This is the Umbrella Policy Scheduler source code. Using Umbrella API's, we can configure a schedule for Web policies and when they should be active or not, as well as the identity targets. Time ranges can be configured to set the active times for the policies.
The schedulers are stored in a database which is queried regularly by the server to determine which policies should be activated or deactivated.
- Josh Ingeniero (jingenie@cisco.com)
- Monica Acosta (moacosta@cisco.com)
- Flask
- Docker
- Python
- JavaScript
- Cisco Umbrella API’s
git clone https://github.com/gve-sw/gve_devnet_umbrella_policy_scheduler.gitFirst make sure that you have Python 3 installed on your machine. We will then be using venv to create an isolated environment with only the necessary packages.
pip install virtualenv
# Change to your project folder
cd umbrella-scheduler
# Create the venv
virtualenv venv
# Activate your venv
source venv/bin/activate
pip3 install -r requirements.txtYou have the option to use a docker image hosted in this repo or to build the docker image from this repo. You may edit docker-compose.yml to use one of the following options:
# To build from scratch and generate an image
build: .
# To pull the image from GitHub docker
image: docker.pkg.github.com/gve-sw/gve_devnet_umbrella_policy_scheduler/umbrella_policy_scheduler:latestPulling the image requires a personal access token from Github. Follow this guide
to generate an access token with the read:packages scope.
Afterwards, you would need to log in to docker with your Github username and personal access token.
docker login https://docker.pkg.github.com -u USERNAME -p PERSONAL_ACCESS_TOKEN
You can also edit the timezone used in scheduling in the same file:
environment:
TZ: "Asia/Singapore"A list of valid timezones is available at https://en.wikipedia.org/wiki/List_of_tz_database_time_zones under TZ Database Name
You can deploy this prototype in a lab environment, dCloud instance, or on your own deployment. You would then need to either input your details through the web GUI or edit a config file below.
You need to have your Network Devices API Key and Secret, Management API Key and Secret, and Organization ID.
To generate an API KEY, refer to the documentation here.
You must select an organization to manage and use its ORGANIZATION ID. You may do so here.
Fill in the details of your Umbrella deployment in the DETAILS.py file
MGT_KEY = ''
MGT_SECRET = ''
NET_KEY = ''
NET_SECRET = ''
ORG_ID = ''Launch the Scheduler Server. Make sure that you have your venv activated.
flask run --host=0.0.0.0 --port=5000
Launch the Scheduler Server through the docker-compose file.
docker-compose up
Launch your web browser and navigate to localhost:5000 or with your configured port.
For more resources on Umbrella API's and containers you may refer to the following learning labs:
Provided under Cisco Sample Code License, for details see LICENSE
Our code of conduct is available here
See our contributing guidelines here