Update example configuration to reflect new rate limiting feature, and security list specification (#240)

jbornemann · prydie · commit f3201c2a25f9 · 2018-08-27T16:04:06.000+01:00
* Update example configuration to reflect new rate limiting feature, and security list specification

* Misc. typos and inconsistencies
diff --git a/manifests/cloud-provider-example.yaml b/manifests/cloud-provider-example.yaml
@@ -51,3 +51,16 @@ loadBalancer:
   #                    Additionally requires the user to mange rules to allow
   #                    inbound traffic to load balancers.
   securityListManagementMode: All
+
+  # Optional specification of which security lists to modify per subnet. This does not apply if security list management is off.
+  securityLists:
+    ocid1.subnet.oc1.phx.aaaaaaaasa53hlkzk6nzksqfccegk2qnkxmphkblst3riclzs4rhwg7rg57q: ocid1.securitylist.oc1.iad.aaaaaaaaqti5jsfvyw6ejahh7r4okb2xbtuiuguswhs746mtahn72r7adt7q
+    ocid1.subnet.oc1.phx.aaaaaaaahuxrgvs65iwdz7ekwgg3l5gyah7ww5klkwjcso74u3e4i64hvtvq: ocid1.securitylist.oc1.iad.aaaaaaaaqti5jsfvyw6ejahh7r4okb2xbtuiuguswhs746mtahn72r7adt7q
+
+# Optional rate limit controls for accessing OCI API
+rateLimiter:
+  rateLimitQPSRead: 20.0
+  rateLimitBucketRead: 5
+  rateLimitQPSWrite: 20.0
+  rateLimitBucketWrite: 5
+
diff --git a/pkg/oci/load_balancer_security_lists.go b/pkg/oci/load_balancer_security_lists.go
@@ -72,7 +72,7 @@ type portSpec struct {
 }
 
 type securityListManager interface {
-	Update(ctx context.Context, lbSubnets []*core.Subnet, backendSubnets []*core.Subnet, sourceCIDRs []string, actaulPorts *portSpec, desiredPorts portSpec) error
+	Update(ctx context.Context, lbSubnets []*core.Subnet, backendSubnets []*core.Subnet, sourceCIDRs []string, actualPorts *portSpec, desiredPorts portSpec) error
 	Delete(ctx context.Context, lbSubnets []*core.Subnet, backendSubnets []*core.Subnet, actualPorts portSpec) error
 }
 
@@ -229,7 +229,7 @@ func (s *defaultSecurityListManager) Update(ctx context.Context, lbSubnets []*co
 	return s.updateBackendRules(ctx, lbSubnets, backendSubnets, actualPorts, desiredPorts)
 }
 
-// Delete the security list rules associated with the listener & backends.
+// Delete the security list rules associated with the listener and backends.
 //
 // If the listener is nil, then only the egress rules from the LB's to the backends and the
 // ingress rules from the LB's to the backends will be cleaned up.

Original file line number	Diff line number	Diff line change
`@@ -72,7 +72,7 @@ type portSpec struct {`
`72`	`72`	`}`
`73`	`73`
`74`	`74`	`type securityListManager interface {`
`75`		`- Update(ctx context.Context, lbSubnets []core.Subnet, backendSubnets []core.Subnet, sourceCIDRs []string, actaulPorts *portSpec, desiredPorts portSpec) error`
	`75`	`+ Update(ctx context.Context, lbSubnets []core.Subnet, backendSubnets []core.Subnet, sourceCIDRs []string, actualPorts *portSpec, desiredPorts portSpec) error`
`76`	`76`	`Delete(ctx context.Context, lbSubnets []core.Subnet, backendSubnets []core.Subnet, actualPorts portSpec) error`
`77`	`77`	`}`
`78`	`78`
`@@ -229,7 +229,7 @@ func (s defaultSecurityListManager) Update(ctx context.Context, lbSubnets []co`
`229`	`229`	`return s.updateBackendRules(ctx, lbSubnets, backendSubnets, actualPorts, desiredPorts)`
`230`	`230`	`}`
`231`	`231`
`232`		`-// Delete the security list rules associated with the listener & backends.`
	`232`	`+// Delete the security list rules associated with the listener and backends.`
`233`	`233`	`//`
`234`	`234`	`// If the listener is nil, then only the egress rules from the LB's to the backends and the`
`235`	`235`	`// ingress rules from the LB's to the backends will be cleaned up.`