openstack/python-zaqarclient
Code Issues Proposed changes
Files
4b9b0139641f0e85805783d69dfc3650885cd24a
python-zaqarclient/marconiclient/common/apiclient/auth/keystone.py
Alessio Ababilov 4b9b013964 Add apiclient library 
This library can be used in novaclient, keystoneclient,
glanceclient, and other client projects. The library
contains common code and uses python-requests for
HTTP communication.

Features:
* reissue authentication request for expired tokens;
* pluggable authentication;
* rich exceptions hierarchy;
* utils for building CLI tools.

Partially implements: blueprint common-client-library

Change-Id: I82df865d52f32ce47dde6a09a84d3d917fd77918
2013-07-10 14:32:27 +03:00

71 lines
2.4 KiB
Python
Raw Blame History

# vim: tabstop=4 shiftwidth=4 softtabstop=4
# Copyright 2013 OpenStack Foundation
# Copyright 2013 Spanish National Research Council.
# All Rights Reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import logging
from marconiclient.common.apiclient.auth import base
from marconiclient.common.apiclient import exceptions
logger = logging.getLogger(__name__)
class KeystoneV2AuthPlugin(base.BaseAuthPlugin):
auth_system = "keystone"
opt_names = [
"username",
"password",
"tenant_id",
"tenant_name",
"token",
"auth_url",
]
def authenticate(self, http_client):
if not self.opts.get("auth_url"):
raise exceptions.AuthPluginOptionsMissing(["auth_url"])
if self.opts.get("token"):
params = {"auth": {"token": {"id": self.opts.get("token")}}}
elif self.opts.get("username") and self.opts.get("password"):
params = {
"auth": {
"passwordCredentials": {
"username": self.opts.get("username"),
"password": self.opts.get("password"),
}
}
}
else:
raise exceptions.AuthPluginOptionsMissing(
[opt
for opt in "username", "password", "token"
if not self.opts.get(opt)])
if self.opts.get("tenant_id"):
params["auth"]["tenantId"] = self.opts.get("tenant_id")
elif self.opts.get("tenant_name"):
params["auth"]["tenantName"] = self.opts.get("tenant_name")
try:
body = http_client.request(
"POST",
http_client.concat_url(self.opts.get("auth_url"), "/tokens"),
allow_redirects=True,
json=params).json()
except ValueError as ex:
raise exceptions.AuthorizationFailure(ex)
http_client.auth_response = body
View Git Blame Copy Permalink