openstack/python-keystoneclient
Code Issues Proposed changes

Merge "Add command to allow users to change their own password"

Browse Source
This commit is contained in:
Jenkins
2012-12-02 19:34:41 +00:00
committed by Gerrit Code Review
parent 0f83602b62 1f6a0af9c1
commit 94cbb61663
5 changed files with 77 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
keystoneclient/base.py
View File

@@ -93,15 +93,17 @@ class Manager(object):
def _delete(self, url): def _delete(self, url):
resp, body = self.api.delete(url) resp, body = self.api.delete(url)
def _update(self, url, body=None, response_key=None, method="PUT"): def _update(self, url, body=None, response_key=None, method="PUT",
management=True):
methods = {"PUT": self.api.put, methods = {"PUT": self.api.put,
"POST": self.api.post, "POST": self.api.post,
"PATCH": self.api.patch} "PATCH": self.api.patch}
try: try:
if body is not None: if body is not None:
resp, body = methods[method](url, body=body) resp, body = methods[method](url, body=body,
management=management)
else: else:
resp, body = methods[method](url) resp, body = methods[method](url, management=management)
except KeyError: except KeyError:
raise exceptions.ClientException("Invalid update method: %s" raise exceptions.ClientException("Invalid update method: %s"
% method) % method)

11
keystoneclient/client.py
View File

@@ -187,14 +187,21 @@ class HTTPClient(httplib2.Http):
concatenating self.management_url and url and passing in method and concatenating self.management_url and url and passing in method and
any associated kwargs. """ any associated kwargs. """
if self.management_url is None: is_management = kwargs.pop('management', True)
if is_management and self.management_url is None:
raise exceptions.AuthorizationFailure( raise exceptions.AuthorizationFailure(
'Current authorization does not have a known management url') 'Current authorization does not have a known management url')
url_to_use = self.auth_url
if is_management:
url_to_use = self.management_url
kwargs.setdefault('headers', {}) kwargs.setdefault('headers', {})
if self.auth_token: if self.auth_token:
kwargs['headers']['X-Auth-Token'] = self.auth_token kwargs['headers']['X-Auth-Token'] = self.auth_token
resp, body = self.request(self.management_url + url, method, resp, body = self.request(url_to_use + url, method,
**kwargs) **kwargs)
return resp, body return resp, body

33
keystoneclient/v2_0/shell.py
View File

@@ -16,6 +16,7 @@
# under the License. # under the License.
import argparse import argparse
import getpass
from keystoneclient.v2_0 import client from keystoneclient.v2_0 import client
from keystoneclient import utils from keystoneclient import utils
@@ -108,6 +109,38 @@ def do_user_password_update(kc, args):
kc.users.update_password(args.id, args.passwd) kc.users.update_password(args.id, args.passwd)
@utils.arg('--current-password', metavar='<current-password>',
dest='currentpasswd', required=False, help='Current password, '
'Defaults to the password as set by --os-password or '
'OS_PASSWORD')
@utils.arg('--new-password ', metavar='<new-password>', dest='newpasswd',
required=False, help='Desired new password')
def do_password_update(kc, args):
"""Update own password"""
# we are prompting for these passwords if they are not passed in
# this gives users the option not to have their password
# appear in bash history etc..
currentpasswd = args.os_password
if args.currentpasswd is not None:
currentpasswd = args.currentpasswd
if currentpasswd is None:
currentpasswd = getpass.getpass('Current Password: ')
newpasswd = args.newpasswd
while newpasswd is None:
passwd1 = getpass.getpass('New Password: ')
passwd2 = getpass.getpass('Repeat New Password: ')
if passwd1 == passwd2:
newpasswd = passwd1
kc.users.update_own_password(currentpasswd, newpasswd)
if args.os_password != newpasswd:
print "You should update the password you are using to authenticate "\
"to match your new password"
@utils.arg('id', metavar='<user-id>', help='User ID to delete') @utils.arg('id', metavar='<user-id>', help='User ID to delete')
def do_user_delete(kc, args): def do_user_delete(kc, args):
"""Delete user""" """Delete user"""

12
keystoneclient/v2_0/users.py
View File

@@ -71,6 +71,18 @@ class UserManager(base.ManagerWithFind):
return self._update("/users/%s/OS-KSADM/password" % base.getid(user), return self._update("/users/%s/OS-KSADM/password" % base.getid(user),
params, "user") params, "user")
def update_own_password(self, origpasswd, passwd):
"""
Update password
"""
params = {"user": {"password": passwd,
"original_password": origpasswd}}
return self._update("/OS-KSCRUD/users/%s" % self.api.user_id, params,
response_key="access",
method="PATCH",
management=False)
def update_tenant(self, user, tenant): def update_tenant(self, user, tenant):
""" """
Update default tenant. Update default tenant.

18
tests/v2_0/test_users.py
View File

@@ -220,3 +220,21 @@ class UserTests(utils.TestCase):
user = self.client.users.update_password(2, 'swordfish') user = self.client.users.update_password(2, 'swordfish')
user = self.client.users.update_tenant(2, 1) user = self.client.users.update_tenant(2, 1)
user = self.client.users.update_enabled(2, False) user = self.client.users.update_enabled(2, False)
def test_update_own_password(self):
req_1 = {'user': {'password': 'ABCD', 'original_password': 'DCBA'}}
resp_1 = {'access': {}}
resp_1 = httplib2.Response({'status': 200, 'body': json.dumps(resp_1)})
httplib2.Http.request(urlparse.urljoin(self.TEST_URL,
'v2.0/OS-KSCRUD/users/123'),
'PATCH',
body=json.dumps(req_1),
headers=self.TEST_POST_HEADERS) \
.AndReturn((resp_1, resp_1['body']))
self.mox.ReplayAll()
self.client.user_id = '123'
self.client.users.update_own_password('DCBA', 'ABCD')