400fc6ec7d
We recently introduced reserved queue metadata feature in our API v2. And because it's a feature of API v2, we decided not to change at all our older APIs. But through our older APIs it's possible to PUT invalid queue attributes, which can cause unstable work of API v2. This patch makes API v1 restrict any metadata keys which names start with "_", because they are probably reserved queue attributes. This patch makes API v1.1 validate metadata like API v2 validates it now to ensure that the reserved queue attributes have valid values, before sending them to the database. This patch also adds unit tests to APIs. APIImpact Closes-Bug: 1557247 Change-Id: Idcd063787c8d8da49a9c3d126441f9336c85e7cd
163 lines
5.6 KiB
Python
163 lines
5.6 KiB
Python
# Copyright (c) 2013 Rackspace, Inc.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
|
|
# implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
import falcon
|
|
from oslo_log import log as logging
|
|
import six
|
|
|
|
from zaqar.common import decorators
|
|
from zaqar.i18n import _
|
|
from zaqar.storage import errors as storage_errors
|
|
from zaqar.transport import utils
|
|
from zaqar.transport import validation
|
|
from zaqar.transport.wsgi import errors as wsgi_errors
|
|
from zaqar.transport.wsgi import utils as wsgi_utils
|
|
|
|
|
|
LOG = logging.getLogger(__name__)
|
|
|
|
|
|
class ItemResource(object):
|
|
|
|
__slots__ = ('_validate', '_queue_controller', '_message_controller')
|
|
|
|
def __init__(self, validate, queue_controller, message_controller):
|
|
self._validate = validate
|
|
self._queue_controller = queue_controller
|
|
self._message_controller = message_controller
|
|
|
|
@decorators.TransportLog("Queue metadata")
|
|
def on_get(self, req, resp, project_id, queue_name):
|
|
try:
|
|
resp_dict = self._queue_controller.get(queue_name,
|
|
project=project_id)
|
|
|
|
except storage_errors.DoesNotExist as ex:
|
|
LOG.debug(ex)
|
|
raise wsgi_errors.HTTPNotFound(six.text_type(ex))
|
|
|
|
except Exception as ex:
|
|
LOG.exception(ex)
|
|
description = _(u'Queue metadata could not be retrieved.')
|
|
raise wsgi_errors.HTTPServiceUnavailable(description)
|
|
|
|
resp.body = utils.to_json(resp_dict)
|
|
# status defaults to 200
|
|
|
|
@decorators.TransportLog("Queue item")
|
|
def on_put(self, req, resp, project_id, queue_name):
|
|
try:
|
|
# Place JSON size restriction before parsing
|
|
self._validate.queue_metadata_length(req.content_length)
|
|
# Deserialize queue metadata
|
|
metadata = None
|
|
if req.content_length:
|
|
document = wsgi_utils.deserialize(req.stream,
|
|
req.content_length)
|
|
metadata = wsgi_utils.sanitize(document, spec=None)
|
|
# NOTE(Eva-i): reserved queue attributes is Zaqar's feature since
|
|
# API v2. But we have to ensure the bad data will not come from
|
|
# older APIs, so we validate metadata here.
|
|
self._validate.queue_metadata_putting(metadata)
|
|
except validation.ValidationFailed as ex:
|
|
LOG.debug(ex)
|
|
raise wsgi_errors.HTTPBadRequestAPI(six.text_type(ex))
|
|
|
|
try:
|
|
created = self._queue_controller.create(queue_name,
|
|
metadata=metadata,
|
|
project=project_id)
|
|
|
|
except storage_errors.FlavorDoesNotExist as ex:
|
|
LOG.exception(ex)
|
|
raise wsgi_errors.HTTPBadRequestAPI(six.text_type(ex))
|
|
|
|
except Exception as ex:
|
|
LOG.exception(ex)
|
|
description = _(u'Queue could not be created.')
|
|
raise wsgi_errors.HTTPServiceUnavailable(description)
|
|
|
|
resp.status = falcon.HTTP_201 if created else falcon.HTTP_204
|
|
resp.location = req.path
|
|
|
|
@decorators.TransportLog("Queue item")
|
|
def on_delete(self, req, resp, project_id, queue_name):
|
|
try:
|
|
self._queue_controller.delete(queue_name, project=project_id)
|
|
|
|
except Exception as ex:
|
|
LOG.exception(ex)
|
|
description = _(u'Queue could not be deleted.')
|
|
raise wsgi_errors.HTTPServiceUnavailable(description)
|
|
|
|
resp.status = falcon.HTTP_204
|
|
|
|
|
|
class CollectionResource(object):
|
|
|
|
__slots__ = ('_queue_controller', '_validate')
|
|
|
|
def __init__(self, validate, queue_controller):
|
|
self._queue_controller = queue_controller
|
|
self._validate = validate
|
|
|
|
@decorators.TransportLog("Queue collection")
|
|
def on_get(self, req, resp, project_id):
|
|
kwargs = {}
|
|
|
|
# NOTE(kgriffs): This syntax ensures that
|
|
# we don't clobber default values with None.
|
|
req.get_param('marker', store=kwargs)
|
|
req.get_param_as_int('limit', store=kwargs)
|
|
req.get_param_as_bool('detailed', store=kwargs)
|
|
|
|
try:
|
|
self._validate.queue_listing(**kwargs)
|
|
results = self._queue_controller.list(project=project_id, **kwargs)
|
|
|
|
# Buffer list of queues
|
|
queues = list(next(results))
|
|
|
|
except validation.ValidationFailed as ex:
|
|
LOG.debug(ex)
|
|
raise wsgi_errors.HTTPBadRequestAPI(six.text_type(ex))
|
|
|
|
except Exception as ex:
|
|
LOG.exception(ex)
|
|
description = _(u'Queues could not be listed.')
|
|
raise wsgi_errors.HTTPServiceUnavailable(description)
|
|
|
|
# Got some. Prepare the response.
|
|
kwargs['marker'] = next(results) or kwargs.get('marker', '')
|
|
for each_queue in queues:
|
|
each_queue['href'] = req.path + '/' + each_queue['name']
|
|
|
|
links = []
|
|
if queues:
|
|
links = [
|
|
{
|
|
'rel': 'next',
|
|
'href': req.path + falcon.to_query_str(kwargs)
|
|
}
|
|
]
|
|
|
|
response_body = {
|
|
'queues': queues,
|
|
'links': links
|
|
}
|
|
|
|
resp.body = utils.to_json(response_body)
|
|
# status defaults to 200
|