Class: OCI::NetworkFirewall::Models::SecurityRule

Inherits:

Object

• Object
• OCI::NetworkFirewall::Models::SecurityRule

Defined in:

lib/oci/network_firewall/models/security_rule.rb

Overview

Security Rule used in the firewall policy rules. Security Rules determine whether to block or allow a session based on traffic attributes, such as the source and destination IP address, protocol/port, and the HTTP(S) target URL.

Constant Summary

ACTION_ENUM =

[
  ACTION_ALLOW = 'ALLOW'.freeze,
  ACTION_DROP = 'DROP'.freeze,
  ACTION_REJECT = 'REJECT'.freeze,
  ACTION_INSPECT = 'INSPECT'.freeze,
  ACTION_UNKNOWN_ENUM_VALUE = 'UNKNOWN_ENUM_VALUE'.freeze
].freeze

INSPECTION_ENUM =

[
  INSPECTION_INTRUSION_DETECTION = 'INTRUSION_DETECTION'.freeze,
  INSPECTION_INTRUSION_PREVENTION = 'INTRUSION_PREVENTION'.freeze,
  INSPECTION_UNKNOWN_ENUM_VALUE = 'UNKNOWN_ENUM_VALUE'.freeze
].freeze

Instance Attribute Summary

• #action ⇒ String

  [Required] Types of Action on the Traffic flow.

• #condition ⇒ OCI::NetworkFirewall::Models::SecurityRuleMatchCriteria

  This attribute is required.

• #inspection ⇒ String

  Type of inspection to affect the Traffic flow.

• #name ⇒ String

  [Required] Name for the Security rule, must be unique within the policy.

• #parent_resource_id ⇒ String

  [Required] OCID of the Network Firewall Policy this security rule belongs to.

• #position ⇒ OCI::NetworkFirewall::Models::RulePosition

Class Method Summary

• .attribute_map ⇒ Object

  Attribute mapping from ruby-style variable name to JSON key.

• .swagger_types ⇒ Object

  Attribute type mapping.

Instance Method Summary

• #==(other) ⇒ Object

  Checks equality by comparing each attribute.

• #build_from_hash(attributes) ⇒ Object

  Builds the object from hash.

• #eql?(other) ⇒ Boolean
• #hash ⇒ Fixnum

  Calculates hash code according to all attributes.

• #initialize(attributes = {}) ⇒ SecurityRule constructor

  Initializes the object.

• #to_hash ⇒ Hash

  Returns the object in the form of hash.

• #to_s ⇒ String

  Returns the string representation of the object.

Constructor Details

#initialize(attributes = {}) ⇒ SecurityRule

Initializes the object

Parameters:

• attributes (Hash) (defaults to: {}) —

  Model attributes in the form of hash

Options Hash (attributes):

• :name (String) —

  The value to assign to the #name property

• :condition (OCI::NetworkFirewall::Models::SecurityRuleMatchCriteria) —

  The value to assign to the #condition property

• :action (String) —

  The value to assign to the #action property

• :inspection (String) —

  The value to assign to the #inspection property

• :position (OCI::NetworkFirewall::Models::RulePosition) —

  The value to assign to the #position property

• :parent_resource_id (String) —

  The value to assign to the #parent_resource_id property

# File 'lib/oci/network_firewall/models/security_rule.rb', line 102

def initialize(attributes = {})
  return unless attributes.is_a?(Hash)

  # convert string to symbol for hash key
  attributes = attributes.each_with_object({}) { |(k, v), h| h[k.to_sym] = v }

  self.name = attributes[:'name'] if attributes[:'name']

  self.condition = attributes[:'condition'] if attributes[:'condition']

  self.action = attributes[:'action'] if attributes[:'action']

  self.inspection = attributes[:'inspection'] if attributes[:'inspection']

  self.position = attributes[:'position'] if attributes[:'position']

  self.parent_resource_id = attributes[:'parentResourceId'] if attributes[:'parentResourceId']

  raise 'You cannot provide both :parentResourceId and :parent_resource_id' if attributes.key?(:'parentResourceId') && attributes.key?(:'parent_resource_id')

  self.parent_resource_id = attributes[:'parent_resource_id'] if attributes[:'parent_resource_id']
end

Instance Attribute Details

#action ⇒ String

[Required] Types of Action on the Traffic flow.

• ALLOW - Allows the traffic.

• DROP - Silently drops the traffic, e.g. without sending a TCP reset.

• REJECT - Rejects the traffic, sending a TCP reset to client and/or server as applicable.

• INSPECT - Inspects traffic for vulnerability as specified in inspection, which may result in rejection.

Returns:

• (String)

# File 'lib/oci/network_firewall/models/security_rule.rb', line 45

def action
  @action
end

#condition ⇒ OCI::NetworkFirewall::Models::SecurityRuleMatchCriteria

This attribute is required.

Returns:

• (OCI::NetworkFirewall::Models::SecurityRuleMatchCriteria)

# File 'lib/oci/network_firewall/models/security_rule.rb', line 35

def condition
  @condition
end

#inspection ⇒ String

Type of inspection to affect the Traffic flow. This is only applicable if action is INSPECT.

• INTRUSION_DETECTION - Intrusion Detection.

• INTRUSION_PREVENTION - Intrusion Detection and Prevention. Traffic classified as potentially malicious will be rejected as described in type.

Returns:

• (String)

# File 'lib/oci/network_firewall/models/security_rule.rb', line 53

def inspection
  @inspection
end

#name ⇒ String

[Required] Name for the Security rule, must be unique within the policy.

Returns:

• (String)

# File 'lib/oci/network_firewall/models/security_rule.rb', line 31

def name
  @name
end

#parent_resource_id ⇒ String

[Required] OCID of the Network Firewall Policy this security rule belongs to.

Returns:

• (String)

# File 'lib/oci/network_firewall/models/security_rule.rb', line 60

def parent_resource_id
  @parent_resource_id
end

#position ⇒ OCI::NetworkFirewall::Models::RulePosition

Returns:

• (OCI::NetworkFirewall::Models::RulePosition)

# File 'lib/oci/network_firewall/models/security_rule.rb', line 56

def position
  @position
end

Class Method Details

.attribute_map ⇒ Object

Attribute mapping from ruby-style variable name to JSON key.

# File 'lib/oci/network_firewall/models/security_rule.rb', line 63

def self.attribute_map
  {
    # rubocop:disable Style/SymbolLiteral
    'name': :'name',
    'condition': :'condition',
    'action': :'action',
    'inspection': :'inspection',
    'position': :'position',
    'parent_resource_id': :'parentResourceId'
    # rubocop:enable Style/SymbolLiteral
  }
end

.swagger_types ⇒ Object

Attribute type mapping.

# File 'lib/oci/network_firewall/models/security_rule.rb', line 77

def self.swagger_types
  {
    # rubocop:disable Style/SymbolLiteral
    'name': :'String',
    'condition': :'OCI::NetworkFirewall::Models::SecurityRuleMatchCriteria',
    'action': :'String',
    'inspection': :'String',
    'position': :'OCI::NetworkFirewall::Models::RulePosition',
    'parent_resource_id': :'String'
    # rubocop:enable Style/SymbolLiteral
  }
end

Instance Method Details

#==(other) ⇒ Object

Checks equality by comparing each attribute.

Parameters:

• other (Object) —

  the other object to be compared

# File 'lib/oci/network_firewall/models/security_rule.rb', line 158

def ==(other)
  return true if equal?(other)

  self.class == other.class &&
    name == other.name &&
    condition == other.condition &&
    action == other.action &&
    inspection == other.inspection &&
    position == other.position &&
    parent_resource_id == other.parent_resource_id
end

#build_from_hash(attributes) ⇒ Object

Builds the object from hash

Parameters:

• attributes (Hash) —

  Model attributes in the form of hash

Returns:

• (Object) —

  Returns the model itself

# File 'lib/oci/network_firewall/models/security_rule.rb', line 193

def build_from_hash(attributes)
  return nil unless attributes.is_a?(Hash)

  self.class.swagger_types.each_pair do |key, type|
    if type =~ /^Array<(.*)>/i
      # check to ensure the input is an array given that the the attribute
      # is documented as an array but the input is not
      if attributes[self.class.attribute_map[key]].is_a?(Array)
        public_method("#{key}=").call(
          attributes[self.class.attribute_map[key]]
            .map { |v| OCI::Internal::Util.convert_to_type(Regexp.last_match(1), v) }
        )
      end
    elsif !attributes[self.class.attribute_map[key]].nil?
      public_method("#{key}=").call(
        OCI::Internal::Util.convert_to_type(type, attributes[self.class.attribute_map[key]])
      )
    end
    # or else data not found in attributes(hash), not an issue as the data can be optional
  end

  self
end

#eql?(other) ⇒ Boolean

Parameters:

• other (Object) —

  the other object to be compared

Returns:

• (Boolean)

See Also:

• `==` method

# File 'lib/oci/network_firewall/models/security_rule.rb', line 173

def eql?(other)
  self == other
end

#hash ⇒ Fixnum

Calculates hash code according to all attributes.

Returns:

• (Fixnum) —

  Hash code

# File 'lib/oci/network_firewall/models/security_rule.rb', line 182

def hash
  [name, condition, action, inspection, position, parent_resource_id].hash
end

#to_hash ⇒ Hash

Returns the object in the form of hash

Returns:

• (Hash) —

  Returns the object in the form of hash

# File 'lib/oci/network_firewall/models/security_rule.rb', line 226

def to_hash
  hash = {}
  self.class.attribute_map.each_pair do |attr, param|
    value = public_method(attr).call
    next if value.nil? && !instance_variable_defined?("@#{attr}")

    hash[param] = _to_hash(value)
  end
  hash
end

#to_s ⇒ String

Returns the string representation of the object

Returns:

• (String) —

  String presentation of the object

# File 'lib/oci/network_firewall/models/security_rule.rb', line 220

def to_s
  to_hash.to_s
end