Resource plug-in for keystone endpoint
Adds contrib resource plug-in for keystone endpoint implements blueprint keystone-resource-service-endpoint Change-Id: If0d493df5b8a74a8c0e01c3856028663dfa30fb5
This commit is contained in:
parent
b660268388
commit
34d7ffcd43
151
contrib/heat_keystone/heat_keystone/resources/endpoint.py
Normal file
151
contrib/heat_keystone/heat_keystone/resources/endpoint.py
Normal file
@ -0,0 +1,151 @@
|
||||
#
|
||||
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
||||
# not use this file except in compliance with the License. You may obtain
|
||||
# a copy of the License at
|
||||
#
|
||||
# http://www.apache.org/licenses/LICENSE-2.0
|
||||
#
|
||||
# Unless required by applicable law or agreed to in writing, software
|
||||
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
||||
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
||||
# License for the specific language governing permissions and limitations
|
||||
# under the License.
|
||||
|
||||
from heat.common.i18n import _
|
||||
from heat.engine import constraints
|
||||
from heat.engine import properties
|
||||
from heat.engine import resource
|
||||
from heat.engine import support
|
||||
|
||||
|
||||
class KeystoneEndpoint(resource.Resource):
|
||||
"""Heat Template Resource for Keystone Service Endpoint."""
|
||||
|
||||
support_status = support.SupportStatus(
|
||||
version='2015.2',
|
||||
message=_('Supported versions: keystone v3'))
|
||||
|
||||
PROPERTIES = (
|
||||
NAME, REGION, SERVICE, INTERFACE, SERVICE_URL
|
||||
) = (
|
||||
'name', 'region', 'service', 'interface', 'url'
|
||||
)
|
||||
|
||||
properties_schema = {
|
||||
NAME: properties.Schema(
|
||||
properties.Schema.STRING,
|
||||
_('Name of keystone endpoint.'),
|
||||
update_allowed=True
|
||||
),
|
||||
REGION: properties.Schema(
|
||||
properties.Schema.STRING,
|
||||
_('Name or Id of keystone region.'),
|
||||
update_allowed=True
|
||||
),
|
||||
SERVICE: properties.Schema(
|
||||
properties.Schema.STRING,
|
||||
_('Name or Id of keystone service.'),
|
||||
update_allowed=True,
|
||||
required=True,
|
||||
constraints=[constraints.CustomConstraint('keystone.service')]
|
||||
),
|
||||
INTERFACE: properties.Schema(
|
||||
properties.Schema.STRING,
|
||||
_('Interface type of keystone service endpoint.'),
|
||||
update_allowed=True,
|
||||
required=True,
|
||||
constraints=[constraints.AllowedValues(
|
||||
['public', 'internal', 'admin']
|
||||
)]
|
||||
),
|
||||
SERVICE_URL: properties.Schema(
|
||||
properties.Schema.STRING,
|
||||
_('URL of keystone service endpoint.'),
|
||||
update_allowed=True,
|
||||
required=True
|
||||
)
|
||||
}
|
||||
|
||||
def _create_endpoint(self,
|
||||
service,
|
||||
interface,
|
||||
url,
|
||||
region=None,
|
||||
name=None):
|
||||
return self.keystone().client.endpoints.create(
|
||||
region=region,
|
||||
service=service,
|
||||
interface=interface,
|
||||
url=url,
|
||||
name=name)
|
||||
|
||||
def _delete_endpoint(self, endpoint_id):
|
||||
return self.keystone().client.endpoints.delete(endpoint_id)
|
||||
|
||||
def _update_endpoint(self,
|
||||
endpoint_id,
|
||||
new_region=None,
|
||||
new_service=None,
|
||||
new_interface=None,
|
||||
new_url=None,
|
||||
new_name=None):
|
||||
return self.keystone().client.endpoints.update(
|
||||
endpoint=endpoint_id,
|
||||
region=new_region,
|
||||
service=new_service,
|
||||
interface=new_interface,
|
||||
url=new_url,
|
||||
name=new_name)
|
||||
|
||||
def handle_create(self):
|
||||
region = self.properties.get(self.REGION)
|
||||
service = self.properties.get(self.SERVICE)
|
||||
interface = self.properties.get(self.INTERFACE)
|
||||
url = self.properties.get(self.SERVICE_URL)
|
||||
name = (self.properties.get(self.NAME) or
|
||||
self.physical_resource_name())
|
||||
|
||||
endpoint = self._create_endpoint(
|
||||
region=region,
|
||||
service=service,
|
||||
interface=interface,
|
||||
url=url,
|
||||
name=name
|
||||
)
|
||||
|
||||
self.resource_id_set(endpoint.id)
|
||||
|
||||
def handle_update(self,
|
||||
json_snippet=None,
|
||||
tmpl_diff=None,
|
||||
prop_diff=None):
|
||||
region = prop_diff.get(self.REGION)
|
||||
service = prop_diff.get(self.SERVICE)
|
||||
interface = prop_diff.get(self.INTERFACE)
|
||||
url = prop_diff.get(self.SERVICE_URL)
|
||||
name = None
|
||||
if self.NAME in prop_diff:
|
||||
name = (prop_diff.get(self.NAME) or
|
||||
self.physical_resource_name())
|
||||
|
||||
self._update_endpoint(
|
||||
endpoint_id=self.resource_id,
|
||||
new_region=region,
|
||||
new_interface=interface,
|
||||
new_service=service,
|
||||
new_url=url,
|
||||
new_name=name
|
||||
)
|
||||
|
||||
def handle_delete(self):
|
||||
if self.resource_id is not None:
|
||||
try:
|
||||
self._delete_endpoint(endpoint_id=self.resource_id)
|
||||
except Exception as ex:
|
||||
self.client_plugin('keystone').ignore_not_found(ex)
|
||||
|
||||
|
||||
def resource_mapping():
|
||||
return {
|
||||
'OS::Keystone::Endpoint': KeystoneEndpoint
|
||||
}
|
324
contrib/heat_keystone/heat_keystone/tests/test_endpoint.py
Normal file
324
contrib/heat_keystone/heat_keystone/tests/test_endpoint.py
Normal file
@ -0,0 +1,324 @@
|
||||
#
|
||||
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
||||
# not use this file except in compliance with the License. You may obtain
|
||||
# a copy of the License at
|
||||
#
|
||||
# http://www.apache.org/licenses/LICENSE-2.0
|
||||
#
|
||||
# Unless required by applicable law or agreed to in writing, software
|
||||
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
||||
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
||||
# License for the specific language governing permissions and limitations
|
||||
# under the License.
|
||||
|
||||
import mock
|
||||
|
||||
from heat.engine import constraints
|
||||
from heat.engine import properties
|
||||
from heat.engine import resource
|
||||
from heat.engine import stack
|
||||
from heat.engine import template
|
||||
from heat.tests import common
|
||||
from heat.tests import utils
|
||||
|
||||
from ..resources import endpoint # noqa
|
||||
|
||||
keystone_endpoint_template = {
|
||||
'heat_template_version': '2015-04-30',
|
||||
'resources': {
|
||||
'test_endpoint': {
|
||||
'type': 'OS::Keystone::Endpoint',
|
||||
'properties': {
|
||||
'service': 'heat',
|
||||
'region': 'RegionOne',
|
||||
'interface': 'public',
|
||||
'url': 'http://127.0.0.1:8004/v1/tenant-id',
|
||||
'name': 'endpoint_foo'
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
RESOURCE_TYPE = 'OS::Keystone::Endpoint'
|
||||
|
||||
|
||||
class KeystoneEndpointTest(common.HeatTestCase):
|
||||
def setUp(self):
|
||||
super(KeystoneEndpointTest, self).setUp()
|
||||
|
||||
self.ctx = utils.dummy_context()
|
||||
|
||||
# For unit testing purpose. Register resource provider explicitly.
|
||||
resource._register_class(RESOURCE_TYPE,
|
||||
endpoint.KeystoneEndpoint)
|
||||
|
||||
self.stack = stack.Stack(
|
||||
self.ctx, 'test_stack_keystone',
|
||||
template.Template(keystone_endpoint_template)
|
||||
)
|
||||
|
||||
self.test_endpoint = self.stack['test_endpoint']
|
||||
|
||||
# Mock client
|
||||
self.keystoneclient = mock.MagicMock()
|
||||
self.test_endpoint.keystone = mock.MagicMock()
|
||||
self.test_endpoint.keystone.return_value = self.keystoneclient
|
||||
self.endpoints = self.keystoneclient.client.endpoints
|
||||
|
||||
# Mock client plugin
|
||||
keystone_client_plugin = mock.MagicMock()
|
||||
self.test_endpoint.client_plugin = mock.MagicMock()
|
||||
self.test_endpoint.client_plugin.return_value = keystone_client_plugin
|
||||
|
||||
def _get_mock_endpoint(self):
|
||||
value = mock.MagicMock()
|
||||
value.id = '477e8273-60a7-4c41-b683-fdb0bc7cd152'
|
||||
|
||||
return value
|
||||
|
||||
def test_endpoint_handle_create(self):
|
||||
mock_endpoint = self._get_mock_endpoint()
|
||||
self.endpoints.create.return_value = mock_endpoint
|
||||
|
||||
# validate the properties
|
||||
self.assertEqual(
|
||||
'heat',
|
||||
self.test_endpoint.properties.get(
|
||||
endpoint.KeystoneEndpoint.SERVICE))
|
||||
self.assertEqual(
|
||||
'public',
|
||||
self.test_endpoint.properties.get(
|
||||
endpoint.KeystoneEndpoint.INTERFACE))
|
||||
self.assertEqual(
|
||||
'RegionOne',
|
||||
self.test_endpoint.properties.get(
|
||||
endpoint.KeystoneEndpoint.REGION))
|
||||
self.assertEqual(
|
||||
'http://127.0.0.1:8004/v1/tenant-id',
|
||||
self.test_endpoint.properties.get(
|
||||
endpoint.KeystoneEndpoint.SERVICE_URL))
|
||||
self.assertEqual(
|
||||
'endpoint_foo',
|
||||
self.test_endpoint.properties.get(
|
||||
endpoint.KeystoneEndpoint.NAME))
|
||||
|
||||
self.test_endpoint.handle_create()
|
||||
|
||||
# validate endpoint creation
|
||||
self.endpoints.create.assert_called_once_with(
|
||||
service='heat',
|
||||
url='http://127.0.0.1:8004/v1/tenant-id',
|
||||
interface='public',
|
||||
region='RegionOne',
|
||||
name='endpoint_foo')
|
||||
|
||||
# validate physical resource id
|
||||
self.assertEqual(mock_endpoint.id, self.test_endpoint.resource_id)
|
||||
|
||||
def test_endpoint_handle_update(self):
|
||||
self.test_endpoint.resource_id = '477e8273-60a7-4c41-b683-fdb0bc7cd151'
|
||||
|
||||
prop_diff = {endpoint.KeystoneEndpoint.REGION: 'RegionTwo',
|
||||
endpoint.KeystoneEndpoint.INTERFACE: 'internal',
|
||||
endpoint.KeystoneEndpoint.SERVICE: 'updated_id',
|
||||
endpoint.KeystoneEndpoint.SERVICE_URL:
|
||||
'http://127.0.0.1:8004/v2/tenant-id',
|
||||
endpoint.KeystoneEndpoint.NAME:
|
||||
'endpoint_foo_updated'}
|
||||
|
||||
self.test_endpoint.handle_update(json_snippet=None,
|
||||
tmpl_diff=None,
|
||||
prop_diff=prop_diff)
|
||||
|
||||
self.endpoints.update.assert_called_once_with(
|
||||
endpoint=self.test_endpoint.resource_id,
|
||||
region=prop_diff[endpoint.KeystoneEndpoint.REGION],
|
||||
interface=prop_diff[endpoint.KeystoneEndpoint.INTERFACE],
|
||||
service=prop_diff[endpoint.KeystoneEndpoint.SERVICE],
|
||||
url=prop_diff[endpoint.KeystoneEndpoint.SERVICE_URL],
|
||||
name=prop_diff[endpoint.KeystoneEndpoint.NAME]
|
||||
)
|
||||
|
||||
def test_endpoint_handle_update_default(self):
|
||||
self.test_endpoint.resource_id = '477e8273-60a7-4c41-b683-fdb0bc7cd151'
|
||||
self.test_endpoint.physical_resource_name = mock.MagicMock()
|
||||
self.test_endpoint.physical_resource_name.return_value = 'foo'
|
||||
|
||||
# Name is reset to None, so default to physical resource name
|
||||
prop_diff = {endpoint.KeystoneEndpoint.NAME: None}
|
||||
|
||||
self.test_endpoint.handle_update(json_snippet=None,
|
||||
tmpl_diff=None,
|
||||
prop_diff=prop_diff)
|
||||
|
||||
# validate default name to physical resource name
|
||||
self.endpoints.update.assert_called_once_with(
|
||||
endpoint=self.test_endpoint.resource_id,
|
||||
region=None,
|
||||
interface=None,
|
||||
service=None,
|
||||
url=None,
|
||||
name='foo'
|
||||
)
|
||||
|
||||
def test_endpoint_handle_delete(self):
|
||||
self.test_endpoint.resource_id = '477e8273-60a7-4c41-b683-fdb0bc7cd151'
|
||||
self.endpoints.delete.return_value = None
|
||||
|
||||
self.assertIsNone(self.test_endpoint.handle_delete())
|
||||
self.endpoints.delete.assert_called_once_with(
|
||||
self.test_endpoint.resource_id
|
||||
)
|
||||
|
||||
def test_endpoint_handle_delete_resource_id_is_none(self):
|
||||
self.test_endpoint.resource_id = None
|
||||
self.assertIsNone(self.test_endpoint.handle_delete())
|
||||
|
||||
def test_endpoint_handle_delete_not_found(self):
|
||||
exc = self.keystoneclient.NotFound
|
||||
self.endpoints.delete.side_effect = exc
|
||||
|
||||
self.assertIsNone(self.test_endpoint.handle_delete())
|
||||
|
||||
def test_resource_mapping(self):
|
||||
mapping = endpoint.resource_mapping()
|
||||
self.assertEqual(1, len(mapping))
|
||||
self.assertEqual(endpoint.KeystoneEndpoint, mapping[RESOURCE_TYPE])
|
||||
self.assertIsInstance(self.test_endpoint, endpoint.KeystoneEndpoint)
|
||||
|
||||
def test_properties_title(self):
|
||||
property_title_map = {
|
||||
endpoint.KeystoneEndpoint.SERVICE: 'service',
|
||||
endpoint.KeystoneEndpoint.REGION: 'region',
|
||||
endpoint.KeystoneEndpoint.INTERFACE: 'interface',
|
||||
endpoint.KeystoneEndpoint.SERVICE_URL: 'url',
|
||||
endpoint.KeystoneEndpoint.NAME: 'name'
|
||||
}
|
||||
|
||||
for actual_title, expected_title in property_title_map.items():
|
||||
self.assertEqual(
|
||||
expected_title,
|
||||
actual_title,
|
||||
'KeystoneEndpoint PROPERTIES(%s) title modified.' %
|
||||
actual_title)
|
||||
|
||||
def test_property_service_validate_schema(self):
|
||||
schema = (endpoint.KeystoneEndpoint.properties_schema[
|
||||
endpoint.KeystoneEndpoint.SERVICE])
|
||||
self.assertTrue(
|
||||
schema.update_allowed,
|
||||
'update_allowed for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.SERVICE)
|
||||
|
||||
self.assertTrue(
|
||||
schema.required,
|
||||
'required for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.SERVICE)
|
||||
|
||||
self.assertEqual(properties.Schema.STRING,
|
||||
schema.type,
|
||||
'type for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.SERVICE)
|
||||
|
||||
self.assertEqual('Name or Id of keystone service.',
|
||||
schema.description,
|
||||
'description for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.SERVICE)
|
||||
|
||||
# Make sure, SERVICE is of keystone.service custom constrain type
|
||||
self.assertEqual(1, len(schema.constraints))
|
||||
keystone_service_constrain = schema.constraints[0]
|
||||
self.assertIsInstance(keystone_service_constrain,
|
||||
constraints.CustomConstraint)
|
||||
self.assertEqual('keystone.service',
|
||||
keystone_service_constrain.name)
|
||||
|
||||
def test_property_region_validate_schema(self):
|
||||
schema = (endpoint.KeystoneEndpoint.properties_schema[
|
||||
endpoint.KeystoneEndpoint.REGION])
|
||||
self.assertTrue(
|
||||
schema.update_allowed,
|
||||
'update_allowed for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.REGION)
|
||||
|
||||
self.assertEqual(properties.Schema.STRING,
|
||||
schema.type,
|
||||
'type for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.REGION)
|
||||
|
||||
self.assertEqual('Name or Id of keystone region.',
|
||||
schema.description,
|
||||
'description for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.REGION)
|
||||
|
||||
def test_property_interface_validate_schema(self):
|
||||
schema = (endpoint.KeystoneEndpoint.properties_schema[
|
||||
endpoint.KeystoneEndpoint.INTERFACE])
|
||||
self.assertTrue(
|
||||
schema.update_allowed,
|
||||
'update_allowed for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.INTERFACE)
|
||||
|
||||
self.assertTrue(
|
||||
schema.required,
|
||||
'required for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.INTERFACE)
|
||||
|
||||
self.assertEqual(properties.Schema.STRING,
|
||||
schema.type,
|
||||
'type for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.INTERFACE)
|
||||
|
||||
self.assertEqual('Interface type of keystone service endpoint.',
|
||||
schema.description,
|
||||
'description for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.INTERFACE)
|
||||
|
||||
# Make sure INTERFACE valid constrains
|
||||
self.assertEqual(1, len(schema.constraints))
|
||||
allowed_constrain = schema.constraints[0]
|
||||
self.assertIsInstance(allowed_constrain,
|
||||
constraints.AllowedValues)
|
||||
self.assertEqual(('public', 'internal', 'admin'),
|
||||
allowed_constrain.allowed)
|
||||
|
||||
def test_property_service_url_validate_schema(self):
|
||||
schema = (endpoint.KeystoneEndpoint.properties_schema[
|
||||
endpoint.KeystoneEndpoint.SERVICE_URL])
|
||||
self.assertTrue(
|
||||
schema.update_allowed,
|
||||
'update_allowed for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.SERVICE_URL)
|
||||
|
||||
self.assertTrue(
|
||||
schema.required,
|
||||
'required for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.SERVICE_URL)
|
||||
|
||||
self.assertEqual(properties.Schema.STRING,
|
||||
schema.type,
|
||||
'type for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.SERVICE_URL)
|
||||
|
||||
self.assertEqual('URL of keystone service endpoint.',
|
||||
schema.description,
|
||||
'description for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.SERVICE_URL)
|
||||
|
||||
def test_property_name_validate_schema(self):
|
||||
schema = (endpoint.KeystoneEndpoint.properties_schema[
|
||||
endpoint.KeystoneEndpoint.NAME])
|
||||
self.assertTrue(
|
||||
schema.update_allowed,
|
||||
'update_allowed for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.NAME)
|
||||
|
||||
self.assertEqual(properties.Schema.STRING,
|
||||
schema.type,
|
||||
'type for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.NAME)
|
||||
|
||||
self.assertEqual('Name of keystone endpoint.',
|
||||
schema.description,
|
||||
'description for property %s is modified' %
|
||||
endpoint.KeystoneEndpoint.NAME)
|
Loading…
Reference in New Issue
Block a user