourceWithTagsImpl<
ApplicationGateway, ApplicationGatewayInner, ApplicationGatewayImpl, NetworkManager>
implements ApplicationGateway, ApplicationGateway.Definition, ApplicationGateway.Update {
private Map ipConfigs;
private Map frontends;
private Map probes;
private Map backends;
private Map backendConfigs;
private Map listeners;
private Map rules;
private AddedRuleCollection addedRuleCollection;
private Map sslCerts;
private Map authCertificates;
private Map redirectConfigs;
private Map urlPathMaps;
private static final String DEFAULT = "default";
private ApplicationGatewayFrontendImpl defaultPrivateFrontend;
private ApplicationGatewayFrontendImpl defaultPublicFrontend;
private Map creatablePipsByFrontend;
private String creatableWafPolicy;
// whether legacy waf configuration is explicitly specified by the user during creation
private boolean legacyWafConfigurationSpecifiedInCreate = false;
ApplicationGatewayImpl(String name, final ApplicationGatewayInner innerModel, final NetworkManager networkManager) {
super(name, innerModel, networkManager);
}
// Verbs
@Override
public Mono refreshAsync() {
return super
.refreshAsync()
.map(
applicationGateway -> {
ApplicationGatewayImpl impl = (ApplicationGatewayImpl) applicationGateway;
impl.initializeChildrenFromInner();
return impl;
});
}
@Override
protected Mono getInnerAsync() {
return this
.manager()
.serviceClient()
.getApplicationGateways()
.getByResourceGroupAsync(this.resourceGroupName(), this.name());
}
@Override
protected Mono applyTagsToInnerAsync() {
return this
.manager()
.serviceClient()
.getApplicationGateways()
.updateTagsAsync(resourceGroupName(), name(), new TagsObject().withTags(innerModel().tags()));
}
// Helpers
@Override
protected void initializeChildrenFromInner() {
initializeConfigsFromInner();
initializeFrontendsFromInner();
initializeProbesFromInner();
initializeBackendsFromInner();
initializeBackendHttpConfigsFromInner();
initializeHttpListenersFromInner();
initializeRedirectConfigurationsFromInner();
initializeRequestRoutingRulesFromInner();
initializeSslCertificatesFromInner();
initializeAuthCertificatesFromInner();
initializeUrlPathMapsFromInner();
this.defaultPrivateFrontend = null;
this.defaultPublicFrontend = null;
this.creatablePipsByFrontend = new HashMap<>();
this.addedRuleCollection = new AddedRuleCollection();
}
private void initializeAuthCertificatesFromInner() {
this.authCertificates = new TreeMap<>();
List inners = this.innerModel().authenticationCertificates();
if (inners != null) {
for (ApplicationGatewayAuthenticationCertificateInner inner : inners) {
ApplicationGatewayAuthenticationCertificateImpl cert =
new ApplicationGatewayAuthenticationCertificateImpl(inner, this);
this.authCertificates.put(inner.name(), cert);
}
}
}
private void initializeSslCertificatesFromInner() {
this.sslCerts = new TreeMap<>();
List inners = this.innerModel().sslCertificates();
if (inners != null) {
for (ApplicationGatewaySslCertificateInner inner : inners) {
ApplicationGatewaySslCertificateImpl cert = new ApplicationGatewaySslCertificateImpl(inner, this);
this.sslCerts.put(inner.name(), cert);
}
}
}
private void initializeFrontendsFromInner() {
this.frontends = new TreeMap<>();
List inners = this.innerModel().frontendIpConfigurations();
if (inners != null) {
for (ApplicationGatewayFrontendIpConfiguration inner : inners) {
ApplicationGatewayFrontendImpl frontend = new ApplicationGatewayFrontendImpl(inner, this);
this.frontends.put(inner.name(), frontend);
}
}
}
private void initializeProbesFromInner() {
this.probes = new TreeMap<>();
List inners = this.innerModel().probes();
if (inners != null) {
for (ApplicationGatewayProbeInner inner : inners) {
ApplicationGatewayProbeImpl probe = new ApplicationGatewayProbeImpl(inner, this);
this.probes.put(inner.name(), probe);
}
}
}
private void initializeBackendsFromInner() {
this.backends = new TreeMap<>();
List inners = this.innerModel().backendAddressPools();
if (inners != null) {
for (ApplicationGatewayBackendAddressPool inner : inners) {
ApplicationGatewayBackendImpl backend = new ApplicationGatewayBackendImpl(inner, this);
this.backends.put(inner.name(), backend);
}
}
}
private void initializeBackendHttpConfigsFromInner() {
this.backendConfigs = new TreeMap<>();
List inners = this.innerModel().backendHttpSettingsCollection();
if (inners != null) {
for (ApplicationGatewayBackendHttpSettings inner : inners) {
ApplicationGatewayBackendHttpConfigurationImpl httpConfig =
new ApplicationGatewayBackendHttpConfigurationImpl(inner, this);
this.backendConfigs.put(inner.name(), httpConfig);
}
}
}
private void initializeHttpListenersFromInner() {
this.listeners = new TreeMap<>();
List inners = this.innerModel().httpListeners();
if (inners != null) {
for (ApplicationGatewayHttpListener inner : inners) {
ApplicationGatewayListenerImpl httpListener = new ApplicationGatewayListenerImpl(inner, this);
this.listeners.put(inner.name(), httpListener);
}
}
}
private void initializeRedirectConfigurationsFromInner() {
this.redirectConfigs = new TreeMap<>();
List inners = this.innerModel().redirectConfigurations();
if (inners != null) {
for (ApplicationGatewayRedirectConfigurationInner inner : inners) {
ApplicationGatewayRedirectConfigurationImpl redirectConfig =
new ApplicationGatewayRedirectConfigurationImpl(inner, this);
this.redirectConfigs.put(inner.name(), redirectConfig);
}
}
}
private void initializeUrlPathMapsFromInner() {
this.urlPathMaps = new TreeMap<>();
List inners = this.innerModel().urlPathMaps();
if (inners != null) {
for (ApplicationGatewayUrlPathMapInner inner : inners) {
ApplicationGatewayUrlPathMapImpl wrapper = new ApplicationGatewayUrlPathMapImpl(inner, this);
this.urlPathMaps.put(inner.name(), wrapper);
}
}
}
private void initializeRequestRoutingRulesFromInner() {
this.rules = new TreeMap<>();
List inners = this.innerModel().requestRoutingRules();
if (inners != null) {
for (ApplicationGatewayRequestRoutingRuleInner inner : inners) {
ApplicationGatewayRequestRoutingRuleImpl rule =
new ApplicationGatewayRequestRoutingRuleImpl(inner, this);
this.rules.put(inner.name(), rule);
}
}
}
private void initializeConfigsFromInner() {
this.ipConfigs = new TreeMap<>();
List inners = this.innerModel().gatewayIpConfigurations();
if (inners != null) {
for (ApplicationGatewayIpConfigurationInner inner : inners) {
ApplicationGatewayIpConfigurationImpl config = new ApplicationGatewayIpConfigurationImpl(inner, this);
this.ipConfigs.put(inner.name(), config);
}
}
}
@Override
public void beforeGroupCreateOrUpdate() {
ensureNoMixedWaf();
}
@Override
protected void beforeCreating() {
if (this.creatableWafPolicy != null) {
Resource resource = this.taskResult(this.creatableWafPolicy);
withExistingWebApplicationFirewallPolicy(resource.id());
}
this.creatableWafPolicy = null;
// Process created PIPs
for (Entry frontendPipPair : this.creatablePipsByFrontend.entrySet()) {
Resource createdPip = this.taskResult(frontendPipPair.getValue());
this.updateFrontend(frontendPipPair.getKey()).withExistingPublicIpAddress(createdPip.id());
}
this.creatablePipsByFrontend.clear();
// Reset and update IP configs
ensureDefaultIPConfig();
this.innerModel().withGatewayIpConfigurations(innersFromWrappers(this.ipConfigs.values()));
// Reset and update frontends
this.innerModel().withFrontendIpConfigurations(innersFromWrappers(this.frontends.values()));
// Reset and update probes
this.innerModel().withProbes(innersFromWrappers(this.probes.values()));
// Reset and update auth certs
this.innerModel().withAuthenticationCertificates(innersFromWrappers(this.authCertificates.values()));
// Reset and update backends
this.innerModel().withBackendAddressPools(innersFromWrappers(this.backends.values()));
// Reset and update SSL certs
this.innerModel().withSslCertificates(innersFromWrappers(this.sslCerts.values()));
// Reset and update URL path maps
this.innerModel().withUrlPathMaps(innersFromWrappers(this.urlPathMaps.values()));
// Reset and update backend HTTP settings configs
this.innerModel().withBackendHttpSettingsCollection(innersFromWrappers(this.backendConfigs.values()));
for (ApplicationGatewayBackendHttpConfiguration config : this.backendConfigs.values()) {
SubResource ref;
// Clear deleted probe references
ref = config.innerModel().probe();
if (ref != null && !this.probes().containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
config.innerModel().withProbe(null);
}
// Clear deleted auth cert references
List certRefs = config.innerModel().authenticationCertificates();
if (certRefs != null) {
// Make a copy of the cert refs, because we will be deleting in place
certRefs = new ArrayList<>(certRefs);
for (SubResource certRef : certRefs) {
if (certRef != null
&& !this.authCertificates.containsKey(ResourceUtils.nameFromResourceId(certRef.id()))) {
config.innerModel().authenticationCertificates().remove(certRef);
}
}
}
}
// Reset and update redirect configurations
this.innerModel().withRedirectConfigurations(innersFromWrappers(this.redirectConfigs.values()));
for (ApplicationGatewayRedirectConfiguration redirect : this.redirectConfigs.values()) {
SubResource ref;
// Clear deleted listener references
ref = redirect.innerModel().targetListener();
if (ref != null && !this.listeners.containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
redirect.innerModel().withTargetListener(null);
}
}
// Reset and update HTTP listeners
this.innerModel().withHttpListeners(innersFromWrappers(this.listeners.values()));
for (ApplicationGatewayListener listener : this.listeners.values()) {
SubResource ref;
// Clear deleted frontend references
ref = listener.innerModel().frontendIpConfiguration();
if (ref != null && !this.frontends().containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
listener.innerModel().withFrontendIpConfiguration(null);
}
// Clear deleted frontend port references
ref = listener.innerModel().frontendPort();
if (ref != null && !this.frontendPorts().containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
listener.innerModel().withFrontendPort(null);
}
// Clear deleted SSL certificate references
ref = listener.innerModel().sslCertificate();
if (ref != null && !this.sslCertificates().containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
listener.innerModel().withSslCertificate(null);
}
}
// Reset and update request routing rules
if (supportsRulePriority()) {
addedRuleCollection.autoAssignPriorities(requestRoutingRules().values(), name());
}
this.innerModel().withRequestRoutingRules(innersFromWrappers(this.rules.values()));
for (ApplicationGatewayRequestRoutingRule rule : this.rules.values()) {
SubResource ref;
// Clear deleted redirect configs
ref = rule.innerModel().redirectConfiguration();
if (ref != null && !this.redirectConfigs.containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
rule.innerModel().withRedirectConfiguration(null);
}
// Clear deleted backends
ref = rule.innerModel().backendAddressPool();
if (ref != null && !this.backends().containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
rule.innerModel().withBackendAddressPool(null);
}
// Clear deleted backend HTTP configs
ref = rule.innerModel().backendHttpSettings();
if (ref != null && !this.backendConfigs.containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
rule.innerModel().withBackendHttpSettings(null);
}
// Clear deleted frontend HTTP listeners
ref = rule.innerModel().httpListener();
if (ref != null && !this.listeners().containsKey(ResourceUtils.nameFromResourceId(ref.id()))) {
rule.innerModel().withHttpListener(null);
}
}
}
protected SubResource ensureBackendRef(String name) {
// Ensure existence of backend, creating one if needed
ApplicationGatewayBackendImpl backend;
if (name == null) {
backend = this.ensureUniqueBackend();
} else {
backend = this.defineBackend(name);
backend.attach();
}
// Return backend reference
return new SubResource().withId(this.futureResourceId() + "/backendAddressPools/" + backend.name());
}
protected ApplicationGatewayBackendImpl ensureUniqueBackend() {
String name = this.manager().resourceManager().internalContext()
.randomResourceName("backend", 20);
ApplicationGatewayBackendImpl backend = this.defineBackend(name);
backend.attach();
return backend;
}
private void ensureNoMixedWaf() {
String errorMessage = "A mixture of legacy WAF configuration and WAF policy is not allowed. "
+ "If you are using legacy WAF configuration, you are strongly encouraged to upgrade to WAF Policy "
+ "for easier management, better scale, and a richer feature set at no additional cost. "
+ "See https://learn.microsoft.com/azure/web-application-firewall/ag/upgrade-ag-waf-policy";
if (this.creatableWafPolicy != null || this.innerModel().firewallPolicy() != null) {
if (isInCreateMode()) {
if (this.legacyWafConfigurationSpecifiedInCreate) {
throw new IllegalStateException(errorMessage);
}
} else {
if (this.innerModel().webApplicationFirewallConfiguration() != null) {
throw new IllegalStateException(errorMessage);
}
}
this.innerModel().withWebApplicationFirewallConfiguration(null);
}
}
private ApplicationGatewayIpConfigurationImpl ensureDefaultIPConfig() {
ApplicationGatewayIpConfigurationImpl ipConfig =
(ApplicationGatewayIpConfigurationImpl) defaultIPConfiguration();
if (ipConfig == null) {
String name = this.manager().resourceManager().internalContext().randomResourceName("ipcfg", 11);
ipConfig = this.defineIPConfiguration(name);
ipConfig.attach();
}
return ipConfig;
}
protected ApplicationGatewayFrontendImpl ensureDefaultPrivateFrontend() {
ApplicationGatewayFrontendImpl frontend = (ApplicationGatewayFrontendImpl) defaultPrivateFrontend();
if (frontend != null) {
return frontend;
} else {
String name = this.manager().resourceManager().internalContext().randomResourceName("frontend", 14);
frontend = this.defineFrontend(name);
frontend.attach();
this.defaultPrivateFrontend = frontend;
return frontend;
}
}
protected ApplicationGatewayFrontendImpl ensureDefaultPublicFrontend() {
ApplicationGatewayFrontendImpl frontend = (ApplicationGatewayFrontendImpl) defaultPublicFrontend();
if (frontend != null) {
return frontend;
} else {
String name = this.manager().resourceManager().internalContext().randomResourceName("frontend", 14);
frontend = this.defineFrontend(name);
frontend.attach();
this.defaultPublicFrontend = frontend;
return frontend;
}
}
private Creatable creatableNetwork = null;
private Creatable ensureDefaultNetworkDefinition() {
if (this.creatableNetwork == null) {
final String vnetName = this.manager().resourceManager().internalContext().randomResourceName("vnet", 10);
this.creatableNetwork =
this
.manager()
.networks()
.define(vnetName)
.withRegion(this.region())
.withExistingResourceGroup(this.resourceGroupName())
.withAddressSpace("10.0.0.0/24")
.withSubnet(DEFAULT, "10.0.0.0/25")
.withSubnet("apps", "10.0.0.128/25");
}
return this.creatableNetwork;
}
private Creatable creatablePip = null;
private Creatable ensureDefaultPipDefinition() {
if (this.creatablePip == null) {
final String pipName = this.manager().resourceManager().internalContext().randomResourceName("pip", 9);
this.creatablePip =
this
.manager()
.publicIpAddresses()
.define(pipName)
.withRegion(this.regionName())
.withExistingResourceGroup(this.resourceGroupName());
}
return this.creatablePip;
}
private static ApplicationGatewayFrontendImpl useSubnetFromIPConfigForFrontend(
ApplicationGatewayIpConfigurationImpl ipConfig, ApplicationGatewayFrontendImpl frontend) {
if (frontend != null) {
frontend.withExistingSubnet(ipConfig.networkId(), ipConfig.subnetName());
if (frontend.privateIpAddress() == null) {
frontend.withPrivateIpAddressDynamic();
} else if (frontend.privateIpAllocationMethod() == null) {
frontend.withPrivateIpAddressDynamic();
}
}
return frontend;
}
@Override
protected Mono createInner() {
// Determine if a default public frontend PIP should be created
final ApplicationGatewayFrontendImpl defaultPublicFrontend =
(ApplicationGatewayFrontendImpl) defaultPublicFrontend();
final Mono pipObservable;
if (defaultPublicFrontend != null && defaultPublicFrontend.publicIpAddressId() == null) {
// If public frontend requested but no PIP specified, then create a default PIP
pipObservable =
ensureDefaultPipDefinition()
.createAsync()
.map(
publicIPAddress -> {
defaultPublicFrontend.withExistingPublicIpAddress(publicIPAddress);
return publicIPAddress;
});
} else {
// If no public frontend requested, skip creating the PIP
pipObservable = Mono.empty();
}
// Determine if default VNet should be created
final ApplicationGatewayIpConfigurationImpl defaultIPConfig = ensureDefaultIPConfig();
final ApplicationGatewayFrontendImpl defaultPrivateFrontend =
(ApplicationGatewayFrontendImpl) defaultPrivateFrontend();
final Mono networkObservable;
if (defaultIPConfig.subnetName() != null) {
// If default IP config already has a subnet assigned to it...
if (defaultPrivateFrontend != null) {
// ...and a private frontend is requested, then use the same vnet for the private frontend
useSubnetFromIPConfigForFrontend(defaultIPConfig, defaultPrivateFrontend);
}
// ...and no need to create a default VNet
networkObservable = Mono.empty(); // ...and don't create another VNet
} else {
// But if default IP config does not have a subnet specified, then create a default VNet
networkObservable =
ensureDefaultNetworkDefinition()
.createAsync()
.map(
network -> {
// ... and assign the created VNet to the default IP config
defaultIPConfig.withExistingSubnet(network, DEFAULT);
if (defaultPrivateFrontend != null) {
// If a private frontend is also requested, then use the same VNet for the private
// frontend as for the IP config
/* TODO: Not sure if the assumption of the same subnet for the frontend and
* the IP config will hold in
* the future, but the existing ARM template for App Gateway for some reason uses
* the same subnet for the
* IP config and the private frontend. Also, trying to use different subnets results
* in server error today saying they
* have to be the same. This may need to be revisited in the future however,
* as this is somewhat inconsistent
* with what the documentation says.
*/
useSubnetFromIPConfigForFrontend(defaultIPConfig, defaultPrivateFrontend);
}
return network;
});
}
final ApplicationGatewaysClient innerCollection = this.manager().serviceClient().getApplicationGateways();
return Flux
.merge(networkObservable, pipObservable)
.last(Resource.DUMMY)
.flatMap(resource -> innerCollection.createOrUpdateAsync(resourceGroupName(), name(), innerModel()));
}
/**
* Determines whether the app gateway child that can be found using a name or a port number can be created, or it
* already exists, or there is a clash.
*
* @param byName object found by name
* @param byPort object found by port
* @param name the desired name of the object
* @return CreationState
*/
CreationState needToCreate(T byName, T byPort, String name) {
if (byName != null && byPort != null) {
// If objects with this name and/or port already exist...
if (byName == byPort) {
// ...and it is the same object, then do nothing
return CreationState.Found;
} else {
// ...but if they are inconsistent, then fail fast
return CreationState.InvalidState;
}
} else if (byPort != null) {
// If no object with the requested name, but the port number is found...
if (name == null) {
// ...and no name is requested, then do nothing, because the object already exists
return CreationState.Found;
} else {
// ...but if a clashing name is requested, then fail fast
return CreationState.InvalidState;
}
} else {
// Ok to create the object
return CreationState.NeedToCreate;
}
}
@Override
public ApplicationGatewayImpl withExistingWebApplicationFirewallPolicy(WebApplicationFirewallPolicy wafPolicy) {
ensureWafV2();
if (wafPolicy != null) {
return withExistingWebApplicationFirewallPolicy(wafPolicy.id());
}
return this;
}
@Override
public ApplicationGatewayImpl withExistingWebApplicationFirewallPolicy(String resourceId) {
ensureWafV2();
if (resourceId != null) {
this.innerModel().withFirewallPolicy(new SubResource().withId(resourceId));
}
return this;
}
@Override
public ApplicationGatewayImpl withNewWebApplicationFirewallPolicy(WebApplicationFirewallMode mode) {
ensureWafV2();
WebApplicationFirewallPolicy.DefinitionStages.WithCreate wafPolicyCreatable = this.manager().webApplicationFirewallPolicies()
.define(this.manager().resourceManager().internalContext().randomResourceName("wafpolicy", 14))
.withRegion(region())
.withExistingResourceGroup(this.resourceGroupName())
.withManagedRuleSet(KnownWebApplicationGatewayManagedRuleSet.OWASP_3_2)
.withMode(mode);
return withNewWebApplicationFirewallPolicy(wafPolicyCreatable);
}
@Override
public ApplicationGatewayImpl withNewWebApplicationFirewallPolicy(Creatable creatable) {
ensureWafV2();
this.creatableWafPolicy = this.addDependency(creatable);
return this;
}
@Override
public ApplicationGatewayImpl withPredefinedSslPolicy(ApplicationGatewaySslPolicyName policyName) {
return withSslPolicy(
new ApplicationGatewaySslPolicy()
.withPolicyName(policyName)
.withPolicyType(ApplicationGatewaySslPolicyType.PREDEFINED));
}
@Override
public ApplicationGatewayImpl withCustomV2SslPolicy(ApplicationGatewaySslProtocol minProtocolVersion, List cipherSuites) {
return withSslPolicy(
new ApplicationGatewaySslPolicy()
.withPolicyType(ApplicationGatewaySslPolicyType.CUSTOM_V2)
.withMinProtocolVersion(minProtocolVersion)
.withCipherSuites(cipherSuites));
}
@Override
public ApplicationGatewayImpl withSslPolicy(ApplicationGatewaySslPolicy sslPolicy) {
this.innerModel().withSslPolicy(sslPolicy);
return this;
}
enum CreationState {
Found,
NeedToCreate,
InvalidState,
}
String futureResourceId() {
return new StringBuilder()
.append(super.resourceIdBase())
.append("/providers/Microsoft.Network/applicationGateways/")
.append(this.name())
.toString();
}
// Withers (fluent)
@Override
public ApplicationGatewayImpl withDisabledSslProtocol(ApplicationGatewaySslProtocol protocol) {
if (protocol != null) {
ApplicationGatewaySslPolicy policy = ensureSslPolicy();
if (!policy.disabledSslProtocols().contains(protocol)) {
policy.disabledSslProtocols().add(protocol);
}
}
return this;
}
@Override
public ApplicationGatewayImpl withDisabledSslProtocols(ApplicationGatewaySslProtocol... protocols) {
if (protocols != null) {
for (ApplicationGatewaySslProtocol protocol : protocols) {
withDisabledSslProtocol(protocol);
}
}
return this;
}
@Override
public ApplicationGatewayImpl withoutDisabledSslProtocol(ApplicationGatewaySslProtocol protocol) {
if (this.innerModel().sslPolicy() != null && this.innerModel().sslPolicy().disabledSslProtocols() != null) {
this.innerModel().sslPolicy().disabledSslProtocols().remove(protocol);
if (this.innerModel().sslPolicy().disabledSslProtocols().isEmpty()) {
this.withoutAnyDisabledSslProtocols();
}
}
return this;
}
@Override
public ApplicationGatewayImpl withoutDisabledSslProtocols(ApplicationGatewaySslProtocol... protocols) {
if (protocols != null) {
for (ApplicationGatewaySslProtocol protocol : protocols) {
this.withoutDisabledSslProtocol(protocol);
}
}
return this;
}
@Override
public ApplicationGatewayImpl withoutAnyDisabledSslProtocols() {
this.innerModel().withSslPolicy(null);
return this;
}
@Override
public ApplicationGatewayImpl withInstanceCount(int capacity) {
if (this.innerModel().sku() == null) {
this.withSize(ApplicationGatewaySkuName.BASIC);
}
this.innerModel().sku().withCapacity(capacity);
this.innerModel().withAutoscaleConfiguration(null);
return this;
}
@Override
public ApplicationGatewayImpl withWebApplicationFirewall(boolean enabled, ApplicationGatewayFirewallMode mode) {
this
.innerModel()
.withWebApplicationFirewallConfiguration(
new ApplicationGatewayWebApplicationFirewallConfiguration()
.withEnabled(enabled)
.withFirewallMode(mode)
.withRuleSetType("OWASP")
.withRuleSetVersion("3.0"));
this.legacyWafConfigurationSpecifiedInCreate = true;
return this;
}
@Override
public ApplicationGatewayImpl withWebApplicationFirewall(
ApplicationGatewayWebApplicationFirewallConfiguration config) {
this.innerModel().withWebApplicationFirewallConfiguration(config);
this.legacyWafConfigurationSpecifiedInCreate = true;
return this;
}
@Override
public ApplicationGatewayImpl withAutoScale(int minCapacity, int maxCapacity) {
this.innerModel().sku().withCapacity(null);
this
.innerModel()
.withAutoscaleConfiguration(
new ApplicationGatewayAutoscaleConfiguration()
.withMinCapacity(minCapacity)
.withMaxCapacity(maxCapacity));
return this;
}
@Override
public ApplicationGatewayImpl withPrivateIpAddressDynamic() {
ensureDefaultPrivateFrontend().withPrivateIpAddressDynamic();
return this;
}
@Override
public ApplicationGatewayImpl withPrivateIpAddressStatic(String ipAddress) {
ensureDefaultPrivateFrontend().withPrivateIpAddressStatic(ipAddress);
return this;
}
ApplicationGatewayImpl withFrontend(ApplicationGatewayFrontendImpl frontend) {
if (frontend != null) {
this.frontends.put(frontend.name(), frontend);
}
return this;
}
ApplicationGatewayImpl withProbe(ApplicationGatewayProbeImpl probe) {
if (probe != null) {
this.probes.put(probe.name(), probe);
}
return this;
}
ApplicationGatewayImpl withBackend(ApplicationGatewayBackendImpl backend) {
if (backend != null) {
this.backends.put(backend.name(), backend);
}
return this;
}
ApplicationGatewayImpl withAuthenticationCertificate(ApplicationGatewayAuthenticationCertificateImpl authCert) {
if (authCert != null) {
this.authCertificates.put(authCert.name(), authCert);
}
return this;
}
ApplicationGatewayImpl withSslCertificate(ApplicationGatewaySslCertificateImpl cert) {
if (cert != null) {
this.sslCerts.put(cert.name(), cert);
}
return this;
}
ApplicationGatewayImpl withHttpListener(ApplicationGatewayListenerImpl httpListener) {
if (httpListener != null) {
this.listeners.put(httpListener.name(), httpListener);
}
return this;
}
ApplicationGatewayImpl withRedirectConfiguration(ApplicationGatewayRedirectConfigurationImpl redirectConfig) {
if (redirectConfig != null) {
this.redirectConfigs.put(redirectConfig.name(), redirectConfig);
}
return this;
}
ApplicationGatewayImpl withUrlPathMap(ApplicationGatewayUrlPathMapImpl urlPathMap) {
if (urlPathMap != null) {
this.urlPathMaps.put(urlPathMap.name(), urlPathMap);
}
return this;
}
ApplicationGatewayImpl withRequestRoutingRule(ApplicationGatewayRequestRoutingRuleImpl rule) {
if (rule != null) {
this.rules.put(rule.name(), rule);
}
return this;
}
ApplicationGatewayImpl withBackendHttpConfiguration(ApplicationGatewayBackendHttpConfigurationImpl httpConfig) {
if (httpConfig != null) {
this.backendConfigs.put(httpConfig.name(), httpConfig);
}
return this;
}
@Override
public ApplicationGatewayImpl withTier(ApplicationGatewayTier skuTier) {
if (this.innerModel().sku() == null) {
this.innerModel().withSku(new ApplicationGatewaySku().withCapacity(1));
}
this.innerModel().sku().withTier(skuTier);
if (skuTier == ApplicationGatewayTier.WAF_V2 && this.innerModel().webApplicationFirewallConfiguration() == null) {
this.innerModel().withWebApplicationFirewallConfiguration(
new ApplicationGatewayWebApplicationFirewallConfiguration()
.withEnabled(true)
.withFirewallMode(ApplicationGatewayFirewallMode.DETECTION)
.withRuleSetType("OWASP")
.withRuleSetVersion("3.0"));
}
return this;
}
@Override
public ApplicationGatewayImpl withSize(ApplicationGatewaySkuName skuName) {
if (this.innerModel().sku() == null) {
// Create with default instance count
this.innerModel().withSku(new ApplicationGatewaySku().withCapacity(1));
}
this.innerModel().sku().withName(skuName);
return this;
}
@Override
public ApplicationGatewayImpl withExistingSubnet(Subnet subnet) {
ensureDefaultIPConfig().withExistingSubnet(subnet);
return this;
}
@Override
public ApplicationGatewayImpl withExistingSubnet(Network network, String subnetName) {
ensureDefaultIPConfig().withExistingSubnet(network, subnetName);
return this;
}
@Override
public ApplicationGatewayImpl withExistingSubnet(String networkResourceId, String subnetName) {
ensureDefaultIPConfig().withExistingSubnet(networkResourceId, subnetName);
return this;
}
@Override
public ApplicationGatewayImpl withIdentity(ManagedServiceIdentity identity) {
this.innerModel().withIdentity(identity);
return this;
}
ApplicationGatewayImpl withConfig(ApplicationGatewayIpConfigurationImpl config) {
if (config != null) {
this.ipConfigs.put(config.name(), config);
}
return this;
}
@Override
public ApplicationGatewaySslCertificateImpl defineSslCertificate(String name) {
return defineChild(
name,
this.sslCerts,
ApplicationGatewaySslCertificateInner.class,
ApplicationGatewaySslCertificateImpl.class);
}
// TODO(future) @Override - since app gateways don't support more than one today, no need to expose this
private ApplicationGatewayIpConfigurationImpl defineIPConfiguration(String name) {
return defineChild(
name,
this.ipConfigs,
ApplicationGatewayIpConfigurationInner.class,
ApplicationGatewayIpConfigurationImpl.class);
}
// TODO(future) @Override - since app gateways don't support more than one today, no need to expose this
private ApplicationGatewayFrontendImpl defineFrontend(String name) {
return defineChild(
name,
this.frontends,
ApplicationGatewayFrontendIpConfiguration.class,
ApplicationGatewayFrontendImpl.class);
}
@Override
public ApplicationGatewayRedirectConfigurationImpl defineRedirectConfiguration(String name) {
return defineChild(
name,
this.redirectConfigs,
ApplicationGatewayRedirectConfigurationInner.class,
ApplicationGatewayRedirectConfigurationImpl.class);
}
@Override
public ApplicationGatewayRequestRoutingRuleImpl defineRequestRoutingRule(String name) {
ApplicationGatewayRequestRoutingRuleImpl rule = defineChild(
name,
this.rules,
ApplicationGatewayRequestRoutingRuleInner.class,
ApplicationGatewayRequestRoutingRuleImpl.class);
addedRuleCollection.addRule(rule);
return rule;
}
@Override
public ApplicationGatewayBackendImpl defineBackend(String name) {
return defineChild(
name, this.backends, ApplicationGatewayBackendAddressPool.class, ApplicationGatewayBackendImpl.class);
}
@Override
public ApplicationGatewayAuthenticationCertificateImpl defineAuthenticationCertificate(String name) {
return defineChild(
name,
this.authCertificates,
ApplicationGatewayAuthenticationCertificateInner.class,
ApplicationGatewayAuthenticationCertificateImpl.class);
}
@Override
public ApplicationGatewayProbeImpl defineProbe(String name) {
return defineChild(name, this.probes, ApplicationGatewayProbeInner.class, ApplicationGatewayProbeImpl.class);
}
@Override
public ApplicationGatewayUrlPathMapImpl definePathBasedRoutingRule(String name) {
ApplicationGatewayUrlPathMapImpl urlPathMap =
defineChild(
name,
this.urlPathMaps,
ApplicationGatewayUrlPathMapInner.class,
ApplicationGatewayUrlPathMapImpl.class);
SubResource ref = new SubResource().withId(futureResourceId() + "/urlPathMaps/" + name);
// create corresponding request routing rule
ApplicationGatewayRequestRoutingRuleInner inner =
new ApplicationGatewayRequestRoutingRuleInner()
.withName(name)
.withRuleType(ApplicationGatewayRequestRoutingRuleType.PATH_BASED_ROUTING)
.withUrlPathMap(ref);
ApplicationGatewayRequestRoutingRuleImpl requestRoutingRule = new ApplicationGatewayRequestRoutingRuleImpl(inner, this);
rules.put(name, requestRoutingRule);
addedRuleCollection.addRule(requestRoutingRule);
return urlPathMap;
}
@Override
public ApplicationGatewayListenerImpl defineListener(String name) {
return defineChild(
name, this.listeners, ApplicationGatewayHttpListener.class, ApplicationGatewayListenerImpl.class);
}
@Override
public ApplicationGatewayBackendHttpConfigurationImpl defineBackendHttpConfiguration(String name) {
ApplicationGatewayBackendHttpConfigurationImpl config =
defineChild(
name,
this.backendConfigs,
ApplicationGatewayBackendHttpSettings.class,
ApplicationGatewayBackendHttpConfigurationImpl.class);
if (config.innerModel().id() == null) {
return config.withPort(80); // Default port
} else {
return config;
}
}
@SuppressWarnings("unchecked")
private ChildImplT defineChild(
String name, Map children, Class innerClass, Class implClass) {
ChildT child = children.get(name);
if (child == null) {
ChildInnerT inner;
try {
inner = innerClass.getDeclaredConstructor().newInstance();
innerClass.getDeclaredMethod("withName", String.class).invoke(inner, name);
return implClass
.getDeclaredConstructor(innerClass, ApplicationGatewayImpl.class)
.newInstance(inner, this);
} catch (InstantiationException
| IllegalAccessException
| IllegalArgumentException
| InvocationTargetException
| NoSuchMethodException
| SecurityException e1) {
return null;
}
} else {
return (ChildImplT) child;
}
}
@Override
public ApplicationGatewayImpl withoutPrivateFrontend() {
// Delete all private frontends
List toDelete = new ArrayList<>();
for (ApplicationGatewayFrontend frontend : this.frontends.values()) {
if (frontend.isPrivate()) {
toDelete.add(frontend.name());
}
}
for (String frontendName : toDelete) {
this.frontends.remove(frontendName);
}
this.defaultPrivateFrontend = null;
return this;
}
@Override
public ApplicationGatewayImpl withoutPublicFrontend() {
// Delete all public frontends
List toDelete = new ArrayList<>();
for (ApplicationGatewayFrontend frontend : this.frontends.values()) {
if (frontend.isPublic()) {
toDelete.add(frontend.name());
}
}
for (String frontendName : toDelete) {
this.frontends.remove(frontendName);
}
this.defaultPublicFrontend = null;
return this;
}
@Override
public ApplicationGatewayImpl withFrontendPort(int portNumber) {
return withFrontendPort(portNumber, null);
}
@Override
public ApplicationGatewayImpl withFrontendPort(int portNumber, String name) {
// Ensure inner ports list initialized
List frontendPorts = this.innerModel().frontendPorts();
if (frontendPorts == null) {
frontendPorts = new ArrayList();
this.innerModel().withFrontendPorts(frontendPorts);
}
// Attempt to find inner port by name if provided, or port number otherwise
ApplicationGatewayFrontendPort frontendPortByName = null;
ApplicationGatewayFrontendPort frontendPortByNumber = null;
for (ApplicationGatewayFrontendPort inner : this.innerModel().frontendPorts()) {
if (name != null && name.equalsIgnoreCase(inner.name())) {
frontendPortByName = inner;
}
if (inner.port() == portNumber) {
frontendPortByNumber = inner;
}
}
CreationState needToCreate = this.needToCreate(frontendPortByName, frontendPortByNumber, name);
if (needToCreate == CreationState.NeedToCreate) {
// If no conflict, create a new port
if (name == null) {
// No name specified, so auto-name it
name = this.manager().resourceManager().internalContext().randomResourceName("port", 9);
}
frontendPortByName = new ApplicationGatewayFrontendPort().withName(name).withPort(portNumber);
frontendPorts.add(frontendPortByName);
return this;
} else if (needToCreate == CreationState.Found) {
// If found matching port, then nothing needs to happen
return this;
} else {
// If name conflict for the same port number, then fail
return null;
}
}
@Override
public ApplicationGatewayImpl withPrivateFrontend() {
/* NOTE: This logic is a workaround for the unusual Azure API logic:
* - although app gateway API definition allows multiple IP configs,
* only one is allowed by the service currently;
* - although app gateway frontend API definition allows for multiple frontends,
* only one is allowed by the service today;
* - and although app gateway API definition allows different subnets to be specified
* between the IP configs and frontends, the service
* requires the frontend and the containing subnet to be one and the same currently.
*
* So the logic here attempts to figure out from the API what that containing subnet
* for the app gateway is so that the user wouldn't have to re-enter it redundantly
* when enabling a private frontend, since only that one subnet is supported anyway.
*
* TODO: When the underlying Azure API is reworked to make more sense,
* or the app gateway service starts supporting the functionality
* that the underlying API implies is supported, this model and implementation should be revisited.
*/
ensureDefaultPrivateFrontend();
return this;
}
// Withers
@Override
public ApplicationGatewayImpl withExistingPublicIpAddress(PublicIpAddress publicIPAddress) {
ensureDefaultPublicFrontend().withExistingPublicIpAddress(publicIPAddress);
return this;
}
@Override
public ApplicationGatewayImpl withExistingPublicIpAddress(String resourceId) {
ensureDefaultPublicFrontend().withExistingPublicIpAddress(resourceId);
return this;
}
@Override
public ApplicationGatewayImpl withNewPublicIpAddress(Creatable creatable) {
final String name = ensureDefaultPublicFrontend().name();
this.creatablePipsByFrontend.put(name, this.addDependency(creatable));
return this;
}
@Override
public ApplicationGatewayImpl withNewPublicIpAddress() {
ensureDefaultPublicFrontend();
return this;
}
@Override
public ApplicationGatewayImpl withoutBackendFqdn(String fqdn) {
for (ApplicationGatewayBackend backend : this.backends.values()) {
((ApplicationGatewayBackendImpl) backend).withoutFqdn(fqdn);
}
return this;
}
@Override
public ApplicationGatewayImpl withoutBackendIPAddress(String ipAddress) {
for (ApplicationGatewayBackend backend : this.backends.values()) {
ApplicationGatewayBackendImpl backendImpl = (ApplicationGatewayBackendImpl) backend;
backendImpl.withoutIPAddress(ipAddress);
}
return this;
}
@Override
public ApplicationGatewayImpl withoutIPConfiguration(String ipConfigurationName) {
this.ipConfigs.remove(ipConfigurationName);
return this;
}
@Override
public ApplicationGatewayImpl withoutFrontend(String frontendName) {
this.frontends.remove(frontendName);
return this;
}
@Override
public ApplicationGatewayImpl withoutFrontendPort(String name) {
if (this.innerModel().frontendPorts() == null) {
return this;
}
for (int i = 0; i < this.innerModel().frontendPorts().size(); i++) {
ApplicationGatewayFrontendPort inner = this.innerModel().frontendPorts().get(i);
if (inner.name().equalsIgnoreCase(name)) {
this.innerModel().frontendPorts().remove(i);
break;
}
}
return this;
}
@Override
public ApplicationGatewayImpl withoutFrontendPort(int portNumber) {
for (int i = 0; i < this.innerModel().frontendPorts().size(); i++) {
ApplicationGatewayFrontendPort inner = this.innerModel().frontendPorts().get(i);
if (inner.port().equals(portNumber)) {
this.innerModel().frontendPorts().remove(i);
break;
}
}
return this;
}
@Override
public ApplicationGatewayImpl withoutSslCertificate(String name) {
this.sslCerts.remove(name);
return this;
}
@Override
public ApplicationGatewayImpl withoutAuthenticationCertificate(String name) {
this.authCertificates.remove(name);
return this;
}
@Override
public ApplicationGatewayImpl withoutProbe(String name) {
this.probes.remove(name);
return this;
}
@Override
public ApplicationGatewayImpl withoutListener(String name) {
this.listeners.remove(name);
return this;
}
@Override
public ApplicationGatewayImpl withoutRedirectConfiguration(String name) {
this.redirectConfigs.remove(name);
return this;
}
@Override
public ApplicationGatewayImpl withoutUrlPathMap(String name) {
// Remove associated request routing rule
for (ApplicationGatewayRequestRoutingRule rule : rules.values()) {
if (rule.urlPathMap() != null && name.equals(rule.urlPathMap().name())) {
rules.remove(rule.name());
break;
}
}
this.urlPathMaps.remove(name);
return this;
}
@Override
public ApplicationGatewayImpl withoutRequestRoutingRule(String name) {
this.rules.remove(name);
this.addedRuleCollection.removeRule(name);
return this;
}
@Override
public ApplicationGatewayImpl withoutBackend(String backendName) {
this.backends.remove(backendName);
return this;
}
@Override
public ApplicationGatewayImpl withHttp2() {
innerModel().withEnableHttp2(true);
return this;
}
@Override
public ApplicationGatewayImpl withoutHttp2() {
innerModel().withEnableHttp2(false);
return this;
}
@Override
public ApplicationGatewayImpl withAvailabilityZone(AvailabilityZoneId zoneId) {
if (this.innerModel().zones() == null) {
this.innerModel().withZones(new ArrayList());
}
if (!this.innerModel().zones().contains(zoneId.toString())) {
this.innerModel().zones().add(zoneId.toString());
}
return this;
}
@Override
public ApplicationGatewayBackendImpl updateBackend(String name) {
return (ApplicationGatewayBackendImpl) this.backends.get(name);
}
@Override
public ApplicationGatewayFrontendImpl updatePublicFrontend() {
return (ApplicationGatewayFrontendImpl) defaultPublicFrontend();
}
@Override
public ApplicationGatewayListenerImpl updateListener(String name) {
return (ApplicationGatewayListenerImpl) this.listeners.get(name);
}
@Override
public ApplicationGatewayRedirectConfigurationImpl updateRedirectConfiguration(String name) {
return (ApplicationGatewayRedirectConfigurationImpl) this.redirectConfigs.get(name);
}
@Override
public ApplicationGatewayRequestRoutingRuleImpl updateRequestRoutingRule(String name) {
return (ApplicationGatewayRequestRoutingRuleImpl) this.rules.get(name);
}
@Override
public ApplicationGatewayImpl withoutBackendHttpConfiguration(String name) {
this.backendConfigs.remove(name);
return this;
}
@Override
public ApplicationGatewayBackendHttpConfigurationImpl updateBackendHttpConfiguration(String name) {
return (ApplicationGatewayBackendHttpConfigurationImpl) this.backendConfigs.get(name);
}
@Override
public ApplicationGatewayIpConfigurationImpl updateIPConfiguration(String ipConfigurationName) {
return (ApplicationGatewayIpConfigurationImpl) this.ipConfigs.get(ipConfigurationName);
}
@Override
public ApplicationGatewayProbeImpl updateProbe(String name) {
return (ApplicationGatewayProbeImpl) this.probes.get(name);
}
@Override
public ApplicationGatewayIpConfigurationImpl updateDefaultIPConfiguration() {
return (ApplicationGatewayIpConfigurationImpl) this.defaultIPConfiguration();
}
@Override
public ApplicationGatewayIpConfigurationImpl defineDefaultIPConfiguration() {
return ensureDefaultIPConfig();
}
@Override
public ApplicationGatewayFrontendImpl definePublicFrontend() {
return ensureDefaultPublicFrontend();
}
@Override
public ApplicationGatewayFrontendImpl definePrivateFrontend() {
return ensureDefaultPrivateFrontend();
}
@Override
public ApplicationGatewayFrontendImpl updateFrontend(String frontendName) {
return (ApplicationGatewayFrontendImpl) this.frontends.get(frontendName);
}
@Override
public ApplicationGatewayUrlPathMapImpl updateUrlPathMap(String name) {
return (ApplicationGatewayUrlPathMapImpl) this.urlPathMaps.get(name);
}
// Getters
@Override
public Collection disabledSslProtocols() {
if (this.innerModel().sslPolicy() == null || this.innerModel().sslPolicy().disabledSslProtocols() == null) {
return new ArrayList<>();
} else {
return Collections.unmodifiableCollection(this.innerModel().sslPolicy().disabledSslProtocols());
}
}
@Override
public ApplicationGatewayFrontend defaultPrivateFrontend() {
// Default means the only private one or the one tracked as default, if more than one private present
Map privateFrontends = this.privateFrontends();
if (privateFrontends.size() == 1) {
this.defaultPrivateFrontend = (ApplicationGatewayFrontendImpl) privateFrontends.values().iterator().next();
} else if (this.frontends().size() == 0) {
this.defaultPrivateFrontend = null;
}
return this.defaultPrivateFrontend;
}
@Override
public ApplicationGatewayFrontend defaultPublicFrontend() {
// Default means the only public one or the one tracked as default, if more than one public present
Map publicFrontends = this.publicFrontends();
if (publicFrontends.size() == 1) {
this.defaultPublicFrontend = (ApplicationGatewayFrontendImpl) publicFrontends.values().iterator().next();
} else if (this.frontends().size() == 0) {
this.defaultPublicFrontend = null;
}
return this.defaultPublicFrontend;
}
@Override
public ApplicationGatewayIpConfiguration defaultIPConfiguration() {
// Default means the only one
if (this.ipConfigs.size() == 1) {
return this.ipConfigs.values().iterator().next();
} else {
return null;
}
}
@Override
public ApplicationGatewayListener listenerByPortNumber(int portNumber) {
ApplicationGatewayListener listener = null;
for (ApplicationGatewayListener l : this.listeners.values()) {
if (l.frontendPortNumber() == portNumber) {
listener = l;
break;
}
}
return listener;
}
@Override
public String getWebApplicationFirewallPolicyId() {
if (this.innerModel().firewallPolicy() == null) {
return null;
}
return this.innerModel().firewallPolicy().id();
}
@Override
public WebApplicationFirewallPolicy getWebApplicationFirewallPolicy() {
return getWebApplicationFirewallPolicyAsync().block();
}
@Override
public Mono getWebApplicationFirewallPolicyAsync() {
if (getWebApplicationFirewallPolicyId() == null) {
return Mono.empty();
}
return this
.manager()
.webApplicationFirewallPolicies()
.getByIdAsync(this.innerModel().firewallPolicy().id());
}
@Override
public ApplicationGatewaySslPolicy sslPolicy() {
return this.innerModel().sslPolicy();
}
@Override
public Map authenticationCertificates() {
return Collections.unmodifiableMap(this.authCertificates);
}
@Override
public boolean isHttp2Enabled() {
return ResourceManagerUtils.toPrimitiveBoolean(innerModel().enableHttp2());
}
@Override
public Map urlPathMaps() {
return Collections.unmodifiableMap(this.urlPathMaps);
}
@Override
public Set availabilityZones() {
Set zones = new TreeSet<>();
if (this.innerModel().zones() != null) {
for (String zone : this.innerModel().zones()) {
zones.add(AvailabilityZoneId.fromString(zone));
}
}
return Collections.unmodifiableSet(zones);
}
@Override
public Map backendHttpConfigurations() {
return Collections.unmodifiableMap(this.backendConfigs);
}
@Override
public Map backends() {
return Collections.unmodifiableMap(this.backends);
}
@Override
public Map requestRoutingRules() {
return Collections.unmodifiableMap(this.rules);
}
@Override
public Map frontends() {
return Collections.unmodifiableMap(this.frontends);
}
@Override
public Map probes() {
return Collections.unmodifiableMap(this.probes);
}
@Override
public Map sslCertificates() {
return Collections.unmodifiableMap(this.sslCerts);
}
@Override
public Map listeners() {
return Collections.unmodifiableMap(this.listeners);
}
@Override
public Map redirectConfigurations() {
return Collections.unmodifiableMap(this.redirectConfigs);
}
@Override
public Map ipConfigurations() {
return Collections.unmodifiableMap(this.ipConfigs);
}
@Override
public ApplicationGatewaySku sku() {
return this.innerModel().sku();
}
@Override
public ApplicationGatewayOperationalState operationalState() {
return this.innerModel().operationalState();
}
@Override
public Map frontendPorts() {
Map ports = new TreeMap<>();
if (this.innerModel().frontendPorts() != null) {
for (ApplicationGatewayFrontendPort portInner : this.innerModel().frontendPorts()) {
ports.put(portInner.name(), portInner.port());
}
}
return Collections.unmodifiableMap(ports);
}
@Override
public String frontendPortNameFromNumber(int portNumber) {
String portName = null;
for (Entry portEntry : this.frontendPorts().entrySet()) {
if (portNumber == portEntry.getValue()) {
portName = portEntry.getKey();
break;
}
}
return portName;
}
private SubResource defaultSubnetRef() {
ApplicationGatewayIpConfiguration ipConfig = defaultIPConfiguration();
if (ipConfig == null) {
return null;
} else {
return ipConfig.innerModel().subnet();
}
}
@Override
public String networkId() {
SubResource subnetRef = defaultSubnetRef();
if (subnetRef == null) {
return null;
} else {
return ResourceUtils.parentResourceIdFromResourceId(subnetRef.id());
}
}
@Override
public String subnetName() {
SubResource subnetRef = defaultSubnetRef();
if (subnetRef == null) {
return null;
} else {
return ResourceUtils.nameFromResourceId(subnetRef.id());
}
}
@Override
public String privateIpAddress() {
ApplicationGatewayFrontend frontend = defaultPrivateFrontend();
if (frontend == null) {
return null;
} else {
return frontend.privateIpAddress();
}
}
@Override
public IpAllocationMethod privateIpAllocationMethod() {
ApplicationGatewayFrontend frontend = defaultPrivateFrontend();
if (frontend == null) {
return null;
} else {
return frontend.privateIpAllocationMethod();
}
}
@Override
public boolean isPrivate() {
for (ApplicationGatewayFrontend frontend : this.frontends.values()) {
if (frontend.isPrivate()) {
return true;
}
}
return false;
}
@Override
public boolean isPublic() {
for (ApplicationGatewayFrontend frontend : this.frontends.values()) {
if (frontend.isPublic()) {
return true;
}
}
return false;
}
@Override
public Map publicFrontends() {
Map publicFrontends = new TreeMap<>();
for (ApplicationGatewayFrontend frontend : this.frontends().values()) {
if (frontend.isPublic()) {
publicFrontends.put(frontend.name(), frontend);
}
}
return Collections.unmodifiableMap(publicFrontends);
}
@Override
public Map privateFrontends() {
Map privateFrontends = new TreeMap<>();
for (ApplicationGatewayFrontend frontend : this.frontends.values()) {
if (frontend.isPrivate()) {
privateFrontends.put(frontend.name(), frontend);
}
}
return Collections.unmodifiableMap(privateFrontends);
}
@Override
public int instanceCount() {
if (this.sku() != null && this.sku().capacity() != null) {
return this.sku().capacity();
} else {
return 1;
}
}
@Override
public ApplicationGatewaySkuName size() {
if (this.sku() != null && this.sku().name() != null) {
return this.sku().name();
} else {
return ApplicationGatewaySkuName.STANDARD_SMALL;
}
}
@Override
public ApplicationGatewayTier tier() {
if (this.sku() != null && this.sku().tier() != null) {
return this.sku().tier();
} else {
return ApplicationGatewayTier.STANDARD;
}
}
@Override
public ApplicationGatewayAutoscaleConfiguration autoscaleConfiguration() {
return this.innerModel().autoscaleConfiguration();
}
@Override
public ApplicationGatewayWebApplicationFirewallConfiguration webApplicationFirewallConfiguration() {
return this.innerModel().webApplicationFirewallConfiguration();
}
@Override
public Update withoutPublicIpAddress() {
return this.withoutPublicFrontend();
}
// Actions
@Override
public void start() {
this.startAsync().block();
}
@Override
public void stop() {
this.stopAsync().block();
}
@Override
public Mono startAsync() {
Mono startObservable =
this.manager().serviceClient().getApplicationGateways().startAsync(this.resourceGroupName(), this.name());
Mono refreshObservable = refreshAsync();
// Refresh after start to ensure the app gateway operational state is updated
return Flux.concat(startObservable, refreshObservable).then();
}
@Override
public Mono stopAsync() {
Mono stopObservable =
this.manager().serviceClient().getApplicationGateways().stopAsync(this.resourceGroupName(), this.name());
Mono refreshObservable = refreshAsync();
// Refresh after stop to ensure the app gateway operational state is updated
return Flux.concat(stopObservable, refreshObservable).then();
}
private ApplicationGatewaySslPolicy ensureSslPolicy() {
ApplicationGatewaySslPolicy policy = this.innerModel().sslPolicy();
if (policy == null) {
policy = new ApplicationGatewaySslPolicy();
this.innerModel().withSslPolicy(policy);
}
List protocols = policy.disabledSslProtocols();
if (protocols == null) {
protocols = new ArrayList<>();
policy.withDisabledSslProtocols(protocols);
}
return policy;
}
@Override
public Map checkBackendHealth() {
return this.checkBackendHealthAsync().block();
}
@Override
public Mono> checkBackendHealthAsync() {
return this
.manager()
.serviceClient()
.getApplicationGateways()
// TODO(not known): Last minutes
.backendHealthAsync(this.resourceGroupName(), this.name(), null)
.map(
inner -> {
Map backendHealths = new TreeMap<>();
if (inner != null) {
for (ApplicationGatewayBackendHealthPool healthInner : inner.backendAddressPools()) {
ApplicationGatewayBackendHealth backendHealth =
new ApplicationGatewayBackendHealthImpl(healthInner, ApplicationGatewayImpl.this);
backendHealths.put(backendHealth.name(), backendHealth);
}
}
return Collections.unmodifiableMap(backendHealths);
});
}
/*
* Legacy Gateways don't support priority.
*/
private boolean supportsRulePriority() {
ApplicationGatewayTier tier = tier();
ApplicationGatewaySkuName sku = size();
return tier != ApplicationGatewayTier.STANDARD
&& tier != ApplicationGatewayTier.WAF
&& sku != ApplicationGatewaySkuName.STANDARD_SMALL && sku != ApplicationGatewaySkuName.STANDARD_MEDIUM
&& sku != ApplicationGatewaySkuName.STANDARD_LARGE && sku != ApplicationGatewaySkuName.WAF_MEDIUM
&& sku != ApplicationGatewaySkuName.WAF_LARGE;
}
private void ensureWafV2() {
if (this.tier() != ApplicationGatewayTier.WAF_V2) {
throw new IllegalStateException("WAF policy can only be used with WAF_V2 tier");
}
}
/**
* Keeps track of newly added request routing rules, for priority auto-assignment if not specified for them.
*/
private static class AddedRuleCollection {
private static final int AUTO_ASSIGN_PRIORITY_START = 10010;
private static final int MAX_PRIORITY = 20000;
private static final int PRIORITY_INTERVAL = 10;
private final Map ruleMap = new LinkedHashMap<>();
/*
* Remove a rule from priority auto-assignment.
*/
void removeRule(String name) {
ruleMap.remove(name);
}
/*
* Add a rule for priority auto-assignment while preserving the adding order.
*/
void addRule(ApplicationGatewayRequestRoutingRuleImpl rule) {
ruleMap.put(rule.name(), rule);
}
/*
* Auto-assign priority values for rules without priority (ranging from 10010 to 20000).
* Rules defined later in the definition chain will have larger priority values over those defined earlier.
*/
void autoAssignPriorities(Collection existingRules, String gatewayName) {
// list all existing rule priorities
Set existingPriorities = existingRules
.stream()
.map(ApplicationGatewayRequestRoutingRule::priority)
.filter(Objects::nonNull)
.collect(Collectors.toSet());
// for all newly add rules without priority, assign priorities in the order they were added
int nextPriorityToAssign = AUTO_ASSIGN_PRIORITY_START;
for (ApplicationGatewayRequestRoutingRuleImpl rule : ruleMap.values()) {
if (rule.priority() != null) {
continue;
}
boolean assigned = false;
for (int priority = nextPriorityToAssign; priority <= MAX_PRIORITY; priority += PRIORITY_INTERVAL) {
if (existingPriorities.contains(priority)) {
continue;
}
rule.withPriority(priority);
assigned = true;
existingPriorities.add(priority);
nextPriorityToAssign = priority + PRIORITY_INTERVAL;
break;
}
if (!assigned) {
throw new IllegalStateException(
String.format("Failed to auto assign priority for rule: %s, gateway: %s", rule.name(), gatewayName));
}
}
}
}
}