Merge pull request #205 from vmware/development

pyVMC 2.0

Author: Chris White

Diff for: .gitignore

@@ -0,0 +1,4 @@
+config.ini
+__pycache__
+.DS_Store
+

Diff for: Dockerfile

@@ -1,4 +1,4 @@
-FROM python:3.7-alpine
+FROM python:3.10-alpine
 
 COPY . /app
 

Diff for: README.md

@@ -4,17 +4,9 @@ strCSPProdURL   = https://console.cloud.vmware.com
 strVCDRProdURL =  https://vcdr-xxx-xxx-xxx-xxx.app.vcdr.vmware.com/
 
 refresh_Token   = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
-org_id          = xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
-sddc_id         = xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
-
-[vtcConfig]
-MyAWS           = AWS_account
-AWS_region      = us-west-2
-DXGW_id         = xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
-DXGW_owner      = DXGW account owner
+#OR
+oauth_clientId  = xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
+oauth_clientSecret = xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
 
-[tkgConfig]
-egress_CIDR     = x.x.x.x/x
-ingress_CIDR    = x.x.x.x/x
-namespace_CIDR  = x.x.x.x/x
-service_CIDR    = x.x.x.x/x
+org_id          = xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
+sddc_id         = xxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Diff for: README.pdf

@@ -0,0 +1,27 @@
+usage:  csp [-h]
+            {show-csp-services,show-csp-service-roles,get-access-token,add-users-to-csp-group,show-csp-group-diff,show-csp-group-members,show-csp-groups,search-csp-org-users,find-csp-user-by-service-role,show-org-users}
+            ...
+
+positional arguments:
+  {show-csp-services,show-csp-service-roles,get-access-token,add-users-to-csp-group,show-csp-group-diff,show-csp-group-members,show-csp-groups,search-csp-org-users,find-csp-user-by-service-role,show-org-users}
+                                        csp sub-command help
+    show-csp-services                   Show the entitled services in the
+                                        VMware Cloud Service Console.
+    show-csp-service-roles              Show the entitled service roles in the
+                                        VMware Cloud Service Console.
+    get-access-token                    show your access token
+    add-users-to-csp-group              CSP user to a group
+    show-csp-group-diff                 this compares the roles in the
+                                        specified group with every user in the
+                                        org and prints out a user-by-user diff
+    show-csp-group-members              show CSP group members
+    show-csp-groups                     To show CSP groups which contain
+                                        GROUP_SEARCH_TERM string
+    search-csp-org-users                Search for users in the CSP or org.
+    find-csp-user-by-service-role       Search for CSP users with a specific
+                                        service role. First use show-csp-
+                                        service-roles to see entitled roles
+    show-org-users                      Show all organization users
+
+optional arguments:
+  -h, --help                            show this help message and exit

Diff for: config.ini.example

@@ -0,0 +1,17 @@
+usage:  dfw [-h]
+            {new-dfw-rule,new-dfw-section,remove-dfw-rule,remove-dfw-section,show-dfw-section,show-dfw-section-rules}
+            ...
+
+positional arguments:
+  {new-dfw-rule,new-dfw-section,remove-dfw-rule,remove-dfw-section,show-dfw-section,show-dfw-section-rules}
+                        dfw sub-command help
+    new-dfw-rule        create a new DFW security rule
+    new-dfw-section     create a new DFW section
+    remove-dfw-rule     delete a DFW rule
+    remove-dfw-section  delete a DFW section
+    show-dfw-section    show the DFW sections
+    show-dfw-section-rules
+                        show the DFW security rules within a section
+
+optional arguments:
+  -h, --help            show this help message and exit

Diff for: docs/1-csp_help.txt

@@ -0,0 +1,34 @@
+usage:  nsxaf [-h]
+              {show-nsxaf-status,show-ids-cluster-status,enable-cluster-ids,disable-cluster-ids,enable-all-cluster-ids,disable-all-cluster-ids,enable-ids-auto-update,ids-update-signatures,show-ids-signature-versions,show-ids-profiles,search-product-affected,create-ids-profile,show-ids-policies,create-ids-policy,show-ids-rules,create-ids-rule}
+              ...
+
+positional arguments:
+  {show-nsxaf-status,show-ids-cluster-status,enable-cluster-ids,disable-cluster-ids,enable-all-cluster-ids,disable-all-cluster-ids,enable-ids-auto-update,ids-update-signatures,show-ids-signature-versions,show-ids-profiles,search-product-affected,create-ids-profile,show-ids-policies,create-ids-policy,show-ids-rules,create-ids-rule}
+                                        nsxaf sub-command help
+    show-nsxaf-status                   Display the status of the NSX Advanced
+                                        Firewall Add-on
+    show-ids-cluster-status             Show IDS status for each cluster in
+                                        the SDDC
+    enable-cluster-ids                  Enable IDS on cluster
+    disable-cluster-ids                 Disable IDS on cluster
+    enable-all-cluster-ids              Enable IDS on all clusters
+    disable-all-cluster-ids             Disable IDS on all clusters
+    enable-ids-auto-update              Enable IDS signature auto update
+    ids-update-signatures               Force update of IDS signatures
+    show-ids-signature-versions         Show downloaded signature versions
+    show-ids-profiles                   Show all IDS profiles
+    search-product-affected             Search through the active IDS
+                                        signature for specific product
+                                        affected. Useful when building an IDS
+                                        Profile
+    create-ids-profile                  Create an IDS profile with either
+                                        Product Affected, CVSS or both.
+    show-ids-policies                   List all IDS policies
+    create-ids-policy                   Create an IDS policy
+    show-ids-rules                      List all IDS rules
+    create-ids-rule                     Create an IDS rule using previously
+                                        created IDS profile and inventory
+                                        groups
+
+optional arguments:
+  -h, --help                            show this help message and exit

Diff for: docs/10-dfw_help.txt

@@ -0,0 +1,18 @@
+usage:  inventory [-h]
+                  {new-group,remove-group,show-group,show-group-association,new-service,remove-service,show-services}
+                  ...
+
+positional arguments:
+  {new-group,remove-group,show-group,show-group-association,new-service,remove-service,show-services}
+                        inventory sub-command help
+    new-group           create a new group
+    remove-group        remove a group
+    show-group          show existing groups
+    show-group-association
+                        show security rules used by a groups
+    new-service         create a new service
+    remove-service      remove a service
+    show-services       show services
+
+optional arguments:
+  -h, --help            show this help message and exit

Diff for: docs/11-nsxaf_help.txt

@@ -0,0 +1,29 @@
+usage:  system [-h]
+               {show-dns-services,show-dns-zones,new-sddc-public-ip,remove-sddc-public-ip,set-sddc-public-ip,show-sddc-public-ip,mtu,asn,dx-admin-cost,show-egress-interface-counters,show-routes}
+               ...
+
+positional arguments:
+  {show-dns-services,show-dns-zones,new-sddc-public-ip,remove-sddc-public-ip,set-sddc-public-ip,show-sddc-public-ip,mtu,asn,dx-admin-cost,show-egress-interface-counters,show-routes}
+                        system sub-command help
+    show-dns-services   Show currently configured DNS services
+    show-dns-zones      Show currently configured DNS zone services.
+    new-sddc-public-ip  request a new public IP
+    remove-sddc-public-ip
+                        remove an existing public IP
+    set-sddc-public-ip  update the description of an existing public IP
+    show-sddc-public-ip
+                        show the public IPs
+    mtu                 Show and update configuration data associated with
+                        Maximum Transmission Unit value for the Intranet
+                        Interface.
+    asn                 Show and update configuration data associated with
+                        Autonomous System Number value for the Intranet
+                        Interface.
+    dx-admin-cost       Use to view currently configured routing preference /
+                        admin cost - VPN or DX.
+    show-egress-interface-counters
+                        show current Internet interface egress counters
+    show-routes         Show SDDC routes
+
+optional arguments:
+  -h, --help            show this help message and exit

Diff for: docs/12-inventory_help.txt

@@ -0,0 +1,13 @@
+usage:  search-nsx [-h] [--nsxm [NSXM]]
+                   [-ot {BgpNeighborConfig,BgpRoutingConfig,Group,IdsSignature,PrefixList,RouteBasedIPSecVPNSession,Segment,Service,StaticRoute,Tier0,Tier1,VirtualMachine,VirtualNetworkInterface}]
+                   [-oid OBJECT_ID]
+
+optional arguments:
+  -h, --help                            show this help message and exit
+  --nsxm [NSXM]                         Used to specify NSX Manager instead of
+                                        NSX proxy (Default).
+  -ot {BgpNeighborConfig,BgpRoutingConfig,Group,IdsSignature,PrefixList,RouteBasedIPSecVPNSession,Segment,Service,StaticRoute,Tier0,Tier1,VirtualMachine,VirtualNetworkInterface}, --object_type {BgpNeighborConfig,BgpRoutingConfig,Group,IdsSignature,PrefixList,RouteBasedIPSecVPNSession,Segment,Service,StaticRoute,Tier0,Tier1,VirtualMachine,VirtualNetworkInterface}
+                                        The type of object to search for.
+  -oid OBJECT_ID, --object_id OBJECT_ID
+                                        The name of the object you are
+                                        searching for.

Diff for: docs/13-system_help.txt

@@ -0,0 +1,14 @@
+usage:  vcdr [-h] {scfs,pg,snaps,rsddc,psite,vms} ...
+
+positional arguments:
+  {scfs,pg,snaps,rsddc,psite,vms}
+                        vcdr sub-command help
+    scfs                VCDR cloud file system - use '-h' for help.
+    pg                  VCDR Protection Groups - use '-h' for help.
+    snaps               VCDR Snapshots - use '-h' for help.
+    rsddc               VCDR Recovery SDDC - use '-h' for help.
+    psite               VCDR Protected Site - use '-h' for help.
+    vms                 VCDR cloud file system - use '-h' for help.
+
+optional arguments:
+  -h, --help            show this help message and exit

Diff for: docs/14-search-nsx_help.txt

@@ -0,0 +1,22 @@
+usage:  flexcomp [-h]
+        {activity-status,show-all-namespaces,validate-network,create-flexcompute,delete-flexcomp,show-flex-comp-regions,show-flex-comp-templates,show-all-vms,show-all-images,create-vm,power-operation,delete-vm}
+        ...
+
+positional arguments:
+  {activity-status,show-all-namespaces,validate-network,create-flexcompute,delete-flexcomp,show-flex-comp-regions,show-flex-comp-templates,show-all-vms,show-all-images,create-vm,power-operation,delete-vm}
+                                        flexcomp sub-command help
+    activity-status                     Get activity status of long running tasks
+    show-all-namespaces                 Show all present Cloud Flex Compute Name Spaces
+    validate-network                    Validate network CIDR before creating Cloud Flex Compute Name Space
+    create-flexcompute                  Create new Cloud Flex Compute
+    delete-flexcomp                     Delete existing Cloud Flex Compute
+    show-flex-comp-regions              Show available Cloud Flex Compute regions
+    show-flex-comp-templates            Show available Cloud Flex Compute resource templates to create Name Space
+    show-all-vms                        Show all VMs in Cloud Flex Compute instance
+    show-all-images                     Show all images available to create VMs from
+    create-vm                           Create VM
+    power-operation                     Perform Power Operations on VM
+    delete-vm                           Delete VM. Make sure VM is in powerd OFF state.
+
+options:
+  -h, --help

Diff for: docs/15-vcdr_help.txt

@@ -0,0 +1,28 @@
+usage:  sddc [-h]
+             {show-compatible-subnets,show-connected-accounts,set-sddc-connected-services,show-sddc-connected-vpc,show-shadow-account,show-sddc-state,show-sddc-hosts,show-sddcs,show-vms}
+             ...
+
+positional arguments:
+  {show-compatible-subnets,show-connected-accounts,set-sddc-connected-services,show-sddc-connected-vpc,show-shadow-account,show-sddc-state,show-sddc-hosts,show-sddcs,show-vms}
+                                        sddc sub-command help
+    show-compatible-subnets             show compatible native AWS subnets
+                                        connected to the SDDC
+    show-connected-accounts             show native AWS accounts connected to
+                                        the SDDC
+    set-sddc-connected-services         change whether to use S3 over the
+                                        Internet(false) or via the ENI(true)
+    show-sddc-connected-vpc             show the VPC connected to the SDDC
+    show-shadow-account                 show the Shadow AWS Account VMC is
+                                        deployed in
+    show-sddc-state                     get a view of your selected SDDC
+    show-sddc-hosts                     display a list of the hosts in your
+                                        SDDC
+    show-sddcs                          display a list of your SDDCs
+    show-vms                            get a list of your VMs
+    create                              create an SDDC
+    delete                              delete an sddc
+    watch-task                          watch a task for a long running sddc create or delete
+    cancel-task                         cancel a long running task
+    
+optional arguments:
+  -h, --help                            show this help message and exit

Diff for: docs/16-flexcompute_help.txt

@@ -0,0 +1,9 @@
+usage:  tkg [-h] {enable-tkg,disable-tkg} ...
+
+positional arguments:
+  {enable-tkg,disable-tkg}  sddc sub-command help
+    enable-tkg              Enable Tanzu Kubernetes Grid on an SDDC
+    disable-tkg             Disable Tanzu Kubernetes Grid on an SDDC
+
+optional arguments:
+  -h, --help                show this help message and exit

Diff for: docs/2-sddc_help.txt

@@ -0,0 +1,13 @@
+usage:  segment [-h] {create,delete,show,update} ...
+
+positional arguments:
+  {create,delete,show,update}
+                        segment sub-command help
+    create              Create a new virtual machine network segment.
+    delete              Delete a virtual machine network segment.
+    show                Show the current virtual machine network segments.
+    update              Update the configuration of a virtual machine network
+                        segment.
+
+optional arguments:
+  -h, --help            show this help message and exit

Diff for: docs/3-tkg_help.txt

@@ -0,0 +1,53 @@
+usage:  vpn [-h]
+            {new-ike-profile,new-ipsec-profile,new-dpd-profile,new-t1-vpn-service,new-local-endpoint,new-t1-ipsec-session,new-t1-l2vpn-session,new-sddc-ipsec-vpn,new-sddc-l2vpn,remove-sddc-ipsec-vpn,remove-sddc-l2VPN,remove-tier1-ipsec-vpn,remove-tier1-l2vpn,remove-t1-vpn-local-endpoint,remove-t1-vpn-service,remove-vpn-profile,show-sddc-vpn,show-vpn-endpoints,show-sddc-l2vpn,show-vpn-ike-profiles,show-vpn-ipsec-profiles,show-vpn-dpd-profiles,show-tier1-vpn-services,show-tier1-vpn-local-endpoints,show-tier1-vpn,show-tier1-vpn-details,show-tier1-l2vpn,show-tier1-l2vpn-details,rbvpn-prefix-list,rbvpn-neighbors}
+            ...
+
+positional arguments:
+  {new-ike-profile,new-ipsec-profile,new-dpd-profile,new-t1-vpn-service,new-local-endpoint,new-t1-ipsec-session,new-t1-l2vpn-session,new-sddc-ipsec-vpn,new-sddc-l2vpn,remove-sddc-ipsec-vpn,remove-sddc-l2VPN,remove-tier1-ipsec-vpn,remove-tier1-l2vpn,remove-t1-vpn-local-endpoint,remove-t1-vpn-service,remove-vpn-profile,show-sddc-vpn,show-vpn-endpoints,show-sddc-l2vpn,show-vpn-ike-profiles,show-vpn-ipsec-profiles,show-vpn-dpd-profiles,show-tier1-vpn-services,show-tier1-vpn-local-endpoints,show-tier1-vpn,show-tier1-vpn-details,show-tier1-l2vpn,show-tier1-l2vpn-details,rbvpn-prefix-list,rbvpn-neighbors}
+                        vpn sub-command help
+    new-ike-profile     Create a new VPN IKE Profile
+    new-ipsec-profile   Create a new VPN IPSEC Tunnel Profile
+    new-dpd-profile     Create a new IPSEC DPD profile
+    new-t1-vpn-service  Create a new Tier-1 gateway VPN service
+    new-local-endpoint  Create a new Tier-1 VPN local endpoint
+    new-t1-ipsec-session
+                        Create a new Tier-1 gateway VPN session
+    new-t1-l2vpn-session
+                        Create a new Tier-1 gateay L2VPN session
+    new-sddc-ipsec-vpn  Create a new IPSEC VPN tunnel for the SDDC
+    new-sddc-l2vpn      create a new L2VPN for the SDDC
+    remove-sddc-ipsec-vpn
+                        remove a SDDC IPSec VPN
+    remove-sddc-l2VPN   remove a SDDC L2VPN
+    remove-tier1-ipsec-vpn
+                        remove a Tier-1 IPSec VPN
+    remove-tier1-l2vpn  remove a Tier-1 L2VPN
+    remove-t1-vpn-local-endpoint
+                        remove a Tier-1 Local Endpoint
+    remove-t1-vpn-service
+                        Remove a Tier-1 VPN Service
+    remove-vpn-profile  remove a VPN IKE profile
+    show-sddc-vpn       show the SDDC VPNs
+    show-vpn-endpoints  Show the SDDC VPN endpoints
+    show-sddc-l2vpn     show the SDDC L2VPN
+    show-vpn-ike-profiles
+                        show the VPN IKE profiles
+    show-vpn-ipsec-profiles
+                        Show the VPN IPSec Tunnel Profiles
+    show-vpn-dpd-profiles
+                        Show the VPN DPD Profiles
+    show-tier1-vpn-services
+                        Show Tier-1 VPN Services
+    show-tier1-vpn-local-endpoints
+                        Show Tier-1 Local Endpoints
+    show-tier1-vpn      Show Tier-1 IPSec VPN sessions
+    show-tier1-vpn-details
+                        Show IPSec VPN details for a provided Tier1 VPN name
+    show-tier1-l2vpn    Show Tier-1 L2VPN sessions
+    show-tier1-l2vpn-details
+                        Show Tier-1 L2VPN Session Details
+    rbvpn-prefix-list   Create and configure route-based VPN prefix lists.
+    rbvpn-neighbors     Show and configure BGP Neighbors for route-based VPN.
+
+options:
+  -h, --help            show this help message and exit

Diff for: docs/4-segment_help.txt

@@ -0,0 +1,11 @@
+usage:  nat [-h] {new-nat-rule,remove-nat-rule,show-nat} ...
+
+positional arguments:
+  {new-nat-rule,remove-nat-rule,show-nat}
+                        nat sub-command help
+    new-nat-rule        To create a new NAT rule
+    remove-nat-rule     remove a NAT rule
+    show-nat            show the configured NAT rules
+
+optional arguments:
+  -h, --help            show this help message and exit

Diff for: docs/5-vpn_help.txt

@@ -0,0 +1,11 @@
+usage:  t1 [-h] {create,delete,update} ...
+
+positional arguments:
+  {create,delete,update}
+                        t1 sub-command help
+    create              Create a new, secondary T1 gateway.
+    delete              Delete a secondary T1 gateway.
+    update              Update the configuration of a secondary T1 gateway.
+
+optional arguments:
+  -h, --help            show this help message and exit