openstack
/
keystone
Code Issues Proposed changes
keystone/keystonelight/service.py

141 lines
4.5 KiB
Python
Raw Blame History

# vim: tabstop=4 shiftwidth=4 softtabstop=4
# this is the web service frontend
import json
import logging
import hflags as flags
import routes
import webob.dec
from keystonelight import identity
from keystonelight import token
from keystonelight import utils
from keystonelight import wsgi
FLAGS = flags.FLAGS
# TODO(termie): these should probably be paste configs instead
flags.DEFINE_string('token_controller',
'keystonelight.service.TokenController',
'token controller')
flags.DEFINE_string('identity_controller',
'keystonelight.service.IdentityController',
'identity controller')
class BaseApplication(wsgi.Application):
@webob.dec.wsgify
def __call__(self, req):
arg_dict = req.environ['wsgiorg.routing_args'][1]
action = arg_dict['action']
del arg_dict['action']
del arg_dict['controller']
logging.info('arg_dict: %s', arg_dict)
context = req.environ.get('openstack.context', {})
# allow middleware up the stack to override the params
params = {}
if 'openstack.params' in req.environ:
params = req.environ['openstack.params']
params.update(arg_dict)
# TODO(termie): do some basic normalization on methods
method = getattr(self, action)
# NOTE(vish): make sure we have no unicode keys for py2.6.
params = dict([(str(k), v) for (k, v) in params.iteritems()])
result = method(context, **params)
if result is None or type(result) is str or type(result) is unicode:
return result
return json.dumps(result)
class PostParamsMiddleware(wsgi.Middleware):
"""Middleware to allow method arguments to be passed as POST parameters.
Filters out the parameters `self`, `context` and anything beginning with
an underscore.
"""
def process_request(self, request):
params_parsed = request.params
params = {}
for k, v in params_parsed.iteritems():
if k in ('self', 'context'):
continue
if k.startswith('_'):
continue
params[k] = v
request.environ['openstack.params'] = params
class TokenController(BaseApplication):
"""Validate and pass through calls to TokenManager."""
def __init__(self):
self.token_api = token.Manager()
def validate_token(self, context, token_id):
token = self.token_api.validate_token(context, token_id)
return token
class IdentityController(BaseApplication):
"""Validate and pass calls through to IdentityManager.
IdentityManager will also pretty much just pass calls through to
a specific driver.
"""
def __init__(self):
self.identity_api = identity.Manager()
self.token_api = token.Manager()
def authenticate(self, context, **kwargs):
tenant, user, extras = self.identity_api.authenticate(context, **kwargs)
token = self.token_api.create_token(context,
dict(tenant=tenant,
user=user,
extras=extras))
logging.info(token)
return token
class Router(wsgi.Router):
def __init__(self):
token_controller = utils.import_object(FLAGS.token_controller)
identity_controller = utils.import_object(FLAGS.identity_controller)
mapper = routes.Mapper()
mapper.connect('/v2.0/token', controller=identity_controller,
action='authenticate')
mapper.connect('/v2.0/token/{token_id}', controller=token_controller,
action='revoke_token',
conditions=dict(method=['DELETE']))
super(Router, self).__init__(mapper)
class AdminRouter(wsgi.Router):
def __init__(self):
token_controller = utils.import_object(FLAGS.token_controller)
identity_controller = utils.import_object(FLAGS.identity_controller)
mapper = routes.Mapper()
mapper.connect('/v2.0/token', controller=identity_controller,
action='authenticate')
mapper.connect('/v2.0/token/{token_id}', controller=token_controller,
action='validate_token',
conditions=dict(method=['GET']))
mapper.connect('/v2.0/token/{token_id}', controller=token_controller,
action='revoke_token',
conditions=dict(method=['DELETE']))
super(AdminRouter, self).__init__(mapper)
View Git Blame Copy Permalink