library policy create security groups up-front
minor improvement to the library policy to improve robustness. Because actions by default execute in asynchronously, if we wait to create the security group until the security group is needed, the policy may attempt to attach to a security group before it is created. Change-Id: I0c2b1939c5b48d4576f821b482f120537c923808
This commit is contained in:
parent
c86a2f5d0c
commit
c77c8dcf97
|
@ -75,12 +75,12 @@ rules:
|
|||
-
|
||||
rule: >
|
||||
device_to_sg(device_id, sg_id) :-
|
||||
neutronv2:security_group_port_bindings(port_id=port_id, security_group_id=sg_id),
|
||||
neutronv2:security_group_port_bindings(port_id=port_id, security_group_id=sg_id),
|
||||
neutronv2:ports(id=port_id, device_id=device_id)
|
||||
-
|
||||
rule: >
|
||||
zone_missing_sg(zone) :-
|
||||
server_security_zone(_, zone),
|
||||
security_zone_tags(zone),
|
||||
NOT security_group_names(zone)
|
||||
-
|
||||
rule: >
|
||||
|
|
Loading…
Reference in New Issue