library policy create security groups up-front

minor improvement to the library policy to improve robustness.
Because actions by default execute in asynchronously, if we wait
to create the security group until the security group is needed,
the policy may attempt to attach to a security group before it is
created.

Change-Id: I0c2b1939c5b48d4576f821b482f120537c923808
This commit is contained in:
Eric K 2018-07-31 18:49:18 -07:00 committed by Eric Kao
parent c86a2f5d0c
commit c77c8dcf97
1 changed files with 2 additions and 2 deletions

View File

@ -75,12 +75,12 @@ rules:
-
rule: >
device_to_sg(device_id, sg_id) :-
neutronv2:security_group_port_bindings(port_id=port_id, security_group_id=sg_id),
neutronv2:security_group_port_bindings(port_id=port_id, security_group_id=sg_id),
neutronv2:ports(id=port_id, device_id=device_id)
-
rule: >
zone_missing_sg(zone) :-
server_security_zone(_, zone),
security_zone_tags(zone),
NOT security_group_names(zone)
-
rule: >