_modules/barbicanv1/common.py - salt-formulas/barbican - Gitiles

 import functools
 import logging
 import time
 from uuid import UUID


 try:
     import os_client_config
 except ImportError:
     os_client_config = None
 from salt import exceptions


 try:
     from urllib.parse import urlsplit
 except ImportError:
     from urlparse import urlsplit

 log = logging.getLogger(__name__)


 class BarbicanException(Exception):

     _msg = "Barbican module exception occured."

     def __init__(self, message=None, **kwargs):
         super(BarbicanException, self).__init__(message or self._msg)


 class NoBarbicanEndpoint(BarbicanException):
     _msg = "Barbican endpoint not found in keystone catalog."


 class NoAuthPluginConfigured(BarbicanException):
     _msg = ("You are using keystoneauth auth plugin that does not support "
             "fetching endpoint list from token (noauth or admin_token).")


 class NoCredentials(BarbicanException):
     _msg = "Please provide cloud name present in clouds.yaml."


 class ResourceNotFound(BarbicanException):
     _msg = "Uniq resource: {resource} with name: {name} not found."

     def __init__(self, resource, name, **kwargs):
         super(BarbicanException, self).__init__(
             self._msg.format(resource=resource, name=name))


 class MultipleResourcesFound(BarbicanException):
     _msg = "Multiple resource: {resource} with name: {name} found."

     def __init__(self, resource, name, **kwargs):
         super(BarbicanException, self).__init__(
             self._msg.format(resource=resource, name=name))


 def _get_raw_client(cloud_name):
     if not os_client_config:
         raise exceptions.SaltInvocationError(
             "Cannot load os-client-config. Please check your environment "
             "configuration.")
     service_type = 'key-manager'
     config = os_client_config.OpenStackConfig()
     cloud = config.get_one_cloud(cloud_name)
     adapter = cloud.get_session_client(service_type)
     adapter.version = '1'
     try:
         access_info = adapter.session.auth.get_access(adapter.session)
         endpoints = access_info.service_catalog.get_endpoints()
     except (AttributeError, ValueError) as exc:
         log.exception('%s' % exc)
         e = NoAuthPluginConfigured()
         log.exception('%s' % e)
         raise e
     if service_type not in endpoints:
         if not service_type:
             e = NoBarbicanEndpoint()
             log.error('%s' % e)
             raise e
     return adapter


 def send(method):
     def wrap(func):
         @functools.wraps(func)
         def wrapped_f(*args, **kwargs):
             cloud_name = kwargs.pop('cloud_name')
             connect_retries =  30
             connect_retry_delay = 1
             if not cloud_name:
                 e = NoCredentials()
                 log.error('%s' % e)
                 raise e
             adapter = _get_raw_client(cloud_name)
             # Remove salt internal kwargs
             kwarg_keys = list(kwargs.keys())
             for k in kwarg_keys:
                 if k.startswith('__'):
                     kwargs.pop(k)
             url, request_kwargs = func(*args, **kwargs)
             response = None
             for i in range(connect_retries):
                 try:
                   response = getattr(adapter, method)(
                       url, connect_retries=connect_retries,
                       **request_kwargs)
                 except Exception as e:
                     if not hasattr(e, 'http_status') or (e.http_status >= 500
                         or e.http_status == 0):
                         msg = ("Got retriable exception when contacting "
                                "Barbican API. Sleeping for %ss. Attepmpts "
                                "%s of %s")
                         log.error(msg % (connect_retry_delay, i, connect_retries))
                         time.sleep(connect_retry_delay)
                         continue
                 break
             if not response or not response.content:
                 return {}
             try:
                 resp = response.json()
             except ValueError:
                 resp = response.content
             return resp
         return wrapped_f
     return wrap


 def _check_uuid(val):
     try:
         return str(UUID(val)).replace('-', '') == val
     except (TypeError, ValueError, AttributeError):
         return False


 def _parse_secret_href(href):
     return urlsplit(href).path.split('/')[-1]


 def get_by_name_or_uuid(resource_list, resp_key):
     def wrap(func):
         def wrapped_f(*args, **kwargs):
             if 'name' in kwargs:
                 ref = kwargs.pop('name', None)
                 start_arg = 0
             else:
                 start_arg = 1
                 ref = args[0]
             cloud_name = kwargs['cloud_name']
             if _check_uuid(ref):
                 uuid = ref
             else:
                 retries = 30
                 while retries:
                 # Then we have name not uuid
                     resp = resource_list(
                         name=ref, cloud_name=cloud_name).get(resp_key)
                     if resp is not None:
                         break
                     retries -= 1
                     time.sleep(1)
                 if len(resp) == 0:
                     raise ResourceNotFound(resp_key, ref)
                 elif len(resp) > 1:
                     raise MultipleResourcesFound(resp_key, ref)
                 href = resp[0]['secret_ref']
                 uuid = _parse_secret_href(href)
             return func(uuid, *args[start_arg:], **kwargs)
         return wrapped_f
     return wrap
	import functools
	import logging
	import time
	from uuid import UUID


	try:
	import os_client_config
	except ImportError:
	os_client_config = None
	from salt import exceptions


	try:
	from urllib.parse import urlsplit
	except ImportError:
	from urlparse import urlsplit

	log = logging.getLogger(__name__)


	class BarbicanException(Exception):

	_msg = "Barbican module exception occured."

	def __init__(self, message=None, **kwargs):
	super(BarbicanException, self).__init__(message or self._msg)


	class NoBarbicanEndpoint(BarbicanException):
	_msg = "Barbican endpoint not found in keystone catalog."


	class NoAuthPluginConfigured(BarbicanException):
	_msg = ("You are using keystoneauth auth plugin that does not support "
	"fetching endpoint list from token (noauth or admin_token).")


	class NoCredentials(BarbicanException):
	_msg = "Please provide cloud name present in clouds.yaml."


	class ResourceNotFound(BarbicanException):
	_msg = "Uniq resource: {resource} with name: {name} not found."

	def __init__(self, resource, name, **kwargs):
	super(BarbicanException, self).__init__(
	self._msg.format(resource=resource, name=name))


	class MultipleResourcesFound(BarbicanException):
	_msg = "Multiple resource: {resource} with name: {name} found."

	def __init__(self, resource, name, **kwargs):
	super(BarbicanException, self).__init__(
	self._msg.format(resource=resource, name=name))


	def _get_raw_client(cloud_name):
	if not os_client_config:
	raise exceptions.SaltInvocationError(
	"Cannot load os-client-config. Please check your environment "
	"configuration.")
	service_type = 'key-manager'
	config = os_client_config.OpenStackConfig()
	cloud = config.get_one_cloud(cloud_name)
	adapter = cloud.get_session_client(service_type)
	adapter.version = '1'
	try:
	access_info = adapter.session.auth.get_access(adapter.session)
	endpoints = access_info.service_catalog.get_endpoints()
	except (AttributeError, ValueError) as exc:
	log.exception('%s' % exc)
	e = NoAuthPluginConfigured()
	log.exception('%s' % e)
	raise e
	if service_type not in endpoints:
	if not service_type:
	e = NoBarbicanEndpoint()
	log.error('%s' % e)
	raise e
	return adapter


	def send(method):
	def wrap(func):
	@functools.wraps(func)
	def wrapped_f(args, *kwargs):
	cloud_name = kwargs.pop('cloud_name')
	connect_retries = 30
	connect_retry_delay = 1
	if not cloud_name:
	e = NoCredentials()
	log.error('%s' % e)
	raise e
	adapter = _get_raw_client(cloud_name)
	# Remove salt internal kwargs
	kwarg_keys = list(kwargs.keys())
	for k in kwarg_keys:
	if k.startswith('__'):
	kwargs.pop(k)
	url, request_kwargs = func(args, *kwargs)
	response = None
	for i in range(connect_retries):
	try:
	response = getattr(adapter, method)(
	url, connect_retries=connect_retries,
	**request_kwargs)
	except Exception as e:
	if not hasattr(e, 'http_status') or (e.http_status >= 500
	or e.http_status == 0):
	msg = ("Got retriable exception when contacting "
	"Barbican API. Sleeping for %ss. Attepmpts "
	"%s of %s")
	log.error(msg % (connect_retry_delay, i, connect_retries))
	time.sleep(connect_retry_delay)
	continue
	break
	if not response or not response.content:
	return {}
	try:
	resp = response.json()
	except ValueError:
	resp = response.content
	return resp
	return wrapped_f
	return wrap


	def _check_uuid(val):
	try:
	return str(UUID(val)).replace('-', '') == val
	except (TypeError, ValueError, AttributeError):
	return False


	def _parse_secret_href(href):
	return urlsplit(href).path.split('/')[-1]


	def get_by_name_or_uuid(resource_list, resp_key):
	def wrap(func):
	def wrapped_f(args, *kwargs):
	if 'name' in kwargs:
	ref = kwargs.pop('name', None)
	start_arg = 0
	else:
	start_arg = 1
	ref = args[0]
	cloud_name = kwargs['cloud_name']
	if _check_uuid(ref):
	uuid = ref
	else:
	retries = 30
	while retries:
	# Then we have name not uuid
	resp = resource_list(
	name=ref, cloud_name=cloud_name).get(resp_key)
	if resp is not None:
	break
	retries -= 1
	time.sleep(1)
	if len(resp) == 0:
	raise ResourceNotFound(resp_key, ref)
	elif len(resp) > 1:
	raise MultipleResourcesFound(resp_key, ref)
	href = resp[0]['secret_ref']
	uuid = _parse_secret_href(href)
	return func(uuid, args[start_arg:], *kwargs)
	return wrapped_f
	return wrap