ACS-Redis-BulkyDeleteSecurityIpByInstanceIPArray, bulk delete, ip whitelist - CloudOps Orchestration Service

Nama template

Template ACS-Redis-BulkyDeleteSecurityIpByInstanceIPArray digunakan untuk menghapus secara batch alamat IP tertentu dari grup daftar putih alamat IP suatu instans Redis.

Eksekusi Sekarang

Deskripsi template

Menghapus alamat IP dari daftar putih alamat IP sebuah instance Tair (Redis OSS-compatible).

Tipe template

Otomatis

Pemilik

Alibaba Cloud

Parameter input

Parameter	Deskripsi	Tipe data	Diperlukan	Nilai default	Batasan
instanceId	ID dari instance Tair (Redis OSS-compatible).	String	Ya
regionId	ID wilayah.	String	Tidak	{{ ACS::RegionId }}
securityIp	Alamat IP yang ingin Anda hapus.	String	Tidak	0.0.0.0/0
OOSAssumeRole	Peran RAM yang diasumsikan oleh CloudOps Orchestration Service (OOS).	String	Tidak	""

Parameter output

Tidak ada.

Kebijakan izin yang diperlukan untuk mengeksekusi template

{
    "Version": "1",
    "Statement": [
        {
            "Action": [
                "kvstore:DescribeSecurityIps",
                "kvstore:ModifySecurityIps"
            ],
            "Resource": "*",
            "Effect": "Allow"
        }
    ]
}

Detail

ACS-Redis-BulkyDeleteSecurityIpByInstanceIPArray

Isi Template

FormatVersion: OOS-2019-06-01
Description:
  en: Bulk deletes a specified IP address from the IP whitelist groups of Redis instances.
  name-en: ACS-Redis-BulkyDeleteSecurityIpByInstanceIPArray
  categories:
    - security
    - tair
Parameters:
  regionId:
    Label:
      en: Region ID
    Type: String
    AssociationProperty: RegionId
    Default: '{{ ACS::RegionId }}'
  instanceId:
    Label:
      en: The ID of the Redis instance
    Type: String
  securityIp:
    Label:
      en: The IP address to delete
    Type: String
    Default: 0.0.0.0/0
  OOSAssumeRole:
    Label:
      en: The RAM role for OOS to assume
    Type: String
    Default: ''
RamRole: '{{ OOSAssumeRole }}'
Tasks:
  - Name: describeSecurityIps
    Action: ACS::ExecuteAPI
    Description:
      en: Queries the security IP list of a Redis instance.
    Properties:
      Service: R-KVSTORE
      API: DescribeSecurityIps
      Parameters:
        RegionId: '{{ regionId }}'
        InstanceId: '{{ instanceId }}'
    Outputs:
      SecurityIpGroupName:
        Type: List
        ValueSelector: '.SecurityIpGroups.SecurityIpGroup[] | {"SecurityIpList": .SecurityIpList, "SecurityIpGroupName": .SecurityIpGroupName}'
  - Name: modifySecurityIps
    Action: ACS::Redis::DeleteSecurityIpByInstanceIPArray
    Description:
      en: Deletes the specified IP address from the IP whitelist groups of the Redis instance.
    Properties:
      regionId: '{{ regionId }}'
      instanceId: '{{ instanceId }}'
      securityIpList:
        Fn::Select:
          - SecurityIpList
          - '{{ ACS::TaskLoopItem }}'
      securityIpGroupName:
        Fn::Select:
          - SecurityIpGroupName
          - '{{ ACS::TaskLoopItem }}'
      securityIp: '{{ securityIp }}'
    Loop:
      Items: '{{ describeSecurityIps.SecurityIpGroupName }}'
      RateControl:
        Mode: Concurrency
        MaxErrors: 0
        Concurrency: 1
Metadata:
  ALIYUN::OOS::Interface:
    ParameterGroups:
      - Parameters:
          - securityIp
        Label:
          default:
            en: Configure Parameters
      - Parameters:
          - regionId
          - instanceId
        Label:
          default:
            en: Select Instances
      - Parameters:
          - OOSAssumeRole
        Label:
          default:
            en: Advanced Options