stackforge/libra
Code Issues Proposed changes
Files
e66c35175fbb7e0905d555e7199a6820ad4a01b8
libra/libra/api/controllers/load_balancers.py
Marc Pilon e66c35175f [ADMIN_API] Move MnB create/delete msgs 
MnB create and deletes have been moved out of the API calls
to the gearman client, after the creates / deletes have completed.
Also had to move billing_enable to the defaul config group.

Change-Id: I289e84d96d72a1fd493231938360f482c7820d41
2014-02-05 08:22:04 -05:00

625 lines
23 KiB
Python
Raw Blame History

# Copyright 2013 Hewlett-Packard Development Company, L.P.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import ipaddress
# pecan imports
from pecan import expose, abort, response, request
from pecan.rest import RestController
import wsmeext.pecan as wsme_pecan
from wsme.exc import ClientSideError
from wsme import Unset
# other controllers
from nodes import NodesController
from virtualips import VipsController
from health_monitor import HealthMonitorController
from logs import LogsController
# models
from libra.common.api.lbaas import LoadBalancer, Device, Node, db_session
from libra.common.api.lbaas import loadbalancers_devices, Limits, Vip
from libra.common.api.lbaas import HealthMonitor
from libra.common.exc import ExhaustedError
from libra.api.model.validators import LBPut, LBPost, LBResp, LBVipResp
from libra.api.model.validators import LBRespNode
from libra.common.api.gearman_client import submit_job
from libra.api.acl import get_limited_to_project
from libra.api.library.exp import OverLimit, IPOutOfRange, NotFound
from libra.api.library.exp import ImmutableEntity, ImmutableStates
from libra.api.library.exp import ImmutableStatesNoError
from libra.api.library.ip_filter import ipfilter
from pecan import conf
from wsme import types as wtypes
class LoadBalancersController(RestController):
def __init__(self, lbid=None):
self.lbid = lbid
@wsme_pecan.wsexpose(None, wtypes.text)
def get(self, status=None):
"""Fetches a list of load balancers or the details of one balancer if
load_balancer_id is not empty.
:param load_balancer_id: id of lb we want to get, if none it returns a
list of all
Url:
GET /loadbalancers
List all load balancers configured for the account.
Url:
GET /loadbalancers/{load_balancer_id}
List details of the specified load balancer.
Returns: dict
"""
tenant_id = get_limited_to_project(request.headers)
with db_session() as session:
# if we don't have an id then we want a list of them own by this
# tenent
if not self.lbid:
if status and status == 'DELETED':
lbs = session.query(
LoadBalancer.name, LoadBalancer.id,
LoadBalancer.protocol,
LoadBalancer.port, LoadBalancer.algorithm,
LoadBalancer.status, LoadBalancer.created,
LoadBalancer.updated
).filter(LoadBalancer.tenantid == tenant_id).\
filter(LoadBalancer.status == 'DELETED').all()
else:
lbs = session.query(
LoadBalancer.name, LoadBalancer.id,
LoadBalancer.protocol,
LoadBalancer.port, LoadBalancer.algorithm,
LoadBalancer.status, LoadBalancer.created,
LoadBalancer.updated
).filter(LoadBalancer.tenantid == tenant_id).\
filter(LoadBalancer.status != 'DELETED').all()
load_balancers = {'loadBalancers': []}
for lb in lbs:
lb = lb._asdict()
lb['nodeCount'] = session.query(Node).\
filter(Node.lbid == lb['id']).count()
lb['id'] = str(lb['id'])
load_balancers['loadBalancers'].append(lb)
else:
load_balancers = session.query(
LoadBalancer.name, LoadBalancer.id, LoadBalancer.protocol,
LoadBalancer.port, LoadBalancer.algorithm,
LoadBalancer.status, LoadBalancer.created,
LoadBalancer.updated, LoadBalancer.errmsg,
Vip.id.label('vipid'), Vip.ip
).join(LoadBalancer.devices).\
outerjoin(Device.vip).\
filter(LoadBalancer.tenantid == tenant_id).\
filter(LoadBalancer.id == self.lbid).\
first()
if not load_balancers:
session.rollback()
raise NotFound("Load Balancer ID not found")
load_balancers = load_balancers._asdict()
load_balancers['nodeCount'] = session.query(Node).\
filter(Node.lbid == load_balancers['id']).count()
if load_balancers['vipid']:
load_balancers['virtualIps'] = [{
"id": load_balancers['vipid'],
"type": "PUBLIC",
"ipVersion": "IPV4",
"address": str(ipaddress.IPv4Address(
load_balancers['ip']
)),
}]
del(load_balancers['ip'])
del(load_balancers['vipid'])
else:
# We are still assigning a VIP
load_balancers['virtualIps'] = [{
"id": None,
"type": "ASSIGNING",
"ipVersion": "IPV4",
"address": None
}]
del(load_balancers['vipid'])
nodes = session.query(
Node.id, Node.address, Node.port, Node.status,
Node.enabled, Node.weight
).join(LoadBalancer.nodes).\
filter(LoadBalancer.tenantid == tenant_id).\
filter(LoadBalancer.id == self.lbid).\
all()
load_balancers['id'] = str(load_balancers['id'])
if not load_balancers['errmsg']:
load_balancers['statusDescription'] = ''
else:
load_balancers['statusDescription'] =\
load_balancers['errmsg']
del(load_balancers['errmsg'])
load_balancers['nodes'] = []
for item in nodes:
node = item._asdict()
if node['enabled'] == 1:
node['condition'] = 'ENABLED'
else:
node['condition'] = 'DISABLED'
del node['enabled']
node['port'] = str(node['port'])
node['id'] = str(node['id'])
if node['weight'] == 1:
del node['weight']
load_balancers['nodes'].append(node)
session.rollback()
response.status = 200
return load_balancers
@wsme_pecan.wsexpose(LBResp, body=LBPost, status_code=202)
def post(self, body=None):
"""Accepts edit if load_balancer_id isn't blank or create load balancer
posts.
:param load_balancer_id: id of lb
:param *args: holds the posted json or xml data
Urls:
POST /loadbalancers/{load_balancer_id}
PUT /loadbalancers
Notes:
curl -i -H "Accept: application/json" -X POST \
-d "data={"name": "my_lb"}" \
http://dev.server:8080/loadbalancers/100
Returns: dict
"""
tenant_id = get_limited_to_project(request.headers)
if body.nodes == Unset or not len(body.nodes):
raise ClientSideError(
'At least one backend node needs to be supplied'
)
# When the load balancer is used for Galera, we need to do some
# sanity checking of the nodes to make sure 1 and only 1 node is
# defined as the primary node.
if body.protocol and body.protocol.lower() == 'galera':
is_galera = True
else:
is_galera = False
num_galera_primary_nodes = 0
for node in body.nodes:
if node.address == Unset:
raise ClientSideError(
'A supplied node has no address'
)
if node.port == Unset:
raise ClientSideError(
'Node {0} is missing a port'.format(node.address)
)
if node.port < 1 or node.port > 65535:
raise ClientSideError(
'Node {0} port number {1} is invalid'
.format(node.address, node.port)
)
try:
node.address = ipfilter(node.address, conf.ip_filters)
except IPOutOfRange:
raise ClientSideError(
'IP Address {0} is not allowed as a backend node'
.format(node.address)
)
except:
raise ClientSideError(
'IP Address {0} not valid'.format(node.address)
)
if node.weight != Unset:
try:
weight = int(node.weight)
except ValueError:
raise ClientSideError(
'Node weight must be an integer'
)
if weight < 1 or weight > 256:
raise ClientSideError(
'Node weight must be between 1 and 256'
)
is_backup = False
if node.backup != Unset and node.backup == 'TRUE':
is_backup = True
if is_galera and not is_backup:
num_galera_primary_nodes += 1
# Galera sanity checks
if is_galera and num_galera_primary_nodes != 1:
raise ClientSideError(
'Galera load balancer must have exactly one primary node'
)
with db_session() as session:
lblimit = session.query(Limits.value).\
filter(Limits.name == 'maxLoadBalancers').scalar()
nodelimit = session.query(Limits.value).\
filter(Limits.name == 'maxNodesPerLoadBalancer').scalar()
namelimit = session.query(Limits.value).\
filter(Limits.name == 'maxLoadBalancerNameLength').scalar()
count = session.query(LoadBalancer).\
filter(LoadBalancer.tenantid == tenant_id).\
filter(LoadBalancer.status != 'DELETED').count()
if len(body.name) > namelimit:
session.rollback()
raise ClientSideError(
'Length of Load Balancer name too long'
)
# TODO: this should probably be a 413, not sure how to do that yet
if count >= lblimit:
session.rollback()
raise OverLimit(
'Account has hit limit of {0} Load Balancers'.
format(lblimit)
)
if len(body.nodes) > nodelimit:
session.rollback()
raise OverLimit(
'Too many backend nodes supplied (limit is {0})'.
format(nodelimit)
)
device = None
old_lb = None
# if we don't have an id then we want to create a new lb
lb = LoadBalancer()
lb.tenantid = tenant_id
lb.name = body.name
if body.protocol:
if body.protocol.lower() in ('tcp', 'http', 'galera'):
lb.protocol = body.protocol.upper()
else:
raise ClientSideError(
'Invalid protocol %s' % body.protocol
)
else:
lb.protocol = 'HTTP'
if body.port:
if body.port < 1 or body.port > 65535:
raise ClientSideError(
'Port number {0} is invalid'.format(body.port)
)
lb.port = body.port
else:
if lb.protocol == 'HTTP':
lb.port = 80
elif lb.protocol == 'TCP':
lb.port = 443
elif lb.protocol == 'GALERA':
lb.port = 3306
lb.status = 'BUILD'
lb.created = None
if body.virtualIps == Unset:
# find free device
# lock with "for update" so multiple APIs don't grab the same
# LB
device = session.query(Device).\
filter(~Device.id.in_(
session.query(loadbalancers_devices.c.device)
)).\
filter(Device.status == "OFFLINE").\
filter(Device.pingCount == 0).\
with_lockmode('update').\
first()
if device is None:
session.rollback()
raise ExhaustedError('No devices available')
vip = None
else:
virtual_id = body.virtualIps[0].id
# Make sure virtual ID is actually an int
try:
virtual_id = int(virtual_id)
except:
session.rollback()
raise NotFound('Invalid virtual IP provided')
# This is an additional load balancer
device = session.query(
Device
).join(Device.vip).\
filter(Vip.id == virtual_id).\
first()
old_lb = session.query(
LoadBalancer
).join(LoadBalancer.devices).\
join(Device.vip).\
filter(LoadBalancer.tenantid == tenant_id).\
filter(Vip.id == virtual_id).\
first()
if old_lb.status in ImmutableStates:
session.rollback()
raise ImmutableEntity(
'Existing Load Balancer on VIP in a non-ACTIVE state'
', current state: {0}'
.format(old_lb.status)
)
vip = session.query(Vip).\
filter(Vip.device == device.id).\
first()
if old_lb is None:
session.rollback()
raise NotFound('Invalid virtual IP provided')
old_count = session.query(
LoadBalancer
).join(LoadBalancer.devices).\
join(Device.vip).\
filter(LoadBalancer.tenantid == tenant_id).\
filter(Vip.id == virtual_id).\
filter(LoadBalancer.port == lb.port).\
count()
if old_count:
session.rollback()
# Error here, can have only one LB per port on a device
raise ClientSideError(
'Only one load balancer per port allowed per device'
)
if body.algorithm:
lb.algorithm = body.algorithm.upper()
else:
lb.algorithm = 'ROUND_ROBIN'
lb.devices = [device]
# write to database
session.add(lb)
session.flush()
#refresh the lb record so we get the id back
session.refresh(lb)
for node in body.nodes:
if node.condition == 'DISABLED':
enabled = 0
node_status = 'OFFLINE'
else:
enabled = 1
node_status = 'ONLINE'
if node.backup == 'TRUE':
backup = 1
else:
backup = 0
weight = 1
if node.weight != Unset:
weight = node.weight
out_node = Node(
lbid=lb.id, port=node.port, address=node.address,
enabled=enabled, status=node_status,
weight=weight, backup=backup
)
session.add(out_node)
# now save the loadbalancer_id to the device and switch its status
# to build so the monitoring does not trigger early.
# The gearman message code will switch to ONLINE once we know
# everything is good
device.status = "BUILD"
session.flush()
return_data = LBResp()
return_data.id = str(lb.id)
return_data.name = lb.name
return_data.protocol = lb.protocol
return_data.port = str(lb.port)
return_data.algorithm = lb.algorithm
return_data.status = lb.status
return_data.created = lb.created
return_data.updated = lb.updated
if vip:
vip_resp = LBVipResp(
address=str(ipaddress.IPv4Address(vip.ip)),
id=str(vip.id), type='PUBLIC', ipVersion='IPV4'
)
else:
vip_resp = LBVipResp(
address=None, id=None, type='ASSIGNING', ipVersion='IPV4'
)
return_data.virtualIps = [vip_resp]
return_data.nodes = []
for node in body.nodes:
if node.weight != Unset and node.weight != 1:
out_node = LBRespNode(
port=str(node.port), address=node.address,
condition=node.condition, weight=weight
)
else:
out_node = LBRespNode(
port=str(node.port), address=node.address,
condition=node.condition
)
return_data.nodes.append(out_node)
session.commit()
# trigger gearman client to create new lb
submit_job(
'UPDATE', device.name, device.id, lb.id
)
return return_data
@wsme_pecan.wsexpose(None, body=LBPut, status_code=202)
def put(self, body=None):
if not self.lbid:
raise ClientSideError('Load Balancer ID is required')
tenant_id = get_limited_to_project(request.headers)
with db_session() as session:
# grab the lb
lb = session.query(LoadBalancer).\
filter(LoadBalancer.id == self.lbid).\
filter(LoadBalancer.tenantid == tenant_id).\
filter(LoadBalancer.status != 'DELETED').first()
if lb is None:
session.rollback()
raise NotFound('Load Balancer ID is not valid')
if lb.status in ImmutableStates:
session.rollback()
raise ImmutableEntity(
'Cannot modify a Load Balancer in a non-ACTIVE state'
', current state: {0}'
.format(lb.status)
)
if body.name != Unset:
namelimit = session.query(Limits.value).\
filter(Limits.name == 'maxLoadBalancerNameLength').scalar()
if len(body.name) > namelimit:
session.rollback()
raise ClientSideError(
'Length of Load Balancer name too long'
)
lb.name = body.name
if body.algorithm != Unset:
lb.algorithm = body.algorithm
lb.status = 'PENDING_UPDATE'
device = session.query(
Device.id, Device.name, Device.status
).join(LoadBalancer.devices).\
filter(LoadBalancer.id == self.lbid).\
first()
session.commit()
submit_job(
'UPDATE', device.name, device.id, lb.id
)
return ''
@wsme_pecan.wsexpose(None, status_code=202)
def delete(self):
"""Remove a load balancer from the account.
:param load_balancer_id: id of lb
Urls:
DELETE /loadbalancers/{load_balancer_id}
Notes:
curl -i -H "Accept: application/json" -X DELETE
http://dev.server:8080/loadbalancers/1
Returns: None
"""
load_balancer_id = self.lbid
tenant_id = get_limited_to_project(request.headers)
# grab the lb
with db_session() as session:
lb = session.query(LoadBalancer).\
filter(LoadBalancer.id == load_balancer_id).\
filter(LoadBalancer.tenantid == tenant_id).\
filter(LoadBalancer.status != 'DELETED').first()
if lb is None:
session.rollback()
raise NotFound("Load Balancer ID is not valid")
# So we can delete ERROR, but not other Immutable states
if lb.status in ImmutableStatesNoError:
session.rollback()
raise ImmutableEntity(
'Cannot delete a Load Balancer in a non-ACTIVE state'
', current state: {0}'
.format(lb.status)
)
lb.status = 'PENDING_DELETE'
device = session.query(
Device.id, Device.name
).join(LoadBalancer.devices).\
filter(LoadBalancer.id == load_balancer_id).\
first()
if device is None:
# This can happen if a device was manually deleted from the DB
lb.status = 'DELETED'
session.execute(loadbalancers_devices.delete().where(
loadbalancers_devices.c.loadbalancer == lb.id
))
session.query(Node).\
filter(Node.lbid == lb.id).delete()
session.query(HealthMonitor).\
filter(HealthMonitor.lbid == lb.id).delete()
session.commit()
else:
session.commit()
submit_job(
'DELETE', device.name, device.id, lb.id
)
return None
def usage(self, load_balancer_id):
"""List current and historical usage.
:param load_balancer_id: id of lb
Url:
GET /loadbalancers/{load_balancer_id}/usage
Returns: dict
"""
response.status = 201
return None
@expose('json')
def _lookup(self, lbid, *remainder):
"""Routes more complex url mapping.
Most things are /loadbalancer/{id}/function/... so this routes that
Raises: 404
"""
try:
lbid = int(lbid)
except ValueError:
raise abort(404)
if len(remainder):
if remainder[0] == 'nodes':
return NodesController(lbid), remainder[1:]
if remainder[0] == 'virtualips':
return VipsController(lbid), remainder[1:]
if remainder[0] == 'logs':
return LogsController(lbid), remainder[1:]
if remainder[0] == 'healthmonitor':
return HealthMonitorController(lbid), remainder[1:]
# Kludgy fix for PUT since WSME doesn't like IDs on the path
elif lbid:
return LoadBalancersController(lbid), remainder
abort(404)
View Git Blame Copy Permalink