171 lines
5.8 KiB
Python
171 lines
5.8 KiB
Python
# Copyright (c) 2014 Hewlett-Packard Development Company, L.P.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
|
|
# implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
from cinderclient import client as CinderClient
|
|
import glanceclient
|
|
from keystoneauth1 import loading
|
|
from keystoneauth1 import session
|
|
from neutronclient.v2_0 import client as NeutronClient
|
|
from novaclient.client import Client as NovaClient
|
|
from oslo_log import log as logging
|
|
import swiftclient
|
|
|
|
from trove.common import cfg
|
|
from trove.common.clients import normalize_url
|
|
|
|
LOG = logging.getLogger(__name__)
|
|
CONF = cfg.CONF
|
|
_SESSION = None
|
|
ADMIN_NEUTRON_CLIENT = None
|
|
ADMIN_NOVA_CLIENT = None
|
|
ADMIN_CINDER_CLIENT = None
|
|
|
|
|
|
def get_keystone_session():
|
|
"""Get trove service credential auth session."""
|
|
global _SESSION
|
|
|
|
if not _SESSION:
|
|
loader = loading.get_plugin_loader('password')
|
|
auth = loader.load_from_options(
|
|
username=CONF.service_credentials.username,
|
|
password=CONF.service_credentials.password,
|
|
project_name=CONF.service_credentials.project_name,
|
|
user_domain_name=CONF.service_credentials.user_domain_name,
|
|
project_domain_name=CONF.service_credentials.project_domain_name,
|
|
auth_url=CONF.service_credentials.auth_url)
|
|
_SESSION = session.Session(auth=auth)
|
|
|
|
return _SESSION
|
|
|
|
|
|
def nova_client_trove_admin(context, region_name=None, password=None):
|
|
"""
|
|
Returns a nova client object with the trove admin credentials
|
|
:param context: original context from user request
|
|
:type context: trove.common.context.TroveContext
|
|
:return novaclient: novaclient with trove admin credentials
|
|
:rtype: novaclient.client.Client
|
|
"""
|
|
global ADMIN_NOVA_CLIENT
|
|
|
|
if ADMIN_NOVA_CLIENT:
|
|
LOG.debug('Re-use admin nova client')
|
|
return ADMIN_NOVA_CLIENT
|
|
|
|
ks_session = get_keystone_session()
|
|
ADMIN_NOVA_CLIENT = NovaClient(
|
|
CONF.nova_client_version,
|
|
session=ks_session,
|
|
service_type=CONF.nova_compute_service_type,
|
|
region_name=region_name or CONF.service_credentials.region_name,
|
|
insecure=CONF.nova_api_insecure,
|
|
endpoint_type=CONF.nova_compute_endpoint_type)
|
|
|
|
if CONF.nova_compute_url and CONF.service_credentials.project_id:
|
|
ADMIN_NOVA_CLIENT.client.endpoint_override = "%s/%s/" % (
|
|
normalize_url(CONF.nova_compute_url),
|
|
CONF.service_credentials.project_id)
|
|
|
|
return ADMIN_NOVA_CLIENT
|
|
|
|
|
|
def cinder_client_trove_admin(context, region_name=None):
|
|
"""
|
|
Returns a cinder client object with the trove admin credentials
|
|
:param context: original context from user request
|
|
:type context: trove.common.context.TroveContext
|
|
:return cinderclient: cinderclient with trove admin credentials
|
|
"""
|
|
global ADMIN_CINDER_CLIENT
|
|
|
|
if ADMIN_CINDER_CLIENT:
|
|
LOG.debug('Re-use admin cinder client')
|
|
return ADMIN_CINDER_CLIENT
|
|
|
|
version = CONF.cinder_service_type.split('v')[-1] or '3'
|
|
|
|
ks_session = get_keystone_session()
|
|
ADMIN_CINDER_CLIENT = CinderClient.Client(
|
|
version,
|
|
session=ks_session,
|
|
service_type=CONF.cinder_service_type,
|
|
region_name=region_name or CONF.service_credentials.region_name,
|
|
insecure=CONF.cinder_api_insecure,
|
|
endpoint_type=CONF.cinder_endpoint_type,
|
|
additional_headers={'OpenStack-API-Version': 'volumev3 latest'})
|
|
|
|
if CONF.cinder_url and CONF.service_credentials.project_id:
|
|
ADMIN_CINDER_CLIENT.client.management_url = "%s/%s/" % (
|
|
normalize_url(CONF.cinder_url),
|
|
CONF.service_credentials.project_id)
|
|
|
|
return ADMIN_CINDER_CLIENT
|
|
|
|
|
|
def neutron_client_trove_admin(context, region_name=None):
|
|
"""
|
|
Returns a neutron client object with the trove admin credentials
|
|
:param context: original context from user request
|
|
:type context: trove.common.context.TroveContext
|
|
:return neutronclient: neutronclient with trove admin credentials
|
|
"""
|
|
global ADMIN_NEUTRON_CLIENT
|
|
|
|
if ADMIN_NEUTRON_CLIENT:
|
|
LOG.debug('Re-use admin neutron client')
|
|
return ADMIN_NEUTRON_CLIENT
|
|
|
|
ks_session = get_keystone_session()
|
|
ADMIN_NEUTRON_CLIENT = NeutronClient.Client(
|
|
session=ks_session,
|
|
service_type=CONF.neutron_service_type,
|
|
region_name=region_name or CONF.service_credentials.region_name,
|
|
insecure=CONF.neutron_api_insecure,
|
|
endpoint_type=CONF.neutron_endpoint_type)
|
|
|
|
if CONF.neutron_url:
|
|
ADMIN_NEUTRON_CLIENT.management_url = CONF.neutron_url
|
|
|
|
return ADMIN_NEUTRON_CLIENT
|
|
|
|
|
|
def swift_client_trove_admin(context, region_name=None):
|
|
ks_session = get_keystone_session()
|
|
client = swiftclient.Connection(
|
|
session=ks_session,
|
|
insecure=CONF.swift_api_insecure,
|
|
os_options={
|
|
'region_name': region_name or CONF.service_credentials.region_name,
|
|
'service_type': CONF.swift_service_type,
|
|
'endpoint_type': CONF.swift_endpoint_type
|
|
}
|
|
)
|
|
|
|
return client
|
|
|
|
|
|
def glance_client_trove_admin(context, region_name=None):
|
|
ks_session = get_keystone_session()
|
|
client = glanceclient.Client(
|
|
version=CONF.glance_client_version,
|
|
session=ks_session,
|
|
region_name=region_name or CONF.service_credentials.region_name,
|
|
service_type=CONF.glance_service_type,
|
|
interface=CONF.glance_endpoint_type
|
|
)
|
|
|
|
return client
|