DevNet_Firepower_API
/
qyt_fmc_api_4_access_policy.py

#!/usr/bin/env python3
# -*- coding=utf-8 -*-
# 本脚由亁颐堂现任明教教主编写，用于乾颐盾Python课程！
# 教主QQ:605658506
# 亁颐堂官网www.qytang.com
# 教主技术进化论拓展你的技术新边疆
# https://ke.qq.com/course/271956?tuin=24199d8a
from qyt_fmc_api_0_login_info import fmc_server
from qyt_fmc_api_1_get_token import get_token
import requests
import pprint

headers = {'Content-Type': 'application/json'}
headers.update(get_token())


def get_access_policy(offset=0, limit=1000):
    api_path = "/api/fmc_config/v1/domain/e276abec-e0f2-11e3-8169-6d9ed49b625f/policy/accesspolicies"
    url = fmc_server + api_path + '?offset=%d&limit=%d' % (offset, limit)
    access_policy_result = requests.get(url, headers=get_token(), verify=False)
    return access_policy_result.json()


def get_access_policy_uuid(objname):
    for x in get_access_policy().get('items'):
        if x.get('name') == objname:
            return x.get('id')


def get_access_policy_url(objname):
    for x in get_access_policy().get('items'):
        if x.get('name') == objname:
            return x.get('links').get('self')


def get_access_policy_detail(objname):
    try:
        access_policy_result = requests.get(get_access_policy_url(objname), headers=get_token(), verify=False)
        return access_policy_result.json(), access_policy_result.json().get('rules').get('links').get('self')
    except requests.exceptions.MissingSchema:
        return None


def get_access_policy_rules_list(objname):
    try:
        access_policy_rules_result = requests.get(get_access_policy_detail(objname)[1], headers=get_token(), verify=False)
        return access_policy_rules_result.json()
    except requests.exceptions.MissingSchema:
        return None


def post_access_policy(json_data):
    api_path = "/api/fmc_config/v1/domain/e276abec-e0f2-11e3-8169-6d9ed49b625f/policy/accesspolicies"
    url = fmc_server + api_path
    resp = requests.post(url, json=json_data, headers=headers, verify=False)
    return resp.json()


if __name__ == '__main__':
    post_data = {"type": "AccessPolicy", "name": "qytang_test_access_policy", "defaultAction": {"action": "BLOCK"}}
    pp = pprint.PrettyPrinter(indent=4)
    # pp.pprint(get_access_policy())
    # pp.pprint(get_access_policy_url('My Enterprise Corporate AC Policy'))
    # pp.pprint(get_access_policy_detail('qytang_vFTD'))
    # print(get_access_policy_uuid('qytang_test_access_policy'))
    # pp.pprint(get_access_policy_rules_list('qytang_vFTD'))
    pp.pprint(post_access_policy(post_data))