(!dZddlmZddlmZddlmZddlZddlmZddlm Z ddl m Z dd l m Z dd l mZdd l mZdd lmZd ZdZdZdZdZdZdZdZ ddZdZdZ d dZ d!dZ d"dZej@dfdZ!dZ" d#dZ#y)$z6Flags for Firewall Plus Endpoint Association commands.)absolute_import)division)unicode_literalsN)activation_api) arg_parsers)concepts)deps)concept_parsers)presentation_specs) resourcesFIREWALL_ENDPOINT_ASSOCIATIONz?networksecurity.projects.locations.firewallEndpointAssociationsz"networksecurity.projects.locationsFIREWALL_ENDPOINTz--tls-inspection-policyz9networksecurity.organizations.locations.firewallEndpointsz8networksecurity.projects.locations.tlsInspectionPoliciesc btj|}tjtd|tj tj dddtj ddd }tjt|d d }tj|gj|S) zAdds Association resource.zfirewall endpoint associationzoneZone of the {resource}. locationsIdparameter_namezassociation-nameName of the {resource}firewallEndpointAssociationsId) api_version projectsIdrrTFirewall Plus.name concept_specrequired group_help) r GetApiVersionr ResourceSpecASSOCIATION_RESOURCE_COLLECTION DEFAULT_PROJECT_ATTRIBUTE_CONFIG ResourceParameterAttributeConfigr ResourcePresentationSpecASSOCIATION_RESOURCE_NAMEr ConceptParser AddToParser) release_trackparserr resource_specpresentation_specs Dlib/googlecloudsdk/command_lib/network_security/association_flags.pyAddAssociationResourcer-/s,,];+''%%::;;  #& &.%N%N  "9&- )AA $ !   & &(9': ; G G OOc.|jd|ddy)Nassociation_id?)helpnargsdefault add_argumentr) help_texts r,AddAssociationIDArgr9Ks &Yc4Pr.cTtj|}tjj j t |}tjtd|tjdddtjdddtjd tjtjtg|dg tjd d d }tj d|dd}t#j$|gj'|S)z%Adds Firewall Plus endpoint resource.zfirewall endpoint organizationz2Organization ID to which the changes should apply.organizationsIdrz endpoint-zonerr--zoner fallthroughsz endpoint-namerfirewallEndpointsId)rr<rr@z --endpointTrr)rrr REGISTRYCloneGetCollectionInfor!rr ENDPOINT_RESOURCE_COLLECTIONr#r ArgFallthroughFullySpecifiedAnchorFallthroughr%r r$r r&r')r(r)rcollection_infor*r+s r,AddEndpointResourcerHRs,,];+&&,,.@@%{/''"??  >* ;;  #&!!(+22&&'@AB! #CC  ".--8)AA  !   & &(9': ; G G OOr.c tjdddtjtjddd}t j d|d d }t j|gj|S) zAdds network resource.zcompute.networksnetworkv1z network-namerr)rprojectrJz --networkTrr) rr r"r#r r$r r&r')r)r*r+s r,AddNetworkResourcerM}s|''7777  "" -)AA  !   & &(9': ; G G OOr.c V|jddd||tjy)zAdds --max-wait flag.z --max-waitmax_waitF)destrr4r2typeN)r6rDuration)r)default_max_waitr8s r, AddMaxWaitrTs2        ! r.c\tj|}tjj j t |}tjtd|tjdddtjdtjtjtg|dgtjddd tjd d d }tj t"|d|}t%j&|gj)|S)z$Adds TLS Inspection Policy resource.zTLS Inspection Policyztls-inspection-policy-projectzProject of the {resource}.rz --projectr>ztls-inspection-policy-regionz Region of the {resource}. NOTE: TLS Inspection Policy needs to be in the same region as Firewall Plus endpoint resource. rrtls_inspection_policyrtlsInspectionPoliciesId)rrrrWFr)rrr rArBrCr!rr )TLS_INSPECTION_POLICY_RESOURCE_COLLECTIONr#r rErFr%r r$#TLS_INSPECTION_POLICY_RESOURCE_NAMEr r&r')r(r)r8rrGr*r+s r,AddTLSInspectionPolicyrZs ,,];+&&,,.@@%{/''/:: ) &%!!+.22&&'@AB! ;; (  ''GG ! "25-@)AA .    & &(9': ; G G OOr.c,|jdd|y)Nz--no-tls-inspection-policy store_true)actionr2r5r7s r,AddNoTLSInspectionPolicyArgr^s "z MakeGetUriFunc..s66}ENr.)r(s`r,MakeGetUriFuncrgs Nr.c.|jd|d|y)Nr=-)rr4r2r5)r)rr8s r, AddZoneArgrjs h3YOr.)zTName to give the association. If not specified, an auto-generated UUID will be used.)zTime to synchronously wait for the operation to complete, after which the operation continues asynchronously. Ignored if --no-async isn't specified. See $ gcloud topic datetimes for information on time formats.)zjPath to TLS Inspection Policy configuration to use for intercepting TLS-encrypted traffic in this network.)z3Remove TLS inspection policy from this association.)Tz'Zone of a firewall endpoint association)$__doc__ __future__rrrtextwrap:googlecloudsdk.api_lib.network_security.firewall_endpointsrgooglecloudsdk.callioper googlecloudsdk.calliope.conceptsrr (googlecloudsdk.command_lib.util.conceptsr r googlecloudsdk.corer r%r!&ASSOCIATION_PARENT_RESOURCE_COLLECTIONENDPOINT_RESOURCE_NAMErYrDrXr-r9rHrMrTrZr^dedentr`rgrjrfr.r,rvs=&'U/51DG)<E *N&,&?#??* P<eQ(PVP2c &{0PhLhoo  "&OPr.