Home Explore Help
Sign In
golang
/
netmaker
mirror of https://github.com/gravitl/netmaker
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Revert "check for custom all policies"

This reverts commit df3662f0ccfaa9a8b3426d04b7e5ae4c8dfa5007.
abhishek9686 10 months ago
parent
df3662f0cc
commit
35942a50b8
1 changed files with 9 additions and 21 deletions
Unified View Show Diff Stats
  1. 9 21
      logic/acls.go

+ 9 - 21
logic/acls.go
View File 

@@ -54,6 +54,10 @@ func CreateDefaultAclNetworkPolicies(netID models.NetworkID) {
 
 					ID:    models.UserAclID,
 
 					ID:    models.UserAclID,
 
 					Value: "*",
 
 					Value: "*",
 
 				},
 
 				},
 
+				{
 
+					ID:    models.UserGroupAclID,
 
+					Value: "*",
 
+				},
 
 			},
 
 			},
 
 			Dst: []models.AclPolicyTag{{
 
 			Dst: []models.AclPolicyTag{{
 
 				ID:    models.DeviceAclID,
 
 				ID:    models.DeviceAclID,
 
@@ -281,27 +285,6 @@ func GetDefaultPolicy(netID models.NetworkID, ruleType models.AclPolicyType) (mo
 
 	if err != nil {
 
 	if err != nil {
 
 		return models.Acl{}, errors.New("default rule not found")
 
 		return models.Acl{}, errors.New("default rule not found")
 
 	}
 
 	}
 
-	if acl.Enabled {
 
-		return acl, nil
 
-	}
 
-	// check if there are any custom all policies
 
-	policies, _ := ListAcls(netID)
 
-	for _, policy := range policies {
 
-		if !policy.Enabled {
 
-			continue
 
-		}
 
-		if policy.RuleType == ruleType {
 
-			dstMap := convAclTagToValueMap(policy.Dst)
 
-			srcMap := convAclTagToValueMap(policy.Dst)
 
-			if _, ok := srcMap["*"]; ok {
 
-				if _, ok := dstMap["*"]; ok {
 
-					return policy, nil
 
-				}
 
-			}
 
-		}
 
-
 
-	}
 
-
 
 	return acl, nil
 
 	return acl, nil
 
 }
 
 }
 
 
 
@@ -484,6 +467,11 @@ func IsNodeAllowedToCommunicate(node, peer models.Node) bool {
 
 		// fmt.Printf("\n======> DSTMAP: %+v\n", dstMap)
 
 		// fmt.Printf("\n======> DSTMAP: %+v\n", dstMap)
 
 		// fmt.Printf("\n======> node Tags: %+v\n", node.Tags)
 
 		// fmt.Printf("\n======> node Tags: %+v\n", node.Tags)
 
 		// fmt.Printf("\n======> peer Tags: %+v\n", peer.Tags)
 
 		// fmt.Printf("\n======> peer Tags: %+v\n", peer.Tags)
 
+		if _, ok := srcMap["*"]; ok {
 
+			if _, ok := dstMap["*"]; ok {
 
+				return true
 
+			}
 
+		}
 
 		for tagID := range node.Tags {
 
 		for tagID := range node.Tags {
 
 			if _, ok := dstMap[tagID.String()]; ok {
 
 			if _, ok := dstMap[tagID.String()]; ok {
 
 				if _, ok := srcMap["*"]; ok {
 
 				if _, ok := srcMap["*"]; ok {