python-swiftclient/tests/utils.py

# Copyright (c) 2010-2012 OpenStack, LLC.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#    http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
# implied.
# See the License for the specific language governing permissions and
# limitations under the License.
from requests import RequestException
from time import sleep


def fake_get_keystoneclient_2_0(os_options, exc=None, **kwargs):
    def fake_get_keystoneclient_2_0(auth_url,
                                    user,
                                    key,
                                    actual_os_options, **actual_kwargs):
        if exc:
            raise exc('test')
        if actual_os_options != os_options:
            return "", None

        if auth_url.startswith("https") and \
           auth_url.endswith("invalid-certificate") and \
           not actual_kwargs['insecure']:
            from swiftclient import client as c
            raise c.ClientException("invalid-certificate")
        if auth_url.startswith("https") and \
           auth_url.endswith("self-signed-certificate") and \
           not actual_kwargs['insecure'] and \
           actual_kwargs['cacert'] is None:
            from swiftclient import client as c
            raise c.ClientException("unverified-certificate")

        return "http://url/", "token"
    return fake_get_keystoneclient_2_0


def fake_http_connect(*code_iter, **kwargs):

    class FakeConn(object):

        def __init__(self, status, etag=None, body='', timestamp='1'):
            self.status = status
            self.reason = 'Fake'
            self.host = '1.2.3.4'
            self.port = '1234'
            self.sent = 0
            self.received = 0
            self.etag = etag
            self.body = body
            self.timestamp = timestamp
            self._is_closed = True

        def connect(self):
            self._is_closed = False

        def close(self):
            self._is_closed = True

        def isclosed(self):
            return self._is_closed

        def getresponse(self):
            if kwargs.get('raise_exc'):
                raise Exception('test')
            return self

        def getexpect(self):
            if self.status == -2:
                raise RequestException()
            if self.status == -3:
                return FakeConn(507)
            return FakeConn(100)

        def getheaders(self):
            headers = {'content-length': len(self.body),
                       'content-type': 'x-application/test',
                       'x-timestamp': self.timestamp,
                       'last-modified': self.timestamp,
                       'x-object-meta-test': 'testing',
                       'etag':
                       self.etag or '"68b329da9893e34099c7d8ad5cb9c940"',
                       'x-works': 'yes',
                       'x-account-container-count': 12345}
            if not self.timestamp:
                del headers['x-timestamp']
            try:
                if next(container_ts_iter) is False:
                    headers['x-container-timestamp'] = '1'
            except StopIteration:
                pass
            if 'slow' in kwargs:
                headers['content-length'] = '4'
            if 'headers' in kwargs:
                headers.update(kwargs['headers'])
            if 'auth_v1' in kwargs:
                headers.update(
                    {'x-storage-url': 'storageURL',
                     'x-auth-token': 'someauthtoken'})
            return headers.items()

        def read(self, amt=None):
            if 'slow' in kwargs:
                if self.sent < 4:
                    self.sent += 1
                    sleep(0.1)
                    return ' '
            rv = self.body[:amt]
            self.body = self.body[amt:]
            return rv

        def send(self, amt=None):
            if 'slow' in kwargs:
                if self.received < 4:
                    self.received += 1
                    sleep(0.1)

        def getheader(self, name, default=None):
            return dict(self.getheaders()).get(name.lower(), default)

    timestamps_iter = iter(kwargs.get('timestamps') or ['1'] * len(code_iter))
    etag_iter = iter(kwargs.get('etags') or [None] * len(code_iter))
    x = kwargs.get('missing_container', [False] * len(code_iter))
    if not isinstance(x, (tuple, list)):
        x = [x] * len(code_iter)
    container_ts_iter = iter(x)
    code_iter = iter(code_iter)

    def connect(*args, **ckwargs):
        if 'give_content_type' in kwargs:
            if len(args) >= 7 and 'Content-Type' in args[6]:
                kwargs['give_content_type'](args[6]['Content-Type'])
            else:
                kwargs['give_content_type']('')
        if 'give_connect' in kwargs:
            kwargs['give_connect'](*args, **ckwargs)
        status = next(code_iter)
        etag = next(etag_iter)
        timestamp = next(timestamps_iter)
        if status <= 0:
            raise RequestException()
        fake_conn = FakeConn(status, etag, body=kwargs.get('body', ''),
                             timestamp=timestamp)
        fake_conn.connect()
        return fake_conn

    return connect
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00			`# Copyright (c) 2010-2012 OpenStack, LLC.`
			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or`
			`# implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact 2014-01-24 17:40:16 +01:00			`from requests import RequestException`
Eradicate eventlet and fix bug lp:959221 The bug is simple: whenever swift uploads to a Swift with SSL, it uses 100% CPU. It happens because we use HTTPSConnection from eventlet that loops like that, while holding the interpreter lock. Now, it could be fixed in eventlet, but let's try something more natural: drop the eventlet's HTTP client. We do not use green threads in the client anymore, so it's not like we need it for that. Note that in most cases clients do not use the BufferedHTTPConnection either, because it's only installed on Swift server nodes, not on workstations. Get rid of that too. bug: 959221 Change-Id: I1eb932779d4171598b3efaa043f817b9c6c995c4 2013-05-10 21:33:17 -06:00			`from time import sleep`
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819 2013-03-22 14:59:57 +00:00
Add --insecure option to fix bug #1077869 If enable this option , swift CLI is allowed to access a keystone server with self signed certificate. Change-Id: I5e219fe875b246b68ac51a077e7ff15e95463adf 2012-12-05 13:18:27 +09:00			`def fake_get_keystoneclient_2_0(os_options, exc=None, **kwargs):`
Allow endpoint type to be specified. Fixes bug 1037690. Change-Id: I36b3807b2f3234c778316f1e743d27304755aed8 2012-08-28 10:25:42 -04:00			`def fake_get_keystoneclient_2_0(auth_url,`
			`user,`
			`key,`
Add --insecure option to fix bug #1077869 If enable this option , swift CLI is allowed to access a keystone server with self signed certificate. Change-Id: I5e219fe875b246b68ac51a077e7ff15e95463adf 2012-12-05 13:18:27 +09:00			`actual_os_options, **actual_kwargs):`
Add region_name support Add --os-region-name (and OS_REGION_NAME env) to bin/swift Add region_name to the os_options in Connection class. bug 1019832 Change-Id: Id8515d97e5351638dce10581c7368f61518e1fa7 2012-09-05 15:55:53 +01:00			`if exc:`
			`raise exc('test')`
Allow endpoint type to be specified. Fixes bug 1037690. Change-Id: I36b3807b2f3234c778316f1e743d27304755aed8 2012-08-28 10:25:42 -04:00			`if actual_os_options != os_options:`
			`return "", None`
Add --insecure option to fix bug #1077869 If enable this option , swift CLI is allowed to access a keystone server with self signed certificate. Change-Id: I5e219fe875b246b68ac51a077e7ff15e95463adf 2012-12-05 13:18:27 +09:00
			`if auth_url.startswith("https") and \`
			`auth_url.endswith("invalid-certificate") and \`
			`not actual_kwargs['insecure']:`
			`from swiftclient import client as c`
			`raise c.ClientException("invalid-certificate")`
Add --os-cacert Add support to specify a ca certificate bundle to verify keystone TLS (https) certificates. This only verifies certificates on the keystone connection, swift https connections are unchanged. Change-Id: I14351b405af4fd3d1970ba6656c1282a5d0a1082 2012-12-19 09:52:54 -06:00			`if auth_url.startswith("https") and \`
			`auth_url.endswith("self-signed-certificate") and \`
			`not actual_kwargs['insecure'] and \`
			`actual_kwargs['cacert'] is None:`
			`from swiftclient import client as c`
			`raise c.ClientException("unverified-certificate")`
Add --insecure option to fix bug #1077869 If enable this option , swift CLI is allowed to access a keystone server with self signed certificate. Change-Id: I5e219fe875b246b68ac51a077e7ff15e95463adf 2012-12-05 13:18:27 +09:00
Allow storage url override for both auth vers. When --os-storage-url is specified on the command-line to bin/swift, it will override the used storage URL regardless of authentication for both authentication version 1 and version 2. This can be used to bypass a load-balancer to hit a specific proxy server for testing/debugging purposes. Within the client library, this feature is accessed by passing the desired storage URL into swiftclient.client.Conection.__init__() via the os_options keyword argument. For example: conn = Connection(auth_url, user, key, os_options={ 'object_storage_url': 'http://overridden.storage.url/AUTH_foo'}) This patch also adds a dependency on mock>=0.8.0, which is the same as openstack/swift. Change-Id: Id2a36ed6abffd65e7762b6beea5bbfc6c036e848 2013-06-28 21:26:54 -07:00			`return "http://url/", "token"`
Allow endpoint type to be specified. Fixes bug 1037690. Change-Id: I36b3807b2f3234c778316f1e743d27304755aed8 2012-08-28 10:25:42 -04:00			`return fake_get_keystoneclient_2_0`
Use keystoneclient for authentication. - This allows us to delegate all 2.0 authentication directly to the library without reimplementing ourselves. - Support reusing a token / storage-url without re-authenticating every time via the switch os_storage_url os_auth_token. - Allow auth via tenant_id instead of just tenant_name via the switch os_tenant_id. - Refactor a bit to make it easier in the future to add new OS features (i.e: region). - Implements blueprint use-keystoneclient-for-swiftclient. - Fixes bug 1016641. Change-Id: I532f38a68af884de25326aaac05a2050f5ffa1c7 2012-07-04 21:46:02 +02:00

Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00			`def fake_http_connect(code_iter, *kwargs):`

			`class FakeConn(object):`

			`def __init__(self, status, etag=None, body='', timestamp='1'):`
			`self.status = status`
			`self.reason = 'Fake'`
			`self.host = '1.2.3.4'`
			`self.port = '1234'`
			`self.sent = 0`
			`self.received = 0`
			`self.etag = etag`
			`self.body = body`
			`self.timestamp = timestamp`
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004 2013-10-17 11:12:06 +08:00			`self._is_closed = True`

			`def connect(self):`
			`self._is_closed = False`

			`def close(self):`
			`self._is_closed = True`

			`def isclosed(self):`
			`return self._is_closed`
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00
			`def getresponse(self):`
			`if kwargs.get('raise_exc'):`
			`raise Exception('test')`
			`return self`

			`def getexpect(self):`
			`if self.status == -2:`
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact 2014-01-24 17:40:16 +01:00			`raise RequestException()`
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00			`if self.status == -3:`
			`return FakeConn(507)`
			`return FakeConn(100)`

			`def getheaders(self):`
			`headers = {'content-length': len(self.body),`
			`'content-type': 'x-application/test',`
			`'x-timestamp': self.timestamp,`
			`'last-modified': self.timestamp,`
			`'x-object-meta-test': 'testing',`
			`'etag':`
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819 2013-03-22 14:59:57 +00:00			`self.etag or '"68b329da9893e34099c7d8ad5cb9c940"',`
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00			`'x-works': 'yes',`
			`'x-account-container-count': 12345}`
			`if not self.timestamp:`
			`del headers['x-timestamp']`
			`try:`
Python 3: Replace iter.next() with six.next(iter) Use six.next() to be Python 3 compatible. Change-Id: Ia16148a759d368872787d5896a7b1dc42ffcdfb5 2014-03-24 18:19:17 +01:00			`if next(container_ts_iter) is False:`
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00			`headers['x-container-timestamp'] = '1'`
			`except StopIteration:`
			`pass`
			`if 'slow' in kwargs:`
			`headers['content-length'] = '4'`
			`if 'headers' in kwargs:`
			`headers.update(kwargs['headers'])`
Fix --insecure option on auth Change-Id: Ibe76d98d6075b84cbdb370b48f3498ab848142ad 2014-02-13 23:33:01 -08:00			`if 'auth_v1' in kwargs:`
			`headers.update(`
			`{'x-storage-url': 'storageURL',`
			`'x-auth-token': 'someauthtoken'})`
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00			`return headers.items()`

			`def read(self, amt=None):`
			`if 'slow' in kwargs:`
			`if self.sent < 4:`
			`self.sent += 1`
			`sleep(0.1)`
			`return ' '`
			`rv = self.body[:amt]`
			`self.body = self.body[amt:]`
			`return rv`

			`def send(self, amt=None):`
			`if 'slow' in kwargs:`
			`if self.received < 4:`
			`self.received += 1`
			`sleep(0.1)`

			`def getheader(self, name, default=None):`
			`return dict(self.getheaders()).get(name.lower(), default)`

			`timestamps_iter = iter(kwargs.get('timestamps') or ['1'] * len(code_iter))`
			`etag_iter = iter(kwargs.get('etags') or [None] * len(code_iter))`
			`x = kwargs.get('missing_container', [False] * len(code_iter))`
			`if not isinstance(x, (tuple, list)):`
			`x = [x] * len(code_iter)`
			`container_ts_iter = iter(x)`
			`code_iter = iter(code_iter)`

			`def connect(args, *ckwargs):`
			`if 'give_content_type' in kwargs:`
			`if len(args) >= 7 and 'Content-Type' in args[6]:`
			`kwargs['give_content_type'](args[6]['Content-Type'])`
			`else:`
			`kwargs['give_content_type']('')`
			`if 'give_connect' in kwargs:`
			`kwargs['give_connect'](args, *ckwargs)`
Python 3: Replace iter.next() with six.next(iter) Use six.next() to be Python 3 compatible. Change-Id: Ia16148a759d368872787d5896a7b1dc42ffcdfb5 2014-03-24 18:19:17 +01:00			`status = next(code_iter)`
			`etag = next(etag_iter)`
			`timestamp = next(timestamps_iter)`
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00			`if status <= 0:`
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact 2014-01-24 17:40:16 +01:00			`raise RequestException()`
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004 2013-10-17 11:12:06 +08:00			`fake_conn = FakeConn(status, etag, body=kwargs.get('body', ''),`
			`timestamp=timestamp)`
			`fake_conn.connect()`
			`return fake_conn`
Adding fake_http_connect to test.utils. - Copy fake_http_connect function from swift repository. 2012-05-21 12:49:21 +02:00
			`return connect`