c3f397149a
Adds a configuration option and capability to automatically record the lessee for a deployment based upon the original auth_token information provided in the request context. Additional token information is now shared through the context which is extended in the same fashion as most other projects saving request token information to their RequestContext, instead of triggering excess API calls in the background to Keystone to try and figure out requestor's information. Change-Id: I42a2ceb9d2e7dfdc575eb37ed773a1bc682cec23
92 lines
3.6 KiB
Python
92 lines
3.6 KiB
Python
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
from unittest import mock
|
|
|
|
from oslo_context import context as oslo_context
|
|
|
|
from ironic.common import context
|
|
from ironic.tests import base as tests_base
|
|
|
|
|
|
class RequestContextTestCase(tests_base.TestCase):
|
|
def setUp(self):
|
|
super(RequestContextTestCase, self).setUp()
|
|
self.context_dict = {
|
|
'auth_token': 'auth_token1',
|
|
"user_id": "user1",
|
|
"project_id": "project1",
|
|
"project_name": "somename",
|
|
'read_only': True,
|
|
'show_deleted': True,
|
|
'request_id': 'id1',
|
|
"is_public_api": True,
|
|
"domain_id": "domain_id2",
|
|
"user_domain_id": "domain_id3",
|
|
"user_domain_name": "TreeDomain",
|
|
"project_domain_id": "domain_id4",
|
|
"roles": None,
|
|
"overwrite": True
|
|
}
|
|
self.environ = {
|
|
'keystone.token_info': {'key': 'value'},
|
|
}
|
|
|
|
@mock.patch.object(oslo_context.RequestContext, "__init__", autospec=True)
|
|
def test_create_context(self, context_mock):
|
|
test_context = context.RequestContext()
|
|
context_mock.assert_called_once_with(mock.ANY)
|
|
self.assertFalse(test_context.is_public_api)
|
|
|
|
def test_to_policy_values(self):
|
|
ctx = context.RequestContext(**self.context_dict)
|
|
ctx_dict = ctx.to_policy_values()
|
|
self.assertEqual('somename', ctx_dict['project_name'])
|
|
self.assertTrue(ctx_dict['is_public_api'])
|
|
|
|
@mock.patch.object(oslo_context, 'get_current', autospec=True)
|
|
def test_thread_without_context(self, context_get_mock):
|
|
self.context.update_store = mock.Mock()
|
|
context_get_mock.return_value = None
|
|
self.context.ensure_thread_contain_context()
|
|
self.context.update_store.assert_called_once_with()
|
|
|
|
@mock.patch.object(oslo_context, 'get_current', autospec=True)
|
|
def test_thread_with_context(self, context_get_mock):
|
|
self.context.update_store = mock.Mock()
|
|
context_get_mock.return_value = self.context
|
|
self.context.ensure_thread_contain_context()
|
|
self.assertFalse(self.context.update_store.called)
|
|
|
|
def test_create_context_with_environ(self):
|
|
test_context = context.RequestContext().from_environ(self.environ)
|
|
self.assertEqual({'key': 'value'}, test_context.auth_token_info)
|
|
|
|
def test_to_dict_get_auth_token_info(self):
|
|
test_context = context.RequestContext().from_environ(self.environ)
|
|
self.assertEqual({'key': 'value'}, test_context.auth_token_info)
|
|
result = test_context.to_dict()
|
|
self.assertIn('auth_token_info', result)
|
|
expected = {'key': 'value'}
|
|
self.assertDictEqual(expected, result['auth_token_info'])
|
|
|
|
def test_from_dict(self):
|
|
cdict = {'auth_token_info': 'magicdict'}
|
|
ctxt = context.RequestContext().from_dict(cdict)
|
|
self.assertEqual('magicdict', ctxt.auth_token_info)
|
|
|
|
def test_from_dict_older_api_server(self):
|
|
# Validates auth_token_info is None if not included.
|
|
cdict = {}
|
|
ctxt = context.RequestContext().from_dict(cdict)
|
|
self.assertIsNone(ctxt.auth_token_info)
|