openstack/python-swiftclient
Code Issues Proposed changes
6af54cf481
python-swiftclient/test/unit/test_swiftclient.py

3460 lines
147 KiB
Python
Raw Normal View History

Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
# Copyright (c) 2010-2012 OpenStack, LLC.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
# implied.
# See the License for the specific language governing permissions and
# limitations under the License.
Fix logging of the gzipped body Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 Closes-bug: 1670620
2017-03-07 13:38:22 +04:00
import gzip
Fix MockHttpResponse to be more like the Real This change pulls out that relatively new [1] little string to pull at in the MockHttpResponse that I think is sorta ugly. And replaces it with the correct behavior that's representative of the Real for which it's standing in (which is sadly our wrapper to make a requests response feel like a httplib.HTTPResponse). It's not clear (to me) the history which allowed this difference in the behavior of the Real and Fake to persist - it seems to have always been this way [2]. I also reworded a relatively new test [1] to cover more code, and make assertions on the desired behavior of the client instead of "just" the http_log method. FWIW, I don't think there was necessarily anything wrong with the scope of the new test [1] - and it certainly makes sense to see new tests copy nearby existing tests. But I subjectively think this smaller test is more demonstrative of the desired behavior. 1. Related-Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 2. Related-Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7 Change-Id: Ib99a029c1bd1ea1efa8060fe8a11cb01deea41c6
2017-03-07 16:52:51 -08:00
import json
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
import logging
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
import io
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
import socket
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
import string
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
import unittest
Remove use of mock Since Python 3.4, the unittest module has provided mock, negating the need for the external dependancy. Switch to using unittest.mock. Change-Id: Idec3aaed2fddd1ece3ed86ee0bcc48f7616d56fa
2022-05-24 11:56:35 +10:00
from unittest import mock
Enhance put_object to inform when chunk is ignored Changed documentation for chunk_size parameter to indicate that it can be used only with file like objects. Also added a UserWarning when using a string contents to inform that chunk_size will be ignored. Added a unit test to check whether the warning is working correctly. Fixes: bug #1147232 Change-Id: I618ec45520ba81905ce2ead4d61f192d21ae3489
2013-03-05 16:56:02 +00:00
import warnings
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
import tempfile
from hashlib import md5
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
from urllib.parse import urlparse
Retry on SSLError ...provided it isn't something to do with certification validation. Closes-Bug: #1641363 Closes-Bug: #2011731 Change-Id: Ic3acbf431e444fcd8bc0fe79571fe2db4140cf22
2023-03-17 16:14:15 -07:00
from requests.exceptions import RequestException, SSLError
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Add test for timeout being passed to keystone client Extends existing unit test for timeout being passed to get_auth to cover v2.0 auth when keystone client should get the timeout kwarg. Related-Bug: 1447847 Change-Id: Ie9cfc86fa2156b94b45d290ac12e3f71b20d6c4f
2015-04-28 16:56:44 +01:00
from .utils import (MockHttpTest, fake_get_auth_keystone, StubResponse,
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
FakeKeystone)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Add improvements to MD5 validation. With MD5Sum checking being added, a concern was brought up that It was a change with no possibility of reverting to the old behaviour. This change adds the flag '--ignore-checksum' to the upload subcommand allowing the checks to be turned off. Changed occurrences of the magic string for a null md5 to use a descriptive constant instead. Updated Error messages generated when validation fails. They should now be more descriptive and not output a literal newline sequence. Change-Id: Id1756cbb6700bb7e38f0ee0e75bc535e37f777ed
2015-03-04 14:01:55 +00:00
from swiftclient.utils import EMPTY_ETAG
Add force auth retry mode in swiftclient This patch attemps to add an option to force get_auth call while retrying an operation even if it gets errors other than 401 Unauthorized. Why we need this: The main reason why we need this is current python-swiftclient requests could never get succeeded under certion situation using third party proxies/load balancers between the client and swift-proxy server. I think, it would be general situation of the use case. Specifically describing nginx case, the nginx can close the socket from the client when the response code from swift is not 2xx series. In default, nginx can wait the buffers from the client for a while (default 30s)[1] but after the time past, nginx will close the socket immediately. Unfortunately, if python-swiftclient has still been sending the data into the socket, python-swiftclient will get socket error (EPIPE, BrokenPipe). From the swiftclient perspective, this is absolutely not an auth error, so current python-swiftclient will continue to retry without re-auth. However, if the root cause is sort of 401 (i.e. nginx got 401 unauthorized from the swift-proxy because of token expiration), swiftclient will loop 401 -> EPIPE -> 401... until it consume the max retry times. In particlar, less time to live of the token and multipart object upload with large segments could not get succeeded as below: Connection Model: python-swiftclient -> nginx -> swift-proxy -> swift-backend Case: Try to create slo with large segments and the auth token expired with 1 hour 1. client create a connection to nginx with successful response from swift-proxy and its auth 2. client continue to put large segment objects (e.g. 1~5GB for each and the total would 20~30GB, i.e. 20~30 segments) 3. after some of segments uploaded, 1 hour past but client is still trying to send remaining segment objects. 4. nginx got 401 from swift-proxy for a request and wait that the connection is closed from the client but timeout past because the python-swiftclient is still sending much data into the socket before reading the 401 response. 5. client got socket error because nginx closed the connection during sending the buffer. 6. client retries a new connection to nginx without re-auth... <loop 4-6> 7. finally python-swiftclient failed with socket error (Broken Pipe) In operational perspective, setting longer timeout for lingering close would be an option but it's not complete solution because any other proxy/LB may not support the options. If we actually do THE RIGHT THING in python-swiftclient, we should send expects: 100-continue header and handle the first response to re-auth correctly. HOWEVER, the current python's httplib and requests module used by python-swiftclient doesn't support expects: 100-continue header [2] and the thread proposed a fix [3] is not super active. And we know the reason we depends on the library is to fix a security issue that existed in older python-swiftclient [4] so that we should touch around it super carefully. In the reality, as the hot fix, this patch try to mitigate the unfortunate situation described above WITHOUT 100-continue fix, just users can force to re-auth when any errors occurred during the retries that can be accepted in the upstream. 1: http://nginx.org/en/docs/http/ngx_http_core_module.html#lingering_close 2: https://github.com/requests/requests/issues/713 3: https://bugs.python.org/issue1346874 4: https://review.openstack.org/#/c/69187/ Change-Id: I3470b56e3f9cf9cdb8c2fc2a94b2c551927a3440
2018-03-12 17:54:17 +09:00
from swiftclient.exceptions import ClientException
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
from swiftclient import client as c
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
import swiftclient.utils
Add unit tests for _encode_meta_headers Also move it to a module level function. Change-Id: I2da64876815619a6db7ff208061df2191767806c
2014-11-06 14:10:13 +00:00
import swiftclient
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
class TestClientException(unittest.TestCase):
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_is_exception(self):
self.assertTrue(issubclass(c.ClientException, Exception))
def test_format(self):
exc = c.ClientException('something failed')
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertIn('something failed', str(exc))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
test_kwargs = (
'scheme',
'host',
'port',
'path',
'query',
'status',
'reason',
'device',
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
'response_content',
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
)
for value in test_kwargs:
kwargs = {
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819
2013-03-22 14:59:57 +00:00
'http_%s' % value: value,
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
}
exc = c.ClientException('test', **kwargs)
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertIn(value, str(exc))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
def test_attrs(self):
test_kwargs = (
'scheme',
'host',
'port',
'path',
'query',
'status',
'reason',
'device',
'response_content',
'response_headers',
)
for value in test_kwargs:
key = 'http_%s' % value
kwargs = {key: value}
exc = c.ClientException('test', **kwargs)
self.assertIs(True, hasattr(exc, key))
self.assertEqual(getattr(exc, key), value)
Include transaction ID in ClientException.__str__ It's fairly annoying getting a traceback in swift's probe tests then only having a URL and status code to go searching for in logs. Leave the shell.py output untouched, though, since we output the transaction ID on a new line anyway. Change-Id: Idb849848ec08b6c04812b088467c9a687c2a7e27
2020-08-14 10:41:15 -07:00
def test_transaction_id_from_headers(self):
exc = c.ClientException('test')
self.assertIsNone(exc.transaction_id)
exc = c.ClientException('test', http_response_headers={})
self.assertIsNone(exc.transaction_id)
exc = c.ClientException('test', http_response_headers={
'X-Trans-Id': 'some-id'})
self.assertEqual(exc.transaction_id, 'some-id')
self.assertIn('(txn: some-id)', str(exc))
exc = c.ClientException('test', http_response_headers={
'X-Openstack-Request-Id': 'some-other-id'})
self.assertEqual(exc.transaction_id, 'some-other-id')
self.assertIn('(txn: some-other-id)', str(exc))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Remove unnecessary object subclassing All classes subclass from object by default in Python 3. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I5a1ad57bcc092861ce969759b06a07c880ad3d35
2022-03-21 18:19:50 +00:00
class MockHttpResponse:
Fix MockHttpResponse to be more like the Real This change pulls out that relatively new [1] little string to pull at in the MockHttpResponse that I think is sorta ugly. And replaces it with the correct behavior that's representative of the Real for which it's standing in (which is sadly our wrapper to make a requests response feel like a httplib.HTTPResponse). It's not clear (to me) the history which allowed this difference in the behavior of the Real and Fake to persist - it seems to have always been this way [2]. I also reworded a relatively new test [1] to cover more code, and make assertions on the desired behavior of the client instead of "just" the http_log method. FWIW, I don't think there was necessarily anything wrong with the scope of the new test [1] - and it certainly makes sense to see new tests copy nearby existing tests. But I subjectively think this smaller test is more demonstrative of the desired behavior. 1. Related-Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 2. Related-Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7 Change-Id: Ib99a029c1bd1ea1efa8060fe8a11cb01deea41c6
2017-03-07 16:52:51 -08:00
def __init__(self, status=0, headers=None, verify=False):
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
self.status = status
self.status_code = status
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
self.reason = "OK"
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
self.buffer = []
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
self.requests_params = None
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
self.verify = verify
self.md5sum = md5()
Add improvements to MD5 validation. With MD5Sum checking being added, a concern was brought up that It was a change with no possibility of reverting to the old behaviour. This change adds the flag '--ignore-checksum' to the upload subcommand allowing the checks to be turned off. Changed occurrences of the magic string for a null md5 to use a descriptive constant instead. Updated Error messages generated when validation fails. They should now be more descriptive and not output a literal newline sequence. Change-Id: Id1756cbb6700bb7e38f0ee0e75bc535e37f777ed
2015-03-04 14:01:55 +00:00
self.headers = {'etag': '"%s"' % EMPTY_ETAG}
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
if headers:
self.headers.update(headers)
Add connection release test This patch adds a small test to ensure a connection is released after all chunks have been consumed. It's a follow up to commit 8756591b and added to ensure there will be no regression in the future (this test fails also with that patch not applied). Change-Id: I6a6fcd26879eb2070f418c8770a395ff6c30aa51
2015-02-25 10:58:27 +00:00
self.closed = False
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
Remove unnecessary object subclassing All classes subclass from object by default in Python 3. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I5a1ad57bcc092861ce969759b06a07c880ad3d35
2022-03-21 18:19:50 +00:00
class Raw:
Use a socket timeout in get_auth A previous change added socket timeouts, but they weren't plumbed through to the get_auth code path. Make sure we're passing them along everywhere. Original-Author: Monty Taylor <mordred@inaugust.com> Change-Id: I398241898248e66d1f8c436c8ed2ec7a0e9387f6 Closes-bug: 1447847
2015-04-26 01:37:15 -06:00
def __init__(self, headers):
self.headers = headers
def read(self, **kw):
return ""
def getheader(self, name, default):
return self.headers.get(name, default)
self.raw = Raw(headers)
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
def read(self):
return ""
Use a socket timeout in get_auth A previous change added socket timeouts, but they weren't plumbed through to the get_auth code path. Make sure we're passing them along everywhere. Original-Author: Monty Taylor <mordred@inaugust.com> Change-Id: I398241898248e66d1f8c436c8ed2ec7a0e9387f6 Closes-bug: 1447847
2015-04-26 01:37:15 -06:00
def close(self):
Add connection release test This patch adds a small test to ensure a connection is released after all chunks have been consumed. It's a follow up to commit 8756591b and added to ensure there will be no regression in the future (this test fails also with that patch not applied). Change-Id: I6a6fcd26879eb2070f418c8770a395ff6c30aa51
2015-02-25 10:58:27 +00:00
self.closed = True
Use a socket timeout in get_auth A previous change added socket timeouts, but they weren't plumbed through to the get_auth code path. Make sure we're passing them along everywhere. Original-Author: Monty Taylor <mordred@inaugust.com> Change-Id: I398241898248e66d1f8c436c8ed2ec7a0e9387f6 Closes-bug: 1447847
2015-04-26 01:37:15 -06:00
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
def getheader(self, name, default):
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
return self.headers.get(name, default)
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
def getheaders(self):
Fix MockHttpResponse to be more like the Real This change pulls out that relatively new [1] little string to pull at in the MockHttpResponse that I think is sorta ugly. And replaces it with the correct behavior that's representative of the Real for which it's standing in (which is sadly our wrapper to make a requests response feel like a httplib.HTTPResponse). It's not clear (to me) the history which allowed this difference in the behavior of the Real and Fake to persist - it seems to have always been this way [2]. I also reworded a relatively new test [1] to cover more code, and make assertions on the desired behavior of the client instead of "just" the http_log method. FWIW, I don't think there was necessarily anything wrong with the scope of the new test [1] - and it certainly makes sense to see new tests copy nearby existing tests. But I subjectively think this smaller test is more demonstrative of the desired behavior. 1. Related-Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 2. Related-Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7 Change-Id: Ib99a029c1bd1ea1efa8060fe8a11cb01deea41c6
2017-03-07 16:52:51 -08:00
return dict(self.headers).items()
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
def fake_response(self):
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
return self
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
def _fake_request(self, *arg, **kwarg):
self.status = 200
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
self.requests_params = kwarg
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
if self.verify:
for chunk in kwarg['data']:
self.md5sum.update(chunk)
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
# This simulate previous httplib implementation that would do a
# putrequest() and then use putheader() to send header.
Replace dict.iteritems() with dict.items() dict.iteritems() has been removed in Python 3. In Python 2, dict.items() creates a temporary list, but Samuel Merritt wrote: "The size of the data is small enough that we don't need to worry about the memory consumption; it's all just HTTP headers." Change-Id: Iac427b8bbd032e4a1efb2bdc84a3968217eb6ddf
2014-03-24 18:21:34 +01:00
for k, v in kwarg['headers'].items():
Python 3: fix tests on HTTP headers HTTP headers are encoded to bytes. Store headers at (key, value) tuples instead of Unicode strings. Check also that non-ASCII Unicode headers are encoded to UTF-8. Change-Id: Ie45f5a5ba63f539a723a7ac5649779d8efb3e912
2014-04-02 14:34:50 +02:00
self.buffer.append((k, v))
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
return self.fake_response()
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestHttpHelpers(MockHttpTest):
def test_quote(self):
Fix swiftclient.client.quote() for Python 3 On Python 3, urllib.parse.quote() accepts bytes and str (unicode) types and always return str (unicode). Add also more tests with non-ASCII characters. Change-Id: I8e0f19da7240e874392327d0da074ed4abb7d213
2014-03-31 12:40:24 +02:00
value = b'bytes\xff'
self.assertEqual('bytes%FF', c.quote(value))
value = 'native string'
self.assertEqual('native%20string', c.quote(value))
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
value = 'unicode string'
Fix swiftclient.client.quote() for Python 3 On Python 3, urllib.parse.quote() accepts bytes and str (unicode) types and always return str (unicode). Add also more tests with non-ASCII characters. Change-Id: I8e0f19da7240e874392327d0da074ed4abb7d213
2014-03-31 12:40:24 +02:00
self.assertEqual('unicode%20string', c.quote(value))
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
value = 'unicode:\xe9\u20ac'
Fix swiftclient.client.quote() for Python 3 On Python 3, urllib.parse.quote() accepts bytes and str (unicode) types and always return str (unicode). Add also more tests with non-ASCII characters. Change-Id: I8e0f19da7240e874392327d0da074ed4abb7d213
2014-03-31 12:40:24 +02:00
self.assertEqual('unicode%3A%C3%A9%E2%82%AC', c.quote(value))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
def test_parse_header_string(self):
value = b'bytes'
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('bytes', c.parse_header_string(value))
value = 'unicode:\xe9\u20ac'
self.assertEqual('unicode:\xe9\u20ac', c.parse_header_string(value))
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
value = 'native%20string'
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('native string', c.parse_header_string(value))
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
value = b'encoded%20bytes%E2%82%AC'
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('encoded bytes\u20ac', c.parse_header_string(value))
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
value = 'encoded%20unicode%E2%82%AC'
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('encoded unicode\u20ac',
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
c.parse_header_string(value))
value = b'bad%20bytes%ff%E2%82%AC'
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('bad%20bytes%ff%E2%82%AC',
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
c.parse_header_string(value))
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
value = 'bad%20unicode%ff\u20ac'
self.assertEqual('bad%20unicode%ff\u20ac',
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
c.parse_header_string(value))
value = b'really%20bad\xffbytes'
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('really%2520bad%FFbytes',
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
c.parse_header_string(value))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_http_connection(self):
url = 'http://www.test.com'
_junk, conn = c.http_connection(url)
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertIs(type(conn), c.HTTPConnection)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
url = 'https://www.test.com'
_junk, conn = c.http_connection(url)
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertIs(type(conn), c.HTTPConnection)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
url = 'ftp://www.test.com'
self.assertRaises(c.ClientException, c.http_connection, url)
Add unit tests for _encode_meta_headers Also move it to a module level function. Change-Id: I2da64876815619a6db7ff208061df2191767806c
2014-11-06 14:10:13 +00:00
def test_encode_meta_headers(self):
headers = {'abc': '123',
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
'x-container-meta-\u0394': 123,
'x-account-meta-\u0394': 12.3,
'x-object-meta-\u0394': True}
Add unit tests for _encode_meta_headers Also move it to a module level function. Change-Id: I2da64876815619a6db7ff208061df2191767806c
2014-11-06 14:10:13 +00:00
r = swiftclient.encode_meta_headers(headers)
self.assertEqual(len(headers), len(r))
# ensure non meta headers are not encoded
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
self.assertIs(type(r.get('abc')), bytes)
Add unit tests for _encode_meta_headers Also move it to a module level function. Change-Id: I2da64876815619a6db7ff208061df2191767806c
2014-11-06 14:10:13 +00:00
del r['abc']
for k, v in r.items():
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
self.assertIs(type(k), bytes)
self.assertIs(type(v), bytes)
Convert numeric and boolean header values to strings Recently, requests got a bit more picky about what types of data it will accept as header values [1]. The reasons for this are generally sound; str()ing arbitrary objects just before pushing them out a socket may not do what the developer wanted/expected. However, there are a few standard types that developers may be sending that we should convert for them as a convenience. Now, we'll convert all int, float, and bool values to strings before sending them on to requests. Change-Id: I6c2f451009cb03cb78812f54e4ed8566076de821 Closes-Bug: 1614932
2016-08-25 10:51:29 -07:00
self.assertIn(v, (b'123', b'12.3', b'True'))
Add unit tests for _encode_meta_headers Also move it to a module level function. Change-Id: I2da64876815619a6db7ff208061df2191767806c
2014-11-06 14:10:13 +00:00
set user-agent header Change-Id: Ia67807667b4b5177d83cce9fcf16d98dc5024fbc
2014-03-28 15:45:37 -07:00
def test_set_user_agent_default(self):
_junk, conn = c.http_connection('http://www.example.com')
req_headers = {}
def my_request_handler(*a, **kw):
req_headers.update(kw.get('headers', {}))
conn._request = my_request_handler
# test the default
conn.request('GET', '/')
ua = req_headers.get('user-agent', 'XXX-MISSING-XXX')
change assert_ to assertTrue According to http://docs.python.org/2/library/unittest.html assert_ is a deprecated alias of assertTrue. Change-Id: I18db0af72934dde4498502fb29579941d020cf01
2014-05-14 21:15:07 +02:00
self.assertTrue(ua.startswith('python-swiftclient-'))
set user-agent header Change-Id: Ia67807667b4b5177d83cce9fcf16d98dc5024fbc
2014-03-28 15:45:37 -07:00
def test_set_user_agent_per_request_override(self):
_junk, conn = c.http_connection('http://www.example.com')
req_headers = {}
def my_request_handler(*a, **kw):
req_headers.update(kw.get('headers', {}))
conn._request = my_request_handler
# test if it's actually set
conn.request('GET', '/', headers={'User-Agent': 'Me'})
ua = req_headers.get('user-agent', 'XXX-MISSING-XXX')
Only encode metadata for user customed headers Don't encode standard headers keys but just the x-*-meta- ones. That fixes py3 to not have them casted as bytes and not properly passed to the requests kwargs. Other trivial py3 fixes along the way. Change-Id: I91b95f32fb2aec9b20892a5bb95fd1bc65d002f3
2014-04-15 16:28:50 -04:00
self.assertEqual(ua, b'Me', req_headers)
set user-agent header Change-Id: Ia67807667b4b5177d83cce9fcf16d98dc5024fbc
2014-03-28 15:45:37 -07:00
def test_set_user_agent_default_override(self):
_junk, conn = c.http_connection(
'http://www.example.com',
default_user_agent='a-new-default')
req_headers = {}
def my_request_handler(*a, **kw):
req_headers.update(kw.get('headers', {}))
conn._request = my_request_handler
# test setting a default
conn._request = my_request_handler
conn.request('GET', '/')
ua = req_headers.get('user-agent', 'XXX-MISSING-XXX')
self.assertEqual(ua, 'a-new-default')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestGetAuth(MockHttpTest):
def test_ok(self):
c.http_connection = self.fake_http_connection(200)
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf')
Replace assertEqual(arg, None) with assertIsNone(arg) In python-swiftclient some test cases using asserEqual(arg, None) instead of assertIsNone(arg).assertIsNone method provides clear error message. Change-Id: I4d673ede0965408344325c9c234c5c4b1ae4146a Closes-Bug: #1527556
2015-12-30 17:20:35 +05:30
self.assertIsNone(url)
self.assertIsNone(token)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Raise ClientException for invalid auth version. - Fixes LP Bug #1008667. - Fix a pep8 error along the way to pass jenkins. - Update openstack.swift.common to get jenkins passing for 1.2 pep8 error. Change-Id: I4ce86a94e1c799807a2ad8e7e1c502b1eb8a51c7
2012-06-06 18:38:08 +02:00
def test_invalid_auth(self):
self.assertRaises(c.ClientException, c.get_auth,
'http://www.tests.com', 'asdf', 'asdf',
auth_version="foo")
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_auth_v1(self):
Fix --insecure option on auth Change-Id: Ibe76d98d6075b84cbdb370b48f3498ab848142ad
2014-02-13 23:33:01 -08:00
c.http_connection = self.fake_http_connection(200, auth_v1=True)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
auth_version="1.0")
Fix --insecure option on auth Change-Id: Ibe76d98d6075b84cbdb370b48f3498ab848142ad
2014-02-13 23:33:01 -08:00
self.assertEqual(url, 'storageURL')
self.assertEqual(token, 'someauthtoken')
def test_auth_v1_insecure(self):
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
c.http_connection = self.fake_http_connection(200, 200, auth_v1=True)
Fix --insecure option on auth Change-Id: Ibe76d98d6075b84cbdb370b48f3498ab848142ad
2014-02-13 23:33:01 -08:00
url, token = c.get_auth('http://www.test.com/invalid_cert',
'asdf', 'asdf',
auth_version='1.0',
insecure=True)
self.assertEqual(url, 'storageURL')
self.assertEqual(token, 'someauthtoken')
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.get_auth('http://www.test.com/invalid_cert',
'asdf', 'asdf', auth_version='1.0')
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
# TODO: this test is really on validating the mock and not the
# the full plumbing into the requests's 'verify' option
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
self.assertIn('invalid_certificate', str(exc_context.exception))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Make default get_auth timeout be None Setting timeout to a default of False in get_auth() results in a requests timeout of 0.0 in keystoneclient, which causes a connection failure. This bug will cause func tests to not run when using keystoneauth. Added unit tests to verify correct default timeout is set in get_auth(). Drive-by: remove what seems like a stale TODO comment Change-Id: I17c781ce160a682b1768d315422ade0cdd2df198
2015-06-02 21:02:42 +01:00
def test_auth_v1_timeout(self):
# this test has some overlap with
# TestConnection.test_timeout_passed_down but is required to check that
# get_auth does the right thing when it is not passed a timeout arg
orig_http_connection = c.http_connection
timeouts = []
def fake_request_handler(*a, **kw):
if 'timeout' in kw:
timeouts.append(kw['timeout'])
else:
timeouts.append(None)
return MockHttpResponse(
status=200,
headers={
'x-auth-token': 'a_token',
'x-storage-url': 'http://files.example.com/v1/AUTH_user'})
def fake_connection(*a, **kw):
url, conn = orig_http_connection(*a, **kw)
conn._request = fake_request_handler
return url, conn
with mock.patch('swiftclient.client.http_connection', fake_connection):
c.get_auth('http://www.test.com', 'asdf', 'asdf',
auth_version="1.0", timeout=42.0)
c.get_auth('http://www.test.com', 'asdf', 'asdf',
auth_version="1.0", timeout=None)
c.get_auth('http://www.test.com', 'asdf', 'asdf',
auth_version="1.0")
self.assertEqual(timeouts, [42.0, None, None])
def test_auth_v2_timeout(self):
# this test has some overlap with
# TestConnection.test_timeout_passed_down but is required to check that
# get_auth does the right thing when it is not passed a timeout arg
fake_ks = FakeKeystone(endpoint='http://some_url', token='secret')
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
with mock.patch('swiftclient.client.ksclient_v2', fake_ks):
Make default get_auth timeout be None Setting timeout to a default of False in get_auth() results in a requests timeout of 0.0 in keystoneclient, which causes a connection failure. This bug will cause func tests to not run when using keystoneauth. Added unit tests to verify correct default timeout is set in get_auth(). Drive-by: remove what seems like a stale TODO comment Change-Id: I17c781ce160a682b1768d315422ade0cdd2df198
2015-06-02 21:02:42 +01:00
c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=dict(tenant_name='tenant'),
auth_version="2.0", timeout=42.0)
c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=dict(tenant_name='tenant'),
auth_version="2.0", timeout=None)
c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=dict(tenant_name='tenant'),
auth_version="2.0")
self.assertEqual(3, len(fake_ks.calls))
timeouts = [call['timeout'] for call in fake_ks.calls]
self.assertEqual([42.0, None, None], timeouts)
Relax requirement for tenant_name in get_auth() get_auth() in client.py raises an exception if tenant_name is not included in the os_options dict. This is overly constrained since tenant_id is equally sufficient. This patch modifies get_auth to require either tenant_name or tenant_id. Change-Id: Ibbcda1704637eb887efa5895579d260a1e072327
2014-05-20 13:35:03 +01:00
def test_auth_v2_with_tenant_name(self):
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819
2013-03-22 14:59:57 +00:00
os_options = {'tenant_name': 'asdf'}
Add keystone v3 auth support Enables swiftclient to authenticate using the keystone v3 API, allowing user id's, user domains and tenant/project domains to be specified. Since swiftclient imports keystoneclient, the main changes in swiftclient/client.py are to selectively import the correct keystoneclient library version and pass a number of new options to it via the get_auth() function. In addition the get_keystoneclient_2_0 method has been renamed get_auth_keystone to better reflect its purpose since it now deals with both v2 and v3 use cases. In swiftclient/shell.py the new options are added to the parser. To make the default help message shorter, help for all the --os-* options (including the existing v2 options) is only displayed when explicitly requested usng a new --os-help option. A new set of unit tests is added to test_shell.py to verify the parser. A comment in tests/sample.conf explains how to configure the existing functional tests to run using keystone v3 API. Note that to use keystone v3 with swift you will need to set auth_version = v3.0 in the auth_token middleware config section of proxy-server.conf. Change-Id: Ifda0b3263eb919a8c6a1b204ba0a1215ed6f642f
2014-03-25 08:21:21 +00:00
req_args = {'auth_version': '2.0'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
ks = fake_get_auth_keystone(os_options, required_kwargs=req_args)
with mock.patch('swiftclient.client.get_auth_keystone', ks):
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=os_options,
auth_version="2.0")
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
Relax requirement for tenant_name in get_auth() get_auth() in client.py raises an exception if tenant_name is not included in the os_options dict. This is overly constrained since tenant_id is equally sufficient. This patch modifies get_auth to require either tenant_name or tenant_id. Change-Id: Ibbcda1704637eb887efa5895579d260a1e072327
2014-05-20 13:35:03 +01:00
def test_auth_v2_with_tenant_id(self):
os_options = {'tenant_id': 'asdf'}
Add keystone v3 auth support Enables swiftclient to authenticate using the keystone v3 API, allowing user id's, user domains and tenant/project domains to be specified. Since swiftclient imports keystoneclient, the main changes in swiftclient/client.py are to selectively import the correct keystoneclient library version and pass a number of new options to it via the get_auth() function. In addition the get_keystoneclient_2_0 method has been renamed get_auth_keystone to better reflect its purpose since it now deals with both v2 and v3 use cases. In swiftclient/shell.py the new options are added to the parser. To make the default help message shorter, help for all the --os-* options (including the existing v2 options) is only displayed when explicitly requested usng a new --os-help option. A new set of unit tests is added to test_shell.py to verify the parser. A comment in tests/sample.conf explains how to configure the existing functional tests to run using keystone v3 API. Note that to use keystone v3 with swift you will need to set auth_version = v3.0 in the auth_token middleware config section of proxy-server.conf. Change-Id: Ifda0b3263eb919a8c6a1b204ba0a1215ed6f642f
2014-03-25 08:21:21 +00:00
req_args = {'auth_version': '2.0'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
ks = fake_get_auth_keystone(os_options, required_kwargs=req_args)
with mock.patch('swiftclient.client.get_auth_keystone', ks):
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=os_options,
auth_version="2.0")
Add keystone v3 auth support Enables swiftclient to authenticate using the keystone v3 API, allowing user id's, user domains and tenant/project domains to be specified. Since swiftclient imports keystoneclient, the main changes in swiftclient/client.py are to selectively import the correct keystoneclient library version and pass a number of new options to it via the get_auth() function. In addition the get_keystoneclient_2_0 method has been renamed get_auth_keystone to better reflect its purpose since it now deals with both v2 and v3 use cases. In swiftclient/shell.py the new options are added to the parser. To make the default help message shorter, help for all the --os-* options (including the existing v2 options) is only displayed when explicitly requested usng a new --os-help option. A new set of unit tests is added to test_shell.py to verify the parser. A comment in tests/sample.conf explains how to configure the existing functional tests to run using keystone v3 API. Note that to use keystone v3 with swift you will need to set auth_version = v3.0 in the auth_token middleware config section of proxy-server.conf. Change-Id: Ifda0b3263eb919a8c6a1b204ba0a1215ed6f642f
2014-03-25 08:21:21 +00:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
def test_auth_v2_with_project_name(self):
os_options = {'project_name': 'asdf'}
req_args = {'auth_version': '2.0'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
ks = fake_get_auth_keystone(os_options, required_kwargs=req_args)
with mock.patch('swiftclient.client.get_auth_keystone', ks):
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=os_options,
auth_version="2.0")
Add keystone v3 auth support Enables swiftclient to authenticate using the keystone v3 API, allowing user id's, user domains and tenant/project domains to be specified. Since swiftclient imports keystoneclient, the main changes in swiftclient/client.py are to selectively import the correct keystoneclient library version and pass a number of new options to it via the get_auth() function. In addition the get_keystoneclient_2_0 method has been renamed get_auth_keystone to better reflect its purpose since it now deals with both v2 and v3 use cases. In swiftclient/shell.py the new options are added to the parser. To make the default help message shorter, help for all the --os-* options (including the existing v2 options) is only displayed when explicitly requested usng a new --os-help option. A new set of unit tests is added to test_shell.py to verify the parser. A comment in tests/sample.conf explains how to configure the existing functional tests to run using keystone v3 API. Note that to use keystone v3 with swift you will need to set auth_version = v3.0 in the auth_token middleware config section of proxy-server.conf. Change-Id: Ifda0b3263eb919a8c6a1b204ba0a1215ed6f642f
2014-03-25 08:21:21 +00:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
def test_auth_v2_with_project_id(self):
os_options = {'project_id': 'asdf'}
req_args = {'auth_version': '2.0'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
ks = fake_get_auth_keystone(os_options, required_kwargs=req_args)
with mock.patch('swiftclient.client.get_auth_keystone', ks):
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=os_options,
auth_version="2.0")
Relax requirement for tenant_name in get_auth() get_auth() in client.py raises an exception if tenant_name is not included in the os_options dict. This is overly constrained since tenant_id is equally sufficient. This patch modifies get_auth to require either tenant_name or tenant_id. Change-Id: Ibbcda1704637eb887efa5895579d260a1e072327
2014-05-20 13:35:03 +01:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
def test_auth_v2_no_tenant_name_or_tenant_id(self):
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone({})):
self.assertRaises(c.ClientException, c.get_auth,
'http://www.tests.com', 'asdf', 'asdf',
os_options={},
auth_version='2.0')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Relax requirement for tenant_name in get_auth() get_auth() in client.py raises an exception if tenant_name is not included in the os_options dict. This is overly constrained since tenant_id is equally sufficient. This patch modifies get_auth to require either tenant_name or tenant_id. Change-Id: Ibbcda1704637eb887efa5895579d260a1e072327
2014-05-20 13:35:03 +01:00
def test_auth_v2_with_tenant_name_none_and_tenant_id_none(self):
os_options = {'tenant_name': None,
'tenant_id': None}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(os_options)):
self.assertRaises(c.ClientException, c.get_auth,
'http://www.tests.com', 'asdf', 'asdf',
os_options=os_options,
auth_version='2.0')
Relax requirement for tenant_name in get_auth() get_auth() in client.py raises an exception if tenant_name is not included in the os_options dict. This is overly constrained since tenant_id is equally sufficient. This patch modifies get_auth to require either tenant_name or tenant_id. Change-Id: Ibbcda1704637eb887efa5895579d260a1e072327
2014-05-20 13:35:03 +01:00
Allow specify tenant:user in user. We allow having the syntax tenant:user in user since this would make things easier when switching from auth 1.0 to auth 2.0 and not having to specify a tenant_name. In the feature we should use the auth functions from keystoneclient and be done with those changes, we could then auth by user/tenant-ID. Change-Id: Ie49748105a678fb9369494e77d41d934d57a39a7
2012-06-14 14:28:09 +00:00
def test_auth_v2_with_tenant_user_in_user(self):
Allow endpoint type to be specified. Fixes bug 1037690. Change-Id: I36b3807b2f3234c778316f1e743d27304755aed8
2012-08-28 10:25:42 -04:00
tenant_option = {'tenant_name': 'foo'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(tenant_option)):
url, token = c.get_auth('http://www.test.com', 'foo:bar', 'asdf',
os_options={},
auth_version="2.0")
Use keystoneclient for authentication. - This allows us to delegate all 2.0 authentication directly to the library without reimplementing ourselves. - Support reusing a token / storage-url without re-authenticating every time via the switch os_storage_url os_auth_token. - Allow auth via tenant_id instead of just tenant_name via the switch os_tenant_id. - Refactor a bit to make it easier in the future to add new OS features (i.e: region). - Implements blueprint use-keystoneclient-for-swiftclient. - Fixes bug 1016641. Change-Id: I532f38a68af884de25326aaac05a2050f5ffa1c7
2012-07-04 21:46:02 +02:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
def test_auth_v2_tenant_name_no_os_options(self):
Allow endpoint type to be specified. Fixes bug 1037690. Change-Id: I36b3807b2f3234c778316f1e743d27304755aed8
2012-08-28 10:25:42 -04:00
tenant_option = {'tenant_name': 'asdf'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(tenant_option)):
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
tenant_name='asdf',
os_options={},
auth_version="2.0")
Allow specify tenant:user in user. We allow having the syntax tenant:user in user since this would make things easier when switching from auth 1.0 to auth 2.0 and not having to specify a tenant_name. In the feature we should use the auth functions from keystoneclient and be done with those changes, we could then auth by user/tenant-ID. Change-Id: Ie49748105a678fb9369494e77d41d934d57a39a7
2012-06-14 14:28:09 +00:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
Allow endpoint type to be specified. Fixes bug 1037690. Change-Id: I36b3807b2f3234c778316f1e743d27304755aed8
2012-08-28 10:25:42 -04:00
def test_auth_v2_with_os_options(self):
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819
2013-03-22 14:59:57 +00:00
os_options = {'service_type': 'object-store',
'endpoint_type': 'internalURL',
'tenant_name': 'asdf'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(os_options)):
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=os_options,
auth_version="2.0")
Allow endpoint type to be specified. Fixes bug 1037690. Change-Id: I36b3807b2f3234c778316f1e743d27304755aed8
2012-08-28 10:25:42 -04:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
Resolves issue with empty os_options for swift-bench & swift-dispersion-report Fixes Bug 1044204 Change-Id: I5f0863776bc4e2953548bc7a3958141378a032a0
2012-09-19 15:47:36 +00:00
def test_auth_v2_with_tenant_user_in_user_no_os_options(self):
tenant_option = {'tenant_name': 'foo'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(tenant_option)):
url, token = c.get_auth('http://www.test.com', 'foo:bar', 'asdf',
auth_version="2.0")
Resolves issue with empty os_options for swift-bench & swift-dispersion-report Fixes Bug 1044204 Change-Id: I5f0863776bc4e2953548bc7a3958141378a032a0
2012-09-19 15:47:36 +00:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
Add region_name support Add --os-region-name (and OS_REGION_NAME env) to bin/swift Add region_name to the os_options in Connection class. bug 1019832 Change-Id: Id8515d97e5351638dce10581c7368f61518e1fa7
2012-09-05 15:55:53 +01:00
def test_auth_v2_with_os_region_name(self):
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819
2013-03-22 14:59:57 +00:00
os_options = {'region_name': 'good-region',
'tenant_name': 'asdf'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(os_options)):
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=os_options,
auth_version="2.0")
Add region_name support Add --os-region-name (and OS_REGION_NAME env) to bin/swift Add region_name to the os_options in Connection class. bug 1019832 Change-Id: Id8515d97e5351638dce10581c7368f61518e1fa7
2012-09-05 15:55:53 +01:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
def test_auth_v2_no_endpoint(self):
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819
2013-03-22 14:59:57 +00:00
os_options = {'region_name': 'unknown_region',
'tenant_name': 'asdf'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(os_options, c.ClientException)):
self.assertRaises(c.ClientException, c.get_auth,
'http://www.tests.com', 'asdf', 'asdf',
os_options=os_options, auth_version='2.0')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Catch authorization failures Catch the most common authorization exceptions. Fixes bug 1048560 Change-Id: I81c562d6093e94e827e6583dcb31db8408980476
2012-09-17 16:42:16 +01:00
def test_auth_v2_ks_exception(self):
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone({}, c.ClientException)):
self.assertRaises(c.ClientException, c.get_auth,
'http://www.tests.com', 'asdf', 'asdf',
os_options={},
auth_version='2.0')
Catch authorization failures Catch the most common authorization exceptions. Fixes bug 1048560 Change-Id: I81c562d6093e94e827e6583dcb31db8408980476
2012-09-17 16:42:16 +01:00
Add --os-cacert Add support to specify a ca certificate bundle to verify keystone TLS (https) certificates. This only verifies certificates on the keystone connection, swift https connections are unchanged. Change-Id: I14351b405af4fd3d1970ba6656c1282a5d0a1082
2012-12-19 09:52:54 -06:00
def test_auth_v2_cacert(self):
os_options = {'tenant_name': 'foo'}
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819
2013-03-22 14:59:57 +00:00
auth_url_secure = 'https://www.tests.com'
Add --os-cacert Add support to specify a ca certificate bundle to verify keystone TLS (https) certificates. This only verifies certificates on the keystone connection, swift https connections are unchanged. Change-Id: I14351b405af4fd3d1970ba6656c1282a5d0a1082
2012-12-19 09:52:54 -06:00
auth_url_insecure = 'https://www.tests.com/self-signed-certificate'
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(os_options, None)):
url, token = c.get_auth(auth_url_secure, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0',
insecure=False)
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
url, token = c.get_auth(auth_url_insecure, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0',
cacert='ca.pem', insecure=False)
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
self.assertRaises(c.ClientException, c.get_auth,
auth_url_insecure, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0')
self.assertRaises(c.ClientException, c.get_auth,
auth_url_insecure, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0',
insecure=False)
Add --os-cacert Add support to specify a ca certificate bundle to verify keystone TLS (https) certificates. This only verifies certificates on the keystone connection, swift https connections are unchanged. Change-Id: I14351b405af4fd3d1970ba6656c1282a5d0a1082
2012-12-19 09:52:54 -06:00
Add --insecure option to fix bug #1077869 If enable this option , swift CLI is allowed to access a keystone server with self signed certificate. Change-Id: I5e219fe875b246b68ac51a077e7ff15e95463adf
2012-12-05 13:18:27 +09:00
def test_auth_v2_insecure(self):
os_options = {'tenant_name': 'foo'}
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819
2013-03-22 14:59:57 +00:00
auth_url_secure = 'https://www.tests.com'
Add --insecure option to fix bug #1077869 If enable this option , swift CLI is allowed to access a keystone server with self signed certificate. Change-Id: I5e219fe875b246b68ac51a077e7ff15e95463adf
2012-12-05 13:18:27 +09:00
auth_url_insecure = 'https://www.tests.com/invalid-certificate'
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(os_options, None)):
url, token = c.get_auth(auth_url_secure, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0')
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
url, token = c.get_auth(auth_url_insecure, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0',
insecure=True)
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
self.assertRaises(c.ClientException, c.get_auth,
auth_url_insecure, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0')
self.assertRaises(c.ClientException, c.get_auth,
auth_url_insecure, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0',
insecure=False)
Add --insecure option to fix bug #1077869 If enable this option , swift CLI is allowed to access a keystone server with self signed certificate. Change-Id: I5e219fe875b246b68ac51a077e7ff15e95463adf
2012-12-05 13:18:27 +09:00
Support client certificate/key This change enables to specify a client certificate/key with: * usual CLI options (--os-cert/--os-key) * usual environment variables ($OS_CERT/$OS_KEY) Closes-Bug: #1565112 Change-Id: I12e151adcb6084d801c6dfed21d82232a3259aea
2016-04-10 23:18:17 +02:00
def test_auth_v2_cert(self):
os_options = {'tenant_name': 'foo'}
auth_url_no_sslauth = 'https://www.tests.com'
auth_url_sslauth = 'https://www.tests.com/client-certificate'
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
with mock.patch('swiftclient.client.get_auth_keystone',
fake_get_auth_keystone(os_options, None)):
url, token = c.get_auth(auth_url_no_sslauth, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0')
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
url, token = c.get_auth(auth_url_sslauth, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0',
cert='minnie', cert_key='mickey')
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
self.assertRaises(c.ClientException, c.get_auth,
auth_url_sslauth, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0')
self.assertRaises(c.ClientException, c.get_auth,
auth_url_sslauth, 'asdf', 'asdf',
os_options=os_options, auth_version='2.0',
cert='minnie')
Support client certificate/key This change enables to specify a client certificate/key with: * usual CLI options (--os-cert/--os-key) * usual environment variables ($OS_CERT/$OS_KEY) Closes-Bug: #1565112 Change-Id: I12e151adcb6084d801c6dfed21d82232a3259aea
2016-04-10 23:18:17 +02:00
Add keystone v3 auth support Enables swiftclient to authenticate using the keystone v3 API, allowing user id's, user domains and tenant/project domains to be specified. Since swiftclient imports keystoneclient, the main changes in swiftclient/client.py are to selectively import the correct keystoneclient library version and pass a number of new options to it via the get_auth() function. In addition the get_keystoneclient_2_0 method has been renamed get_auth_keystone to better reflect its purpose since it now deals with both v2 and v3 use cases. In swiftclient/shell.py the new options are added to the parser. To make the default help message shorter, help for all the --os-* options (including the existing v2 options) is only displayed when explicitly requested usng a new --os-help option. A new set of unit tests is added to test_shell.py to verify the parser. A comment in tests/sample.conf explains how to configure the existing functional tests to run using keystone v3 API. Note that to use keystone v3 with swift you will need to set auth_version = v3.0 in the auth_token middleware config section of proxy-server.conf. Change-Id: Ifda0b3263eb919a8c6a1b204ba0a1215ed6f642f
2014-03-25 08:21:21 +00:00
def test_auth_v3_with_tenant_name(self):
# check the correct auth version is passed to get_auth_keystone
os_options = {'tenant_name': 'asdf'}
req_args = {'auth_version': '3'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
ks = fake_get_auth_keystone(os_options, required_kwargs=req_args)
with mock.patch('swiftclient.client.get_auth_keystone', ks):
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
os_options=os_options,
auth_version="3")
Add keystone v3 auth support Enables swiftclient to authenticate using the keystone v3 API, allowing user id's, user domains and tenant/project domains to be specified. Since swiftclient imports keystoneclient, the main changes in swiftclient/client.py are to selectively import the correct keystoneclient library version and pass a number of new options to it via the get_auth() function. In addition the get_keystoneclient_2_0 method has been renamed get_auth_keystone to better reflect its purpose since it now deals with both v2 and v3 use cases. In swiftclient/shell.py the new options are added to the parser. To make the default help message shorter, help for all the --os-* options (including the existing v2 options) is only displayed when explicitly requested usng a new --os-help option. A new set of unit tests is added to test_shell.py to verify the parser. A comment in tests/sample.conf explains how to configure the existing functional tests to run using keystone v3 API. Note that to use keystone v3 with swift you will need to set auth_version = v3.0 in the auth_token middleware config section of proxy-server.conf. Change-Id: Ifda0b3263eb919a8c6a1b204ba0a1215ed6f642f
2014-03-25 08:21:21 +00:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
Support v3 application credentials auth. Use keystoneauth1 application credential plugin and session to fetch a token and endpoint catalog url. $ swift --os-auth-url http://172.16.1.2:5000/v3 --auth-version 3\ --os-application-credential-id THE_ID \ --os-application-credential-secret THE_SECRET \ --os-auth-type v3applicationcredential auth Change-Id: I9190e5e7e24b6a741970fa0d0ac792deccf73d25 Closes-Bug: 1843901 Closes-Bug: 1856635
2019-12-18 00:32:36 +08:00
def test_auth_v3applicationcredential(self):
tests: Skip keystoneauth tests if not available Change-Id: I80af28b49415c5bea6399683922b6649f04ed011
2023-07-07 14:32:05 -07:00
try:
from keystoneauth1 import exceptions as ksauthexceptions
except ImportError:
raise unittest.SkipTest('keystoneauth1 is not available')
Support v3 application credentials auth. Use keystoneauth1 application credential plugin and session to fetch a token and endpoint catalog url. $ swift --os-auth-url http://172.16.1.2:5000/v3 --auth-version 3\ --os-application-credential-id THE_ID \ --os-application-credential-secret THE_SECRET \ --os-auth-type v3applicationcredential auth Change-Id: I9190e5e7e24b6a741970fa0d0ac792deccf73d25 Closes-Bug: 1843901 Closes-Bug: 1856635
2019-12-18 00:32:36 +08:00
os_options = {
"auth_type": "v3applicationcredential",
"application_credential_id": "proejct_id",
"application_credential_secret": "secret"}
Remove unnecessary object subclassing All classes subclass from object by default in Python 3. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I5a1ad57bcc092861ce969759b06a07c880ad3d35
2022-03-21 18:19:50 +00:00
class FakeEndpointData:
Support v3 application credentials auth. Use keystoneauth1 application credential plugin and session to fetch a token and endpoint catalog url. $ swift --os-auth-url http://172.16.1.2:5000/v3 --auth-version 3\ --os-application-credential-id THE_ID \ --os-application-credential-secret THE_SECRET \ --os-auth-type v3applicationcredential auth Change-Id: I9190e5e7e24b6a741970fa0d0ac792deccf73d25 Closes-Bug: 1843901 Closes-Bug: 1856635
2019-12-18 00:32:36 +08:00
catalog_url = 'http://swift.cluster/v1/KEY_project_id'
Remove unnecessary object subclassing All classes subclass from object by default in Python 3. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I5a1ad57bcc092861ce969759b06a07c880ad3d35
2022-03-21 18:19:50 +00:00
class FakeKeystoneuth1v3Session:
Support v3 application credentials auth. Use keystoneauth1 application credential plugin and session to fetch a token and endpoint catalog url. $ swift --os-auth-url http://172.16.1.2:5000/v3 --auth-version 3\ --os-application-credential-id THE_ID \ --os-application-credential-secret THE_SECRET \ --os-auth-type v3applicationcredential auth Change-Id: I9190e5e7e24b6a741970fa0d0ac792deccf73d25 Closes-Bug: 1843901 Closes-Bug: 1856635
2019-12-18 00:32:36 +08:00
def __init__(self, auth):
self.auth = auth
self.token = 'token'
def get_token(self):
if self.auth.auth_url == 'http://keystone:5000/v3':
return self.token
elif self.auth.auth_url == 'http://keystone:9000/v3':
raise ksauthexceptions.AuthorizationFailure
else:
raise ksauthexceptions.Unauthorized
def get_endpoint_data(self, service_type, endpoint_type, **kwargs):
return FakeEndpointData()
mock_sess = FakeKeystoneuth1v3Session
with mock.patch('keystoneauth1.session.Session', mock_sess):
url, token = c.get_auth('http://keystone:5000', '', '',
os_options=os_options,
auth_version="3")
self.assertTrue(url.startswith("http"))
self.assertEqual(url, 'http://swift.cluster/v1/KEY_project_id')
self.assertEqual(token, 'token')
with mock.patch('keystoneauth1.session.Session', mock_sess):
with self.assertRaises(c.ClientException) as exc_mgr:
url, token = c.get_auth('http://keystone:9000', '', '',
os_options=os_options,
auth_version="3")
body = 'Unauthorized. Check application credential id and secret.'
body = 'Authorization Failure. Cannot authorize API client.'
self.assertEqual(exc_mgr.exception.__str__()[-89:], body)
with mock.patch('keystoneauth1.session.Session', mock_sess):
with self.assertRaises(c.ClientException) as exc_mgr:
url, token = c.get_auth('http://keystone:5000', '', '',
os_options=os_options,
auth_version="2")
body = 'Unauthorized. Check application credential id and secret.'
self.assertEqual(exc_mgr.exception.__str__()[-89:], body)
Add keystone v3 auth support Enables swiftclient to authenticate using the keystone v3 API, allowing user id's, user domains and tenant/project domains to be specified. Since swiftclient imports keystoneclient, the main changes in swiftclient/client.py are to selectively import the correct keystoneclient library version and pass a number of new options to it via the get_auth() function. In addition the get_keystoneclient_2_0 method has been renamed get_auth_keystone to better reflect its purpose since it now deals with both v2 and v3 use cases. In swiftclient/shell.py the new options are added to the parser. To make the default help message shorter, help for all the --os-* options (including the existing v2 options) is only displayed when explicitly requested usng a new --os-help option. A new set of unit tests is added to test_shell.py to verify the parser. A comment in tests/sample.conf explains how to configure the existing functional tests to run using keystone v3 API. Note that to use keystone v3 with swift you will need to set auth_version = v3.0 in the auth_token middleware config section of proxy-server.conf. Change-Id: Ifda0b3263eb919a8c6a1b204ba0a1215ed6f642f
2014-03-25 08:21:21 +00:00
def test_get_keystone_client_2_0(self):
# check the correct auth version is passed to get_auth_keystone
os_options = {'tenant_name': 'asdf'}
req_args = {'auth_version': '2.0'}
Use mock patch to handle get_auth_keystone Setting c.get_auth_keystone = fake_get_auth_keystone is setting a new method on the module. This information is not reset between test runs and therefore has the potential to corrupt other tests. Use mock patch so that the mock is reset after the test is complete. Change-Id: Ifb9ba72634cf477c72dda080b5aed8f8e3a7ac89
2016-08-24 23:10:59 +10:00
ks = fake_get_auth_keystone(os_options, required_kwargs=req_args)
with mock.patch('swiftclient.client.get_auth_keystone', ks):
url, token = c.get_keystoneclient_2_0('http://www.test.com',
'asdf', 'asdf',
os_options=os_options)
Add keystone v3 auth support Enables swiftclient to authenticate using the keystone v3 API, allowing user id's, user domains and tenant/project domains to be specified. Since swiftclient imports keystoneclient, the main changes in swiftclient/client.py are to selectively import the correct keystoneclient library version and pass a number of new options to it via the get_auth() function. In addition the get_keystoneclient_2_0 method has been renamed get_auth_keystone to better reflect its purpose since it now deals with both v2 and v3 use cases. In swiftclient/shell.py the new options are added to the parser. To make the default help message shorter, help for all the --os-* options (including the existing v2 options) is only displayed when explicitly requested usng a new --os-help option. A new set of unit tests is added to test_shell.py to verify the parser. A comment in tests/sample.conf explains how to configure the existing functional tests to run using keystone v3 API. Note that to use keystone v3 with swift you will need to set auth_version = v3.0 in the auth_token middleware config section of proxy-server.conf. Change-Id: Ifda0b3263eb919a8c6a1b204ba0a1215ed6f642f
2014-03-25 08:21:21 +00:00
self.assertTrue(url.startswith("http"))
self.assertTrue(token)
Add support for versionless endpoints Newer deployments are using versionless Keystone endpoints, and most OpenStack clients already support this. This patch enables this for Swift: if an auth_url without any path component is found, it assumes a versionless endpoint will be used. In this case the v3 suffix will be appended to the path if none auth_version is set, and v2.0 is appended if auth_version requires v2. Closes-Bug: 1554885 Related-Bug: 1691106 Change-Id: If7ecb67776cb77828f93ad8278cc5040015216b7
2017-06-13 10:51:33 +02:00
def test_get_auth_keystone_versionless(self):
fake_ks = FakeKeystone(endpoint='http://some_url', token='secret')
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
with mock.patch('swiftclient.client.ksclient_v3', fake_ks):
Add support for versionless endpoints Newer deployments are using versionless Keystone endpoints, and most OpenStack clients already support this. This patch enables this for Swift: if an auth_url without any path component is found, it assumes a versionless endpoint will be used. In this case the v3 suffix will be appended to the path if none auth_version is set, and v2.0 is appended if auth_version requires v2. Closes-Bug: 1554885 Related-Bug: 1691106 Change-Id: If7ecb67776cb77828f93ad8278cc5040015216b7
2017-06-13 10:51:33 +02:00
c.get_auth_keystone('http://authurl', 'user', 'key', {})
self.assertEqual(1, len(fake_ks.calls))
self.assertEqual('http://authurl/v3', fake_ks.calls[0].get('auth_url'))
def test_get_auth_keystone_versionless_auth_version_set(self):
fake_ks = FakeKeystone(endpoint='http://some_url', token='secret')
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
with mock.patch('swiftclient.client.ksclient_v2', fake_ks):
Add support for versionless endpoints Newer deployments are using versionless Keystone endpoints, and most OpenStack clients already support this. This patch enables this for Swift: if an auth_url without any path component is found, it assumes a versionless endpoint will be used. In this case the v3 suffix will be appended to the path if none auth_version is set, and v2.0 is appended if auth_version requires v2. Closes-Bug: 1554885 Related-Bug: 1691106 Change-Id: If7ecb67776cb77828f93ad8278cc5040015216b7
2017-06-13 10:51:33 +02:00
c.get_auth_keystone('http://auth_url', 'user', 'key',
{}, auth_version='2.0')
self.assertEqual(1, len(fake_ks.calls))
self.assertEqual('http://auth_url/v2.0',
fake_ks.calls[0].get('auth_url'))
Make OS_AUTH_URL work in DevStack by default An earlier change added support for versionless authurls, but the huristic to detect them didn't work for some configurations I've encountered. Now we use a little bit tighter pattern matching and support auth_url values with more than one path component. Change-Id: I5a99c7b4e957ee7c8a5b5470477db49ab2ddba4b Related-Change-Id: If7ecb67776cb77828f93ad8278cc5040015216b7
2017-06-13 11:14:52 -07:00
def test_get_auth_keystone_versionful(self):
fake_ks = FakeKeystone(endpoint='http://some_url', token='secret')
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
with mock.patch('swiftclient.client.ksclient_v3', fake_ks):
Make OS_AUTH_URL work in DevStack by default An earlier change added support for versionless authurls, but the huristic to detect them didn't work for some configurations I've encountered. Now we use a little bit tighter pattern matching and support auth_url values with more than one path component. Change-Id: I5a99c7b4e957ee7c8a5b5470477db49ab2ddba4b Related-Change-Id: If7ecb67776cb77828f93ad8278cc5040015216b7
2017-06-13 11:14:52 -07:00
c.get_auth_keystone('http://auth_url/v3', 'user', 'key',
{}, auth_version='3')
self.assertEqual(1, len(fake_ks.calls))
self.assertEqual('http://auth_url/v3',
fake_ks.calls[0].get('auth_url'))
def test_get_auth_keystone_devstack_versionful(self):
fake_ks = FakeKeystone(
endpoint='http://storage.example.com/v1/AUTH_user', token='secret')
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
with mock.patch('swiftclient.client.ksclient_v3', fake_ks):
Make OS_AUTH_URL work in DevStack by default An earlier change added support for versionless authurls, but the huristic to detect them didn't work for some configurations I've encountered. Now we use a little bit tighter pattern matching and support auth_url values with more than one path component. Change-Id: I5a99c7b4e957ee7c8a5b5470477db49ab2ddba4b Related-Change-Id: If7ecb67776cb77828f93ad8278cc5040015216b7
2017-06-13 11:14:52 -07:00
c.get_auth_keystone('https://192.168.8.8/identity/v3',
'user', 'key', {}, auth_version='3')
self.assertEqual(1, len(fake_ks.calls))
self.assertEqual('https://192.168.8.8/identity/v3',
fake_ks.calls[0].get('auth_url'))
def test_get_auth_keystone_devstack_versionless(self):
fake_ks = FakeKeystone(
endpoint='http://storage.example.com/v1/AUTH_user', token='secret')
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
with mock.patch('swiftclient.client.ksclient_v3', fake_ks):
Make OS_AUTH_URL work in DevStack by default An earlier change added support for versionless authurls, but the huristic to detect them didn't work for some configurations I've encountered. Now we use a little bit tighter pattern matching and support auth_url values with more than one path component. Change-Id: I5a99c7b4e957ee7c8a5b5470477db49ab2ddba4b Related-Change-Id: If7ecb67776cb77828f93ad8278cc5040015216b7
2017-06-13 11:14:52 -07:00
c.get_auth_keystone('https://192.168.8.8/identity',
'user', 'key', {}, auth_version='3')
self.assertEqual(1, len(fake_ks.calls))
self.assertEqual('https://192.168.8.8/identity/v3',
fake_ks.calls[0].get('auth_url'))
def test_auth_keystone_url_some_junk_nonsense(self):
fake_ks = FakeKeystone(
endpoint='http://storage.example.com/v1/AUTH_user',
token='secret')
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
with mock.patch('swiftclient.client.ksclient_v3', fake_ks):
Make OS_AUTH_URL work in DevStack by default An earlier change added support for versionless authurls, but the huristic to detect them didn't work for some configurations I've encountered. Now we use a little bit tighter pattern matching and support auth_url values with more than one path component. Change-Id: I5a99c7b4e957ee7c8a5b5470477db49ab2ddba4b Related-Change-Id: If7ecb67776cb77828f93ad8278cc5040015216b7
2017-06-13 11:14:52 -07:00
c.get_auth_keystone('http://blah.example.com/v2moo',
'user', 'key', {}, auth_version='3')
self.assertEqual(1, len(fake_ks.calls))
# v2 looks sorta version-y, but it's not an exact match, so this is
# probably about just as bad as anything else we might guess at
self.assertEqual('http://blah.example.com/v2moo/v3',
fake_ks.calls[0].get('auth_url'))
Adding keystoneauth sessions support This patch allows authentication in swiftclient with a keystonauth session. Co-Authored-By: Tim Burke <tim@swiftstack.com> Change-Id: Ia3fd947ff619c11ff0ce474897533dcf7b49d9b3 Closes-Bug: 1518938
2016-03-29 19:10:42 +00:00
def test_auth_with_session(self):
mock_session = mock.MagicMock()
mock_session.get_endpoint.return_value = 'http://storagehost/v1/acct'
mock_session.get_token.return_value = 'token'
url, token = c.get_auth('http://www.test.com', 'asdf', 'asdf',
session=mock_session)
self.assertEqual(url, 'http://storagehost/v1/acct')
self.assertTrue(token)
Add --insecure option to fix bug #1077869 If enable this option , swift CLI is allowed to access a keystone server with self signed certificate. Change-Id: I5e219fe875b246b68ac51a077e7ff15e95463adf
2012-12-05 13:18:27 +09:00
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestGetAccount(MockHttpTest):
def test_no_content(self):
c.http_connection = self.fake_http_connection(204)
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
value = c.get_account('http://www.test.com/v1/acct', 'asdf')[1]
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(value, [])
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
self.assertRequests([
('GET', '/v1/acct?format=json', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'asdf'}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_marker(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&marker=marker")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_account('http://www.test.com/v1/acct', 'asdf', marker='marker')
self.assertRequests([
('GET', '/v1/acct?format=json&marker=marker', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'asdf'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_limit(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&limit=10")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_account('http://www.test.com/v1/acct', 'asdf', limit=10)
self.assertRequests([
('GET', '/v1/acct?format=json&limit=10', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'asdf'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_prefix(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&prefix=asdf/")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_account('http://www.test.com/v1/acct', 'asdf', prefix='asdf/')
self.assertRequests([
('GET', '/v1/acct?format=json&prefix=asdf/', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'asdf'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_end_marker(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&end_marker=end_marker")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_account('http://www.test.com/v1/acct', 'asdf',
end_marker='end_marker')
self.assertRequests([
('GET', '/v1/acct?format=json&end_marker=end_marker', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'asdf'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
Add delimiter to get_account(). Exposes the delimiter parameter, which the Swift API supports for container listings. Change-Id: Id8dfce01a9b64de9d1222aab9a4a682ce9e0f2b7
2018-11-23 22:47:15 -08:00
def test_param_delimiter(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&delimiter=-")
c.get_account('http://www.test.com/v1/acct', 'asdf',
delimiter='-')
self.assertRequests([
('GET', '/v1/acct?format=json&delimiter=-', '', {
'accept-encoding': 'gzip',
'x-auth-token': 'asdf'}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestHeadAccount(MockHttpTest):
def test_ok(self):
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
c.http_connection = self.fake_http_connection(200, headers={
'x-account-meta-color': 'blue',
})
resp_headers = c.head_account('http://www.tests.com', 'asdf')
self.assertEqual(resp_headers['x-account-meta-color'], 'blue')
self.assertRequests([
('HEAD', 'http://www.tests.com', '', {'x-auth-token': 'asdf'})
])
Close connections created when calling module-level functions Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> Change-Id: Id62e63afc6f2ffa32eb8640787c78559481050f9 Related-Change: I200ad0cdc8b7999c3f5521b9a822122bd18714bf Related-Bug: #1873435 Closes-Bug: #1838775
2020-04-18 22:41:55 -07:00
self.assertTrue(self.request_log[-1][-1]._closed)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_server_error(self):
body = 'c' * 65
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
headers = {'foo': 'bar'}
c.http_connection = self.fake_http_connection(
StubResponse(500, body, headers))
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.head_account('http://www.tests.com', 'asdf')
e = exc_context.exception
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertEqual(e.http_response_content, body)
self.assertEqual(e.http_status, 500)
self.assertRequests([
('HEAD', 'http://www.tests.com', '', {'x-auth-token': 'asdf'})
])
# TODO: this is a fairly brittle test of the __repr__ on the
# ClientException which should probably be in a targeted test
new_body = "[first 60 chars of response] " + body[0:60]
self.assertEqual(e.__str__()[-89:], new_body)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Use bulk-delete middleware when available When issuing `delete` commands that would require three or more individual deletes, check whether the cluster supports bulk deletes and use that if it's available. Additionally, a new option is added to the `delete` command: * --prefix <prefix> Delete all objects that start with <prefix>. This is similar to the --prefix option for the `list` command. Example: $ swift delete c --prefix obj_prefix/ ...will delete from container "c" all objects whose name begins with "obj_prefix/", such as "obj_prefix/foo" and "obj_prefix/bar". Change-Id: I6b9504848d6ef562cf4f570bbcd17db4e3da8264
2015-06-11 14:33:39 -07:00
class TestPostAccount(MockHttpTest):
def test_ok(self):
c.http_connection = self.fake_http_connection(200, headers={
'X-Account-Meta-Color': 'blue',
}, body='foo')
Stop mutating header dicts Change-Id: Ia1638c216eff9db6fbe416bc0570c27cfdcfe730
2017-08-25 12:13:12 -07:00
headers = {'x-account-meta-shape': 'square'}
Use bulk-delete middleware when available When issuing `delete` commands that would require three or more individual deletes, check whether the cluster supports bulk deletes and use that if it's available. Additionally, a new option is added to the `delete` command: * --prefix <prefix> Delete all objects that start with <prefix>. This is similar to the --prefix option for the `list` command. Example: $ swift delete c --prefix obj_prefix/ ...will delete from container "c" all objects whose name begins with "obj_prefix/", such as "obj_prefix/foo" and "obj_prefix/bar". Change-Id: I6b9504848d6ef562cf4f570bbcd17db4e3da8264
2015-06-11 14:33:39 -07:00
resp_headers, body = c.post_account(
'http://www.tests.com/path/to/account', 'asdf',
Stop mutating header dicts Change-Id: Ia1638c216eff9db6fbe416bc0570c27cfdcfe730
2017-08-25 12:13:12 -07:00
headers, query_string='bar=baz',
Use bulk-delete middleware when available When issuing `delete` commands that would require three or more individual deletes, check whether the cluster supports bulk deletes and use that if it's available. Additionally, a new option is added to the `delete` command: * --prefix <prefix> Delete all objects that start with <prefix>. This is similar to the --prefix option for the `list` command. Example: $ swift delete c --prefix obj_prefix/ ...will delete from container "c" all objects whose name begins with "obj_prefix/", such as "obj_prefix/foo" and "obj_prefix/bar". Change-Id: I6b9504848d6ef562cf4f570bbcd17db4e3da8264
2015-06-11 14:33:39 -07:00
data='some data')
self.assertEqual('blue', resp_headers.get('x-account-meta-color'))
self.assertEqual('foo', body)
self.assertRequests([
('POST', 'http://www.tests.com/path/to/account?bar=baz',
'some data', {'x-auth-token': 'asdf',
'x-account-meta-shape': 'square'})
])
Stop mutating header dicts Change-Id: Ia1638c216eff9db6fbe416bc0570c27cfdcfe730
2017-08-25 12:13:12 -07:00
# Check that we didn't mutate the request ehader dict
self.assertEqual(headers, {'x-account-meta-shape': 'square'})
Use bulk-delete middleware when available When issuing `delete` commands that would require three or more individual deletes, check whether the cluster supports bulk deletes and use that if it's available. Additionally, a new option is added to the `delete` command: * --prefix <prefix> Delete all objects that start with <prefix>. This is similar to the --prefix option for the `list` command. Example: $ swift delete c --prefix obj_prefix/ ...will delete from container "c" all objects whose name begins with "obj_prefix/", such as "obj_prefix/foo" and "obj_prefix/bar". Change-Id: I6b9504848d6ef562cf4f570bbcd17db4e3da8264
2015-06-11 14:33:39 -07:00
def test_server_error(self):
body = 'c' * 65
c.http_connection = self.fake_http_connection(500, body=body)
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_mgr:
c.post_account('http://www.tests.com', 'asdf', {})
self.assertEqual(exc_mgr.exception.http_response_content, body)
self.assertEqual(exc_mgr.exception.http_status, 500)
Use bulk-delete middleware when available When issuing `delete` commands that would require three or more individual deletes, check whether the cluster supports bulk deletes and use that if it's available. Additionally, a new option is added to the `delete` command: * --prefix <prefix> Delete all objects that start with <prefix>. This is similar to the --prefix option for the `list` command. Example: $ swift delete c --prefix obj_prefix/ ...will delete from container "c" all objects whose name begins with "obj_prefix/", such as "obj_prefix/foo" and "obj_prefix/bar". Change-Id: I6b9504848d6ef562cf4f570bbcd17db4e3da8264
2015-06-11 14:33:39 -07:00
self.assertRequests([
('POST', 'http://www.tests.com', None, {'x-auth-token': 'asdf'})
])
# TODO: this is a fairly brittle test of the __repr__ on the
# ClientException which should probably be in a targeted test
new_body = "[first 60 chars of response] " + body[0:60]
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
self.assertEqual(exc_mgr.exception.__str__()[-89:], new_body)
Use bulk-delete middleware when available When issuing `delete` commands that would require three or more individual deletes, check whether the cluster supports bulk deletes and use that if it's available. Additionally, a new option is added to the `delete` command: * --prefix <prefix> Delete all objects that start with <prefix>. This is similar to the --prefix option for the `list` command. Example: $ swift delete c --prefix obj_prefix/ ...will delete from container "c" all objects whose name begins with "obj_prefix/", such as "obj_prefix/foo" and "obj_prefix/bar". Change-Id: I6b9504848d6ef562cf4f570bbcd17db4e3da8264
2015-06-11 14:33:39 -07:00
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestGetContainer(MockHttpTest):
def test_no_content(self):
c.http_connection = self.fake_http_connection(204)
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
value = c.get_container('http://www.test.com/v1/acct', 'token',
'container')[1]
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(value, [])
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
self.assertRequests([
('GET', '/v1/acct/container?format=json', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'token'}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_marker(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&marker=marker")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_container('http://www.test.com/v1/acct', 'token', 'container',
marker='marker')
self.assertRequests([
('GET', '/v1/acct/container?format=json&marker=marker', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'token'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_limit(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&limit=10")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_container('http://www.test.com/v1/acct', 'token', 'container',
limit=10)
self.assertRequests([
('GET', '/v1/acct/container?format=json&limit=10', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'token'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_prefix(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&prefix=asdf/")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_container('http://www.test.com/v1/acct', 'token', 'container',
prefix='asdf/')
self.assertRequests([
('GET', '/v1/acct/container?format=json&prefix=asdf/', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'token'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_delimiter(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&delimiter=/")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_container('http://www.test.com/v1/acct', 'token', 'container',
delimiter='/')
self.assertRequests([
('GET', '/v1/acct/container?format=json&delimiter=/', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'token'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_end_marker(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&end_marker=end_marker")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_container('http://www.test.com/v1/acct', 'token', 'container',
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
end_marker='end_marker')
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
self.assertRequests([
('GET', '/v1/acct/container?format=json&end_marker=end_marker',
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'', {'x-auth-token': 'token', 'accept-encoding': 'gzip'}),
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
def test_param_path(self):
c.http_connection = self.fake_http_connection(
204,
query_string="format=json&path=asdf")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
c.get_container('http://www.test.com/v1/acct', 'token', 'container',
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
path='asdf')
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
self.assertRequests([
('GET', '/v1/acct/container?format=json&path=asdf', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
'x-auth-token': 'token'}),
])
Add end_marker and path query parameters Fix Bug 1175057 Change-Id: I1bf65fa7c4d99ddb03dd183fe3862df93455f501
2013-05-02 00:15:11 +09:00
Add headers parameter Headers parameter is required when passing client key for encryption. It is missing for get_container and head_object. Change-Id: I35c3b266b3c733f6b1629de4c683ea7d40128032
2015-09-15 14:34:53 +05:30
def test_request_headers(self):
c.http_connection = self.fake_http_connection(
204, query_string="format=json")
conn = c.http_connection('http://www.test.com')
headers = {'x-client-key': 'client key'}
c.get_container('url_is_irrelevant', 'TOKEN', 'container',
http_conn=conn, headers=headers)
self.assertRequests([
('GET', '/container?format=json', '', {
'x-auth-token': 'TOKEN',
'x-client-key': 'client key',
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Add headers parameter Headers parameter is required when passing client key for encryption. It is missing for get_container and head_object. Change-Id: I35c3b266b3c733f6b1629de4c683ea7d40128032
2015-09-15 14:34:53 +05:30
}),
])
Query string functionality for containers Added functionality for arbitrary query strings to be passed into container functions. Additionally a minor typo correction in the README. Added unit tests for query string functionality. Closes-Bug: #1542459 Change-Id: Ica2cb3ea439632588388e748d8d2e944e9ed4fa4
2016-02-23 15:02:03 -06:00
def test_query_string(self):
c.http_connection = self.fake_http_connection(
200, query_string="format=json&hello=20", body=b'[]')
c.get_container('http://www.test.com', 'asdf', 'asdf',
query_string="hello=20")
self.assertRequests([
('GET', '/asdf?format=json&hello=20', '', {
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Query string functionality for containers Added functionality for arbitrary query strings to be passed into container functions. Additionally a minor typo correction in the README. Added unit tests for query string functionality. Closes-Bug: #1542459 Change-Id: Ica2cb3ea439632588388e748d8d2e944e9ed4fa4
2016-02-23 15:02:03 -06:00
'x-auth-token': 'asdf'}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestHeadContainer(MockHttpTest):
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
def test_head_ok(self):
fake_conn = self.fake_http_connection(
200, headers={'x-container-meta-color': 'blue'})
with mock.patch('swiftclient.client.http_connection',
new=fake_conn):
resp = c.head_container('https://example.com/v1/AUTH_test',
'token', 'container')
self.assertEqual(resp['x-container-meta-color'], 'blue')
self.assertRequests([
('HEAD', 'https://example.com/v1/AUTH_test/container', '',
{'x-auth-token': 'token'}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_server_error(self):
body = 'c' * 60
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
headers = {'foo': 'bar'}
c.http_connection = self.fake_http_connection(
StubResponse(500, body, headers))
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.head_container('http://www.test.com', 'asdf', 'container')
e = exc_context.exception
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertRequests([
('HEAD', '/container', '', {'x-auth-token': 'asdf'}),
])
self.assertEqual(e.http_status, 500)
self.assertEqual(e.http_response_content, body)
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
self.assertEqual(e.http_response_headers, headers)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestPutContainer(MockHttpTest):
def test_ok(self):
c.http_connection = self.fake_http_connection(200)
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
value = c.put_container('http://www.test.com', 'token', 'container')
Replace assertEqual(arg, None) with assertIsNone(arg) In python-swiftclient some test cases using asserEqual(arg, None) instead of assertIsNone(arg).assertIsNone method provides clear error message. Change-Id: I4d673ede0965408344325c9c234c5c4b1ae4146a Closes-Bug: #1527556
2015-12-30 17:20:35 +05:30
self.assertIsNone(value)
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
self.assertRequests([
('PUT', '/container', '', {
'x-auth-token': 'token',
'content-length': '0'}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_server_error(self):
body = 'c' * 60
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
headers = {'foo': 'bar'}
c.http_connection = self.fake_http_connection(
StubResponse(500, body, headers))
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.put_container('http://www.test.com', 'token', 'container')
self.assertEqual(exc_context.exception.http_response_content, body)
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
self.assertEqual(exc_context.exception.http_response_headers, headers)
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertRequests([
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
('PUT', '/container', '', {
'x-auth-token': 'token',
'content-length': '0'}),
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Query string functionality for containers Added functionality for arbitrary query strings to be passed into container functions. Additionally a minor typo correction in the README. Added unit tests for query string functionality. Closes-Bug: #1542459 Change-Id: Ica2cb3ea439632588388e748d8d2e944e9ed4fa4
2016-02-23 15:02:03 -06:00
def test_query_string(self):
c.http_connection = self.fake_http_connection(200,
query_string="hello=20")
c.put_container('http://www.test.com', 'asdf', 'asdf',
query_string="hello=20")
for req in self.iter_request_log():
self.assertEqual(req['method'], 'PUT')
self.assertEqual(req['parsed_path'].path, '/asdf')
self.assertEqual(req['parsed_path'].query, 'hello=20')
self.assertEqual(req['headers']['x-auth-token'], 'asdf')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestDeleteContainer(MockHttpTest):
def test_ok(self):
c.http_connection = self.fake_http_connection(200)
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
value = c.delete_container('http://www.test.com', 'token', 'container')
Replace assertEqual(arg, None) with assertIsNone(arg) In python-swiftclient some test cases using asserEqual(arg, None) instead of assertIsNone(arg).assertIsNone method provides clear error message. Change-Id: I4d673ede0965408344325c9c234c5c4b1ae4146a Closes-Bug: #1527556
2015-12-30 17:20:35 +05:30
self.assertIsNone(value)
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
self.assertRequests([
('DELETE', '/container', '', {
'x-auth-token': 'token'}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Query string functionality for containers Added functionality for arbitrary query strings to be passed into container functions. Additionally a minor typo correction in the README. Added unit tests for query string functionality. Closes-Bug: #1542459 Change-Id: Ica2cb3ea439632588388e748d8d2e944e9ed4fa4
2016-02-23 15:02:03 -06:00
def test_query_string(self):
c.http_connection = self.fake_http_connection(200,
query_string="hello=20")
c.delete_container('http://www.test.com', 'token', 'container',
query_string="hello=20")
self.assertRequests([
('DELETE', 'http://www.test.com/container?hello=20', '', {
'x-auth-token': 'token'})
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestGetObject(MockHttpTest):
def test_server_error(self):
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
body = 'c' * 60
headers = {'foo': 'bar'}
c.http_connection = self.fake_http_connection(
StubResponse(500, body, headers))
with self.assertRaises(c.ClientException) as exc_context:
c.get_object('http://www.test.com', 'asdf', 'asdf', 'asdf')
self.assertEqual(exc_context.exception.http_response_content, body)
self.assertEqual(exc_context.exception.http_response_headers, headers)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Static large object support. Also fixed bug with current large objects with segment listing prefixes. Allow retry for object PUTs when possible. Change-Id: I0edff127fd5d5c53da33aa7cb76a4f4dc85bf6e6
2013-03-05 15:12:04 -08:00
def test_query_string(self):
c.http_connection = self.fake_http_connection(200,
query_string="hello=20")
c.get_object('http://www.test.com', 'asdf', 'asdf', 'asdf',
query_string="hello=20")
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
self.assertRequests([
('GET', '/asdf/asdf?hello=20', '', {
'x-auth-token': 'asdf'}),
])
Static large object support. Also fixed bug with current large objects with segment listing prefixes. Allow retry for object PUTs when possible. Change-Id: I0edff127fd5d5c53da33aa7cb76a4f4dc85bf6e6
2013-03-05 15:12:04 -08:00
Test 'string' behaviour of get_object Add a unit test to test the 'string' like behaviour of get_object when it is called without resp_chunk_size set. Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> Change-Id: I496032a76036141d027c30b076c810b34bc6bef0
2015-12-15 16:54:04 +00:00
def test_get_object_as_string(self):
c.http_connection = self.fake_http_connection(200, body='abcde')
__, resp = c.get_object('http://storage.example.com', 'TOKEN',
'container_name', 'object_name')
self.assertEqual(resp, 'abcde')
Added headers argument support to get_object() With this change conditional and range GETs are possible, as documented in official API guide: http://docs.openstack.org/api/openstack-object-storage/1.0/content/retrieve-object.html Change-Id: Ib2ed1c21e8d3f1ed79c0b7e542ee022ee535835c
2013-07-27 17:06:28 +10:00
def test_request_headers(self):
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
c.http_connection = self.fake_http_connection(200)
conn = c.http_connection('http://www.test.com')
Added headers argument support to get_object() With this change conditional and range GETs are possible, as documented in official API guide: http://docs.openstack.org/api/openstack-object-storage/1.0/content/retrieve-object.html Change-Id: Ib2ed1c21e8d3f1ed79c0b7e542ee022ee535835c
2013-07-27 17:06:28 +10:00
headers = {'Range': 'bytes=1-2'}
c.get_object('url_is_irrelevant', 'TOKEN', 'container', 'object',
http_conn=conn, headers=headers)
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertRequests([
('GET', '/container/object', '', {
'x-auth-token': 'TOKEN',
'range': 'bytes=1-2',
}),
])
Added headers argument support to get_object() With this change conditional and range GETs are possible, as documented in official API guide: http://docs.openstack.org/api/openstack-object-storage/1.0/content/retrieve-object.html Change-Id: Ib2ed1c21e8d3f1ed79c0b7e542ee022ee535835c
2013-07-27 17:06:28 +10:00
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
def test_response_headers(self):
c.http_connection = self.fake_http_connection(
200, headers={'X-Utf-8-Header': b't%c3%a9st',
'X-Non-Utf-8-Header': b'%ff',
'X-Binary-Header': b'\xff'})
conn = c.http_connection('http://www.test.com')
headers, data = c.get_object('url_is_irrelevant', 'TOKEN',
'container', 'object', http_conn=conn)
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('t\xe9st', headers.get('x-utf-8-header', ''))
self.assertEqual('%ff', headers.get('x-non-utf-8-header', ''))
self.assertEqual('%FF', headers.get('x-binary-header', ''))
Centralize header parsing All response headers are now exposed as unicode objects. Any url-encoding is interpretted as UTF-8; if that causes decoding to fail, the url-encoded form is returned. As a result, deleting DLOs with unicode characters will no longer raise UnicodeEncodeErrors under Python 2. Related-Bug: #1431866 Change-Id: Idb111c5bf3ac1f5ccfa724b3f4ede8f37d5bfac4
2015-05-18 08:05:02 -07:00
Allow reading from object body on download Currently, get_object returns a generator. This allows access to the object's data in multiples of 'resp_chunk_size'. This patch adds a read function to also allow accessing the object data using read(size). This allows, for example, the consumer of an object (where no byte range has been specified) to read up to certain boundaries while streaming to a new Large Object with segments of a specified size. Reading and chunking can be safely mixed. Related-Bug: 1367925 Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> Change-Id: I1cfb67f45afc7015fd896f1a89bebae048871769
2015-02-12 12:34:07 +00:00
def test_chunk_size_read_method(self):
conn = c.Connection('http://auth.url/', 'some_user', 'some_key')
with mock.patch('swiftclient.client.get_auth_1_0') as mock_get_auth:
mock_get_auth.return_value = ('http://auth.url/', 'tToken')
c.http_connection = self.fake_http_connection(200, body='abcde')
__, resp = conn.get_object('asdf', 'asdf', resp_chunk_size=3)
self.assertTrue(hasattr(resp, 'read'))
change deprecated assertEquals to assertEqual fix against H234: assertEquals() logs a DeprecationWarning in Python3.x. use assertEqual() instead. Closes-bug: #1480776 Change-Id: Iffda6bb5f2616d4af4567eeea37bb26531e34371 Signed-off-by: Hiroshi Miura <miurahr@nttdata.co.jp>
2015-08-03 12:20:44 +09:00
self.assertEqual(resp.read(3), 'abc')
self.assertEqual(resp.read(None), 'de')
self.assertEqual(resp.read(), '')
Allow reading from object body on download Currently, get_object returns a generator. This allows access to the object's data in multiples of 'resp_chunk_size'. This patch adds a read function to also allow accessing the object data using read(size). This allows, for example, the consumer of an object (where no byte range has been specified) to read up to certain boundaries while streaming to a new Large Object with segments of a specified size. Reading and chunking can be safely mixed. Related-Bug: 1367925 Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> Change-Id: I1cfb67f45afc7015fd896f1a89bebae048871769
2015-02-12 12:34:07 +00:00
def test_chunk_size_iter(self):
conn = c.Connection('http://auth.url/', 'some_user', 'some_key')
with mock.patch('swiftclient.client.get_auth_1_0') as mock_get_auth:
mock_get_auth.return_value = ('http://auth.url/', 'tToken')
c.http_connection = self.fake_http_connection(200, body='abcde')
__, resp = conn.get_object('asdf', 'asdf', resp_chunk_size=3)
self.assertTrue(hasattr(resp, 'next'))
change deprecated assertEquals to assertEqual fix against H234: assertEquals() logs a DeprecationWarning in Python3.x. use assertEqual() instead. Closes-bug: #1480776 Change-Id: Iffda6bb5f2616d4af4567eeea37bb26531e34371 Signed-off-by: Hiroshi Miura <miurahr@nttdata.co.jp>
2015-08-03 12:20:44 +09:00
self.assertEqual(next(resp), 'abc')
self.assertEqual(next(resp), 'de')
Allow reading from object body on download Currently, get_object returns a generator. This allows access to the object's data in multiples of 'resp_chunk_size'. This patch adds a read function to also allow accessing the object data using read(size). This allows, for example, the consumer of an object (where no byte range has been specified) to read up to certain boundaries while streaming to a new Large Object with segments of a specified size. Reading and chunking can be safely mixed. Related-Bug: 1367925 Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> Change-Id: I1cfb67f45afc7015fd896f1a89bebae048871769
2015-02-12 12:34:07 +00:00
self.assertRaises(StopIteration, next, resp)
def test_chunk_size_read_and_iter(self):
conn = c.Connection('http://auth.url/', 'some_user', 'some_key')
with mock.patch('swiftclient.client.get_auth_1_0') as mock_get_auth:
mock_get_auth.return_value = ('http://auth.url/', 'tToken')
c.http_connection = self.fake_http_connection(200, body='abcdef')
__, resp = conn.get_object('asdf', 'asdf', resp_chunk_size=2)
self.assertTrue(hasattr(resp, 'read'))
change deprecated assertEquals to assertEqual fix against H234: assertEquals() logs a DeprecationWarning in Python3.x. use assertEqual() instead. Closes-bug: #1480776 Change-Id: Iffda6bb5f2616d4af4567eeea37bb26531e34371 Signed-off-by: Hiroshi Miura <miurahr@nttdata.co.jp>
2015-08-03 12:20:44 +09:00
self.assertEqual(resp.read(3), 'abc')
self.assertEqual(next(resp), 'de')
self.assertEqual(resp.read(), 'f')
Allow reading from object body on download Currently, get_object returns a generator. This allows access to the object's data in multiples of 'resp_chunk_size'. This patch adds a read function to also allow accessing the object data using read(size). This allows, for example, the consumer of an object (where no byte range has been specified) to read up to certain boundaries while streaming to a new Large Object with segments of a specified size. Reading and chunking can be safely mixed. Related-Bug: 1367925 Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> Change-Id: I1cfb67f45afc7015fd896f1a89bebae048871769
2015-02-12 12:34:07 +00:00
self.assertRaises(StopIteration, next, resp)
change deprecated assertEquals to assertEqual fix against H234: assertEquals() logs a DeprecationWarning in Python3.x. use assertEqual() instead. Closes-bug: #1480776 Change-Id: Iffda6bb5f2616d4af4567eeea37bb26531e34371 Signed-off-by: Hiroshi Miura <miurahr@nttdata.co.jp>
2015-08-03 12:20:44 +09:00
self.assertEqual(resp.read(), '')
Allow reading from object body on download Currently, get_object returns a generator. This allows access to the object's data in multiples of 'resp_chunk_size'. This patch adds a read function to also allow accessing the object data using read(size). This allows, for example, the consumer of an object (where no byte range has been specified) to read up to certain boundaries while streaming to a new Large Object with segments of a specified size. Reading and chunking can be safely mixed. Related-Bug: 1367925 Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> Change-Id: I1cfb67f45afc7015fd896f1a89bebae048871769
2015-02-12 12:34:07 +00:00
_RetryBody doesn't need to take explicit etag/content-length Also, don't try to do int(None) for chunk-encoded responses (like DLOs that are longer than a single container listing). Change-Id: Ibacd75d5ee46135d62388786903c895fda8ed3ba
2016-01-08 11:31:32 -08:00
def test_chunk_size_iter_chunked_no_retry(self):
conn = c.Connection('http://auth.url/', 'some_user', 'some_key')
with mock.patch('swiftclient.client.get_auth_1_0') as mock_get_auth:
mock_get_auth.return_value = ('http://auth.url/', 'tToken')
c.http_connection = self.fake_http_connection(
200, body='abcdef', headers={'Transfer-Encoding': 'chunked'})
__, resp = conn.get_object('asdf', 'asdf', resp_chunk_size=2)
self.assertEqual(next(resp), 'ab')
# simulate a dropped connection
resp.resp.read()
self.assertRaises(StopIteration, next, resp)
def test_chunk_size_iter_retry(self):
conn = c.Connection('http://auth.url/', 'some_user', 'some_key')
with mock.patch('swiftclient.client.get_auth_1_0') as mock_get_auth:
mock_get_auth.return_value = ('http://auth.url', 'tToken')
c.http_connection = self.fake_http_connection(
StubResponse(200, 'abcdef', {'etag': 'some etag',
'content-length': '6'}),
StubResponse(206, 'cdef', {'etag': 'some etag',
Check responses when retrying bodies Previously, if a Range request came back 200 OK (rather than 206 Partial Content), we would mangle the response body. This could happen if there was a middleware that would silently drop Range headers, for example. Now, if the response does not include a Content-Range header, we will log a warning and seek to our previous position in the stream. If the Content-Range header has an unexpected value, we will raise an exception. Change-Id: I94d4536cc1489968d45a2b6ba7edd70c85800275
2016-01-18 11:38:44 -08:00
'content-length': '4',
'content-range': 'bytes 2-5/6'}),
_RetryBody doesn't need to take explicit etag/content-length Also, don't try to do int(None) for chunk-encoded responses (like DLOs that are longer than a single container listing). Change-Id: Ibacd75d5ee46135d62388786903c895fda8ed3ba
2016-01-08 11:31:32 -08:00
StubResponse(206, 'ef', {'etag': 'some etag',
Check responses when retrying bodies Previously, if a Range request came back 200 OK (rather than 206 Partial Content), we would mangle the response body. This could happen if there was a middleware that would silently drop Range headers, for example. Now, if the response does not include a Content-Range header, we will log a warning and seek to our previous position in the stream. If the Content-Range header has an unexpected value, we will raise an exception. Change-Id: I94d4536cc1489968d45a2b6ba7edd70c85800275
2016-01-18 11:38:44 -08:00
'content-length': '2',
'content-range': 'bytes 4-5/6'}),
_RetryBody doesn't need to take explicit etag/content-length Also, don't try to do int(None) for chunk-encoded responses (like DLOs that are longer than a single container listing). Change-Id: Ibacd75d5ee46135d62388786903c895fda8ed3ba
2016-01-08 11:31:32 -08:00
)
__, resp = conn.get_object('asdf', 'asdf', resp_chunk_size=2)
self.assertEqual(next(resp), 'ab')
self.assertEqual(1, conn.attempts)
# simulate a dropped connection
resp.resp.read()
self.assertEqual(next(resp), 'cd')
self.assertEqual(2, conn.attempts)
# simulate a dropped connection
resp.resp.read()
self.assertEqual(next(resp), 'ef')
self.assertEqual(3, conn.attempts)
self.assertRaises(StopIteration, next, resp)
self.assertRequests([
('GET', '/asdf/asdf', '', {
'x-auth-token': 'tToken',
}),
('GET', '/asdf/asdf', '', {
'range': 'bytes=2-',
'if-match': 'some etag',
'x-auth-token': 'tToken',
}),
('GET', '/asdf/asdf', '', {
'range': 'bytes=4-',
'if-match': 'some etag',
'x-auth-token': 'tToken',
}),
])
Check responses when retrying bodies Previously, if a Range request came back 200 OK (rather than 206 Partial Content), we would mangle the response body. This could happen if there was a middleware that would silently drop Range headers, for example. Now, if the response does not include a Content-Range header, we will log a warning and seek to our previous position in the stream. If the Content-Range header has an unexpected value, we will raise an exception. Change-Id: I94d4536cc1489968d45a2b6ba7edd70c85800275
2016-01-18 11:38:44 -08:00
def test_chunk_size_iter_retry_no_range_support(self):
conn = c.Connection('http://auth.url/', 'some_user', 'some_key')
with mock.patch('swiftclient.client.get_auth_1_0') as mock_get_auth:
mock_get_auth.return_value = ('http://auth.url', 'tToken')
c.http_connection = self.fake_http_connection(*[
StubResponse(200, 'abcdef', {'etag': 'some etag',
'content-length': '6'})
] * 3)
__, resp = conn.get_object('asdf', 'asdf', resp_chunk_size=2)
self.assertEqual(next(resp), 'ab')
self.assertEqual(1, conn.attempts)
# simulate a dropped connection
resp.resp.read()
self.assertEqual(next(resp), 'cd')
self.assertEqual(2, conn.attempts)
# simulate a dropped connection
resp.resp.read()
self.assertEqual(next(resp), 'ef')
self.assertEqual(3, conn.attempts)
self.assertRaises(StopIteration, next, resp)
self.assertRequests([
('GET', '/asdf/asdf', '', {
'x-auth-token': 'tToken',
}),
('GET', '/asdf/asdf', '', {
'range': 'bytes=2-',
'if-match': 'some etag',
'x-auth-token': 'tToken',
}),
('GET', '/asdf/asdf', '', {
'range': 'bytes=4-',
'if-match': 'some etag',
'x-auth-token': 'tToken',
}),
])
def test_chunk_size_iter_retry_bad_range_response(self):
conn = c.Connection('http://auth.url/', 'some_user', 'some_key')
with mock.patch('swiftclient.client.get_auth_1_0') as mock_get_auth:
mock_get_auth.return_value = ('http://auth.url', 'tToken')
c.http_connection = self.fake_http_connection(
StubResponse(200, 'abcdef', {'etag': 'some etag',
'content-length': '6'}),
StubResponse(206, 'abcdef', {'etag': 'some etag',
'content-length': '6',
'content-range': 'chunk 1-2/3'})
)
__, resp = conn.get_object('asdf', 'asdf', resp_chunk_size=2)
self.assertEqual(next(resp), 'ab')
self.assertEqual(1, conn.attempts)
# simulate a dropped connection
resp.resp.read()
self.assertRaises(c.ClientException, next, resp)
self.assertRequests([
('GET', '/asdf/asdf', '', {
'x-auth-token': 'tToken',
}),
('GET', '/asdf/asdf', '', {
'range': 'bytes=2-',
'if-match': 'some etag',
'x-auth-token': 'tToken',
}),
])
Retry download of object body Currently the swift client retries establishing a connection to the server (by default up to 5 times). However, when downloading an object, once the connection has been established and the inital headers have been returned, no attempt is made to retry. So, for example, if 99MB of a 100MB object have been downloaded and the connection is then lost, the download will fail. This patch changes the behaviour to re-establish the connection and fetch the remaining bytes using the 'Range' header to offset. Data retry is not yet supported if the original request is for a subset of the object data (ie uses the 'Range' header), or if resp_chunk_size has not been set. The object's etag is checked using If-Match to make sure the object data hasn't changed since the start of the download. Change-Id: Iab47f10081ff39f6d344dbc2479cbc3bfd1c5b29
2015-03-04 14:31:00 +00:00
def test_get_object_with_resp_chunk_size_zero(self):
def get_connection(self):
def get_auth():
return 'http://auth.test.com', 'token'
conn = c.Connection('http://www.test.com', 'asdf', 'asdf')
self.assertIs(type(conn), c.Connection)
conn.get_auth = get_auth
self.assertEqual(conn.attempts, 0)
return conn
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = get_connection(self)
conn.get_object('container1', 'obj1', resp_chunk_size=0)
self.assertEqual(conn.attempts, 1)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestHeadObject(MockHttpTest):
def test_server_error(self):
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
body = 'c' * 60
headers = {'foo': 'bar'}
c.http_connection = self.fake_http_connection(
StubResponse(500, body, headers))
with self.assertRaises(c.ClientException) as exc_context:
c.head_object('http://www.test.com', 'asdf', 'asdf', 'asdf')
self.assertEqual(exc_context.exception.http_response_content, body)
self.assertEqual(exc_context.exception.http_response_headers, headers)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Add headers parameter Headers parameter is required when passing client key for encryption. It is missing for get_container and head_object. Change-Id: I35c3b266b3c733f6b1629de4c683ea7d40128032
2015-09-15 14:34:53 +05:30
def test_request_headers(self):
c.http_connection = self.fake_http_connection(204)
conn = c.http_connection('http://www.test.com')
headers = {'x-client-key': 'client key'}
c.head_object('url_is_irrelevant', 'TOKEN', 'container',
'asdf', http_conn=conn, headers=headers)
self.assertRequests([
('HEAD', '/container/asdf', '', {
'x-auth-token': 'TOKEN',
'x-client-key': 'client key',
}),
])
Add a query_string option to head_object(). Submitting a path parameter with a HEAD request on an object can be useful if one is trying to find out information about an SLO/DLO without retrieving the manifest. Change-Id: I39efd098e72bd31de271ac51d4d75381929c9638
2018-03-05 17:33:22 -08:00
def test_query_string(self):
c.http_connection = self.fake_http_connection(204)
conn = c.http_connection('http://www.test.com')
query_string = 'foo=bar'
c.head_object('url_is_irrelevant', 'token', 'container', 'key',
http_conn=conn, query_string=query_string)
self.assertRequests([
('HEAD', '/container/key?foo=bar', '', {'x-auth-token': 'token'})
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestPutObject(MockHttpTest):
def test_ok(self):
c.http_connection = self.fake_http_connection(200)
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
args = ('http://www.test.com', 'TOKEN', 'container', 'obj', 'body', 4)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
value = c.put_object(*args)
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
self.assertIsInstance(value, str)
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
self.assertEqual(value, EMPTY_ETAG)
self.assertRequests([
('PUT', '/container/obj', 'body', {
'x-auth-token': 'TOKEN',
'content-length': '4',
}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
def test_unicode_ok(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/')
mock_file = io.StringIO('\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91')
args = ('\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91',
'\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91',
'\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91',
'\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91',
Assignment to reserved built-in symbol "file" In file: tests/test_swiftclient.py, test_unicode_ok() & test_chunk_warning() Fixes bug #1207736 Change-Id: I0a822802ec8910e9aec36ae5af775f8abb384d34
2013-08-02 20:51:58 +08:00
mock_file)
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
text = '\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91'
Python 3: fix tests on HTTP headers HTTP headers are encoded to bytes. Store headers at (key, value) tuples instead of Unicode strings. Check also that non-ASCII Unicode headers are encoded to UTF-8. Change-Id: Ie45f5a5ba63f539a723a7ac5649779d8efb3e912
2014-04-02 14:34:50 +02:00
headers = {'X-Header1': text,
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
'X-2': '1', 'X-3': "{'a': 'b'}", 'a-b': '.x:yz mn:fg:lp'}
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
resp = MockHttpResponse()
conn[1].getresponse = resp.fake_response
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
conn[1]._request = resp._fake_request
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
value = c.put_object(*args, headers=headers, http_conn=conn)
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
self.assertIsInstance(value, str)
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
# Test for RFC-2616 encoded symbols
Only encode metadata for user customed headers Don't encode standard headers keys but just the x-*-meta- ones. That fixes py3 to not have them casted as bytes and not properly passed to the requests kwargs. Other trivial py3 fixes along the way. Change-Id: I91b95f32fb2aec9b20892a5bb95fd1bc65d002f3
2014-04-15 16:28:50 -04:00
self.assertIn(("a-b", b".x:yz mn:fg:lp"),
Python 3: fix tests on HTTP headers HTTP headers are encoded to bytes. Store headers at (key, value) tuples instead of Unicode strings. Check also that non-ASCII Unicode headers are encoded to UTF-8. Change-Id: Ie45f5a5ba63f539a723a7ac5649779d8efb3e912
2014-04-02 14:34:50 +02:00
resp.buffer)
# Test unicode header
Only encode metadata for user customed headers Don't encode standard headers keys but just the x-*-meta- ones. That fixes py3 to not have them casted as bytes and not properly passed to the requests kwargs. Other trivial py3 fixes along the way. Change-Id: I91b95f32fb2aec9b20892a5bb95fd1bc65d002f3
2014-04-15 16:28:50 -04:00
self.assertIn(('x-header1', text.encode('utf8')),
Python 3: fix tests on HTTP headers HTTP headers are encoded to bytes. Store headers at (key, value) tuples instead of Unicode strings. Check also that non-ASCII Unicode headers are encoded to UTF-8. Change-Id: Ie45f5a5ba63f539a723a7ac5649779d8efb3e912
2014-04-02 14:34:50 +02:00
resp.buffer)
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
Enhance put_object to inform when chunk is ignored Changed documentation for chunk_size parameter to indicate that it can be used only with file like objects. Also added a UserWarning when using a string contents to inform that chunk_size will be ignored. Added a unit test to check whether the warning is working correctly. Fixes: bug #1147232 Change-Id: I618ec45520ba81905ce2ead4d61f192d21ae3489
2013-03-05 16:56:02 +00:00
def test_chunk_warning(self):
conn = c.http_connection('http://www.test.com/')
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
mock_file = io.StringIO('asdf')
Assignment to reserved built-in symbol "file" In file: tests/test_swiftclient.py, test_unicode_ok() & test_chunk_warning() Fixes bug #1207736 Change-Id: I0a822802ec8910e9aec36ae5af775f8abb384d34
2013-08-02 20:51:58 +08:00
args = ('asdf', 'asdf', 'asdf', 'asdf', mock_file)
Enhance put_object to inform when chunk is ignored Changed documentation for chunk_size parameter to indicate that it can be used only with file like objects. Also added a UserWarning when using a string contents to inform that chunk_size will be ignored. Added a unit test to check whether the warning is working correctly. Fixes: bug #1147232 Change-Id: I618ec45520ba81905ce2ead4d61f192d21ae3489
2013-03-05 16:56:02 +00:00
resp = MockHttpResponse()
conn[1].getresponse = resp.fake_response
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
conn[1]._request = resp._fake_request
Enhance put_object to inform when chunk is ignored Changed documentation for chunk_size parameter to indicate that it can be used only with file like objects. Also added a UserWarning when using a string contents to inform that chunk_size will be ignored. Added a unit test to check whether the warning is working correctly. Fixes: bug #1147232 Change-Id: I618ec45520ba81905ce2ead4d61f192d21ae3489
2013-03-05 16:56:02 +00:00
with warnings.catch_warnings(record=True) as w:
c.put_object(*args, chunk_size=20, headers={}, http_conn=conn)
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(len(w), 0)
Enhance put_object to inform when chunk is ignored Changed documentation for chunk_size parameter to indicate that it can be used only with file like objects. Also added a UserWarning when using a string contents to inform that chunk_size will be ignored. Added a unit test to check whether the warning is working correctly. Fixes: bug #1147232 Change-Id: I618ec45520ba81905ce2ead4d61f192d21ae3489
2013-03-05 16:56:02 +00:00
body = 'c' * 60
c.http_connection = self.fake_http_connection(200, body=body)
args = ('http://www.test.com', 'asdf', 'asdf', 'asdf', 'asdf')
with warnings.catch_warnings(record=True) as w:
c.put_object(*args, chunk_size=20)
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(len(w), 1)
Enhance put_object to inform when chunk is ignored Changed documentation for chunk_size parameter to indicate that it can be used only with file like objects. Also added a UserWarning when using a string contents to inform that chunk_size will be ignored. Added a unit test to check whether the warning is working correctly. Fixes: bug #1147232 Change-Id: I618ec45520ba81905ce2ead4d61f192d21ae3489
2013-03-05 16:56:02 +00:00
self.assertTrue(issubclass(w[-1].category, UserWarning))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_server_error(self):
body = 'c' * 60
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
headers = {'foo': 'bar'}
c.http_connection = self.fake_http_connection(
StubResponse(500, body, headers))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
args = ('http://www.test.com', 'asdf', 'asdf', 'asdf', 'asdf')
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.put_object(*args)
e = exc_context.exception
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertEqual(e.http_response_content, body)
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
self.assertEqual(e.http_response_headers, headers)
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertEqual(e.http_status, 500)
self.assertRequests([
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
('PUT', '/asdf/asdf', 'asdf', {
Don't patch Requests globally on import This also upgrades the Requests dependency to 2.4+ (released in 2014) to avoid having to do version comparisons altogether. Refs https://bugs.launchpad.net/python-swiftclient/+bug/1904551 Signed-off-by: Aarni Koskela <akx@iki.fi> Change-Id: I58399f6c526b0b78462f31739c43076314ba9e76
2022-02-10 18:37:09 +02:00
'x-auth-token': 'asdf'}),
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Static large object support. Also fixed bug with current large objects with segment listing prefixes. Allow retry for object PUTs when possible. Change-Id: I0edff127fd5d5c53da33aa7cb76a4f4dc85bf6e6
2013-03-05 15:12:04 -08:00
def test_query_string(self):
c.http_connection = self.fake_http_connection(200,
query_string="hello=20")
c.put_object('http://www.test.com', 'asdf', 'asdf', 'asdf',
query_string="hello=20")
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
for req in self.iter_request_log():
self.assertEqual(req['method'], 'PUT')
self.assertEqual(req['parsed_path'].path, '/asdf/asdf')
self.assertEqual(req['parsed_path'].query, 'hello=20')
self.assertEqual(req['headers']['x-auth-token'], 'asdf')
Static large object support. Also fixed bug with current large objects with segment listing prefixes. Allow retry for object PUTs when possible. Change-Id: I0edff127fd5d5c53da33aa7cb76a4f4dc85bf6e6
2013-03-05 15:12:04 -08:00
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
def test_raw_upload(self):
# Raw upload happens when content_length is passed to put_object
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/')
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
resp = MockHttpResponse(status=200)
conn[1].getresponse = resp.fake_response
conn[1]._request = resp._fake_request
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
raw_data = b'asdf' * 256
raw_data_len = len(raw_data)
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
for kwarg in ({'headers': {'Content-Length': str(raw_data_len)}},
{'content_length': raw_data_len}):
with tempfile.TemporaryFile() as mock_file:
mock_file.write(raw_data)
mock_file.seek(0)
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
c.put_object(url='http://www.test.com', http_conn=conn,
contents=mock_file, **kwarg)
req_data = resp.requests_params['data']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertIs(type(req_data), swiftclient.utils.LengthWrapper)
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
self.assertEqual(raw_data_len, len(req_data.read()))
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
def test_chunk_upload(self):
# Chunked upload happens when no content_length is passed to put_object
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/')
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
resp = MockHttpResponse(status=200)
conn[1].getresponse = resp.fake_response
conn[1]._request = resp._fake_request
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
raw_data = b'asdf' * 256
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
chunk_size = 16
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
with tempfile.TemporaryFile() as mock_file:
mock_file.write(raw_data)
mock_file.seek(0)
c.put_object(url='http://www.test.com', http_conn=conn,
contents=mock_file, chunk_size=chunk_size)
req_data = resp.requests_params['data']
self.assertTrue(hasattr(req_data, '__iter__'))
data = b''
for chunk in req_data:
self.assertEqual(chunk_size, len(chunk))
data += chunk
self.assertEqual(data, raw_data)
Wrap raw iterators to ensure we send entire contents to server Currently, if you attempt to stream an upload from an iterator, as in def data(): yield 'foo' yield '' yield 'bar' conn.put_object('c', 'o', data()) ... requests will faithfully emit a zero-length chunk, ending the transfer. Swift will then close the connection, possibly (if Connection: keep-alive was set) after attempting to parse the next chunk as a new request. Now, Swift will receive all of the bytes from the iterable, and any zero-byte chunks will be ignored. This will be fixed in requests [1], but not until an eventual 3.0.0 release. [1] https://github.com/kennethreitz/requests/pull/2631 Change-Id: I19579ed7a0181ac3f488433e7c1839f7f7a040b8
2015-12-30 11:15:02 -08:00
def test_iter_upload(self):
def data():
for chunk in ('foo', '', 'bar'):
yield chunk
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/')
Wrap raw iterators to ensure we send entire contents to server Currently, if you attempt to stream an upload from an iterator, as in def data(): yield 'foo' yield '' yield 'bar' conn.put_object('c', 'o', data()) ... requests will faithfully emit a zero-length chunk, ending the transfer. Swift will then close the connection, possibly (if Connection: keep-alive was set) after attempting to parse the next chunk as a new request. Now, Swift will receive all of the bytes from the iterable, and any zero-byte chunks will be ignored. This will be fixed in requests [1], but not until an eventual 3.0.0 release. [1] https://github.com/kennethreitz/requests/pull/2631 Change-Id: I19579ed7a0181ac3f488433e7c1839f7f7a040b8
2015-12-30 11:15:02 -08:00
resp = MockHttpResponse(status=200)
conn[1].getresponse = resp.fake_response
conn[1]._request = resp._fake_request
c.put_object(url='http://www.test.com', http_conn=conn,
contents=data())
req_headers = resp.requests_params['headers']
self.assertNotIn('Content-Length', req_headers)
req_data = resp.requests_params['data']
self.assertTrue(hasattr(req_data, '__iter__'))
# If we emit an empty chunk, requests will go ahead and send it,
# causing the server to close the connection. So make sure we don't
# do that.
self.assertEqual(['foo', 'bar'], list(req_data))
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
def test_md5_mismatch(self):
conn = c.http_connection('http://www.test.com')
resp = MockHttpResponse(status=200, verify=True,
headers={'etag': '"badresponseetag"'})
conn[1].getresponse = resp.fake_response
conn[1]._request = resp._fake_request
raw_data = b'asdf' * 256
raw_data_md5 = md5(raw_data).hexdigest()
chunk_size = 16
with tempfile.TemporaryFile() as mock_file:
mock_file.write(raw_data)
mock_file.seek(0)
contents = swiftclient.utils.ReadableToIterable(mock_file,
md5=True)
etag = c.put_object(url='http://www.test.com',
http_conn=conn,
contents=contents,
chunk_size=chunk_size)
change deprecated assertEquals to assertEqual fix against H234: assertEquals() logs a DeprecationWarning in Python3.x. use assertEqual() instead. Closes-bug: #1480776 Change-Id: Iffda6bb5f2616d4af4567eeea37bb26531e34371 Signed-off-by: Hiroshi Miura <miurahr@nttdata.co.jp>
2015-08-03 12:20:44 +09:00
self.assertNotEqual(etag, contents.get_md5sum())
self.assertEqual(etag, 'badresponseetag')
self.assertEqual(raw_data_md5, contents.get_md5sum())
Verify MD5 of uploaded objects. Changed existing code to calculate the MD5 of the object during the upload stream. Checks this MD5 against the etag returned in the response. An exception is raised if they do not match. Closes-Bug: 1379263 Change-Id: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce
2014-10-29 10:11:29 +00:00
def test_md5_match(self):
conn = c.http_connection('http://www.test.com')
raw_data = b'asdf' * 256
raw_data_md5 = md5(raw_data).hexdigest()
resp = MockHttpResponse(status=200, verify=True,
headers={'etag': '"' + raw_data_md5 + '"'})
conn[1].getresponse = resp.fake_response
conn[1]._request = resp._fake_request
chunk_size = 16
with tempfile.TemporaryFile() as mock_file:
mock_file.write(raw_data)
mock_file.seek(0)
contents = swiftclient.utils.ReadableToIterable(mock_file,
md5=True)
etag = c.put_object(url='http://www.test.com',
http_conn=conn,
contents=contents,
chunk_size=chunk_size)
change deprecated assertEquals to assertEqual fix against H234: assertEquals() logs a DeprecationWarning in Python3.x. use assertEqual() instead. Closes-bug: #1480776 Change-Id: Iffda6bb5f2616d4af4567eeea37bb26531e34371 Signed-off-by: Hiroshi Miura <miurahr@nttdata.co.jp>
2015-08-03 12:20:44 +09:00
self.assertEqual(raw_data_md5, contents.get_md5sum())
self.assertEqual(etag, contents.get_md5sum())
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
def test_params(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/')
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
resp = MockHttpResponse(status=200)
conn[1].getresponse = resp.fake_response
conn[1]._request = resp._fake_request
c.put_object(url='http://www.test.com', http_conn=conn,
etag='1234-5678', content_type='text/plain')
request_header = resp.requests_params['headers']
Fix wrong assertions in unit tests A couple of assertTrue in the test_swiftclient.py unit tests should be assertEqual. Also, the expected values now need to be bytes literals. Change-Id: I7cc1bd60d9ba82d1a28fbae2e1243d3c799451bd
2014-05-22 16:56:31 +01:00
self.assertEqual(request_header['etag'], b'1234-5678')
self.assertEqual(request_header['content-type'], b'text/plain')
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
def test_no_content_type(self):
conn = c.http_connection('http://www.test.com/')
Do not set Content-Type to '' with new requests. Previously, python-swiftclient worked around a requests issue where Content-Type could be set to application/x-www-form-urlencoded when using python3. This issue has been resolved and a fix released in requests 2.4 (fixed in subsequent releases as well). The patch makes the workaround conditional on the requests version, so that with sufficiently new requests libraries, the Content-Type is not set. For reference, requests 2.4 was released August 29th, 2014. The specific issue filed in the requests tracker is: https://github.com/requests/requests/issues/2071. Related-Change: I035f8b4b9c9ccdc79820b907770a48f86d0343b4 Closes-Bug: #1433767 Change-Id: Ieb2243d2ff5326920a27ce8c3c6f0f5c396701ed
2017-06-08 23:47:14 -07:00
resp = MockHttpResponse(status=200)
conn[1].getresponse = resp.fake_response
conn[1]._request = resp._fake_request
c.put_object(url='http://www.test.com', http_conn=conn)
request_header = resp.requests_params['headers']
self.assertNotIn('content-type', request_header)
swiftclient content-type header According to help `swift upload -h` you can add a customized request header 'Content-Type'. But actually it is ignored (cleared and default is used) if subcommand is upload. Subcommand post works as expected in help. Bug fix: Use 'Content-Type' from the customized request headers also if uploading. Change-Id: If0d1354b6214b909527341078fe1769aa6587457
2015-10-06 10:08:02 +02:00
def test_content_type_in_headers(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/')
swiftclient content-type header According to help `swift upload -h` you can add a customized request header 'Content-Type'. But actually it is ignored (cleared and default is used) if subcommand is upload. Subcommand post works as expected in help. Bug fix: Use 'Content-Type' from the customized request headers also if uploading. Change-Id: If0d1354b6214b909527341078fe1769aa6587457
2015-10-06 10:08:02 +02:00
resp = MockHttpResponse(status=200)
conn[1].getresponse = resp.fake_response
conn[1]._request = resp._fake_request
# title-case header
hdrs = {'Content-Type': 'text/Plain'}
c.put_object(url='http://www.test.com', http_conn=conn, headers=hdrs)
request_header = resp.requests_params['headers']
self.assertEqual(request_header['content-type'], b'text/Plain')
# method param overrides headers
c.put_object(url='http://www.test.com', http_conn=conn, headers=hdrs,
content_type='image/jpeg')
request_header = resp.requests_params['headers']
self.assertEqual(request_header['content-type'], b'image/jpeg')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestPostObject(MockHttpTest):
def test_ok(self):
c.http_connection = self.fake_http_connection(200)
Force header keys/values to bytes/unicode before coercing to unicode Previously, parse_header_string was only called with data coming out of requests, which would be either bytes or unicode. Now that we're sending it request headers as well (see related change), we need to be more defensive. If the value given is neither bytes nor unicode, convert it to a native string. This will allow developers using the client API to continue sending header dicts like {'X-Delete-After': 2} ...as in Swift's test/probe/test_object_expirer.py Change-Id: Ie57a93274507b184af5cad4260f244359a585f09 Related-Change: I43dd7254f7281d4db59b286aa2145643c64e1705
2016-02-26 11:25:10 -08:00
delete_at = 2.1 # not str! we don't know what other devs will use!
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
args = ('http://www.test.com', 'token', 'container', 'obj',
Force header keys/values to bytes/unicode before coercing to unicode Previously, parse_header_string was only called with data coming out of requests, which would be either bytes or unicode. Now that we're sending it request headers as well (see related change), we need to be more defensive. If the value given is neither bytes nor unicode, convert it to a native string. This will allow developers using the client API to continue sending header dicts like {'X-Delete-After': 2} ...as in Swift's test/probe/test_object_expirer.py Change-Id: Ie57a93274507b184af5cad4260f244359a585f09 Related-Change: I43dd7254f7281d4db59b286aa2145643c64e1705
2016-02-26 11:25:10 -08:00
{'X-Object-Meta-Test': 'mymeta',
'X-Delete-At': delete_at})
Switch to flake8. Change-Id: Ib9ba1e7eed09c5a90c558a8365d0a87c3f4b5ee5
2013-04-28 19:16:38 -07:00
c.post_object(*args)
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
self.assertRequests([
('POST', '/container/obj', '', {
'x-auth-token': 'token',
Force header keys/values to bytes/unicode before coercing to unicode Previously, parse_header_string was only called with data coming out of requests, which would be either bytes or unicode. Now that we're sending it request headers as well (see related change), we need to be more defensive. If the value given is neither bytes nor unicode, convert it to a native string. This will allow developers using the client API to continue sending header dicts like {'X-Delete-After': 2} ...as in Swift's test/probe/test_object_expirer.py Change-Id: Ie57a93274507b184af5cad4260f244359a585f09 Related-Change: I43dd7254f7281d4db59b286aa2145643c64e1705
2016-02-26 11:25:10 -08:00
'X-Object-Meta-Test': 'mymeta',
'X-Delete-At': delete_at}),
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
])
Stop mutating header dicts Change-Id: Ia1638c216eff9db6fbe416bc0570c27cfdcfe730
2017-08-25 12:13:12 -07:00
# Check that the request header dict didn't get mutated
self.assertEqual(args[-1], {
'X-Object-Meta-Test': 'mymeta',
'X-Delete-At': delete_at,
})
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
def test_unicode_ok(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/')
args = ('\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91',
'\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91',
'\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91',
'\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91')
text = '\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91'
Python 3: fix tests on HTTP headers HTTP headers are encoded to bytes. Store headers at (key, value) tuples instead of Unicode strings. Check also that non-ASCII Unicode headers are encoded to UTF-8. Change-Id: Ie45f5a5ba63f539a723a7ac5649779d8efb3e912
2014-04-02 14:34:50 +02:00
headers = {'X-Header1': text,
Fix Python3 bugs This patch fixes three issues that were found running functional tests with Python 3: 1. python-requests sets 'application/x-www-form-urlencoded' as content-type if the input is not a string object and no content-type is given. 2. Encoding of the headers is now only done if required. This prevents comparisons between unencoded headers and encoded prefixes and avoids unnecessary forloop-iterations. One unittest was extended to ensure it works for unencoded and encoded headers with or without the prefix. 3. Functional tests recently switched to using byte data for testing, thus the comparison needs to be a byte object as well. Change-Id: I035f8b4b9c9ccdc79820b907770a48f86d0343b4
2014-05-20 11:41:03 +00:00
b'X-Header2': 'value',
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
'X-2': '1', 'X-3': "{'a': 'b'}", 'a-b': '.x:yz mn:kl:qr',
Fix Python3 bugs This patch fixes three issues that were found running functional tests with Python 3: 1. python-requests sets 'application/x-www-form-urlencoded' as content-type if the input is not a string object and no content-type is given. 2. Encoding of the headers is now only done if required. This prevents comparisons between unencoded headers and encoded prefixes and avoids unnecessary forloop-iterations. One unittest was extended to ensure it works for unencoded and encoded headers with or without the prefix. 3. Functional tests recently switched to using byte data for testing, thus the comparison needs to be a byte object as well. Change-Id: I035f8b4b9c9ccdc79820b907770a48f86d0343b4
2014-05-20 11:41:03 +00:00
'X-Object-Meta-Header-not-encoded': text,
b'X-Object-Meta-Header-encoded': 'value'}
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
resp = MockHttpResponse()
conn[1].getresponse = resp.fake_response
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
conn[1]._request = resp._fake_request
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
c.post_object(*args, headers=headers, http_conn=conn)
# Test for RFC-2616 encoded symbols
Only encode metadata for user customed headers Don't encode standard headers keys but just the x-*-meta- ones. That fixes py3 to not have them casted as bytes and not properly passed to the requests kwargs. Other trivial py3 fixes along the way. Change-Id: I91b95f32fb2aec9b20892a5bb95fd1bc65d002f3
2014-04-15 16:28:50 -04:00
self.assertIn(('a-b', b".x:yz mn:kl:qr"), resp.buffer)
Python 3: fix tests on HTTP headers HTTP headers are encoded to bytes. Store headers at (key, value) tuples instead of Unicode strings. Check also that non-ASCII Unicode headers are encoded to UTF-8. Change-Id: Ie45f5a5ba63f539a723a7ac5649779d8efb3e912
2014-04-02 14:34:50 +02:00
# Test unicode header
Only encode metadata for user customed headers Don't encode standard headers keys but just the x-*-meta- ones. That fixes py3 to not have them casted as bytes and not properly passed to the requests kwargs. Other trivial py3 fixes along the way. Change-Id: I91b95f32fb2aec9b20892a5bb95fd1bc65d002f3
2014-04-15 16:28:50 -04:00
self.assertIn(('x-header1', text.encode('utf8')),
Python 3: fix tests on HTTP headers HTTP headers are encoded to bytes. Store headers at (key, value) tuples instead of Unicode strings. Check also that non-ASCII Unicode headers are encoded to UTF-8. Change-Id: Ie45f5a5ba63f539a723a7ac5649779d8efb3e912
2014-04-02 14:34:50 +02:00
resp.buffer)
Fix Python3 bugs This patch fixes three issues that were found running functional tests with Python 3: 1. python-requests sets 'application/x-www-form-urlencoded' as content-type if the input is not a string object and no content-type is given. 2. Encoding of the headers is now only done if required. This prevents comparisons between unencoded headers and encoded prefixes and avoids unnecessary forloop-iterations. One unittest was extended to ensure it works for unencoded and encoded headers with or without the prefix. 3. Functional tests recently switched to using byte data for testing, thus the comparison needs to be a byte object as well. Change-Id: I035f8b4b9c9ccdc79820b907770a48f86d0343b4
2014-05-20 11:41:03 +00:00
self.assertIn((b'x-object-meta-header-not-encoded',
text.encode('utf8')), resp.buffer)
self.assertIn((b'x-object-meta-header-encoded', b'value'),
resp.buffer)
self.assertIn((b'x-header2', b'value'), resp.buffer)
Force utf-8 encode of HTTPConnection params This patch forces swiftclient to encode to utf-8 all url and headers arguments, to avoid the UnicodeDecodeError which is raised by '\r\n'.join([]) invoked in htplib.py. Currently the affected projects are Horizon(upload file with unicode name) and swiftclient CLI('swift post' with unicode filename as header) This is also a follow-up of this review: https://review.openstack.org/#/c/14216/ I'd still want to hear what the Swift core devs think of it. Is it better to create a new AutoEncodingHTTPConnection? Or to handle the connection creation and make sure there are no unicode and utf-8 string at the same time. If these unicode checks have to be added in the calling code(Dashboard, CLI), there are so many places to be added, and also in all new commands that might be exposed from the API. Fixes bug 1008940 Change-Id: Ice2aa29024429d3e6f569a88d5cf8b4202537827
2012-10-11 15:04:00 +03:00
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_server_error(self):
body = 'c' * 60
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
headers = {'foo': 'bar'}
c.http_connection = self.fake_http_connection(
StubResponse(500, body, headers))
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
args = ('http://www.test.com', 'token', 'container', 'obj', {})
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.post_object(*args)
self.assertEqual(exc_context.exception.http_response_content, body)
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
self.assertEqual(exc_context.exception.http_response_headers, headers)
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertRequests([
('POST', 'http://www.test.com/container/obj', '', {
'x-auth-token': 'token',
}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Add copy object method Implement copy object method in swiftclient Connection, Service and CLI. Although COPY functionality can be accomplished with 'X-Copy-From' header in PUT request, using copy is more convenient especially when using copy for updating object metadata non-destructively. Closes-Bug: 1474939 Change-Id: I1338ac411f418f4adb3d06753d044a484a7f32a4
2016-02-15 12:14:17 +01:00
class TestCopyObject(MockHttpTest):
def test_server_error(self):
c.http_connection = self.fake_http_connection(500)
self.assertRaises(
c.ClientException, c.copy_object,
'http://www.test.com/v1/AUTH', 'asdf', 'asdf', 'asdf')
def test_ok(self):
c.http_connection = self.fake_http_connection(200)
c.copy_object(
'http://www.test.com/v1/AUTH', 'token', 'container', 'obj',
destination='/container2/obj')
self.assertRequests([
('COPY', 'http://www.test.com/v1/AUTH/container/obj', '', {
'X-Auth-Token': 'token',
'Destination': '/container2/obj',
}),
])
def test_service_token(self):
c.http_connection = self.fake_http_connection(200)
c.copy_object('http://www.test.com/v1/AUTH', None, 'container',
'obj', destination='/container2/obj',
service_token="TOKEN")
self.assertRequests([
('COPY', 'http://www.test.com/v1/AUTH/container/obj', '', {
'X-Service-Token': 'TOKEN',
'Destination': '/container2/obj',
}),
])
def test_headers(self):
c.http_connection = self.fake_http_connection(200)
c.copy_object(
'http://www.test.com/v1/AUTH', 'token', 'container', 'obj',
destination='/container2/obj',
headers={'some-hdr': 'a', 'other-hdr': 'b'})
self.assertRequests([
('COPY', 'http://www.test.com/v1/AUTH/container/obj', '', {
'X-Auth-Token': 'token',
'Destination': '/container2/obj',
'some-hdr': 'a',
'other-hdr': 'b',
}),
])
def test_fresh_metadata_default(self):
c.http_connection = self.fake_http_connection(200)
c.copy_object(
'http://www.test.com/v1/AUTH', 'token', 'container', 'obj',
'/container2/obj', {'x-fresh-metadata': 'hdr-value'})
self.assertRequests([
('COPY', 'http://www.test.com/v1/AUTH/container/obj', '', {
'X-Auth-Token': 'token',
'Destination': '/container2/obj',
'X-Fresh-Metadata': 'hdr-value',
}),
])
def test_fresh_metadata_true(self):
c.http_connection = self.fake_http_connection(200)
c.copy_object(
'http://www.test.com/v1/AUTH', 'token', 'container', 'obj',
destination='/container2/obj',
headers={'x-fresh-metadata': 'hdr-value'},
fresh_metadata=True)
self.assertRequests([
('COPY', 'http://www.test.com/v1/AUTH/container/obj', '', {
'X-Auth-Token': 'token',
'Destination': '/container2/obj',
'X-Fresh-Metadata': 'true',
}),
])
def test_fresh_metadata_false(self):
c.http_connection = self.fake_http_connection(200)
c.copy_object(
'http://www.test.com/v1/AUTH', 'token', 'container', 'obj',
destination='/container2/obj',
headers={'x-fresh-metadata': 'hdr-value'},
fresh_metadata=False)
self.assertRequests([
('COPY', 'http://www.test.com/v1/AUTH/container/obj', '', {
'x-auth-token': 'token',
'Destination': '/container2/obj',
'X-Fresh-Metadata': 'false',
}),
])
def test_no_destination(self):
c.http_connection = self.fake_http_connection(200)
c.copy_object(
'http://www.test.com/v1/AUTH', 'token', 'container', 'obj')
self.assertRequests([
('COPY', 'http://www.test.com/v1/AUTH/container/obj', '', {
'x-auth-token': 'token',
'Destination': '/container/obj',
}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestDeleteObject(MockHttpTest):
def test_ok(self):
c.http_connection = self.fake_http_connection(200)
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
c.delete_object('http://www.test.com', 'token', 'container', 'obj')
self.assertRequests([
('DELETE', 'http://www.test.com/container/obj', '', {
'x-auth-token': 'token',
}),
])
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_server_error(self):
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
body = 'c' * 60
headers = {'foo': 'bar'}
c.http_connection = self.fake_http_connection(
StubResponse(500, body, headers))
with self.assertRaises(c.ClientException) as exc_context:
c.delete_object('http://www.test.com', 'asdf', 'asdf', 'asdf')
self.assertEqual(exc_context.exception.http_response_content, body)
self.assertEqual(exc_context.exception.http_response_headers, headers)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Static large object support. Also fixed bug with current large objects with segment listing prefixes. Allow retry for object PUTs when possible. Change-Id: I0edff127fd5d5c53da33aa7cb76a4f4dc85bf6e6
2013-03-05 15:12:04 -08:00
def test_query_string(self):
c.http_connection = self.fake_http_connection(200,
query_string="hello=20")
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
c.delete_object('http://www.test.com', 'token', 'container', 'obj',
Static large object support. Also fixed bug with current large objects with segment listing prefixes. Allow retry for object PUTs when possible. Change-Id: I0edff127fd5d5c53da33aa7cb76a4f4dc85bf6e6
2013-03-05 15:12:04 -08:00
query_string="hello=20")
Make more assertions in client unit tests Some tests rely on the fake connection checking expected request parameters, but that assumes that the fake ocnnection is even called, which is not being checked. Add more explicit assertions that requests are in fact made. Change-Id: Id1c48235d7d97fd1b0feec6c19ed59a87bebdf89
2015-09-23 09:55:10 +01:00
self.assertRequests([
('DELETE', 'http://www.test.com/container/obj?hello=20', '', {
'x-auth-token': 'token',
}),
])
Static large object support. Also fixed bug with current large objects with segment listing prefixes. Allow retry for object PUTs when possible. Change-Id: I0edff127fd5d5c53da33aa7cb76a4f4dc85bf6e6
2013-03-05 15:12:04 -08:00
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Add capabilities option This patch adds a capabilities option on swiftclient. This option uses the new /info endpoint to request the remote capabilities and nicely display it. Change-Id: Ie34b454511d5527e402e66e1fdb72120f427f2fd
2014-01-13 22:39:28 +01:00
class TestGetCapabilities(MockHttpTest):
def test_ok(self):
Remove simplejson dependency In addition to removing an unnecessary dependency, this closes another hole that was allowing raw bytes to appear in user-facing messages. Change-Id: Ia0b76426a38e5a5c368c4c7e7ba2aef286758aca
2015-05-14 17:09:43 -07:00
conn = self.fake_http_connection(200, body=b'{}')
Add capabilities option This patch adds a capabilities option on swiftclient. This option uses the new /info endpoint to request the remote capabilities and nicely display it. Change-Id: Ie34b454511d5527e402e66e1fdb72120f427f2fd
2014-01-13 22:39:28 +01:00
http_conn = conn('http://www.test.com/info')
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
info = c.get_capabilities(http_conn)
self.assertRequests([
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
('GET', '/info', '', {'Accept-Encoding': 'gzip'}),
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
])
self.assertEqual(info, {})
self.assertTrue(http_conn[1].resp.has_been_read)
Add capabilities option This patch adds a capabilities option on swiftclient. This option uses the new /info endpoint to request the remote capabilities and nicely display it. Change-Id: Ie34b454511d5527e402e66e1fdb72120f427f2fd
2014-01-13 22:39:28 +01:00
def test_server_error(self):
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
body = 'c' * 60
headers = {'foo': 'bar'}
conn = self.fake_http_connection(
StubResponse(500, body, headers))
Add capabilities option This patch adds a capabilities option on swiftclient. This option uses the new /info endpoint to request the remote capabilities and nicely display it. Change-Id: Ie34b454511d5527e402e66e1fdb72120f427f2fd
2014-01-13 22:39:28 +01:00
http_conn = conn('http://www.test.com/info')
Include response headers in ClientExceptions Now, client applications can get to things like transaction IDs for failures without needing to turn on all of logging. While we're at it, add a from_response factory method for ClientException. Co-Authored-By: Alexander Corwin <ancorwin@gmail.com> Change-Id: Ib46d5f8fc7f36f651f5908bb9d900316fdaebce3
2016-01-18 17:05:28 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.get_capabilities(http_conn)
self.assertEqual(exc_context.exception.http_response_content, body)
self.assertEqual(exc_context.exception.http_response_headers, headers)
Add capabilities option This patch adds a capabilities option on swiftclient. This option uses the new /info endpoint to request the remote capabilities and nicely display it. Change-Id: Ie34b454511d5527e402e66e1fdb72120f427f2fd
2014-01-13 22:39:28 +01:00
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
def test_conn_get_capabilities_with_auth(self):
auth_headers = {
'x-auth-token': 'token',
'x-storage-url': 'http://storage.example.com/v1/AUTH_test'
}
auth_v1_response = StubResponse(headers=auth_headers)
stub_info = {'swift': {'fake': True}}
Remove simplejson dependency In addition to removing an unnecessary dependency, this closes another hole that was allowing raw bytes to appear in user-facing messages. Change-Id: Ia0b76426a38e5a5c368c4c7e7ba2aef286758aca
2015-05-14 17:09:43 -07:00
info_response = StubResponse(body=b'{"swift":{"fake":true}}')
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
fake_conn = self.fake_http_connection(auth_v1_response, info_response)
conn = c.Connection('http://auth.example.com/auth/v1.0',
'user', 'key')
with mock.patch('swiftclient.client.http_connection',
new=fake_conn):
info = conn.get_capabilities()
self.assertEqual(info, stub_info)
self.assertRequests([
Actually make assertions when testing get_account and get_container Change-Id: Ibb1301b00d1bc99ec089ead02f944aa94972120a
2015-09-22 12:14:18 -07:00
('GET', '/auth/v1.0', '', {
'x-auth-user': 'user',
'x-auth-key': 'key'}),
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
('GET', 'http://storage.example.com/info', '', {
'accept-encoding': 'gzip'}),
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
])
def test_conn_get_capabilities_with_os_auth(self):
fake_keystone = fake_get_auth_keystone(
storage_url='http://storage.example.com/v1/AUTH_test')
stub_info = {'swift': {'fake': True}}
Remove simplejson dependency In addition to removing an unnecessary dependency, this closes another hole that was allowing raw bytes to appear in user-facing messages. Change-Id: Ia0b76426a38e5a5c368c4c7e7ba2aef286758aca
2015-05-14 17:09:43 -07:00
info_response = StubResponse(body=b'{"swift":{"fake":true}}')
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
fake_conn = self.fake_http_connection(info_response)
os_options = {'project_id': 'test'}
conn = c.Connection('http://keystone.example.com/v3.0',
'user', 'key', os_options=os_options,
auth_version=3)
with mock.patch.multiple('swiftclient.client',
get_auth_keystone=fake_keystone,
http_connection=fake_conn):
info = conn.get_capabilities()
self.assertEqual(info, stub_info)
self.assertRequests([
('GET', 'http://storage.example.com/info'),
])
def test_conn_get_capabilities_with_url_param(self):
stub_info = {'swift': {'fake': True}}
Remove simplejson dependency In addition to removing an unnecessary dependency, this closes another hole that was allowing raw bytes to appear in user-facing messages. Change-Id: Ia0b76426a38e5a5c368c4c7e7ba2aef286758aca
2015-05-14 17:09:43 -07:00
info_response = StubResponse(body=b'{"swift":{"fake":true}}')
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
fake_conn = self.fake_http_connection(info_response)
conn = c.Connection('http://auth.example.com/auth/v1.0',
'user', 'key')
with mock.patch('swiftclient.client.http_connection',
new=fake_conn):
info = conn.get_capabilities(
'http://other-storage.example.com/info')
self.assertEqual(info, stub_info)
self.assertRequests([
('GET', 'http://other-storage.example.com/info'),
])
def test_conn_get_capabilities_with_preauthurl_param(self):
stub_info = {'swift': {'fake': True}}
Remove simplejson dependency In addition to removing an unnecessary dependency, this closes another hole that was allowing raw bytes to appear in user-facing messages. Change-Id: Ia0b76426a38e5a5c368c4c7e7ba2aef286758aca
2015-05-14 17:09:43 -07:00
info_response = StubResponse(body=b'{"swift":{"fake":true}}')
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
fake_conn = self.fake_http_connection(info_response)
storage_url = 'http://storage.example.com/v1/AUTH_test'
conn = c.Connection('http://auth.example.com/auth/v1.0',
'user', 'key', preauthurl=storage_url)
with mock.patch('swiftclient.client.http_connection',
new=fake_conn):
info = conn.get_capabilities()
self.assertEqual(info, stub_info)
self.assertRequests([
('GET', 'http://storage.example.com/info'),
])
def test_conn_get_capabilities_with_os_options(self):
stub_info = {'swift': {'fake': True}}
Remove simplejson dependency In addition to removing an unnecessary dependency, this closes another hole that was allowing raw bytes to appear in user-facing messages. Change-Id: Ia0b76426a38e5a5c368c4c7e7ba2aef286758aca
2015-05-14 17:09:43 -07:00
info_response = StubResponse(body=b'{"swift":{"fake":true}}')
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
fake_conn = self.fake_http_connection(info_response)
storage_url = 'http://storage.example.com/v1/AUTH_test'
os_options = {
'project_id': 'test',
'object_storage_url': storage_url,
}
conn = c.Connection('http://keystone.example.com/v3.0',
'user', 'key', os_options=os_options,
auth_version=3)
with mock.patch('swiftclient.client.http_connection',
new=fake_conn):
info = conn.get_capabilities()
self.assertEqual(info, stub_info)
self.assertRequests([
('GET', 'http://storage.example.com/info'),
])
Add capabilities option This patch adds a capabilities option on swiftclient. This option uses the new /info endpoint to request the remote capabilities and nicely display it. Change-Id: Ie34b454511d5527e402e66e1fdb72120f427f2fd
2014-01-13 22:39:28 +01:00
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
class TestHTTPConnection(MockHttpTest):
Include unsupported url scheme with ClientException This was an attempt to reveal some more info about failing jenkins jobs such as here [1] where glance_store is receiving a swiftclient exception because of 'unsupported scheme in url'. It seems worth merging the more helpful exception message. [1] http://logs.openstack.org/91/155291/7/check/gate-tempest-dsvm-neutron-src-python-swiftclient/4adac1e/ Change-Id: I0f3411efd42d045b07d6d1000f59a06865d8034b
2015-02-23 11:09:39 +00:00
def test_bad_url_scheme(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
url = 'www.test.com'
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.http_connection(url)
exc = exc_context.exception
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
expected = 'Unsupported scheme "" in url "www.test.com"'
Include unsupported url scheme with ClientException This was an attempt to reveal some more info about failing jenkins jobs such as here [1] where glance_store is receiving a swiftclient exception because of 'unsupported scheme in url'. It seems worth merging the more helpful exception message. [1] http://logs.openstack.org/91/155291/7/check/gate-tempest-dsvm-neutron-src-python-swiftclient/4adac1e/ Change-Id: I0f3411efd42d045b07d6d1000f59a06865d8034b
2015-02-23 11:09:39 +00:00
self.assertEqual(expected, str(exc))
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
url = '://www.test.com'
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.http_connection(url)
exc = exc_context.exception
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
expected = 'Unsupported scheme "" in url "://www.test.com"'
Include unsupported url scheme with ClientException This was an attempt to reveal some more info about failing jenkins jobs such as here [1] where glance_store is receiving a swiftclient exception because of 'unsupported scheme in url'. It seems worth merging the more helpful exception message. [1] http://logs.openstack.org/91/155291/7/check/gate-tempest-dsvm-neutron-src-python-swiftclient/4adac1e/ Change-Id: I0f3411efd42d045b07d6d1000f59a06865d8034b
2015-02-23 11:09:39 +00:00
self.assertEqual(expected, str(exc))
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
url = 'blah://www.test.com'
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.http_connection(url)
exc = exc_context.exception
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
expected = 'Unsupported scheme "blah" in url "blah://www.test.com"'
Include unsupported url scheme with ClientException This was an attempt to reveal some more info about failing jenkins jobs such as here [1] where glance_store is receiving a swiftclient exception because of 'unsupported scheme in url'. It seems worth merging the more helpful exception message. [1] http://logs.openstack.org/91/155291/7/check/gate-tempest-dsvm-neutron-src-python-swiftclient/4adac1e/ Change-Id: I0f3411efd42d045b07d6d1000f59a06865d8034b
2015-02-23 11:09:39 +00:00
self.assertEqual(expected, str(exc))
def test_ok_url_scheme(self):
for scheme in ('http', 'https', 'HTTP', 'HTTPS'):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
url = '%s://www.test.com' % scheme
Include unsupported url scheme with ClientException This was an attempt to reveal some more info about failing jenkins jobs such as here [1] where glance_store is receiving a swiftclient exception because of 'unsupported scheme in url'. It seems worth merging the more helpful exception message. [1] http://logs.openstack.org/91/155291/7/check/gate-tempest-dsvm-neutron-src-python-swiftclient/4adac1e/ Change-Id: I0f3411efd42d045b07d6d1000f59a06865d8034b
2015-02-23 11:09:39 +00:00
parsed_url, conn = c.http_connection(url)
self.assertEqual(scheme.lower(), parsed_url.scheme)
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('%s://www.test.com' % scheme, conn.url)
Include unsupported url scheme with ClientException This was an attempt to reveal some more info about failing jenkins jobs such as here [1] where glance_store is receiving a swiftclient exception because of 'unsupported scheme in url'. It seems worth merging the more helpful exception message. [1] http://logs.openstack.org/91/155291/7/check/gate-tempest-dsvm-neutron-src-python-swiftclient/4adac1e/ Change-Id: I0f3411efd42d045b07d6d1000f59a06865d8034b
2015-02-23 11:09:39 +00:00
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
def test_ok_proxy(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/',
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
proxy='http://localhost:8080')
change assertEquals to assertEqual According to http://docs.python.org/2/library/unittest.html assertEquals is a deprecated alias of assertEqual. Change-Id: Ibf4d548b86c53f30830b7e34b019fa8f67997cd8
2014-05-14 19:08:31 +02:00
self.assertEqual(conn[1].requests_args['proxies']['http'],
'http://localhost:8080')
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
def test_bad_proxy(self):
try:
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
c.http_connection('http://www.test.com/', proxy='localhost:8080')
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
except c.ClientException as e:
self.assertEqual(e.msg, "Proxy's missing scheme")
def test_cacert(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/',
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
cacert='/dev/urandom')
change assertEquals to assertEqual According to http://docs.python.org/2/library/unittest.html assertEquals is a deprecated alias of assertEqual. Change-Id: Ibf4d548b86c53f30830b7e34b019fa8f67997cd8
2014-05-14 19:08:31 +02:00
self.assertEqual(conn[1].requests_args['verify'], '/dev/urandom')
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
def test_insecure(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/', insecure=True)
change assertEquals to assertEqual According to http://docs.python.org/2/library/unittest.html assertEquals is a deprecated alias of assertEqual. Change-Id: Ibf4d548b86c53f30830b7e34b019fa8f67997cd8
2014-05-14 19:08:31 +02:00
self.assertEqual(conn[1].requests_args['verify'], False)
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
Support client certificate/key This change enables to specify a client certificate/key with: * usual CLI options (--os-cert/--os-key) * usual environment variables ($OS_CERT/$OS_KEY) Closes-Bug: #1565112 Change-Id: I12e151adcb6084d801c6dfed21d82232a3259aea
2016-04-10 23:18:17 +02:00
def test_cert(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
conn = c.http_connection('http://www.test.com/', cert='minnie')
Support client certificate/key This change enables to specify a client certificate/key with: * usual CLI options (--os-cert/--os-key) * usual environment variables ($OS_CERT/$OS_KEY) Closes-Bug: #1565112 Change-Id: I12e151adcb6084d801c6dfed21d82232a3259aea
2016-04-10 23:18:17 +02:00
self.assertEqual(conn[1].requests_args['cert'], 'minnie')
def test_cert_key(self):
conn = c.http_connection(
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
'http://www.test.com/', cert='minnie', cert_key='mickey')
Support client certificate/key This change enables to specify a client certificate/key with: * usual CLI options (--os-cert/--os-key) * usual environment variables ($OS_CERT/$OS_KEY) Closes-Bug: #1565112 Change-Id: I12e151adcb6084d801c6dfed21d82232a3259aea
2016-04-10 23:18:17 +02:00
self.assertEqual(conn[1].requests_args['cert'], ('minnie', 'mickey'))
Add connection release test This patch adds a small test to ensure a connection is released after all chunks have been consumed. It's a follow up to commit 8756591b and added to ensure there will be no regression in the future (this test fails also with that patch not applied). Change-Id: I6a6fcd26879eb2070f418c8770a395ff6c30aa51
2015-02-25 10:58:27 +00:00
def test_response_connection_released(self):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
_parsed_url, conn = c.http_connection('http://www.test.com/')
Add connection release test This patch adds a small test to ensure a connection is released after all chunks have been consumed. It's a follow up to commit 8756591b and added to ensure there will be no regression in the future (this test fails also with that patch not applied). Change-Id: I6a6fcd26879eb2070f418c8770a395ff6c30aa51
2015-02-25 10:58:27 +00:00
conn.resp = MockHttpResponse()
conn.resp.raw = mock.Mock()
conn.resp.raw.read.side_effect = ["Chunk", ""]
resp = conn.getresponse()
self.assertFalse(resp.closed)
self.assertEqual("Chunk", resp.read())
self.assertFalse(resp.read())
self.assertTrue(resp.closed)
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
def test_response_headers(self):
Drop support for Python 2 There's a lot of cleanup possible, but this is a start. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Ia1176b7fd5434d52070d482a37abfbb98800cdb3
2022-02-17 11:21:40 +00:00
'''Test latin1-encoded headers.
Properly handle unicode headers. Fix unicode handling in Python 3 and Python 2. There are currently two failure modes. In python 2, swiftclient fails to log in debug mode if the account name has a non-ASCII character. This is because the account name will appear in the storage URL, which we attempt to pass to the logger as a byte string (whereas it should be a unicode string). This patch changes the behavior to convert the path strings into unicode by calling the parse_header_string() function. The second failure mode is with Python 3, where http_lib returns headers that are latin-1 encoded, but swiftclient expects UTF-8. The patch automatically converts headers from latin-1 (iso-8859-1) to UTF-8, so that we can properly handle non-ASCII headers in responses. Change-Id: Ifa7f3d5af71bde8127129f1f8603772d80d063c1
2018-04-17 14:36:57 -07:00
'''
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
_, conn = c.http_connection('http://www.test.com/')
Properly handle unicode headers. Fix unicode handling in Python 3 and Python 2. There are currently two failure modes. In python 2, swiftclient fails to log in debug mode if the account name has a non-ASCII character. This is because the account name will appear in the storage URL, which we attempt to pass to the logger as a byte string (whereas it should be a unicode string). This patch changes the behavior to convert the path strings into unicode by calling the parse_header_string() function. The second failure mode is with Python 3, where http_lib returns headers that are latin-1 encoded, but swiftclient expects UTF-8. The patch automatically converts headers from latin-1 (iso-8859-1) to UTF-8, so that we can properly handle non-ASCII headers in responses. Change-Id: Ifa7f3d5af71bde8127129f1f8603772d80d063c1
2018-04-17 14:36:57 -07:00
conn.resp = MockHttpResponse(
status=200,
headers={
b'\xd8\xaa-unicode'.decode('iso-8859-1'):
b'\xd8\xaa-value'.decode('iso-8859-1'),
'empty-header': ''
}
)
resp = conn.getresponse()
self.assertEqual(
'\u062a-value', resp.getheader('\u062a-unicode'))
self.assertEqual(
'\u062a-value', resp.getheader('\u062a-UNICODE'))
self.assertEqual('', resp.getheader('empty-header'))
self.assertEqual(
dict([('\u062a-unicode', '\u062a-value'),
('empty-header', ''),
('etag', ('"%s"' % EMPTY_ETAG))]),
dict(resp.getheaders()))
Add requests related unit-tests This change improves unit tests of the new code added by the port to requests. Raw upload and chunked upload in put_object are now covered. Change-Id: I995b23a74bc4b00bf5761362b1f1405bb8662311
2014-02-18 11:28:04 +01:00
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
class TestConnection(MockHttpTest):
def test_instance(self):
conn = c.Connection('http://www.test.com', 'asdf', 'asdf')
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(conn.retries, 5)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
swiftclient Connection : default optional arguments to None Default the authurl/user/key constructor arguments for the Connection class to None, as these are not required in the preauthurl/preauthtoken case Change-Id: I445a5d365212c365ecc691c0a670a226e2b7954a
2012-10-23 09:18:29 +01:00
def test_instance_kwargs(self):
Switch to flake8. Change-Id: Ib9ba1e7eed09c5a90c558a8365d0a87c3f4b5ee5
2013-04-28 19:16:38 -07:00
args = {'user': 'ausername',
'key': 'secretpass',
'authurl': 'http://www.test.com',
'tenant_name': 'atenant'}
swiftclient Connection : default optional arguments to None Default the authurl/user/key constructor arguments for the Connection class to None, as these are not required in the preauthurl/preauthtoken case Change-Id: I445a5d365212c365ecc691c0a670a226e2b7954a
2012-10-23 09:18:29 +01:00
conn = c.Connection(**args)
lint: Up-rev hacking Without up-reving hacking python 3.12 can't be used for pep8/flake8 checks. Also address a few new pyflakes issues that seem reasonable to enforce: E275 missing whitespace after keyword H214 Use assertIn/NotIn(A, B) rather than assertTrue/False(A in/not in B) H211 do not compare types, use assert{Is,IsNot}Instance Add F811 (redefinition of unused 'function'), as this check makes client.py fail. And noqa some longer lines that we're happy to carry. Change-Id: Ic97698a310ffe7114b668b8c4bc0195f6997bb45
2024-02-20 16:21:50 +11:00
self.assertIsInstance(conn, c.Connection)
swiftclient Connection : default optional arguments to None Default the authurl/user/key constructor arguments for the Connection class to None, as these are not required in the preauthurl/preauthtoken case Change-Id: I445a5d365212c365ecc691c0a670a226e2b7954a
2012-10-23 09:18:29 +01:00
def test_instance_kwargs_token(self):
args = {'preauthtoken': 'atoken123',
Switch to flake8. Change-Id: Ib9ba1e7eed09c5a90c558a8365d0a87c3f4b5ee5
2013-04-28 19:16:38 -07:00
'preauthurl': 'http://www.test.com:8080/v1/AUTH_123456'}
swiftclient Connection : default optional arguments to None Default the authurl/user/key constructor arguments for the Connection class to None, as these are not required in the preauthurl/preauthtoken case Change-Id: I445a5d365212c365ecc691c0a670a226e2b7954a
2012-10-23 09:18:29 +01:00
conn = c.Connection(**args)
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertEqual(conn.url, args['preauthurl'])
self.assertEqual(conn.token, args['preauthtoken'])
def test_instance_kwargs_os_token(self):
storage_url = 'http://storage.example.com/v1/AUTH_test'
token = 'token'
args = {
'os_options': {
'object_storage_url': storage_url,
'auth_token': token,
}
}
conn = c.Connection(**args)
self.assertEqual(conn.url, storage_url)
self.assertEqual(conn.token, token)
def test_instance_kwargs_token_precedence(self):
storage_url = 'http://storage.example.com/v1/AUTH_test'
token = 'token'
args = {
'preauthurl': storage_url,
'preauthtoken': token,
'os_options': {
'auth_token': 'less-specific-token',
'object_storage_url': 'less-specific-storage-url',
}
}
conn = c.Connection(**args)
self.assertEqual(conn.url, storage_url)
self.assertEqual(conn.token, token)
swiftclient Connection : default optional arguments to None Default the authurl/user/key constructor arguments for the Connection class to None, as these are not required in the preauthurl/preauthtoken case Change-Id: I445a5d365212c365ecc691c0a670a226e2b7954a
2012-10-23 09:18:29 +01:00
Allow storage url override for both auth vers. When --os-storage-url is specified on the command-line to bin/swift, it will override the used storage URL regardless of authentication for both authentication version 1 and version 2. This can be used to bypass a load-balancer to hit a specific proxy server for testing/debugging purposes. Within the client library, this feature is accessed by passing the desired storage URL into swiftclient.client.Conection.__init__() via the os_options keyword argument. For example: conn = Connection(auth_url, user, key, os_options={ 'object_storage_url': 'http://overridden.storage.url/AUTH_foo'}) This patch also adds a dependency on mock>=0.8.0, which is the same as openstack/swift. Change-Id: Id2a36ed6abffd65e7762b6beea5bbfc6c036e848
2013-06-28 21:26:54 -07:00
def test_storage_url_override(self):
static_url = 'http://overridden.storage.url'
conn = c.Connection('http://auth.url/', 'some_user', 'some_key',
os_options={
'object_storage_url': static_url})
method_signatures = (
(conn.head_account, []),
(conn.get_account, []),
(conn.head_container, ('asdf',)),
(conn.get_container, ('asdf',)),
(conn.put_container, ('asdf',)),
(conn.delete_container, ('asdf',)),
(conn.head_object, ('asdf', 'asdf')),
(conn.get_object, ('asdf', 'asdf')),
(conn.put_object, ('asdf', 'asdf', 'asdf')),
(conn.post_object, ('asdf', 'asdf', {})),
(conn.delete_object, ('asdf', 'asdf')),
)
with mock.patch('swiftclient.client.get_auth_1_0') as mock_get_auth:
mock_get_auth.return_value = ('http://auth.storage.url', 'tToken')
for method, args in method_signatures:
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
c.http_connection = self.fake_http_connection(
Remove simplejson dependency In addition to removing an unnecessary dependency, this closes another hole that was allowing raw bytes to appear in user-facing messages. Change-Id: Ia0b76426a38e5a5c368c4c7e7ba2aef286758aca
2015-05-14 17:09:43 -07:00
200, body=b'[]', storage_url=static_url)
Allow storage url override for both auth vers. When --os-storage-url is specified on the command-line to bin/swift, it will override the used storage URL regardless of authentication for both authentication version 1 and version 2. This can be used to bypass a load-balancer to hit a specific proxy server for testing/debugging purposes. Within the client library, this feature is accessed by passing the desired storage URL into swiftclient.client.Conection.__init__() via the os_options keyword argument. For example: conn = Connection(auth_url, user, key, os_options={ 'object_storage_url': 'http://overridden.storage.url/AUTH_foo'}) This patch also adds a dependency on mock>=0.8.0, which is the same as openstack/swift. Change-Id: Id2a36ed6abffd65e7762b6beea5bbfc6c036e848
2013-06-28 21:26:54 -07:00
method(*args)
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertEqual(len(self.request_log), 1)
for request in self.iter_request_log():
self.assertEqual(request['parsed_path'].netloc,
'overridden.storage.url')
self.assertEqual(request['headers']['x-auth-token'],
'tToken')
Allow storage url override for both auth vers. When --os-storage-url is specified on the command-line to bin/swift, it will override the used storage URL regardless of authentication for both authentication version 1 and version 2. This can be used to bypass a load-balancer to hit a specific proxy server for testing/debugging purposes. Within the client library, this feature is accessed by passing the desired storage URL into swiftclient.client.Conection.__init__() via the os_options keyword argument. For example: conn = Connection(auth_url, user, key, os_options={ 'object_storage_url': 'http://overridden.storage.url/AUTH_foo'}) This patch also adds a dependency on mock>=0.8.0, which is the same as openstack/swift. Change-Id: Id2a36ed6abffd65e7762b6beea5bbfc6c036e848
2013-06-28 21:26:54 -07:00
Fixed capability discovery endpoint hardcode It fixes get_capabilities() method to process correctly endpoints like: 'https://<ip>:<port>/v1', 'https://<ip>:<port>/swift/v1'. Co-Authored-By: Daniel Cech <dcech@mirantis.com> Change-Id: Ib4037d0b49da1bce959947100629370805f510d5 Closes-bug: #1712358
2020-04-23 19:01:47 +03:00
def test_url_mapping(self):
conn = c.Connection()
uri_versions = {
'http://storage.test.com':
'http://storage.test.com/info',
'http://storage.test.com/':
'http://storage.test.com/info',
'http://storage.test.com/v1':
'http://storage.test.com/info',
'http://storage.test.com/v1/':
'http://storage.test.com/info',
'http://storage.test.com/swift':
'http://storage.test.com/swift/info',
'http://storage.test.com/swift/':
'http://storage.test.com/swift/info',
'http://storage.test.com/v1.0':
'http://storage.test.com/info',
'http://storage.test.com/swift/v1.0':
'http://storage.test.com/swift/info',
'http://storage.test.com/v111':
'http://storage.test.com/info',
'http://storage.test.com/v111/test':
'http://storage.test.com/info',
'http://storage.test.com/v1/test':
'http://storage.test.com/info',
'http://storage.test.com/swift/v1.0/test':
'http://storage.test.com/swift/info',
'http://storage.test.com/v1.0/test':
'http://storage.test.com/info'}
for uri_k, uri_v in uri_versions.items():
self.assertEqual(conn._map_url(uri_k), uri_v)
Add capabilities option This patch adds a capabilities option on swiftclient. This option uses the new /info endpoint to request the remote capabilities and nicely display it. Change-Id: Ie34b454511d5527e402e66e1fdb72120f427f2fd
2014-01-13 22:39:28 +01:00
def test_get_capabilities(self):
conn = c.Connection()
with mock.patch('swiftclient.client.get_capabilities') as get_cap:
conn.get_capabilities('http://storage2.test.com')
parsed = get_cap.call_args[0][0][0]
self.assertEqual(parsed.path, '/info')
self.assertEqual(parsed.netloc, 'storage2.test.com')
conn.get_auth = lambda: ('http://storage.test.com/v1/AUTH_test',
'token')
conn.get_capabilities()
parsed = get_cap.call_args[0][0][0]
self.assertEqual(parsed.path, '/info')
self.assertEqual(parsed.netloc, 'storage.test.com')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_retry(self):
def quick_sleep(*args):
pass
c.sleep = quick_sleep
conn = c.Connection('http://www.test.com', 'asdf', 'asdf')
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
code_iter = [500] * (conn.retries + 1)
c.http_connection = self.fake_http_connection(*code_iter)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
self.assertRaises(c.ClientException, conn.head_account)
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(conn.attempts, conn.retries + 1)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
retry on ratelimit Added a retry_on_ratelimit parameter to the Connection class so that ratelimited requests can be retried. DocImpact Change-Id: I2817a7ea0ed2d69a7659e80111fbd2c91a75d530
2013-12-23 13:49:46 -08:00
def test_retry_on_ratelimit(self):
def quick_sleep(*args):
pass
c.sleep = quick_sleep
Expand retry handling on ratelimit response We have seen middlewares that return ratelimit responses as 498 or 429, so tolerate either. Closes-Bug: #1879572 Change-Id: I027222157f6c2ad7882a0508302c9de097baae4c
2022-08-10 12:38:54 -05:00
def test_status_code(code):
# test retries
conn = c.Connection('http://www.test.com/auth/v1.0',
'asdf', 'asdf', retry_on_ratelimit=True)
code_iter = [200] + [code] * (conn.retries + 1)
auth_resp_headers = {
'x-auth-token': 'asdf',
'x-storage-url': 'http://storage/v1/test',
}
c.http_connection = self.fake_http_connection(
*code_iter, headers=auth_resp_headers)
with self.assertRaises(c.ClientException) as exc_context:
conn.head_account()
self.assertIn('Account HEAD failed', str(exc_context.exception))
self.assertEqual(code, exc_context.exception.http_status)
self.assertEqual(conn.attempts, conn.retries + 1)
# test default no-retry
c.http_connection = self.fake_http_connection(
200, code,
headers=auth_resp_headers)
conn = c.Connection('http://www.test.com/auth/v1.0',
'asdf', 'asdf', retry_on_ratelimit=False)
with self.assertRaises(c.ClientException) as exc_context:
conn.head_account()
self.assertIn('Account HEAD failed', str(exc_context.exception))
self.assertEqual(code, exc_context.exception.http_status)
self.assertEqual(conn.attempts, 1)
retry on ratelimit Added a retry_on_ratelimit parameter to the Connection class so that ratelimited requests can be retried. DocImpact Change-Id: I2817a7ea0ed2d69a7659e80111fbd2c91a75d530
2013-12-23 13:49:46 -08:00
Expand retry handling on ratelimit response We have seen middlewares that return ratelimit responses as 498 or 429, so tolerate either. Closes-Bug: #1879572 Change-Id: I027222157f6c2ad7882a0508302c9de097baae4c
2022-08-10 12:38:54 -05:00
test_status_code(498)
test_status_code(429)
retry on ratelimit Added a retry_on_ratelimit parameter to the Connection class so that ratelimited requests can be retried. DocImpact Change-Id: I2817a7ea0ed2d69a7659e80111fbd2c91a75d530
2013-12-23 13:49:46 -08:00
Add force auth retry mode in swiftclient This patch attemps to add an option to force get_auth call while retrying an operation even if it gets errors other than 401 Unauthorized. Why we need this: The main reason why we need this is current python-swiftclient requests could never get succeeded under certion situation using third party proxies/load balancers between the client and swift-proxy server. I think, it would be general situation of the use case. Specifically describing nginx case, the nginx can close the socket from the client when the response code from swift is not 2xx series. In default, nginx can wait the buffers from the client for a while (default 30s)[1] but after the time past, nginx will close the socket immediately. Unfortunately, if python-swiftclient has still been sending the data into the socket, python-swiftclient will get socket error (EPIPE, BrokenPipe). From the swiftclient perspective, this is absolutely not an auth error, so current python-swiftclient will continue to retry without re-auth. However, if the root cause is sort of 401 (i.e. nginx got 401 unauthorized from the swift-proxy because of token expiration), swiftclient will loop 401 -> EPIPE -> 401... until it consume the max retry times. In particlar, less time to live of the token and multipart object upload with large segments could not get succeeded as below: Connection Model: python-swiftclient -> nginx -> swift-proxy -> swift-backend Case: Try to create slo with large segments and the auth token expired with 1 hour 1. client create a connection to nginx with successful response from swift-proxy and its auth 2. client continue to put large segment objects (e.g. 1~5GB for each and the total would 20~30GB, i.e. 20~30 segments) 3. after some of segments uploaded, 1 hour past but client is still trying to send remaining segment objects. 4. nginx got 401 from swift-proxy for a request and wait that the connection is closed from the client but timeout past because the python-swiftclient is still sending much data into the socket before reading the 401 response. 5. client got socket error because nginx closed the connection during sending the buffer. 6. client retries a new connection to nginx without re-auth... <loop 4-6> 7. finally python-swiftclient failed with socket error (Broken Pipe) In operational perspective, setting longer timeout for lingering close would be an option but it's not complete solution because any other proxy/LB may not support the options. If we actually do THE RIGHT THING in python-swiftclient, we should send expects: 100-continue header and handle the first response to re-auth correctly. HOWEVER, the current python's httplib and requests module used by python-swiftclient doesn't support expects: 100-continue header [2] and the thread proposed a fix [3] is not super active. And we know the reason we depends on the library is to fix a security issue that existed in older python-swiftclient [4] so that we should touch around it super carefully. In the reality, as the hot fix, this patch try to mitigate the unfortunate situation described above WITHOUT 100-continue fix, just users can force to re-auth when any errors occurred during the retries that can be accepted in the upstream. 1: http://nginx.org/en/docs/http/ngx_http_core_module.html#lingering_close 2: https://github.com/requests/requests/issues/713 3: https://bugs.python.org/issue1346874 4: https://review.openstack.org/#/c/69187/ Change-Id: I3470b56e3f9cf9cdb8c2fc2a94b2c551927a3440
2018-03-12 17:54:17 +09:00
def test_retry_with_socket_error(self):
def quick_sleep(*args):
pass
c.sleep = quick_sleep
conn = c.Connection('http://www.test.com', 'asdf', 'asdf')
with mock.patch('swiftclient.client.http_connection') as \
fake_http_connection, \
mock.patch('swiftclient.client.get_auth_1_0') as mock_auth:
mock_auth.return_value = ('http://mock.com', 'mock_token')
fake_http_connection.side_effect = socket.error
self.assertRaises(socket.error, conn.head_account)
self.assertEqual(mock_auth.call_count, 1)
self.assertEqual(conn.attempts, conn.retries + 1)
Retry on SSLError ...provided it isn't something to do with certification validation. Closes-Bug: #1641363 Closes-Bug: #2011731 Change-Id: Ic3acbf431e444fcd8bc0fe79571fe2db4140cf22
2023-03-17 16:14:15 -07:00
def test_no_retry_with_cert_sslerror(self):
def quick_sleep(*args):
pass
c.sleep = quick_sleep
for err in (
# Taken from real testing (requests==2.25.1, urllib3==1.26.5,
# pyOpenSSL==21.0.0) but note that these are actually way more
# messy/wrapped up in other exceptions
SSLError(
'[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: '
'certificate has expired (_ssl.c:997)'),
SSLError(
"hostname 'wrong.host.badssl.com' doesn't match either of "
"'*.badssl.com', 'badssl.com'"),
SSLError(
'[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: '
'self-signed certificate (_ssl.c:997)'),
SSLError(
'[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: '
'self-signed certificate in certificate chain (_ssl.c:997)'),
SSLError(
'[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: '
'unable to get local issuer certificate (_ssl.c:997)'),
SSLError(
'[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: '
'CA signature digest algorithm too weak (_ssl.c:997)'),
):
conn = c.Connection('http://www.test.com', 'asdf', 'asdf')
with self.subTest(err=err), mock.patch(
'swiftclient.client.http_connection') as \
fake_http_connection, \
mock.patch('swiftclient.client.get_auth_1_0') as mock_auth:
mock_auth.return_value = ('http://mock.com', 'mock_token')
fake_http_connection.side_effect = err
self.assertRaises(socket.error, conn.head_account)
self.assertEqual(mock_auth.call_count, 1)
self.assertEqual(conn.attempts, 1)
def test_retry_with_non_cert_sslerror(self):
def quick_sleep(*args):
pass
c.sleep = quick_sleep
conn = c.Connection('http://www.test.com', 'asdf', 'asdf')
with mock.patch('swiftclient.client.http_connection') as \
fake_http_connection, \
mock.patch('swiftclient.client.get_auth_1_0') as mock_auth:
mock_auth.return_value = ('http://mock.com', 'mock_token')
fake_http_connection.side_effect = SSLError(
"HTTPSConnectionPool(host='example.com', port=443): "
"Max retries exceeded with url: /v1/AUTH_test (Caused by "
"SSLError(SSLZeroReturnError(6, 'TLS/SSL connection has "
"been closed (EOF) (_ssl.c:997)')))")
self.assertRaises(socket.error, conn.head_account)
self.assertEqual(mock_auth.call_count, 1)
self.assertEqual(conn.attempts, conn.retries + 1)
Add force auth retry mode in swiftclient This patch attemps to add an option to force get_auth call while retrying an operation even if it gets errors other than 401 Unauthorized. Why we need this: The main reason why we need this is current python-swiftclient requests could never get succeeded under certion situation using third party proxies/load balancers between the client and swift-proxy server. I think, it would be general situation of the use case. Specifically describing nginx case, the nginx can close the socket from the client when the response code from swift is not 2xx series. In default, nginx can wait the buffers from the client for a while (default 30s)[1] but after the time past, nginx will close the socket immediately. Unfortunately, if python-swiftclient has still been sending the data into the socket, python-swiftclient will get socket error (EPIPE, BrokenPipe). From the swiftclient perspective, this is absolutely not an auth error, so current python-swiftclient will continue to retry without re-auth. However, if the root cause is sort of 401 (i.e. nginx got 401 unauthorized from the swift-proxy because of token expiration), swiftclient will loop 401 -> EPIPE -> 401... until it consume the max retry times. In particlar, less time to live of the token and multipart object upload with large segments could not get succeeded as below: Connection Model: python-swiftclient -> nginx -> swift-proxy -> swift-backend Case: Try to create slo with large segments and the auth token expired with 1 hour 1. client create a connection to nginx with successful response from swift-proxy and its auth 2. client continue to put large segment objects (e.g. 1~5GB for each and the total would 20~30GB, i.e. 20~30 segments) 3. after some of segments uploaded, 1 hour past but client is still trying to send remaining segment objects. 4. nginx got 401 from swift-proxy for a request and wait that the connection is closed from the client but timeout past because the python-swiftclient is still sending much data into the socket before reading the 401 response. 5. client got socket error because nginx closed the connection during sending the buffer. 6. client retries a new connection to nginx without re-auth... <loop 4-6> 7. finally python-swiftclient failed with socket error (Broken Pipe) In operational perspective, setting longer timeout for lingering close would be an option but it's not complete solution because any other proxy/LB may not support the options. If we actually do THE RIGHT THING in python-swiftclient, we should send expects: 100-continue header and handle the first response to re-auth correctly. HOWEVER, the current python's httplib and requests module used by python-swiftclient doesn't support expects: 100-continue header [2] and the thread proposed a fix [3] is not super active. And we know the reason we depends on the library is to fix a security issue that existed in older python-swiftclient [4] so that we should touch around it super carefully. In the reality, as the hot fix, this patch try to mitigate the unfortunate situation described above WITHOUT 100-continue fix, just users can force to re-auth when any errors occurred during the retries that can be accepted in the upstream. 1: http://nginx.org/en/docs/http/ngx_http_core_module.html#lingering_close 2: https://github.com/requests/requests/issues/713 3: https://bugs.python.org/issue1346874 4: https://review.openstack.org/#/c/69187/ Change-Id: I3470b56e3f9cf9cdb8c2fc2a94b2c551927a3440
2018-03-12 17:54:17 +09:00
def test_retry_with_force_auth_retry_exceptions(self):
def quick_sleep(*args):
pass
def do_test(exception):
c.sleep = quick_sleep
conn = c.Connection(
'http://www.test.com', 'asdf', 'asdf',
force_auth_retry=True)
with mock.patch('swiftclient.client.http_connection') as \
fake_http_connection, \
mock.patch('swiftclient.client.get_auth_1_0') as mock_auth:
mock_auth.return_value = ('http://mock.com', 'mock_token')
fake_http_connection.side_effect = exception
self.assertRaises(exception, conn.head_account)
self.assertEqual(mock_auth.call_count, conn.retries + 1)
self.assertEqual(conn.attempts, conn.retries + 1)
do_test(socket.error)
do_test(RequestException)
def test_retry_with_force_auth_retry_client_exceptions(self):
def quick_sleep(*args):
pass
def do_test(http_status, count):
def mock_http_connection(*args, **kwargs):
raise ClientException('fake', http_status=http_status)
c.sleep = quick_sleep
conn = c.Connection(
'http://www.test.com', 'asdf', 'asdf',
force_auth_retry=True)
with mock.patch('swiftclient.client.http_connection') as \
fake_http_connection, \
mock.patch('swiftclient.client.get_auth_1_0') as mock_auth:
mock_auth.return_value = ('http://mock.com', 'mock_token')
fake_http_connection.side_effect = mock_http_connection
self.assertRaises(ClientException, conn.head_account)
self.assertEqual(mock_auth.call_count, count)
self.assertEqual(conn.attempts, count)
# sanity, in case of 401, the auth will be called only twice because of
# retried_auth mechanism
do_test(401, 2)
# others will be tried until retry limits
do_test(408, 6)
Retry with fresh socket on 499 Change-Id: I0c22eefb587375997672724c03744c9cda473708
2023-02-15 21:00:51 -08:00
do_test(499, 6)
Add force auth retry mode in swiftclient This patch attemps to add an option to force get_auth call while retrying an operation even if it gets errors other than 401 Unauthorized. Why we need this: The main reason why we need this is current python-swiftclient requests could never get succeeded under certion situation using third party proxies/load balancers between the client and swift-proxy server. I think, it would be general situation of the use case. Specifically describing nginx case, the nginx can close the socket from the client when the response code from swift is not 2xx series. In default, nginx can wait the buffers from the client for a while (default 30s)[1] but after the time past, nginx will close the socket immediately. Unfortunately, if python-swiftclient has still been sending the data into the socket, python-swiftclient will get socket error (EPIPE, BrokenPipe). From the swiftclient perspective, this is absolutely not an auth error, so current python-swiftclient will continue to retry without re-auth. However, if the root cause is sort of 401 (i.e. nginx got 401 unauthorized from the swift-proxy because of token expiration), swiftclient will loop 401 -> EPIPE -> 401... until it consume the max retry times. In particlar, less time to live of the token and multipart object upload with large segments could not get succeeded as below: Connection Model: python-swiftclient -> nginx -> swift-proxy -> swift-backend Case: Try to create slo with large segments and the auth token expired with 1 hour 1. client create a connection to nginx with successful response from swift-proxy and its auth 2. client continue to put large segment objects (e.g. 1~5GB for each and the total would 20~30GB, i.e. 20~30 segments) 3. after some of segments uploaded, 1 hour past but client is still trying to send remaining segment objects. 4. nginx got 401 from swift-proxy for a request and wait that the connection is closed from the client but timeout past because the python-swiftclient is still sending much data into the socket before reading the 401 response. 5. client got socket error because nginx closed the connection during sending the buffer. 6. client retries a new connection to nginx without re-auth... <loop 4-6> 7. finally python-swiftclient failed with socket error (Broken Pipe) In operational perspective, setting longer timeout for lingering close would be an option but it's not complete solution because any other proxy/LB may not support the options. If we actually do THE RIGHT THING in python-swiftclient, we should send expects: 100-continue header and handle the first response to re-auth correctly. HOWEVER, the current python's httplib and requests module used by python-swiftclient doesn't support expects: 100-continue header [2] and the thread proposed a fix [3] is not super active. And we know the reason we depends on the library is to fix a security issue that existed in older python-swiftclient [4] so that we should touch around it super carefully. In the reality, as the hot fix, this patch try to mitigate the unfortunate situation described above WITHOUT 100-continue fix, just users can force to re-auth when any errors occurred during the retries that can be accepted in the upstream. 1: http://nginx.org/en/docs/http/ngx_http_core_module.html#lingering_close 2: https://github.com/requests/requests/issues/713 3: https://bugs.python.org/issue1346874 4: https://review.openstack.org/#/c/69187/ Change-Id: I3470b56e3f9cf9cdb8c2fc2a94b2c551927a3440
2018-03-12 17:54:17 +09:00
do_test(500, 6)
do_test(503, 6)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_resp_read_on_server_error(self):
conn = c.Connection('http://www.test.com', 'asdf', 'asdf', retries=0)
def get_auth(*args, **kwargs):
return 'http://www.new.com', 'new'
conn.get_auth = get_auth
self.url, self.token = conn.get_auth()
method_signatures = (
(conn.head_account, []),
(conn.get_account, []),
(conn.head_container, ('asdf',)),
(conn.get_container, ('asdf',)),
(conn.put_container, ('asdf',)),
(conn.delete_container, ('asdf',)),
(conn.head_object, ('asdf', 'asdf')),
(conn.get_object, ('asdf', 'asdf')),
(conn.put_object, ('asdf', 'asdf', 'asdf')),
(conn.post_object, ('asdf', 'asdf', {})),
(conn.delete_object, ('asdf', 'asdf')),
)
for method, args in method_signatures:
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
c.http_connection = self.fake_http_connection(500)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
self.assertRaises(c.ClientException, method, *args)
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
requests = list(self.iter_request_log())
self.assertEqual(len(requests), 1)
for req in requests:
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
msg = '%s did not read resp on server error' % method.__name__
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertTrue(req['resp'].has_been_read, msg)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_reauth(self):
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
c.http_connection = self.fake_http_connection(401, 200)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def get_auth(*args, **kwargs):
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
# this mock, and by extension this test are not
Fix some typos Change-Id: Iaf7f30a7ae0c2ac76fc5cdcee31ea74c08ce601e
2015-12-29 16:54:05 -08:00
# representative of the unit under test. The real get_auth
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
# method will always return the os_option dict's
# object_storage_url which will be overridden by the
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
# preauthurl parameter to Connection if it is provided.
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
return 'http://www.new.com', 'new'
def swap_sleep(*args):
self.swap_sleep_called = True
c.get_auth = get_auth
c.sleep = swap_sleep
self.swap_sleep_called = False
conn = c.Connection('http://www.test.com', 'asdf', 'asdf',
preauthurl='http://www.old.com',
preauthtoken='old',
Fixed pep8 errors in test directory. Files test_swiftclient.py and utils.py had all pep8 errors fixed. Also added tests directory to tox.ini file, so that pep8 would monitor tests directory by default. Change-Id: Id60a2cd88bd814d1dcbeca951764c9d236500837 Fixes: bug #1158819
2013-03-22 14:59:57 +00:00
)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(conn.attempts, 0)
self.assertEqual(conn.url, 'http://www.old.com')
self.assertEqual(conn.token, 'old')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Switch to flake8. Change-Id: Ib9ba1e7eed09c5a90c558a8365d0a87c3f4b5ee5
2013-04-28 19:16:38 -07:00
conn.head_account()
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
self.assertTrue(self.swap_sleep_called)
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(conn.attempts, 2)
self.assertEqual(conn.url, 'http://www.new.com')
self.assertEqual(conn.token, 'new')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
def test_reauth_preauth(self):
conn = c.Connection(
'http://auth.example.com', 'user', 'password',
preauthurl='http://storage.example.com/v1/AUTH_test',
preauthtoken='expired')
auth_v1_response = StubResponse(200, headers={
'x-auth-token': 'token',
'x-storage-url': 'http://storage.example.com/v1/AUTH_user',
})
fake_conn = self.fake_http_connection(401, auth_v1_response, 200)
with mock.patch.multiple('swiftclient.client',
http_connection=fake_conn,
sleep=mock.DEFAULT):
conn.head_account()
self.assertRequests([
('HEAD', '/v1/AUTH_test', '', {'x-auth-token': 'expired'}),
('GET', 'http://auth.example.com', '', {
'x-auth-user': 'user',
'x-auth-key': 'password'}),
('HEAD', '/v1/AUTH_test', '', {'x-auth-token': 'token'}),
])
def test_reauth_os_preauth(self):
os_preauth_options = {
'tenant_name': 'demo',
'object_storage_url': 'http://storage.example.com/v1/AUTH_test',
'auth_token': 'expired',
}
conn = c.Connection('http://auth.example.com', 'user', 'password',
os_options=os_preauth_options, auth_version=2)
fake_keystone = fake_get_auth_keystone(os_preauth_options)
fake_conn = self.fake_http_connection(401, 200)
with mock.patch.multiple('swiftclient.client',
get_auth_keystone=fake_keystone,
http_connection=fake_conn,
sleep=mock.DEFAULT):
conn.head_account()
self.assertRequests([
('HEAD', '/v1/AUTH_test', '', {'x-auth-token': 'expired'}),
('HEAD', '/v1/AUTH_test', '', {'x-auth-token': 'token'}),
])
Adding keystoneauth sessions support This patch allows authentication in swiftclient with a keystonauth session. Co-Authored-By: Tim Burke <tim@swiftstack.com> Change-Id: Ia3fd947ff619c11ff0ce474897533dcf7b49d9b3 Closes-Bug: 1518938
2016-03-29 19:10:42 +00:00
def test_session_no_invalidate(self):
mock_session = mock.MagicMock()
mock_session.get_endpoint.return_value = 'http://storagehost/v1/acct'
mock_session.get_token.return_value = 'expired'
mock_session.invalidate.return_value = False
conn = c.Connection(session=mock_session)
fake_conn = self.fake_http_connection(401)
with mock.patch.multiple('swiftclient.client',
http_connection=fake_conn,
sleep=mock.DEFAULT):
self.assertRaises(c.ClientException, conn.head_account)
self.assertEqual(mock_session.get_token.mock_calls, [mock.call()])
self.assertEqual(mock_session.invalidate.mock_calls, [mock.call()])
def test_session_can_invalidate(self):
mock_session = mock.MagicMock()
mock_session.get_endpoint.return_value = 'http://storagehost/v1/acct'
mock_session.get_token.side_effect = ['expired', 'token']
mock_session.invalidate.return_value = True
conn = c.Connection(session=mock_session)
fake_conn = self.fake_http_connection(401, 200)
with mock.patch.multiple('swiftclient.client',
http_connection=fake_conn,
sleep=mock.DEFAULT):
conn.head_account()
self.assertRequests([
('HEAD', '/v1/acct', '', {'x-auth-token': 'expired'}),
('HEAD', '/v1/acct', '', {'x-auth-token': 'token'}),
])
self.assertEqual(mock_session.get_token.mock_calls, [
mock.call(), mock.call()])
self.assertEqual(mock_session.invalidate.mock_calls, [mock.call()])
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
def test_preauth_token_with_no_storage_url_requires_auth(self):
conn = c.Connection(
'http://auth.example.com', 'user', 'password',
preauthtoken='expired')
auth_v1_response = StubResponse(200, headers={
'x-auth-token': 'token',
'x-storage-url': 'http://storage.example.com/v1/AUTH_user',
})
fake_conn = self.fake_http_connection(auth_v1_response, 200)
with mock.patch.multiple('swiftclient.client',
http_connection=fake_conn,
sleep=mock.DEFAULT):
conn.head_account()
self.assertRequests([
('GET', 'http://auth.example.com', '', {
'x-auth-user': 'user',
'x-auth-key': 'password'}),
('HEAD', '/v1/AUTH_user', '', {'x-auth-token': 'token'}),
])
def test_os_preauth_token_with_no_storage_url_requires_auth(self):
os_preauth_options = {
'tenant_name': 'demo',
'auth_token': 'expired',
}
conn = c.Connection('http://auth.example.com', 'user', 'password',
os_options=os_preauth_options, auth_version=2)
storage_url = 'http://storage.example.com/v1/AUTH_user'
fake_keystone = fake_get_auth_keystone(storage_url=storage_url)
fake_conn = self.fake_http_connection(200)
with mock.patch.multiple('swiftclient.client',
get_auth_keystone=fake_keystone,
http_connection=fake_conn,
sleep=mock.DEFAULT):
conn.head_account()
self.assertRequests([
('HEAD', '/v1/AUTH_user', '', {'x-auth-token': 'token'}),
])
def test_preauth_url_trumps_auth_url(self):
storage_url = 'http://storage.example.com/v1/AUTH_pre_url'
conn = c.Connection(
'http://auth.example.com', 'user', 'password',
preauthurl=storage_url)
auth_v1_response = StubResponse(200, headers={
'x-auth-token': 'post_token',
'x-storage-url': 'http://storage.example.com/v1/AUTH_post_url',
})
fake_conn = self.fake_http_connection(auth_v1_response, 200)
with mock.patch.multiple('swiftclient.client',
http_connection=fake_conn,
sleep=mock.DEFAULT):
conn.head_account()
self.assertRequests([
('GET', 'http://auth.example.com', '', {
'x-auth-user': 'user',
'x-auth-key': 'password'}),
('HEAD', '/v1/AUTH_pre_url', '', {'x-auth-token': 'post_token'}),
])
def test_os_preauth_url_trumps_auth_url(self):
storage_url = 'http://storage.example.com/v1/AUTH_pre_url'
os_preauth_options = {
'tenant_name': 'demo',
'object_storage_url': storage_url,
}
conn = c.Connection('http://auth.example.com', 'user', 'password',
os_options=os_preauth_options, auth_version=2)
fake_keystone = fake_get_auth_keystone(
storage_url='http://storage.example.com/v1/AUTH_post_url',
token='post_token')
fake_conn = self.fake_http_connection(200)
with mock.patch.multiple('swiftclient.client',
get_auth_keystone=fake_keystone,
http_connection=fake_conn,
sleep=mock.DEFAULT):
conn.head_account()
self.assertRequests([
('HEAD', '/v1/AUTH_pre_url', '', {'x-auth-token': 'post_token'}),
])
Stop Connection class modifying os_options parameter When a caller passes an os_options dict to the Connection class constructor, the constructor may modify the os_options dict, which can surprise the caller if they re-use the os_options dict. Specifically the os_options tenant_name and object_storage_url may be modified, and the changed values would then leak through to a subsequent Connection constructed using the same os_options dict. This fix simply constructs a new dict from the supplied os_options. The patch also adds a test that covers this and also verifies that a preauth_url passed as a keyword arg to Connection() will take precedence over any object_storage_url in an os_options parameter. Closes-Bug: 1488070 Change-Id: Ic6b5cf3ac68c505de155619f2610be9529e15432
2015-08-24 12:34:45 +01:00
def test_preauth_url_trumps_os_preauth_url(self):
storage_url = 'http://storage.example.com/v1/AUTH_pre_url'
os_storage_url = 'http://storage.example.com/v1/AUTH_os_pre_url'
os_preauth_options = {
'tenant_name': 'demo',
'object_storage_url': os_storage_url,
}
orig_os_preauth_options = dict(os_preauth_options)
conn = c.Connection('http://auth.example.com', 'user', 'password',
os_options=os_preauth_options, auth_version=2,
preauthurl=storage_url, tenant_name='not_demo')
fake_keystone = fake_get_auth_keystone(
storage_url='http://storage.example.com/v1/AUTH_post_url',
token='post_token')
fake_conn = self.fake_http_connection(200)
with mock.patch.multiple('swiftclient.client',
get_auth_keystone=fake_keystone,
http_connection=fake_conn,
sleep=mock.DEFAULT):
conn.head_account()
self.assertRequests([
('HEAD', '/v1/AUTH_pre_url', '', {'x-auth-token': 'post_token'}),
])
# check that Connection has not modified our os_options
self.assertEqual(orig_os_preauth_options, os_preauth_options)
make Connection.get_auth set url and token attributes on self When a Connection is first __init__ialized (without providing a preauthurl or preauthtoken), the url and token attributes are None; they get set (to be reused on future requests) after one of the wrapper methods internally using _retry (head_account, get_container, put_object, and similar friends) is called. However, this had not been the case for get_auth, much to the momentary confusion and disappointment of programmers using swiftclient who expected to be able to get the token or storage URL off the Connection object after calling get_auth (perhaps in order to make an unusual kind of request that swiftclient doesn't already have a function for). This commit makes get_auth set the url and token attributes as one might expect. Change-Id: I0d9593eb5b072c8e3fa84f7d5a4c948c0bc6037a
2015-07-24 10:57:29 -07:00
def test_get_auth_sets_url_and_token(self):
with mock.patch('swiftclient.client.get_auth') as mock_get_auth:
mock_get_auth.return_value = (
"https://storage.url/v1/AUTH_storage_acct", "AUTH_token"
)
flake8 ignores same hacks as swift - blacklisted flake8 hacking - fix against E122 continuation line missing indentation or outdented Closes-bug: #1475516 Change-Id: I708d0a3466a1f85c84e478873e142821ce0774cb Signed-off-by: Hiroshi Miura <miurahr@nttdata.co.jp>
2015-07-17 16:16:07 +09:00
conn = c.Connection("https://auth.url/auth/v2.0",
"user", "passkey", tenant_name="tenant")
make Connection.get_auth set url and token attributes on self When a Connection is first __init__ialized (without providing a preauthurl or preauthtoken), the url and token attributes are None; they get set (to be reused on future requests) after one of the wrapper methods internally using _retry (head_account, get_container, put_object, and similar friends) is called. However, this had not been the case for get_auth, much to the momentary confusion and disappointment of programmers using swiftclient who expected to be able to get the token or storage URL off the Connection object after calling get_auth (perhaps in order to make an unusual kind of request that swiftclient doesn't already have a function for). This commit makes get_auth set the url and token attributes as one might expect. Change-Id: I0d9593eb5b072c8e3fa84f7d5a4c948c0bc6037a
2015-07-24 10:57:29 -07:00
conn.get_auth()
self.assertEqual("https://storage.url/v1/AUTH_storage_acct", conn.url)
self.assertEqual("AUTH_token", conn.token)
Use a socket timeout in get_auth A previous change added socket timeouts, but they weren't plumbed through to the get_auth code path. Make sure we're passing them along everywhere. Original-Author: Monty Taylor <mordred@inaugust.com> Change-Id: I398241898248e66d1f8c436c8ed2ec7a0e9387f6 Closes-bug: 1447847
2015-04-26 01:37:15 -06:00
def test_timeout_passed_down(self):
# We want to avoid mocking http_connection(), and most especially
# avoid passing it down in argument. However, we cannot simply
# instantiate C=Connection(), then shim C.http_conn. Doing so would
# avoid some of the code under test (where _retry() invokes
# http_connection()), and would miss get_auth() completely.
# So, with regret, we do mock http_connection(), but with a very
# light shim that swaps out _request() as originally intended.
orig_http_connection = c.http_connection
timeouts = []
def my_request_handler(*a, **kw):
if 'timeout' in kw:
timeouts.append(kw['timeout'])
else:
timeouts.append(None)
return MockHttpResponse(
status=200,
headers={
'x-auth-token': 'a_token',
'x-storage-url': 'http://files.example.com/v1/AUTH_user'})
def shim_connection(*a, **kw):
url, conn = orig_http_connection(*a, **kw)
conn._request = my_request_handler
return url, conn
Add test for timeout being passed to keystone client Extends existing unit test for timeout being passed to get_auth to cover v2.0 auth when keystone client should get the timeout kwarg. Related-Bug: 1447847 Change-Id: Ie9cfc86fa2156b94b45d290ac12e3f71b20d6c4f
2015-04-28 16:56:44 +01:00
# v1 auth
Use a socket timeout in get_auth A previous change added socket timeouts, but they weren't plumbed through to the get_auth code path. Make sure we're passing them along everywhere. Original-Author: Monty Taylor <mordred@inaugust.com> Change-Id: I398241898248e66d1f8c436c8ed2ec7a0e9387f6 Closes-bug: 1447847
2015-04-26 01:37:15 -06:00
conn = c.Connection(
'http://auth.example.com', 'user', 'password', timeout=33.0)
with mock.patch.multiple('swiftclient.client',
http_connection=shim_connection,
sleep=mock.DEFAULT):
conn.head_account()
# 1 call is through get_auth, 1 call is HEAD for account
self.assertEqual(timeouts, [33.0, 33.0])
Add test for timeout being passed to keystone client Extends existing unit test for timeout being passed to get_auth to cover v2.0 auth when keystone client should get the timeout kwarg. Related-Bug: 1447847 Change-Id: Ie9cfc86fa2156b94b45d290ac12e3f71b20d6c4f
2015-04-28 16:56:44 +01:00
# v2 auth
timeouts = []
Accept token and tenant_id for authenticating against KS Allow swiftclient to authenticate against keystone using tenant name/id and token only. Without this patch, the password is required, which may not always be available. Authentication against keystone is required to get the service catalog, which includes the endpoints for swift. Change-Id: I4477af445474c5fa97ff864c4942f1330b59e5d6 Closes-Bug: #1476002
2015-04-12 22:33:57 -05:00
os_options = {'tenant_name': 'tenant', 'auth_token': 'meta-token'}
Add test for timeout being passed to keystone client Extends existing unit test for timeout being passed to get_auth to cover v2.0 auth when keystone client should get the timeout kwarg. Related-Bug: 1447847 Change-Id: Ie9cfc86fa2156b94b45d290ac12e3f71b20d6c4f
2015-04-28 16:56:44 +01:00
conn = c.Connection(
'http://auth.example.com', 'user', 'password', timeout=33.0,
Accept token and tenant_id for authenticating against KS Allow swiftclient to authenticate against keystone using tenant name/id and token only. Without this patch, the password is required, which may not always be available. Authentication against keystone is required to get the service catalog, which includes the endpoints for swift. Change-Id: I4477af445474c5fa97ff864c4942f1330b59e5d6 Closes-Bug: #1476002
2015-04-12 22:33:57 -05:00
os_options=os_options, auth_version=2.0)
Add test for timeout being passed to keystone client Extends existing unit test for timeout being passed to get_auth to cover v2.0 auth when keystone client should get the timeout kwarg. Related-Bug: 1447847 Change-Id: Ie9cfc86fa2156b94b45d290ac12e3f71b20d6c4f
2015-04-28 16:56:44 +01:00
fake_ks = FakeKeystone(endpoint='http://some_url', token='secret')
Stop lazy importing keystoneclient There were two basic problems: - We'd try to import on every attempt at getting auth, even when we already know keystoneclient isn't available. - Sometimes devs would hit some crazy import race involving (some combination of?) greenthreads and OS threads. So let's just try the imports *once*, at import time, and have None sentinels if it fails. Try both versions separately to decouple failures; this should let us support a wider range of keystoneclient versions. Change-Id: I2367310aac74f1b7c5ea0cb1a822a491e4ba8e68
2018-09-07 16:50:10 -07:00
with mock.patch('swiftclient.client.ksclient_v2', fake_ks):
Add test for timeout being passed to keystone client Extends existing unit test for timeout being passed to get_auth to cover v2.0 auth when keystone client should get the timeout kwarg. Related-Bug: 1447847 Change-Id: Ie9cfc86fa2156b94b45d290ac12e3f71b20d6c4f
2015-04-28 16:56:44 +01:00
with mock.patch.multiple('swiftclient.client',
http_connection=shim_connection,
sleep=mock.DEFAULT):
conn.head_account()
# check timeout is passed to keystone client
self.assertEqual(1, len(fake_ks.calls))
self.assertEqual(33.0, fake_ks.calls[0].get('timeout'))
# check timeout passed to HEAD for account
self.assertEqual(timeouts, [33.0])
Accept token and tenant_id for authenticating against KS Allow swiftclient to authenticate against keystone using tenant name/id and token only. Without this patch, the password is required, which may not always be available. Authentication against keystone is required to get the service catalog, which includes the endpoints for swift. Change-Id: I4477af445474c5fa97ff864c4942f1330b59e5d6 Closes-Bug: #1476002
2015-04-12 22:33:57 -05:00
# check token passed to keystone client
self.assertIn('token', fake_ks.calls[0])
self.assertEqual('meta-token', fake_ks.calls[0].get('token'))
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def test_reset_stream(self):
Remove unnecessary object subclassing All classes subclass from object by default in Python 3. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I5a1ad57bcc092861ce969759b06a07c880ad3d35
2022-03-21 18:19:50 +00:00
class LocalContents:
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def __init__(self, tell_value=0):
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
self.data = io.BytesIO(string.ascii_letters.encode() * 10)
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
self.data.seek(tell_value)
self.reads = []
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
self.seeks = []
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
self.tells = []
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def tell(self):
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
self.tells.append(self.data.tell())
return self.tells[-1]
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
def seek(self, position, mode=0):
self.seeks.append((position, mode))
self.data.seek(position, mode)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def read(self, size=-1):
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
read_data = self.data.read(size)
self.reads.append((size, read_data))
return read_data
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Remove unnecessary object subclassing All classes subclass from object by default in Python 3. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I5a1ad57bcc092861ce969759b06a07c880ad3d35
2022-03-21 18:19:50 +00:00
class LocalConnection:
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def __init__(self, parsed_url=None):
self.reason = ""
if parsed_url:
self.host = parsed_url.netloc
self.port = parsed_url.netloc
def putrequest(self, *args, **kwargs):
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
self.send('PUT', *args, **kwargs)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def putheader(self, *args, **kwargs):
return
def endheaders(self, *args, **kwargs):
return
def send(self, *args, **kwargs):
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
data = kwargs.get('data')
if data is not None:
if hasattr(data, 'read'):
data.read()
else:
for datum in data:
pass
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
raise socket.error('oops')
def request(self, *args, **kwargs):
return
def getresponse(self, *args, **kwargs):
self.status = 200
return self
def getheader(self, *args, **kwargs):
return 'header'
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
def getheaders(self):
Fix MockHttpResponse to be more like the Real This change pulls out that relatively new [1] little string to pull at in the MockHttpResponse that I think is sorta ugly. And replaces it with the correct behavior that's representative of the Real for which it's standing in (which is sadly our wrapper to make a requests response feel like a httplib.HTTPResponse). It's not clear (to me) the history which allowed this difference in the behavior of the Real and Fake to persist - it seems to have always been this way [2]. I also reworded a relatively new test [1] to cover more code, and make assertions on the desired behavior of the client instead of "just" the http_log method. FWIW, I don't think there was necessarily anything wrong with the scope of the new test [1] - and it certainly makes sense to see new tests copy nearby existing tests. But I subjectively think this smaller test is more demonstrative of the desired behavior. 1. Related-Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 2. Related-Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7 Change-Id: Ib99a029c1bd1ea1efa8060fe8a11cb01deea41c6
2017-03-07 16:52:51 -08:00
return [('key1', 'value1'), ('key2', 'value2')]
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
def read(self, *args, **kwargs):
return ''
Stop leaking quite so many connections While investigating the failures when you move func tests to py3, I noticed a whole bunch of ResourceWarning: unclosed <socket.socket ...> noise. This should fix it. While we're at it, make get_capabilities less stupid. Change-Id: I3913e9334090b04a78143e0b70f621aad30fc642 Related-Change: I86d24104033b490a35178fc504d88c1e4a566628
2018-06-22 16:49:03 -07:00
def close(self):
pass
Port to python-requests Currently, httplib implementation does not support SSL certificate verification. This patch fixes this. Note that ssl compression parameter and 100-continue thing is still missing from requests, though those are lower priority. Requests now takes care of: * proxy configuration (get_environ_proxies), * chunked encoding (with data generator), * bulk uploading (with files dictionary), * SSL certificate verification (with 'insecure' and 'cacert' parameter). This patch have been tested with requests 1.1.0 (CentOS 6) and requests 2.2.1 (current version). Change-Id: Ib5de962f4102d57c71ad85fd81a615362ef175dc Closes-Bug: #1199783 DocImpact SecurityImpact
2014-01-24 17:40:16 +01:00
def local_http_connection(url, proxy=None, cacert=None,
Support client certificate/key This change enables to specify a client certificate/key with: * usual CLI options (--os-cert/--os-key) * usual environment variables ($OS_CERT/$OS_KEY) Closes-Bug: #1565112 Change-Id: I12e151adcb6084d801c6dfed21d82232a3259aea
2016-04-10 23:18:17 +02:00
insecure=False, cert=None, cert_key=None,
ssl_compression=True, timeout=None):
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
parsed = urlparse(url)
return parsed, LocalConnection()
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
with mock.patch.object(c, 'http_connection', local_http_connection):
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
conn = c.Connection('http://www.example.com', 'asdf', 'asdf',
retries=1, starting_backoff=.0001)
contents = LocalContents()
exc = None
try:
conn.put_object('c', 'o', contents)
Improve Python 3.x compatibility Some mechancical replacement of the deprecated except x,y: construct with except x as y, which works with any Python version >= 2.6 Change-Id: Ic245049dc7b408a5c89b9e27dfd2bd7c08acc5b5
2013-04-25 23:19:52 +02:00
except socket.error as err:
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
exc = err
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
self.assertEqual(contents.tells, [0])
self.assertEqual(contents.seeks, [(0, 0)])
# four reads: two in the initial pass, two in the retry
self.assertEqual(4, len(contents.reads))
self.assertEqual((65536, b''), contents.reads[1])
self.assertEqual((65536, b''), contents.reads[3])
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(str(exc), 'oops')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
contents = LocalContents(tell_value=123)
exc = None
try:
conn.put_object('c', 'o', contents)
Improve Python 3.x compatibility Some mechancical replacement of the deprecated except x,y: construct with except x as y, which works with any Python version >= 2.6 Change-Id: Ic245049dc7b408a5c89b9e27dfd2bd7c08acc5b5
2013-04-25 23:19:52 +02:00
except socket.error as err:
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
exc = err
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
self.assertEqual(contents.tells, [123])
self.assertEqual(contents.seeks, [(123, 0)])
# four reads: two in the initial pass, two in the retry
self.assertEqual(4, len(contents.reads))
self.assertEqual((65536, b''), contents.reads[1])
self.assertEqual((65536, b''), contents.reads[3])
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(str(exc), 'oops')
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Retry file uploads via SwiftService When we introduced LengthWrapper, we neglected to make it resettable. As a result, upload failures result in errors like: put_object(...) failure and no ability to reset contents for reupload. Now, LengthWrappers will be resettable if their _readable has seek/tell. Related-Change: I6c8bc1366dfb591a26d934a30cd21c9e6b9a04ce Change-Id: I21f43f06e8c78b24d1fc081efedf2687942e042f
2015-09-23 10:42:43 -07:00
contents = LocalContents(tell_value=123)
wrapped_contents = swiftclient.utils.LengthWrapper(
contents, 6, md5=True)
exc = None
try:
conn.put_object('c', 'o', wrapped_contents)
except socket.error as err:
exc = err
self.assertEqual(contents.tells, [123])
self.assertEqual(contents.seeks, [(123, 0)])
self.assertEqual(contents.reads, [(6, b'tuvwxy')] * 2)
self.assertEqual(str(exc), 'oops')
self.assertEqual(md5(b'tuvwxy').hexdigest(),
wrapped_contents.get_md5sum())
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
contents = LocalContents()
contents.tell = None
exc = None
try:
conn.put_object('c', 'o', contents)
Improve Python 3.x compatibility Some mechancical replacement of the deprecated except x,y: construct with except x as y, which works with any Python version >= 2.6 Change-Id: Ic245049dc7b408a5c89b9e27dfd2bd7c08acc5b5
2013-04-25 23:19:52 +02:00
except c.ClientException as err:
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
exc = err
assertEquals is deprecated, use assertEqual (H602) Change-Id: I75dac8693c079a153004f77dc1cda48f3ac6f51d
2013-09-30 22:23:28 +02:00
self.assertEqual(contents.seeks, [])
self.assertEqual(str(exc), "put_object('c', 'o', ...) failure "
"and no ability to reset contents for reupload.")
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Add tests and param definitions for headers parameter Cleanups for change I35c3b266b3c733f6b1629de4c683ea7d40128032 Add missing param definitions to client get_container and head_object docstrings. For consistency, add headers parameter to the Connection class head_object and head_container wrapper methods. Add tests to verify that the headers parameter of Connection get_container, head_container and head_object methods is passed to the module functions. Change-Id: Ib40d5b626b2793840727c58cffbf725bea55651f
2015-09-22 11:09:44 +01:00
def test_get_container(self):
headers = {'X-Favourite-Pet': 'Aardvark'}
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200, body=b'{}')):
with mock.patch('swiftclient.client.get_auth',
lambda *a, **k: ('http://url:8080/v1/a', 'token')):
conn = c.Connection()
conn.get_container('c1', prefix='p', limit=5,
headers=headers)
self.assertEqual(1, len(self.request_log), self.request_log)
self.assertRequests([
('GET', '/v1/a/c1?format=json&limit=5&prefix=p', '', {
'x-auth-token': 'token',
'X-Favourite-Pet': 'Aardvark',
Accept gzip-encoded API responses Previously, we would accept gzip-encoded responses, but only because we were letting requests decode *all* responses (even object data). This restores the previous capability, but with tighter controls about which requests will accept gzipped responses and where the decoding happens. Change-Id: I4fd8b97207b9ab01b1bcf825cc16efd8ad46344a Related-Bug: 1282861 Related-Bug: 1338464
2015-05-21 22:44:36 -07:00
'accept-encoding': 'gzip',
Add tests and param definitions for headers parameter Cleanups for change I35c3b266b3c733f6b1629de4c683ea7d40128032 Add missing param definitions to client get_container and head_object docstrings. For consistency, add headers parameter to the Connection class head_object and head_container wrapper methods. Add tests to verify that the headers parameter of Connection get_container, head_container and head_object methods is passed to the module functions. Change-Id: Ib40d5b626b2793840727c58cffbf725bea55651f
2015-09-22 11:09:44 +01:00
}),
])
self.assertEqual(conn.attempts, 1)
def test_head_container(self):
headers = {'X-Favourite-Pet': 'Aardvark'}
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200, body=b'{}')):
with mock.patch('swiftclient.client.get_auth',
lambda *a, **k: ('http://url:8080/v1/a', 'token')):
conn = c.Connection()
conn.head_container('c1', headers=headers)
self.assertEqual(1, len(self.request_log), self.request_log)
self.assertRequests([
('HEAD', '/v1/a/c1', '', {
'x-auth-token': 'token',
'X-Favourite-Pet': 'Aardvark',
}),
])
self.assertEqual(conn.attempts, 1)
def test_head_object(self):
headers = {'X-Favourite-Pet': 'Aardvark'}
Add a query_string option to head_object(). Submitting a path parameter with a HEAD request on an object can be useful if one is trying to find out information about an SLO/DLO without retrieving the manifest. Change-Id: I39efd098e72bd31de271ac51d4d75381929c9638
2018-03-05 17:33:22 -08:00
query_string = 'foo=bar'
Add tests and param definitions for headers parameter Cleanups for change I35c3b266b3c733f6b1629de4c683ea7d40128032 Add missing param definitions to client get_container and head_object docstrings. For consistency, add headers parameter to the Connection class head_object and head_container wrapper methods. Add tests to verify that the headers parameter of Connection get_container, head_container and head_object methods is passed to the module functions. Change-Id: Ib40d5b626b2793840727c58cffbf725bea55651f
2015-09-22 11:09:44 +01:00
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
with mock.patch('swiftclient.client.get_auth',
lambda *a, **k: ('http://url:8080/v1/a', 'token')):
conn = c.Connection()
conn.head_object('c1', 'o1',
Add a query_string option to head_object(). Submitting a path parameter with a HEAD request on an object can be useful if one is trying to find out information about an SLO/DLO without retrieving the manifest. Change-Id: I39efd098e72bd31de271ac51d4d75381929c9638
2018-03-05 17:33:22 -08:00
headers=headers, query_string=query_string)
Add tests and param definitions for headers parameter Cleanups for change I35c3b266b3c733f6b1629de4c683ea7d40128032 Add missing param definitions to client get_container and head_object docstrings. For consistency, add headers parameter to the Connection class head_object and head_container wrapper methods. Add tests to verify that the headers parameter of Connection get_container, head_container and head_object methods is passed to the module functions. Change-Id: Ib40d5b626b2793840727c58cffbf725bea55651f
2015-09-22 11:09:44 +01:00
self.assertEqual(1, len(self.request_log), self.request_log)
self.assertRequests([
Add a query_string option to head_object(). Submitting a path parameter with a HEAD request on an object can be useful if one is trying to find out information about an SLO/DLO without retrieving the manifest. Change-Id: I39efd098e72bd31de271ac51d4d75381929c9638
2018-03-05 17:33:22 -08:00
('HEAD', '/v1/a/c1/o1?foo=bar', '', {
Add tests and param definitions for headers parameter Cleanups for change I35c3b266b3c733f6b1629de4c683ea7d40128032 Add missing param definitions to client get_container and head_object docstrings. For consistency, add headers parameter to the Connection class head_object and head_container wrapper methods. Add tests to verify that the headers parameter of Connection get_container, head_container and head_object methods is passed to the module functions. Change-Id: Ib40d5b626b2793840727c58cffbf725bea55651f
2015-09-22 11:09:44 +01:00
'x-auth-token': 'token',
'X-Favourite-Pet': 'Aardvark',
}),
])
self.assertEqual(conn.attempts, 1)
Rename client to swiftclient.
2012-05-08 15:51:15 +01:00
Fix KeyError raised from client Connection Some client.Connection methods will raise a KeyError if a response_dict argument is passed and an error occurs during authentication or making the request. The fix is straightforward: add a test for existence of a response_dict before attempting to get it from kwargs. The bulk of this patch is adding unit tests for the response_dict feature. Closes-Bug: 1381304 Change-Id: Ic7e1b3dfae33909533931c52ac97355867a08a07
2014-10-15 18:56:58 +01:00
class TestResponseDict(MockHttpTest):
"""
Verify handling of optional response_dict argument.
"""
Use bulk-delete middleware when available When issuing `delete` commands that would require three or more individual deletes, check whether the cluster supports bulk deletes and use that if it's available. Additionally, a new option is added to the `delete` command: * --prefix <prefix> Delete all objects that start with <prefix>. This is similar to the --prefix option for the `list` command. Example: $ swift delete c --prefix obj_prefix/ ...will delete from container "c" all objects whose name begins with "obj_prefix/", such as "obj_prefix/foo" and "obj_prefix/bar". Change-Id: I6b9504848d6ef562cf4f570bbcd17db4e3da8264
2015-06-11 14:33:39 -07:00
calls = [('post_account', {}),
('post_container', 'c', {}),
Fix KeyError raised from client Connection Some client.Connection methods will raise a KeyError if a response_dict argument is passed and an error occurs during authentication or making the request. The fix is straightforward: add a test for existence of a response_dict before attempting to get it from kwargs. The bulk of this patch is adding unit tests for the response_dict feature. Closes-Bug: 1381304 Change-Id: Ic7e1b3dfae33909533931c52ac97355867a08a07
2014-10-15 18:56:58 +01:00
('put_container', 'c'),
('delete_container', 'c'),
('post_object', 'c', 'o', {}),
('put_object', 'c', 'o', 'body'),
Add copy object method Implement copy object method in swiftclient Connection, Service and CLI. Although COPY functionality can be accomplished with 'X-Copy-From' header in PUT request, using copy is more convenient especially when using copy for updating object metadata non-destructively. Closes-Bug: 1474939 Change-Id: I1338ac411f418f4adb3d06753d044a484a7f32a4
2016-02-15 12:14:17 +01:00
('copy_object', 'c', 'o'),
Fix KeyError raised from client Connection Some client.Connection methods will raise a KeyError if a response_dict argument is passed and an error occurs during authentication or making the request. The fix is straightforward: add a test for existence of a response_dict before attempting to get it from kwargs. The bulk of this patch is adding unit tests for the response_dict feature. Closes-Bug: 1381304 Change-Id: Ic7e1b3dfae33909533931c52ac97355867a08a07
2014-10-15 18:56:58 +01:00
('delete_object', 'c', 'o')]
def fake_get_auth(*args, **kwargs):
return 'http://url', 'token'
def test_response_dict_with_auth_error(self):
def bad_get_auth(*args, **kwargs):
raise c.ClientException('test')
for call in self.calls:
resp_dict = {'test': 'should be untouched'}
with mock.patch('swiftclient.client.get_auth',
bad_get_auth):
conn = c.Connection('http://127.0.0.1:8080', 'user', 'key')
self.assertRaises(c.ClientException, getattr(conn, call[0]),
*call[1:], response_dict=resp_dict)
self.assertEqual({'test': 'should be untouched'}, resp_dict)
def test_response_dict_with_request_error(self):
for call in self.calls:
resp_dict = {'test': 'should be untouched'}
with mock.patch('swiftclient.client.get_auth',
self.fake_get_auth):
exc = c.ClientException('test')
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200, exc=exc)):
conn = c.Connection('http://127.0.0.1:8080', 'user', 'key')
self.assertRaises(c.ClientException,
getattr(conn, call[0]),
*call[1:],
response_dict=resp_dict)
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('should be untouched', resp_dict.get('test'))
self.assertEqual([{}], resp_dict.get('response_dicts'))
Fix KeyError raised from client Connection Some client.Connection methods will raise a KeyError if a response_dict argument is passed and an error occurs during authentication or making the request. The fix is straightforward: add a test for existence of a response_dict before attempting to get it from kwargs. The bulk of this patch is adding unit tests for the response_dict feature. Closes-Bug: 1381304 Change-Id: Ic7e1b3dfae33909533931c52ac97355867a08a07
2014-10-15 18:56:58 +01:00
def test_response_dict(self):
# test response_dict is populated and
# new list of response_dicts is created
for call in self.calls:
resp_dict = {'test': 'should be untouched'}
with mock.patch('swiftclient.client.get_auth',
self.fake_get_auth):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = c.Connection('http://127.0.0.1:8080', 'user', 'key')
getattr(conn, call[0])(*call[1:], response_dict=resp_dict)
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('should be untouched',
resp_dict.pop('test', None))
self.assertEqual('Fake', resp_dict.get('reason'))
self.assertEqual(200, resp_dict.get('status'))
self.assertIn('headers', resp_dict)
self.assertEqual('yes', resp_dict['headers'].get('x-works'))
children = resp_dict.pop('response_dicts', [])
Fix KeyError raised from client Connection Some client.Connection methods will raise a KeyError if a response_dict argument is passed and an error occurs during authentication or making the request. The fix is straightforward: add a test for existence of a response_dict before attempting to get it from kwargs. The bulk of this patch is adding unit tests for the response_dict feature. Closes-Bug: 1381304 Change-Id: Ic7e1b3dfae33909533931c52ac97355867a08a07
2014-10-15 18:56:58 +01:00
self.assertEqual(1, len(children))
self.assertEqual(resp_dict, children[0])
def test_response_dict_with_existing(self):
# check response_dict is populated and new dict is appended
# to existing response_dicts list
for call in self.calls:
resp_dict = {'test': 'should be untouched',
'response_dicts': [{'existing': 'response dict'}]}
with mock.patch('swiftclient.client.get_auth',
self.fake_get_auth):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = c.Connection('http://127.0.0.1:8080', 'user', 'key')
getattr(conn, call[0])(*call[1:], response_dict=resp_dict)
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('should be untouched',
resp_dict.pop('test', None))
self.assertEqual('Fake', resp_dict.get('reason'))
self.assertEqual(200, resp_dict.get('status'))
self.assertIn('headers', resp_dict)
self.assertEqual('yes', resp_dict['headers'].get('x-works'))
children = resp_dict.pop('response_dicts', [])
Fix KeyError raised from client Connection Some client.Connection methods will raise a KeyError if a response_dict argument is passed and an error occurs during authentication or making the request. The fix is straightforward: add a test for existence of a response_dict before attempting to get it from kwargs. The bulk of this patch is adding unit tests for the response_dict feature. Closes-Bug: 1381304 Change-Id: Ic7e1b3dfae33909533931c52ac97355867a08a07
2014-10-15 18:56:58 +01:00
self.assertEqual(2, len(children))
self.assertEqual({'existing': 'response dict'}, children[0])
self.assertEqual(resp_dict, children[1])
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
class TestLogging(MockHttpTest):
"""
Make sure all the lines in http_log are covered.
"""
def setUp(self):
super(TestLogging, self).setUp()
self.swiftclient_logger = logging.getLogger("swiftclient")
self.log_level = self.swiftclient_logger.getEffectiveLevel()
self.swiftclient_logger.setLevel(logging.INFO)
def tearDown(self):
self.swiftclient_logger.setLevel(self.log_level)
super(TestLogging, self).tearDown()
def test_put_ok(self):
c.http_connection = self.fake_http_connection(200)
args = ('http://www.test.com', 'asdf', 'asdf', 'asdf', 'asdf')
value = c.put_object(*args)
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
self.assertIsInstance(value, str)
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
def test_head_error(self):
c.http_connection = self.fake_http_connection(500)
self.assertRaises(c.ClientException, c.head_object,
'http://www.test.com', 'asdf', 'asdf', 'asdf')
def test_get_error(self):
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
c.http_connection = self.fake_http_connection(404)
Drop testtools from test-requirements.txt My understanding is that it was mainly being used so we could have sane testing on py26. With py26 support being dropped, we no longer need it. Also drop discover from test-requirements.txt, as we don't seem to actually use it. Change-Id: Iee04c42890596d3b483c1473169480a3ae19aac8 Related-Change: I37116731db11449d0c374a6a83a3a43789a19d5f
2015-12-04 11:28:05 -08:00
with self.assertRaises(c.ClientException) as exc_context:
c.get_object('http://www.test.com', 'asdf', 'asdf', 'asdf')
self.assertEqual(exc_context.exception.http_status, 404)
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
Fix MockHttpResponse to be more like the Real This change pulls out that relatively new [1] little string to pull at in the MockHttpResponse that I think is sorta ugly. And replaces it with the correct behavior that's representative of the Real for which it's standing in (which is sadly our wrapper to make a requests response feel like a httplib.HTTPResponse). It's not clear (to me) the history which allowed this difference in the behavior of the Real and Fake to persist - it seems to have always been this way [2]. I also reworded a relatively new test [1] to cover more code, and make assertions on the desired behavior of the client instead of "just" the http_log method. FWIW, I don't think there was necessarily anything wrong with the scope of the new test [1] - and it certainly makes sense to see new tests copy nearby existing tests. But I subjectively think this smaller test is more demonstrative of the desired behavior. 1. Related-Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 2. Related-Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7 Change-Id: Ib99a029c1bd1ea1efa8060fe8a11cb01deea41c6
2017-03-07 16:52:51 -08:00
def test_content_encoding_gzip_body_is_logged_decoded(self):
Remove six This mostly affects tests. Nothing too complicated Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: Iabc78f651e1d48db35638280722f8019798eccd6
2022-02-17 11:37:13 +00:00
buf = io.BytesIO()
Fix MockHttpResponse to be more like the Real This change pulls out that relatively new [1] little string to pull at in the MockHttpResponse that I think is sorta ugly. And replaces it with the correct behavior that's representative of the Real for which it's standing in (which is sadly our wrapper to make a requests response feel like a httplib.HTTPResponse). It's not clear (to me) the history which allowed this difference in the behavior of the Real and Fake to persist - it seems to have always been this way [2]. I also reworded a relatively new test [1] to cover more code, and make assertions on the desired behavior of the client instead of "just" the http_log method. FWIW, I don't think there was necessarily anything wrong with the scope of the new test [1] - and it certainly makes sense to see new tests copy nearby existing tests. But I subjectively think this smaller test is more demonstrative of the desired behavior. 1. Related-Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 2. Related-Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7 Change-Id: Ib99a029c1bd1ea1efa8060fe8a11cb01deea41c6
2017-03-07 16:52:51 -08:00
gz = gzip.GzipFile(fileobj=buf, mode='w')
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
data = {"test": "\u2603"}
Fix MockHttpResponse to be more like the Real This change pulls out that relatively new [1] little string to pull at in the MockHttpResponse that I think is sorta ugly. And replaces it with the correct behavior that's representative of the Real for which it's standing in (which is sadly our wrapper to make a requests response feel like a httplib.HTTPResponse). It's not clear (to me) the history which allowed this difference in the behavior of the Real and Fake to persist - it seems to have always been this way [2]. I also reworded a relatively new test [1] to cover more code, and make assertions on the desired behavior of the client instead of "just" the http_log method. FWIW, I don't think there was necessarily anything wrong with the scope of the new test [1] - and it certainly makes sense to see new tests copy nearby existing tests. But I subjectively think this smaller test is more demonstrative of the desired behavior. 1. Related-Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 2. Related-Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7 Change-Id: Ib99a029c1bd1ea1efa8060fe8a11cb01deea41c6
2017-03-07 16:52:51 -08:00
decoded_body = json.dumps(data).encode('utf-8')
gz.write(decoded_body)
gz.close()
# stub a gzip encoded body
body = buf.getvalue()
headers = {'content-encoding': 'gzip'}
# ... and make a content-encoding gzip error response
stub_response = StubResponse(500, body, headers)
with mock.patch('swiftclient.client.logger.info') as mock_log:
# ... if the client gets such a response
c.http_connection = self.fake_http_connection(stub_response)
with self.assertRaises(c.ClientException) as exc_context:
c.get_object('http://www.test.com', 'asdf', 'asdf', 'asdf')
self.assertEqual(exc_context.exception.http_status, 500)
# it will log the decoded body
self.assertEqual([
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
mock.call('REQ: %s', 'curl -i http://www.test.com/asdf/asdf '
Fix MockHttpResponse to be more like the Real This change pulls out that relatively new [1] little string to pull at in the MockHttpResponse that I think is sorta ugly. And replaces it with the correct behavior that's representative of the Real for which it's standing in (which is sadly our wrapper to make a requests response feel like a httplib.HTTPResponse). It's not clear (to me) the history which allowed this difference in the behavior of the Real and Fake to persist - it seems to have always been this way [2]. I also reworded a relatively new test [1] to cover more code, and make assertions on the desired behavior of the client instead of "just" the http_log method. FWIW, I don't think there was necessarily anything wrong with the scope of the new test [1] - and it certainly makes sense to see new tests copy nearby existing tests. But I subjectively think this smaller test is more demonstrative of the desired behavior. 1. Related-Change-Id: I6d7ccbf4ef9b46e890ecec58842c5cdd2804c7a9 2. Related-Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7 Change-Id: Ib99a029c1bd1ea1efa8060fe8a11cb01deea41c6
2017-03-07 16:52:51 -08:00
'-X GET -H "X-Auth-Token: ..."'),
mock.call('RESP STATUS: %s %s', 500, 'Fake'),
mock.call('RESP HEADERS: %s', {'content-encoding': 'gzip'}),
mock.call('RESP BODY: %s', decoded_body)
], mock_log.mock_calls)
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
def test_redact_token(self):
with mock.patch('swiftclient.client.logger.debug') as mock_log:
token_value = 'tkee96b40a8ca44fc5ad72ec5a7c90d9b'
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
token_encoded = token_value.encode('utf8')
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
unicode_token_value = ('\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91'
'\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91'
'\u5929\u7a7a\u4e2d\u7684\u4e4c')
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
unicode_token_encoded = unicode_token_value.encode('utf8')
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
set_cookie_value = 'X-Auth-Token=%s' % token_value
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
set_cookie_encoded = set_cookie_value.encode('utf8')
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
c.http_log(
['GET'],
{'headers': {
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
'X-Auth-Token': token_encoded,
'X-Storage-Token': unicode_token_encoded
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
}},
MockHttpResponse(
status=200,
headers={
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
'X-Auth-Token': token_encoded,
'X-Storage-Token': unicode_token_encoded,
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
'Etag': b'mock_etag',
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
'Set-Cookie': set_cookie_encoded
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
}
),
''
)
out = []
for _, args, kwargs in mock_log.mock_calls:
for arg in args:
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
out.append('%s' % arg)
output = ''.join(out)
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
self.assertIn('X-Auth-Token', output)
self.assertIn(token_value[:16] + '...', output)
self.assertIn('X-Storage-Token', output)
self.assertIn(unicode_token_value[:8] + '...', output)
self.assertIn('Set-Cookie', output)
self.assertIn(set_cookie_value[:16] + '...', output)
self.assertNotIn(token_value, output)
self.assertNotIn(unicode_token_value, output)
self.assertNotIn(set_cookie_value, output)
def test_show_token(self):
with mock.patch('swiftclient.client.logger.debug') as mock_log:
token_value = 'tkee96b40a8ca44fc5ad72ec5a7c90d9b'
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
token_encoded = token_value.encode('utf8')
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
unicode_token_value = ('\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91'
'\u5929\u7a7a\u4e2d\u7684\u4e4c\u4e91'
'\u5929\u7a7a\u4e2d\u7684\u4e4c')
Follow-up to patch 282363 * Improve some formatting * Be more explicit about how much will be revealed when * Rename redact_sensitive_tokens to redact_sensitive_headers, as it affects more than tokens. Change-Id: I02b375d914e9f0a210d038ecb31188d09a8ffce3
2016-02-24 16:56:55 -08:00
c.logger_settings['redact_sensitive_headers'] = False
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
unicode_token_encoded = unicode_token_value.encode('utf8')
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
c.http_log(
['GET'],
{'headers': {
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
'X-Auth-Token': token_encoded,
'X-Storage-Token': unicode_token_encoded
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
}},
MockHttpResponse(
status=200,
headers=[
Fix test for redacting sensitive data in client.http_log() The test should have included utf8 encoded unicode data to test that encoded unicode data stored in headers was parsed correctly. Also fixes the docstring for swiftclient.safe_value() Change-Id: Id0def0b3af7a364f1257cc22f67b71c0cc5d8479
2016-02-25 17:13:35 +00:00
('X-Auth-Token', token_encoded),
('X-Storage-Token', unicode_token_encoded),
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
('Etag', b'mock_etag')
]
),
''
)
out = []
for _, args, kwargs in mock_log.mock_calls:
for arg in args:
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
out.append('%s' % arg)
output = ''.join(out)
Do not reveal auth token in swiftclient log messages by default Currently the swiftclient logs sensitive info in headers when logging HTTP requests. This patch hides sensitive info in headers such as 'X-Auth-Token' in a similar way to swift itself (we add a 'reveal_sensitive_prefix' configuration to the client). With this patch, tokens are truncated by removing the specified number of characters, after which '...' is appended to the logged token to indicate that it has been redacted. Co-Authored-By: Li Cheng <shcli@cn.ibm.com> Co-Authored-By: Zack M. Davis <zdavis@swiftstack.com> Change-Id: I43dd7254f7281d4db59b286aa2145643c64e1705 Closes-bug: #1516692
2016-02-19 13:18:15 +00:00
self.assertIn('X-Auth-Token', output)
self.assertIn(token_value, output)
self.assertIn('X-Storage-Token', output)
self.assertIn(unicode_token_value, output)
Properly handle unicode headers. Fix unicode handling in Python 3 and Python 2. There are currently two failure modes. In python 2, swiftclient fails to log in debug mode if the account name has a non-ASCII character. This is because the account name will appear in the storage URL, which we attempt to pass to the logger as a byte string (whereas it should be a unicode string). This patch changes the behavior to convert the path strings into unicode by calling the parse_header_string() function. The second failure mode is with Python 3, where http_lib returns headers that are latin-1 encoded, but swiftclient expects UTF-8. The patch automatically converts headers from latin-1 (iso-8859-1) to UTF-8, so that we can properly handle non-ASCII headers in responses. Change-Id: Ifa7f3d5af71bde8127129f1f8603772d80d063c1
2018-04-17 14:36:57 -07:00
@mock.patch('swiftclient.client.logger.debug')
def test_unicode_path(self, mock_log):
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
path = 'http://swift/v1/AUTH_account-\u062a'.encode('utf-8')
Properly handle unicode headers. Fix unicode handling in Python 3 and Python 2. There are currently two failure modes. In python 2, swiftclient fails to log in debug mode if the account name has a non-ASCII character. This is because the account name will appear in the storage URL, which we attempt to pass to the logger as a byte string (whereas it should be a unicode string). This patch changes the behavior to convert the path strings into unicode by calling the parse_header_string() function. The second failure mode is with Python 3, where http_lib returns headers that are latin-1 encoded, but swiftclient expects UTF-8. The patch automatically converts headers from latin-1 (iso-8859-1) to UTF-8, so that we can properly handle non-ASCII headers in responses. Change-Id: Ifa7f3d5af71bde8127129f1f8603772d80d063c1
2018-04-17 14:36:57 -07:00
c.http_log(['GET', path], {},
MockHttpResponse(status=200, headers=[]), '')
request_log_line = mock_log.mock_calls[0]
self.assertEqual('REQ: %s', request_log_line[1][0])
Remove unnecessary unicode prefixes All strings are unicode by default in Python 3. No need to mark them as such. Signed-off-by: Stephen Finucane <stephenfin@redhat.com> Change-Id: I68fb60ef271abfddebcc9d2137424f5db2a17e92
2022-03-21 18:17:41 +00:00
self.assertEqual('curl -i -X GET %s' % path.decode('utf-8'),
Properly handle unicode headers. Fix unicode handling in Python 3 and Python 2. There are currently two failure modes. In python 2, swiftclient fails to log in debug mode if the account name has a non-ASCII character. This is because the account name will appear in the storage URL, which we attempt to pass to the logger as a byte string (whereas it should be a unicode string). This patch changes the behavior to convert the path strings into unicode by calling the parse_header_string() function. The second failure mode is with Python 3, where http_lib returns headers that are latin-1 encoded, but swiftclient expects UTF-8. The patch automatically converts headers from latin-1 (iso-8859-1) to UTF-8, so that we can properly handle non-ASCII headers in responses. Change-Id: Ifa7f3d5af71bde8127129f1f8603772d80d063c1
2018-04-17 14:36:57 -07:00
request_log_line[1][1])
enhance swiftclient logging * log to debug for successes and info for errors * remove dead code, neither body or raw_body are sent in kwargs * include resp.reason and response headers in logging * remove trailing \n in logging. users who want them can set logging.basicConfig(format=FORMAT) * add --info option to swift cli Change-Id: If07af46cb377f3f3d70f6c4284037241d360a8b7
2013-10-15 09:46:46 -07:00
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004
2013-10-17 11:12:06 +08:00
class TestCloseConnection(MockHttpTest):
def test_close_none(self):
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
c.http_connection = self.fake_http_connection()
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004
2013-10-17 11:12:06 +08:00
conn = c.Connection('http://www.test.com', 'asdf', 'asdf')
Replace assertEqual(arg, None) with assertIsNone(arg) In python-swiftclient some test cases using asserEqual(arg, None) instead of assertIsNone(arg).assertIsNone method provides clear error message. Change-Id: I4d673ede0965408344325c9c234c5c4b1ae4146a Closes-Bug: #1527556
2015-12-30 17:20:35 +05:30
self.assertIsNone(conn.http_conn)
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004
2013-10-17 11:12:06 +08:00
conn.close()
Replace assertEqual(arg, None) with assertIsNone(arg) In python-swiftclient some test cases using asserEqual(arg, None) instead of assertIsNone(arg).assertIsNone method provides clear error message. Change-Id: I4d673ede0965408344325c9c234c5c4b1ae4146a Closes-Bug: #1527556
2015-12-30 17:20:35 +05:30
self.assertIsNone(conn.http_conn)
Stop leaking quite so many connections While investigating the failures when you move func tests to py3, I noticed a whole bunch of ResourceWarning: unclosed <socket.socket ...> noise. This should fix it. While we're at it, make get_capabilities less stupid. Change-Id: I3913e9334090b04a78143e0b70f621aad30fc642 Related-Change: I86d24104033b490a35178fc504d88c1e4a566628
2018-06-22 16:49:03 -07:00
# Can re-close
conn.close()
self.assertIsNone(conn.http_conn)
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004
2013-10-17 11:12:06 +08:00
def test_close_ok(self):
url = 'http://www.test.com'
conn = c.Connection(url, 'asdf', 'asdf')
Replace assertEqual(arg, None) with assertIsNone(arg) In python-swiftclient some test cases using asserEqual(arg, None) instead of assertIsNone(arg).assertIsNone method provides clear error message. Change-Id: I4d673ede0965408344325c9c234c5c4b1ae4146a Closes-Bug: #1527556
2015-12-30 17:20:35 +05:30
self.assertIsNone(conn.http_conn)
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004
2013-10-17 11:12:06 +08:00
conn.http_conn = c.http_connection(url)
lint: Up-rev hacking Without up-reving hacking python 3.12 can't be used for pep8/flake8 checks. Also address a few new pyflakes issues that seem reasonable to enforce: E275 missing whitespace after keyword H214 Use assertIn/NotIn(A, B) rather than assertTrue/False(A in/not in B) H211 do not compare types, use assert{Is,IsNot}Instance Add F811 (redefinition of unused 'function'), as this check makes client.py fail. And noqa some longer lines that we're happy to carry. Change-Id: Ic97698a310ffe7114b668b8c4bc0195f6997bb45
2024-02-20 16:21:50 +11:00
self.assertIsInstance(conn.http_conn, tuple)
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004
2013-10-17 11:12:06 +08:00
self.assertEqual(len(conn.http_conn), 2)
http_conn_obj = conn.http_conn[1]
Make preauth params work If you specify a token and storage url when creating a Connection, regardless of the auth api version the first request will be made directly to swift. You can either provide a preauthurl and preauthtoken or fall back to os_options' object_storage_url and auth_token keys (exposed as --os-storage-url and --os-auth-token on the command line or OS_STORAGE_URL and OS_AUTH_TOKEN in the environment). If a _retry wrapped request on a Connection fails because of invalid authentication (401) the Connection's cached token and url will be invalidated. If the Connection's retries attribute is > 0 the subsequent attempt will call get_auth to refresh the token, but the pre-configured storage_url will always be re-used. This is consistent with current auth v2 behavior and less surprising for auth v1. The pre-existing, but previously undocumented behavior/interface of get_auth would override the storage_url returned by the auth service if the 'os_storage_url' option was provided in the os_options dict. To ensure that this behavior is consistent across auth v1 and v2 from the command line and when using the Connection class as a library - the preauthurl is stashed in the os_options dict when provided. Improved Connection.get_capabilities storage_url handling to better support the consistent behavior of a preauthurl/object_storage_url on the connection regardless of auth version. Fixed up some test infrastructure to enable setting up and testing multiple requests/responses. Change-Id: I6950fb73f3e28fdddb62760cae9320e2f4336776
2014-10-24 01:02:53 -07:00
self.assertIsInstance(http_conn_obj, c.HTTPConnection)
Stop leaking quite so many connections While investigating the failures when you move func tests to py3, I noticed a whole bunch of ResourceWarning: unclosed <socket.socket ...> noise. This should fix it. While we're at it, make get_capabilities less stupid. Change-Id: I3913e9334090b04a78143e0b70f621aad30fc642 Related-Change: I86d24104033b490a35178fc504d88c1e4a566628
2018-06-22 16:49:03 -07:00
self.assertTrue(hasattr(http_conn_obj, 'close'))
Add close to swiftclient.client.Connection Change-Id: I2f5fa9c46886607a9ba99e8915ea84ac4975d004
2013-10-17 11:12:06 +08:00
conn.close()
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
class TestServiceToken(MockHttpTest):
def setUp(self):
super(TestServiceToken, self).setUp()
self.os_options = {
'object_storage_url': 'http://storage_url.com',
'service_username': 'service_username',
'service_project_name': 'service_project_name',
'service_key': 'service_key'}
def get_connection(self):
conn = c.Connection('http://www.test.com', 'asdf', 'asdf',
os_options=self.os_options)
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertIs(type(conn), c.Connection)
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
conn.get_auth = self.get_auth
conn.get_service_auth = self.get_service_auth
self.assertEqual(conn.attempts, 0)
Replace assertEqual(arg, None) with assertIsNone(arg) In python-swiftclient some test cases using asserEqual(arg, None) instead of assertIsNone(arg).assertIsNone method provides clear error message. Change-Id: I4d673ede0965408344325c9c234c5c4b1ae4146a Closes-Bug: #1527556
2015-12-30 17:20:35 +05:30
self.assertIsNone(conn.service_token)
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertIs(type(conn), c.Connection)
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
return conn
def get_auth(self):
# The real get_auth function will always return the os_option
# dict's object_storage_url which will be overridden by the
Fix some typos Change-Id: Iaf7f30a7ae0c2ac76fc5cdcee31ea74c08ce601e
2015-12-29 16:54:05 -08:00
# preauthurl parameter to Connection if it is provided.
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
return self.os_options.get('object_storage_url'), 'token'
def get_service_auth(self):
# The real get_auth function will always return the os_option
# dict's object_storage_url which will be overridden by the
# preauthurl parameter to Connection if it is provided.
return self.os_options.get('object_storage_url'), 'stoken'
def test_service_token_reauth(self):
get_auth_call_list = []
def get_auth(url, user, key, **kwargs):
# The real get_auth function will always return the os_option
# dict's object_storage_url which will be overridden by the
# preauthurl parameter to Connection if it is provided.
args = {'url': url, 'user': user, 'key': key, 'kwargs': kwargs}
get_auth_call_list.append(args)
return_dict = {'asdf': 'new', 'service_username': 'newserv'}
storage_url = kwargs['os_options'].get('object_storage_url')
return storage_url, return_dict[user]
def swap_sleep(*args):
self.swap_sleep_called = True
c.get_auth = get_auth
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(401, 200)):
with mock.patch('swiftclient.client.sleep', swap_sleep):
self.swap_sleep_called = False
conn = c.Connection('http://www.test.com', 'asdf', 'asdf',
preauthurl='http://www.old.com',
preauthtoken='old',
os_options=self.os_options)
self.assertEqual(conn.attempts, 0)
self.assertEqual(conn.url, 'http://www.old.com')
self.assertEqual(conn.token, 'old')
conn.head_account()
self.assertTrue(self.swap_sleep_called)
self.assertEqual(conn.attempts, 2)
# The original 'preauth' storage URL *must* be preserved
self.assertEqual(conn.url, 'http://www.old.com')
self.assertEqual(conn.token, 'new')
self.assertEqual(conn.service_token, 'newserv')
# Check get_auth was called with expected args
auth_args = get_auth_call_list[0]
auth_kwargs = get_auth_call_list[0]['kwargs']
self.assertEqual('asdf', auth_args['user'])
self.assertEqual('asdf', auth_args['key'])
self.assertEqual('service_key',
auth_kwargs['os_options']['service_key'])
self.assertEqual('service_username',
auth_kwargs['os_options']['service_username'])
self.assertEqual('service_project_name',
auth_kwargs['os_options']['service_project_name'])
auth_args = get_auth_call_list[1]
auth_kwargs = get_auth_call_list[1]['kwargs']
self.assertEqual('service_username', auth_args['user'])
self.assertEqual('service_key', auth_args['key'])
self.assertEqual('service_project_name',
auth_kwargs['os_options']['tenant_name'])
client: renew token on 401 even if retries is 0 Gnocchi uses a client with retries=0 to maximize throughtput and not retry N times on e.g. 404 when checking existence of an object. However, this as the side effect of never renewing the token since there' no retry on 401 either. This patches change the behavior so that 401 errors are always retried, whatever the retries value is. Closes-Bug: #1589926 Change-Id: Ie06adf4cf17ea4592b5bbd7bbde9828e5e134e3e
2016-06-07 15:49:32 +02:00
def test_service_token_reauth_retries_0(self):
get_auth_call_list = []
def get_auth(url, user, key, **kwargs):
# The real get_auth function will always return the os_option
# dict's object_storage_url which will be overridden by the
# preauthurl parameter to Connection if it is provided.
args = {'url': url, 'user': user, 'key': key, 'kwargs': kwargs}
get_auth_call_list.append(args)
return_dict = {'asdf': 'new', 'service_username': 'newserv'}
storage_url = kwargs['os_options'].get('object_storage_url')
return storage_url, return_dict[user]
def swap_sleep(*args):
self.swap_sleep_called = True
c.get_auth = get_auth
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(401, 200)):
with mock.patch('swiftclient.client.sleep', swap_sleep):
self.swap_sleep_called = False
conn = c.Connection('http://www.test.com', 'asdf', 'asdf',
preauthurl='http://www.old.com',
preauthtoken='old',
os_options=self.os_options,
retries=0)
self.assertEqual(conn.attempts, 0)
self.assertEqual(conn.url, 'http://www.old.com')
self.assertEqual(conn.token, 'old')
conn.head_account()
self.assertTrue(self.swap_sleep_called)
self.assertEqual(conn.attempts, 2)
# The original 'preauth' storage URL *must* be preserved
self.assertEqual(conn.url, 'http://www.old.com')
self.assertEqual(conn.token, 'new')
self.assertEqual(conn.service_token, 'newserv')
# Check get_auth was called with expected args
auth_args = get_auth_call_list[0]
auth_kwargs = get_auth_call_list[0]['kwargs']
self.assertEqual('asdf', auth_args['user'])
self.assertEqual('asdf', auth_args['key'])
self.assertEqual('service_key',
auth_kwargs['os_options']['service_key'])
self.assertEqual('service_username',
auth_kwargs['os_options']['service_username'])
self.assertEqual('service_project_name',
auth_kwargs['os_options']['service_project_name'])
auth_args = get_auth_call_list[1]
auth_kwargs = get_auth_call_list[1]['kwargs']
self.assertEqual('service_username', auth_args['user'])
self.assertEqual('service_key', auth_args['key'])
self.assertEqual('service_project_name',
auth_kwargs['os_options']['tenant_name'])
# Ensure this is not an endless loop - it fails after the second 401
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(401, 401, 401, 401)):
with mock.patch('swiftclient.client.sleep', swap_sleep):
self.swap_sleep_called = False
conn = c.Connection('http://www.test.com', 'asdf', 'asdf',
preauthurl='http://www.old.com',
preauthtoken='old',
os_options=self.os_options,
retries=0)
self.assertEqual(conn.attempts, 0)
self.assertRaises(c.ClientException, conn.head_account)
self.assertEqual(conn.attempts, 2)
unused_responses = list(self.fake_connect.code_iter)
self.assertEqual(unused_responses, [401, 401])
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
def test_service_token_get_account(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
with mock.patch('swiftclient.client.parse_api_response'):
conn = self.get_connection()
conn.get_account()
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('GET', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/?format=json',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_head_account(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = self.get_connection()
conn.head_account()
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('HEAD', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com', actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_post_account(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(201)):
conn = self.get_connection()
conn.post_account(headers={})
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('POST', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com', actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_delete_container(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(204)):
conn = self.get_connection()
conn.delete_container('container1')
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('DELETE', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_get_container(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
with mock.patch('swiftclient.client.parse_api_response'):
conn = self.get_connection()
conn.get_container('container1')
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('GET', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1?format=json',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
Fix wrong args for get_container with full listing In client get_container(), when full_listing is true, the calls back to get_container() pass service_token as a positional arg which maps its value to the full_listing arg. It should use a keyword. Change-Id: Iac2af45df124ff33fcb7fbaf1ba959ef06c96378 Closes-Bug: #1496093
2016-02-22 15:05:27 +00:00
def test_service_token_get_container_full_listing(self):
# verify service token is sent with each request for a full listing
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200, 200)):
with mock.patch('swiftclient.client.parse_api_response') as resp:
resp.side_effect = ([{"name": "obj1"}], [])
conn = self.get_connection()
conn.get_container('container1', full_listing=True)
self.assertEqual(2, len(self.request_log), self.request_log)
expected_urls = iter((
'http://storage_url.com/container1?format=json',
'http://storage_url.com/container1?format=json&marker=obj1'
))
for actual in self.iter_request_log():
self.assertEqual('GET', actual['method'])
actual_hdrs = actual['headers']
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual(next(expected_urls),
actual['full_path'])
self.assertEqual(conn.attempts, 1)
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
def test_service_token_head_container(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = self.get_connection()
conn.head_container('container1')
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('HEAD', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_post_container(self):
Stop mutating header dicts Change-Id: Ia1638c216eff9db6fbe416bc0570c27cfdcfe730
2017-08-25 12:13:12 -07:00
headers = {'X-Container-Meta-Color': 'blue'}
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(201)):
conn = self.get_connection()
Stop mutating header dicts Change-Id: Ia1638c216eff9db6fbe416bc0570c27cfdcfe730
2017-08-25 12:13:12 -07:00
conn.post_container('container1', headers)
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('POST', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
Stop mutating header dicts Change-Id: Ia1638c216eff9db6fbe416bc0570c27cfdcfe730
2017-08-25 12:13:12 -07:00
# Check that we didn't mutate the request header dict
self.assertEqual(headers, {'X-Container-Meta-Color': 'blue'})
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
def test_service_token_put_container(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = self.get_connection()
conn.put_container('container1')
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('PUT', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_get_object(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = self.get_connection()
conn.get_object('container1', 'obj1')
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('GET', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1/obj1',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_head_object(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = self.get_connection()
conn.head_object('container1', 'obj1')
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('HEAD', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1/obj1',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_put_object(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(200)):
conn = self.get_connection()
conn.put_object('container1', 'obj1', 'a_string')
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('PUT', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1/obj1',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_post_object(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(202)):
conn = self.get_connection()
conn.post_object('container1', 'obj1', {})
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('POST', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1/obj1',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
def test_service_token_delete_object(self):
with mock.patch('swiftclient.client.http_connection',
self.fake_http_connection(202)):
conn = self.get_connection()
Add additional headers for HEAD/GET/DELETE requests. Change-Id: I69276ba711057c122f97deac412e492e313c34dd Closes-Bug: 1615830
2016-09-19 23:18:18 +08:00
conn.delete_object('container1', 'obj1', query_string='a_string')
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual(1, len(self.request_log), self.request_log)
for actual in self.iter_request_log():
self.assertEqual('DELETE', actual['method'])
actual_hdrs = actual['headers']
Miscellaneous (mostly test) cleanup * Always use testtools.TestCase, since we're relying on testtools * Always use mock (as opposed to unittest.mock) since we're relying on mock * Add note about when a missing logging handler was added * Stop %-formatting the giant usage string that doesn't actually need any formatting * Prefer assertIs, assertIn, assertIsInstance over assertTrue * Use else-self.fail instead of sentinel values * Check resp.get('error') is None before checking resp['success'] is True, so test failures actually tell you something useful * Tighten some isinstance assertions * Import MockHttpTest from correct location * Only populate clean_os_environ once * Use setUp for setup, not __init__ * Replace assertIn(key, dict) and assertEqual(foo, dict[key]) with assertEqual(foo, dict.get(key)) when key is a literal and foo is not None * Use mock.patch.object instead of manually patching for tests * Use six.binary_type instead of type(''.encode('utf-8')) * Stop shadowing builtin bytes * Reclaim some margin * Stop checking the return-type of encode_utf8; we already know it's bytes Change-Id: I2138ea553378ce88810b7353147c8645a8f8c90e
2015-09-09 17:41:21 -07:00
self.assertEqual('stoken', actual_hdrs.get('X-Service-Token'))
Add minimal working service token support. Add client changes to allow accessing alternative reseller_prefixes via a service token. ie client changes for this server side spec: https://review.openstack.org/#/c/105228 We assume that the service storage url has been passed in as a preauthurl. We rely on get_auth preserving this url. Change-Id: I1cfda178f0b6c8add46cfebd6bf38440caae2036
2015-05-13 09:48:41 +00:00
self.assertEqual('token', actual_hdrs['X-Auth-Token'])
self.assertEqual('http://storage_url.com/container1/obj1?a_string',
actual['full_path'])
self.assertEqual(conn.attempts, 1)
Copy Permalink