|  | package openstack | 
|  |  | 
|  | import ( | 
|  | "fmt" | 
|  | "net/url" | 
|  |  | 
|  | "github.com/rackspace/gophercloud" | 
|  | tokens2 "github.com/rackspace/gophercloud/openstack/identity/v2/tokens" | 
|  | tokens3 "github.com/rackspace/gophercloud/openstack/identity/v3/tokens" | 
|  | "github.com/rackspace/gophercloud/openstack/utils" | 
|  | ) | 
|  |  | 
|  | const ( | 
|  | v20 = "v2.0" | 
|  | v30 = "v3.0" | 
|  | ) | 
|  |  | 
|  | // NewClient prepares an unauthenticated ProviderClient instance. | 
|  | // Most users will probably prefer using the AuthenticatedClient function instead. | 
|  | // This is useful if you wish to explicitly control the version of the identity service that's used for authentication explicitly, | 
|  | // for example. | 
|  | func NewClient(endpoint string) (*gophercloud.ProviderClient, error) { | 
|  | u, err := url.Parse(endpoint) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  | hadPath := u.Path != "" | 
|  | u.Path, u.RawQuery, u.Fragment = "", "", "" | 
|  | base := u.String() | 
|  |  | 
|  | endpoint = gophercloud.NormalizeURL(endpoint) | 
|  | base = gophercloud.NormalizeURL(base) | 
|  |  | 
|  | if hadPath { | 
|  | return &gophercloud.ProviderClient{ | 
|  | IdentityBase:     base, | 
|  | IdentityEndpoint: endpoint, | 
|  | }, nil | 
|  | } | 
|  |  | 
|  | return &gophercloud.ProviderClient{ | 
|  | IdentityBase:     base, | 
|  | IdentityEndpoint: "", | 
|  | }, nil | 
|  | } | 
|  |  | 
|  | // AuthenticatedClient logs in to an OpenStack cloud found at the identity endpoint specified by options, acquires a token, and | 
|  | // returns a Client instance that's ready to operate. | 
|  | // It first queries the root identity endpoint to determine which versions of the identity service are supported, then chooses | 
|  | // the most recent identity service available to proceed. | 
|  | func AuthenticatedClient(options gophercloud.AuthOptions) (*gophercloud.ProviderClient, error) { | 
|  | client, err := NewClient(options.IdentityEndpoint) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  |  | 
|  | err = Authenticate(client, options) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  |  | 
|  | return client, nil | 
|  | } | 
|  |  | 
|  | // Authenticate or re-authenticate against the most recent identity service supported at the provided endpoint. | 
|  | func Authenticate(client *gophercloud.ProviderClient, options gophercloud.AuthOptions) error { | 
|  | versions := []*utils.Version{ | 
|  | &utils.Version{ID: v20, Priority: 20, Suffix: "/v2.0/"}, | 
|  | &utils.Version{ID: v30, Priority: 30, Suffix: "/v3/"}, | 
|  | } | 
|  |  | 
|  | chosen, endpoint, err := utils.ChooseVersion(client, versions) | 
|  | if err != nil { | 
|  | return err | 
|  | } | 
|  |  | 
|  | switch chosen.ID { | 
|  | case v20: | 
|  | return v2auth(client, endpoint, options) | 
|  | case v30: | 
|  | return v3auth(client, endpoint, options) | 
|  | default: | 
|  | // The switch statement must be out of date from the versions list. | 
|  | return fmt.Errorf("Unrecognized identity version: %s", chosen.ID) | 
|  | } | 
|  | } | 
|  |  | 
|  | // AuthenticateV2 explicitly authenticates against the identity v2 endpoint. | 
|  | func AuthenticateV2(client *gophercloud.ProviderClient, options gophercloud.AuthOptions) error { | 
|  | return v2auth(client, "", options) | 
|  | } | 
|  |  | 
|  | func v2auth(client *gophercloud.ProviderClient, endpoint string, options gophercloud.AuthOptions) error { | 
|  | v2Client := NewIdentityV2(client) | 
|  | if endpoint != "" { | 
|  | v2Client.Endpoint = endpoint | 
|  | } | 
|  |  | 
|  | result := tokens2.Create(v2Client, tokens2.AuthOptions{AuthOptions: options}) | 
|  |  | 
|  | token, err := result.ExtractToken() | 
|  | if err != nil { | 
|  | return err | 
|  | } | 
|  |  | 
|  | catalog, err := result.ExtractServiceCatalog() | 
|  | if err != nil { | 
|  | return err | 
|  | } | 
|  |  | 
|  | if options.AllowReauth { | 
|  | client.ReauthFunc = AuthenticateV2 | 
|  | } | 
|  | client.AuthOptions = options | 
|  | client.TokenID = token.ID | 
|  | client.EndpointLocator = func(opts gophercloud.EndpointOpts) (string, error) { | 
|  | return V2EndpointURL(catalog, opts) | 
|  | } | 
|  |  | 
|  | return nil | 
|  | } | 
|  |  | 
|  | // AuthenticateV3 explicitly authenticates against the identity v3 service. | 
|  | func AuthenticateV3(client *gophercloud.ProviderClient, options gophercloud.AuthOptions) error { | 
|  | return v3auth(client, "", options) | 
|  | } | 
|  |  | 
|  | func v3auth(client *gophercloud.ProviderClient, endpoint string, options gophercloud.AuthOptions) error { | 
|  | // Override the generated service endpoint with the one returned by the version endpoint. | 
|  | v3Client := NewIdentityV3(client) | 
|  | if endpoint != "" { | 
|  | v3Client.Endpoint = endpoint | 
|  | } | 
|  |  | 
|  | token, err := tokens3.Create(v3Client, options, nil).Extract() | 
|  | if err != nil { | 
|  | return err | 
|  | } | 
|  | client.TokenID = token.ID | 
|  |  | 
|  | if options.AllowReauth { | 
|  | client.ReauthFunc = AuthenticateV3 | 
|  | } | 
|  | client.AuthOptions = options | 
|  | client.EndpointLocator = func(opts gophercloud.EndpointOpts) (string, error) { | 
|  | return V3EndpointURL(v3Client, opts) | 
|  | } | 
|  |  | 
|  | return nil | 
|  | } | 
|  |  | 
|  | // NewIdentityV2 creates a ServiceClient that may be used to interact with the v2 identity service. | 
|  | func NewIdentityV2(client *gophercloud.ProviderClient) *gophercloud.ServiceClient { | 
|  | v2Endpoint := client.IdentityBase + "v2.0/" | 
|  |  | 
|  | return &gophercloud.ServiceClient{ | 
|  | ProviderClient: client, | 
|  | Endpoint:       v2Endpoint, | 
|  | } | 
|  | } | 
|  |  | 
|  | // NewIdentityV3 creates a ServiceClient that may be used to access the v3 identity service. | 
|  | func NewIdentityV3(client *gophercloud.ProviderClient) *gophercloud.ServiceClient { | 
|  | v3Endpoint := client.IdentityBase + "v3/" | 
|  |  | 
|  | return &gophercloud.ServiceClient{ | 
|  | ProviderClient: client, | 
|  | Endpoint:       v3Endpoint, | 
|  | } | 
|  | } | 
|  |  | 
|  | // NewObjectStorageV1 creates a ServiceClient that may be used with the v1 object storage package. | 
|  | func NewObjectStorageV1(client *gophercloud.ProviderClient, eo gophercloud.EndpointOpts) (*gophercloud.ServiceClient, error) { | 
|  | eo.ApplyDefaults("object-store") | 
|  | url, err := client.EndpointLocator(eo) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  | return &gophercloud.ServiceClient{ProviderClient: client, Endpoint: url}, nil | 
|  | } | 
|  |  | 
|  | // NewComputeV2 creates a ServiceClient that may be used with the v2 compute package. | 
|  | func NewComputeV2(client *gophercloud.ProviderClient, eo gophercloud.EndpointOpts) (*gophercloud.ServiceClient, error) { | 
|  | eo.ApplyDefaults("compute") | 
|  | url, err := client.EndpointLocator(eo) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  | return &gophercloud.ServiceClient{ProviderClient: client, Endpoint: url}, nil | 
|  | } | 
|  |  | 
|  | // NewNetworkV2 creates a ServiceClient that may be used with the v2 network package. | 
|  | func NewNetworkV2(client *gophercloud.ProviderClient, eo gophercloud.EndpointOpts) (*gophercloud.ServiceClient, error) { | 
|  | eo.ApplyDefaults("network") | 
|  | url, err := client.EndpointLocator(eo) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  | return &gophercloud.ServiceClient{ | 
|  | ProviderClient: client, | 
|  | Endpoint:       url, | 
|  | ResourceBase:   url + "v2.0/", | 
|  | }, nil | 
|  | } | 
|  |  | 
|  | // NewBlockStorageV1 creates a ServiceClient that may be used to access the v1 block storage service. | 
|  | func NewBlockStorageV1(client *gophercloud.ProviderClient, eo gophercloud.EndpointOpts) (*gophercloud.ServiceClient, error) { | 
|  | eo.ApplyDefaults("volume") | 
|  | url, err := client.EndpointLocator(eo) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  | return &gophercloud.ServiceClient{ProviderClient: client, Endpoint: url}, nil | 
|  | } | 
|  |  | 
|  | // NewCDNV1 creates a ServiceClient that may be used to access the OpenStack v1 | 
|  | // CDN service. | 
|  | func NewCDNV1(client *gophercloud.ProviderClient, eo gophercloud.EndpointOpts) (*gophercloud.ServiceClient, error) { | 
|  | eo.ApplyDefaults("cdn") | 
|  | url, err := client.EndpointLocator(eo) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  | return &gophercloud.ServiceClient{ProviderClient: client, Endpoint: url}, nil | 
|  | } | 
|  |  | 
|  | // NewOrchestrationV1 creates a ServiceClient that may be used to access the v1 orchestration service. | 
|  | func NewOrchestrationV1(client *gophercloud.ProviderClient, eo gophercloud.EndpointOpts) (*gophercloud.ServiceClient, error) { | 
|  | eo.ApplyDefaults("orchestration") | 
|  | url, err := client.EndpointLocator(eo) | 
|  | if err != nil { | 
|  | return nil, err | 
|  | } | 
|  | return &gophercloud.ServiceClient{ProviderClient: client, Endpoint: url}, nil | 
|  | } |