python-designateclient/designateclient/v1/__init__.py

# Copyright 2012 Managed I.T.
#
# Author: Kiall Mac Innes <kiall@managedit.ie>
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
#      http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
from keystoneclient import adapter
from keystoneclient.auth.identity import generic
from keystoneclient import session as ks_session
from stevedore import extension

from designateclient import exceptions
from designateclient import version


class Client(object):
    """Client for the Designate v1 API"""

    def __init__(self, endpoint=None, username=None, user_id=None,
                 user_domain_id=None, user_domain_name=None, password=None,
                 tenant_name=None, tenant_id=None, domain_name=None,
                 domain_id=None, project_name=None,
                 project_id=None, project_domain_name=None,
                 project_domain_id=None, auth_url=None, token=None,
                 endpoint_type=None, region_name=None, service_type=None,
                 insecure=False, verify=None, session=None, auth=None):
        """
        :param endpoint: Endpoint URL
        :param token: A token instead of username / password
        :param insecure: Allow "insecure" HTTPS requests
        """
        # Backwards compat to preserve the functionality of insecure.
        if verify is None and insecure:
            verify = False
        else:
            verify = True

        # Compatibility code to mimic the old behaviour of the client
        if session is None:
            session = ks_session.Session(verify=verify)

            auth_args = {
                'auth_url': auth_url,
                'domain_id': domain_id,
                'domain_name': domain_name,
                'project_id': project_id,
                'project_name': project_name,
                'project_domain_name': project_domain_name,
                'project_domain_id': project_domain_id,
                'tenant_id': tenant_id,
                'tenant_name': tenant_name,
            }

            if token:
                auth_args['token'] = token
                session.auth = generic.Token(**auth_args)
            else:
                password_args = {
                    'username': username,
                    'user_id': user_id,
                    'user_domain_id': user_domain_id,
                    'user_domain_name': user_domain_name,
                    'password': password
                }
                auth_args.update(password_args)
                session.auth = generic.Password(**auth_args)

        # Since we have to behave nicely like a legacy client/bindings we use
        # an adapter around the session to not modify it's state.
        interface = endpoint_type.rstrip('URL')

        self.session = adapter.Adapter(
            session,
            auth=auth,
            endpoint_override=endpoint,
            region_name=region_name,
            service_type=service_type,
            interface=interface,
            user_agent='python-designateclient-%s' % version.version_info,
            version='1'
        )

        def _load_controller(ext):
            controller = ext.plugin(client=self)
            setattr(self, ext.name, controller)

        # Load all controllers
        mgr = extension.ExtensionManager('designateclient.v1.controllers')
        mgr.map(_load_controller)

    def wrap_api_call(self, func, *args, **kw):
        """
        Wrap a self.<rest function> with exception handling

        :param func: The function to wrap
        """
        kw['raise_exc'] = False
        kw.setdefault('headers', {})
        kw['headers'].setdefault('Content-Type', 'application/json')

        # Trigger the request
        response = func(*args, **kw)

        # Decode is response, if possible
        try:
            response_payload = response.json()
        except ValueError:
            response_payload = {}

        if response.status_code == 400:
            raise exceptions.BadRequest(**response_payload)
        elif response.status_code in (401, 403):
            raise exceptions.Forbidden(**response_payload)
        elif response.status_code == 404:
            raise exceptions.NotFound(**response_payload)
        elif response.status_code == 409:
            raise exceptions.Conflict(**response_payload)
        elif response.status_code >= 500:
            raise exceptions.Unknown(**response_payload)
        else:
            return response

    def get(self, path, **kw):
        return self.wrap_api_call(self.session.get, path, **kw)

    def post(self, path, **kw):
        return self.wrap_api_call(self.session.post, path, **kw)

    def put(self, path, **kw):
        return self.wrap_api_call(self.session.put, path, **kw)

    def delete(self, path, **kw):
        return self.wrap_api_call(self.session.delete, path, **kw)
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00			`# Copyright 2012 Managed I.T.`
			`#`
			`# Author: Kiall Mac Innes <kiall@managedit.ie>`
			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License"); you may`
			`# not use this file except in compliance with the License. You may obtain`
			`# a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT`
			`# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the`
			`# License for the specific language governing permissions and limitations`
			`# under the License.`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`from keystoneclient import adapter`
			`from keystoneclient.auth.identity import generic`
			`from keystoneclient import session as ks_session`
Allow for controllers to be loaded dynamically. Change-Id: If85de4c02406e8ffd49da3c04c23db58ad2df119 2013-04-12 13:11:46 +01:00			`from stevedore import extension`
Fix and enable gating on H306 H306, module imports should be in alphabetical order This hacking check actually improves readability quite a bit, as module imports can be sorted in groups (python stdlibs, external imports, in-module imports) Change-Id: I11dc9155fbfc84389f2a5956f393f705388f83ba 2013-12-16 15:41:51 +01:00
			`from designateclient import exceptions`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`from designateclient import version`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00

			`class Client(object):`
Enabled hacking check H401 * [H401] Docstrings should not start with a space. Change-Id: I1fa248590c7e05ab92b30ae30af1cf107cdd3cc4 2014-07-10 21:54:50 +02:00			`"""Client for the Designate v1 API"""`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00
Support Keystone V3 authentication We now defer the majority of our auth to keystoneclient, rather than continuing to maintain our custom code. Change-Id: Ia8409940d3941bc82a8b54ec60e82efa6d043102 Closes-Bug: 1323435 2014-05-27 01:45:03 +01:00			`def __init__(self, endpoint=None, username=None, user_id=None,`
			`user_domain_id=None, user_domain_name=None, password=None,`
			`tenant_name=None, tenant_id=None, domain_name=None,`
			`domain_id=None, project_name=None,`
			`project_id=None, project_domain_name=None,`
			`project_domain_id=None, auth_url=None, token=None,`
			`endpoint_type=None, region_name=None, service_type=None,`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`insecure=False, verify=None, session=None, auth=None):`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00			`"""`
			`:param endpoint: Endpoint URL`
			`:param token: A token instead of username / password`
Add a --insecure arg to ignore invalid SSL certs Change-Id: I7350c2f9d8f857300784955b2b776f3f1dc69933 2013-09-18 12:55:40 +01:00			`:param insecure: Allow "insecure" HTTPS requests`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00			`"""`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`# Backwards compat to preserve the functionality of insecure.`
			`if verify is None and insecure:`
			`verify = False`
			`else:`
			`verify = True`

			`# Compatibility code to mimic the old behaviour of the client`
			`if session is None:`
			`session = ks_session.Session(verify=verify)`

			`auth_args = {`
			`'auth_url': auth_url,`
			`'domain_id': domain_id,`
			`'domain_name': domain_name,`
			`'project_id': project_id,`
			`'project_name': project_name,`
			`'project_domain_name': project_domain_name,`
			`'project_domain_id': project_domain_id,`
			`'tenant_id': tenant_id,`
			`'tenant_name': tenant_name,`
Support Keystone V3 authentication We now defer the majority of our auth to keystoneclient, rather than continuing to maintain our custom code. Change-Id: Ia8409940d3941bc82a8b54ec60e82efa6d043102 Closes-Bug: 1323435 2014-05-27 01:45:03 +01:00			`}`
Add a --insecure arg to ignore invalid SSL certs Change-Id: I7350c2f9d8f857300784955b2b776f3f1dc69933 2013-09-18 12:55:40 +01:00
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`if token:`
			`auth_args['token'] = token`
			`session.auth = generic.Token(**auth_args)`
			`else:`
			`password_args = {`
			`'username': username,`
			`'user_id': user_id,`
			`'user_domain_id': user_domain_id,`
			`'user_domain_name': user_domain_name,`
			`'password': password`
			`}`
			`auth_args.update(password_args)`
			`session.auth = generic.Password(**auth_args)`

			`# Since we have to behave nicely like a legacy client/bindings we use`
			`# an adapter around the session to not modify it's state.`
			`interface = endpoint_type.rstrip('URL')`

			`self.session = adapter.Adapter(`
			`session,`
			`auth=auth,`
			`endpoint_override=endpoint,`
			`region_name=region_name,`
			`service_type=service_type,`
			`interface=interface,`
			`user_agent='python-designateclient-%s' % version.version_info,`
			`version='1'`
			`)`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00
Allow for controllers to be loaded dynamically. Change-Id: If85de4c02406e8ffd49da3c04c23db58ad2df119 2013-04-12 13:11:46 +01:00			`def _load_controller(ext):`
			`controller = ext.plugin(client=self)`
			`setattr(self, ext.name, controller)`

			`# Load all controllers`
Rename Moniker -> Designate Change-Id: Idf7153aa287adc874a2878dc829950fda52a4879 2013-06-09 21:18:36 +01:00			`mgr = extension.ExtensionManager('designateclient.v1.controllers')`
Allow for controllers to be loaded dynamically. Change-Id: If85de4c02406e8ffd49da3c04c23db58ad2df119 2013-04-12 13:11:46 +01:00			`mgr.map(_load_controller)`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00
			`def wrap_api_call(self, func, args, *kw):`
			`"""`
			`Wrap a self.<rest function> with exception handling`

			`:param func: The function to wrap`
			`"""`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`kw['raise_exc'] = False`
			`kw.setdefault('headers', {})`
			`kw['headers'].setdefault('Content-Type', 'application/json')`
Add a --insecure arg to ignore invalid SSL certs Change-Id: I7350c2f9d8f857300784955b2b776f3f1dc69933 2013-09-18 12:55:40 +01:00
Depend on and update for requests>1.0 (Matching {keystone,cinder,nova}client) Change-Id: I17ca5e802108fcf6dc906ff23b6b61f53a25eac1 2012-12-30 00:01:03 +00:00			`# Trigger the request`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00			`response = func(args, *kw)`

Ensure Invalid JSON and errors during deletes are displayed correctly Change-Id: Iccd4ee10611cfa58a98618f29545d5b194edafa3 2013-10-14 12:45:19 +01:00			`# Decode is response, if possible`
			`try:`
			`response_payload = response.json()`
			`except ValueError:`
			`response_payload = {}`

Handle HTTP 400 errors somewhat more sanely. Change-Id: I49c4225adfd552f0dd01c80cc3053ff2599eb47f 2012-12-11 06:24:48 -08:00			`if response.status_code == 400:`
Ensure Invalid JSON and errors during deletes are displayed correctly Change-Id: Iccd4ee10611cfa58a98618f29545d5b194edafa3 2013-10-14 12:45:19 +01:00			`raise exceptions.BadRequest(**response_payload)`
Handle HTTP 400 errors somewhat more sanely. Change-Id: I49c4225adfd552f0dd01c80cc3053ff2599eb47f 2012-12-11 06:24:48 -08:00			`elif response.status_code in (401, 403):`
Ensure Invalid JSON and errors during deletes are displayed correctly Change-Id: Iccd4ee10611cfa58a98618f29545d5b194edafa3 2013-10-14 12:45:19 +01:00			`raise exceptions.Forbidden(**response_payload)`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00			`elif response.status_code == 404:`
Ensure Invalid JSON and errors during deletes are displayed correctly Change-Id: Iccd4ee10611cfa58a98618f29545d5b194edafa3 2013-10-14 12:45:19 +01:00			`raise exceptions.NotFound(**response_payload)`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00			`elif response.status_code == 409:`
Ensure Invalid JSON and errors during deletes are displayed correctly Change-Id: Iccd4ee10611cfa58a98618f29545d5b194edafa3 2013-10-14 12:45:19 +01:00			`raise exceptions.Conflict(**response_payload)`
			`elif response.status_code >= 500:`
			`raise exceptions.Unknown(**response_payload)`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00			`else:`
			`return response`

			`def get(self, path, **kw):`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`return self.wrap_api_call(self.session.get, path, **kw)`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00
			`def post(self, path, **kw):`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`return self.wrap_api_call(self.session.post, path, **kw)`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00
			`def put(self, path, **kw):`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`return self.wrap_api_call(self.session.put, path, **kw)`
Initial Python client bindings and CLI Change-Id: Iac4a73acfb515c1e213a1dd0865a62bc39e3ed0f 2012-11-19 23:08:35 +00:00
			`def delete(self, path, **kw):`
Use keystone sessions for v1 client This removes the code for checking if the service catalog has a version part in the url or not aka /v1 and removing it as it's handled by the underlying ksclient code in sessions. It also removes old authentication code. Change-Id: I04109a935d7d94518c7dab05122a64ef37190d44 2014-09-04 17:14:12 +02:00			`return self.wrap_api_call(self.session.delete, path, **kw)`