-
Notifications
You must be signed in to change notification settings - Fork 17
/
ACS-SLB-BulkyModifyAccessControlListEntry.yml
123 lines (123 loc) · 3.52 KB
/
ACS-SLB-BulkyModifyAccessControlListEntry.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
FormatVersion: OOS-2019-06-01
Description:
en: Bulky modify access control list entry
zh-cn: 批量修改访问控制策略组中的IP条目
name-en: ACS-SLB-BulkyModifyAccessControlListEntry
name-zh-cn: 批量修改负载均衡访问控制策略组中的IP条目
categories:
- computenest
Parameters:
regionId:
Type: String
Label:
en: RegionId
zh-cn: 地域ID
AssociationProperty: RegionId
Default: '{{ ACS::RegionId }}'
action:
Label:
en: Action
zh-cn: 修改方式
Type: String
AllowedValues:
- Add
- Remove
aclIds:
Label:
en: AclIds
zh-cn: 访问控制策略组ID
AssociationProperty: ALIYUN::SLB::ACL::ACLId
AssociationPropertyMetadata:
RegionId: regionId
Type: List
aclEntrys:
Label:
en: AclEntrys
zh-cn: 设置访问控制策略组
Description:
en: <ul class= "UL" >
<li class= "li" > format:[{"entry":"10.0.******/24", "comment":"privaterule1" },{ "entry":"192.168.******/16","comment":"privaterule2" } ]</li>
<li class= "li" >entry:IP entries to be added in the access control policy group. You can specify IP address segments (CIDR blocks). Multiple IP address segments are separated by commas</ Li>
<li class= "li" >comment:notes of access control policy group</ Li>
</ul>
zh-cn: <ul class="ul">
<li class="li">格式:[{"entry":"10.0.**.**/24","comment":"privaterule1"},{"entry":"192.168.**.**/16","comment":"privaterule2"}]</li>
<li class="li">entry:访问控制策略组中要添加的IP条目,可以指定IP地址段(CIDR block),多个IP地址段之间用逗号隔开。</li>
<li class="li">comment:访问控制策略组备注说明。</li>
</ul>
Type: String
rateControl:
Label:
en: RateControl
zh-cn: 任务执行的并发比率
Type: Json
AssociationProperty: RateControl
Default:
Mode: Concurrency
MaxErrors: 0
Concurrency: 10
OOSAssumeRole:
Label:
en: OOSAssumeRole
zh-cn: OOS扮演的RAM角色
Type: String
Default: ''
RamRole: '{{ OOSAssumeRole }}'
Tasks:
- Name: addAccessControlListEntrys
When:
'Fn::Equals':
- '{{ action }}'
- Add
Action: ACS::ExecuteApi
Description:
en: Add access control list entry
zh-cn: 添加访问控制策略组中的IP条目
Properties:
Service: SLB
API: AddAccessControlListEntry
Parameters:
RegionId: '{{ regionId }}'
AclId: '{{ ACS::TaskLoopItem }}'
AclEntrys: '{{ aclEntrys }}'
Loop:
RateControl: '{{ rateControl }}'
Items: '{{ aclIds }}'
- Name: removeAccessControlListEntry
When:
'Fn::Equals':
- '{{ action }}'
- Remove
Action: ACS::ExecuteApi
Description:
en: Remove access control list entry
zh-cn: 删除访问控制策略组中的IP条目
Properties:
Service: SLB
API: RemoveAccessControlListEntry
Parameters:
RegionId: '{{ regionId }}'
AclId: '{{ ACS::TaskLoopItem }}'
AclEntrys: '{{ aclEntrys }}'
Loop:
RateControl: '{{ rateControl }}'
Items: '{{ aclIds }}'
Metadata:
ALIYUN::OOS::Interface:
ParameterGroups:
- Parameters:
- regionId
- action
- aclIds
- aclEntrys
Label:
default:
zh-cn: 参数设置
en: Configure Parameters
- Parameters:
- rateControl
- OOSAssumeRole
Label:
default:
zh-cn: 高级选项
en: Control Options