Gitiles
Code Review Sign In
spfactory.storpool.com / tempest / e40ef9d6026200770e9a789f5016e4103ade6743 / . / tempest / services / identity / v3 / xml / identity_client.py
blob: 242b0326a93cc3ae05df46727dc151b3df5b9990 [file] [log] [blame]
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]1# Copyright 2013 OpenStack Foundation
2# All Rights Reserved.
3#
4# Licensed under the Apache License, Version 2.0 (the "License"); you may
5# not use this file except in compliance with the License. You may obtain
6# a copy of the License at
7#
8# http://www.apache.org/licenses/LICENSE-2.0
9#
10# Unless required by applicable law or agreed to in writing, software
11# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13# License for the specific language governing permissions and limitations
14# under the License.
15
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]16import json
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]17
18from lxml import etree
19
vponomaryov960eeb42014-02-22 18:25:25 +0200[diff] [blame]20from tempest.common import rest_client
Matthew Treinish28f164c2014-03-04 18:55:06 +0000[diff] [blame]21from tempest.common import xml_utils as common
Matthew Treinish684d8992014-01-30 16:27:40 +0000[diff] [blame]22from tempest import config
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]23from tempest import exceptions
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]24
Matthew Treinish684d8992014-01-30 16:27:40 +0000[diff] [blame]25CONF = config.CONF
26
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]27XMLNS = "http://docs.openstack.org/identity/api/v3"
28
29
vponomaryov960eeb42014-02-22 18:25:25 +0200[diff] [blame]30class IdentityV3ClientXML(rest_client.RestClient):
31 TYPE = "xml"
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]32
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]33 def __init__(self, auth_provider):
34 super(IdentityV3ClientXML, self).__init__(auth_provider)
Matthew Treinish684d8992014-01-30 16:27:40 +0000[diff] [blame]35 self.service = CONF.identity.catalog_type
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]36 self.endpoint_url = 'adminURL'
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]37 self.api_version = "v3"
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]38
39 def _parse_projects(self, node):
40 array = []
41 for child in node.getchildren():
42 tag_list = child.tag.split('}', 1)
43 if tag_list[1] == "project":
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]44 array.append(common.xml_to_json(child))
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]45 return array
46
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]47 def _parse_domains(self, node):
48 array = []
49 for child in node.getchildren():
50 tag_list = child.tag.split('}', 1)
51 if tag_list[1] == "domain":
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]52 array.append(common.xml_to_json(child))
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]53 return array
54
wanglianmin29b0f4c2014-03-06 19:09:16 +0800[diff] [blame]55 def _parse_groups(self, node):
56 array = []
57 for child in node.getchildren():
58 tag_list = child.tag.split('}', 1)
59 if tag_list[1] == "group":
60 array.append(common.xml_to_json(child))
61 return array
62
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]63 def _parse_group_users(self, node):
64 array = []
65 for child in node.getchildren():
66 tag_list = child.tag.split('}', 1)
67 if tag_list[1] == "user":
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]68 array.append(common.xml_to_json(child))
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]69 return array
70
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]71 def _parse_roles(self, node):
72 array = []
73 for child in node.getchildren():
74 tag_list = child.tag.split('}', 1)
75 if tag_list[1] == "role":
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]76 array.append(common.xml_to_json(child))
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]77 return array
78
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]79 def _parse_array(self, node):
80 array = []
81 for child in node.getchildren():
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]82 array.append(common.xml_to_json(child))
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]83 return array
84
85 def _parse_body(self, body):
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]86 _json = common.xml_to_json(body)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]87 return _json
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]88
89 def create_user(self, user_name, **kwargs):
90 """Creates a user."""
91 password = kwargs.get('password', None)
92 email = kwargs.get('email', None)
93 en = kwargs.get('enabled', 'true')
94 project_id = kwargs.get('project_id', None)
95 description = kwargs.get('description', None)
96 domain_id = kwargs.get('domain_id', 'default')
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]97 post_body = common.Element("user",
98 xmlns=XMLNS,
99 name=user_name,
100 password=password,
101 description=description,
102 email=email,
103 enabled=str(en).lower(),
104 project_id=project_id,
105 domain_id=domain_id)
106 resp, body = self.post('users', str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]107 self.expected_success(201, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]108 body = self._parse_body(etree.fromstring(body))
109 return resp, body
110
111 def update_user(self, user_id, name, **kwargs):
112 """Updates a user."""
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]113 _, body = self.get_user(user_id)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]114 email = kwargs.get('email', body['email'])
115 en = kwargs.get('enabled', body['enabled'])
116 project_id = kwargs.get('project_id', body['project_id'])
117 description = kwargs.get('description', body['description'])
118 domain_id = kwargs.get('domain_id', body['domain_id'])
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]119 update_user = common.Element("user",
120 xmlns=XMLNS,
121 name=name,
122 email=email,
123 project_id=project_id,
124 domain_id=domain_id,
125 description=description,
126 enabled=str(en).lower())
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]127 resp, body = self.patch('users/%s' % user_id,
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]128 str(common.Document(update_user)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]129 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]130 body = self._parse_body(etree.fromstring(body))
131 return resp, body
132
133 def list_user_projects(self, user_id):
134 """Lists the projects on which a user has roles assigned."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]135 resp, body = self.get('users/%s/projects' % user_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]136 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]137 body = self._parse_projects(etree.fromstring(body))
138 return resp, body
139
140 def get_users(self):
141 """Get the list of users."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]142 resp, body = self.get("users")
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]143 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]144 body = self._parse_array(etree.fromstring(body))
145 return resp, body
146
147 def get_user(self, user_id):
148 """GET a user."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]149 resp, body = self.get("users/%s" % user_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]150 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]151 body = self._parse_body(etree.fromstring(body))
152 return resp, body
153
154 def delete_user(self, user_id):
155 """Deletes a User."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]156 resp, body = self.delete("users/%s" % user_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]157 self.expected_success(204, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]158 return resp, body
159
160 def create_project(self, name, **kwargs):
161 """Creates a project."""
162 description = kwargs.get('description', None)
163 en = kwargs.get('enabled', 'true')
164 domain_id = kwargs.get('domain_id', 'default')
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]165 post_body = common.Element("project",
166 xmlns=XMLNS,
167 description=description,
168 domain_id=domain_id,
169 enabled=str(en).lower(),
170 name=name)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]171 resp, body = self.post('projects',
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]172 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]173 self.expected_success(201, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]174 body = self._parse_body(etree.fromstring(body))
175 return resp, body
176
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]177 def list_projects(self):
178 """Get the list of projects."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]179 resp, body = self.get("projects")
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]180 self.expected_success(200, resp.status)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]181 body = self._parse_projects(etree.fromstring(body))
182 return resp, body
183
184 def update_project(self, project_id, **kwargs):
185 """Updates a Project."""
186 resp, body = self.get_project(project_id)
187 name = kwargs.get('name', body['name'])
188 desc = kwargs.get('description', body['description'])
189 en = kwargs.get('enabled', body['enabled'])
190 domain_id = kwargs.get('domain_id', body['domain_id'])
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]191 post_body = common.Element("project",
192 xmlns=XMLNS,
193 name=name,
194 description=desc,
195 enabled=str(en).lower(),
196 domain_id=domain_id)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]197 resp, body = self.patch('projects/%s' % project_id,
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]198 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]199 self.expected_success(200, resp.status)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]200 body = self._parse_body(etree.fromstring(body))
201 return resp, body
202
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]203 def get_project(self, project_id):
204 """GET a Project."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]205 resp, body = self.get("projects/%s" % project_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]206 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]207 body = self._parse_body(etree.fromstring(body))
208 return resp, body
209
210 def delete_project(self, project_id):
211 """Delete a project."""
212 resp, body = self.delete('projects/%s' % str(project_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]213 self.expected_success(204, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]214 return resp, body
215
216 def create_role(self, name):
217 """Create a Role."""
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]218 post_body = common.Element("role",
219 xmlns=XMLNS,
220 name=name)
221 resp, body = self.post('roles', str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]222 self.expected_success(201, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]223 body = self._parse_body(etree.fromstring(body))
224 return resp, body
225
226 def get_role(self, role_id):
227 """GET a Role."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]228 resp, body = self.get('roles/%s' % str(role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]229 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]230 body = self._parse_body(etree.fromstring(body))
231 return resp, body
232
wanglianmina3e84ea2014-03-26 17:30:33 +0800[diff] [blame]233 def list_roles(self):
234 """Get the list of Roles."""
235 resp, body = self.get("roles")
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]236 self.expected_success(200, resp.status)
wanglianmina3e84ea2014-03-26 17:30:33 +0800[diff] [blame]237 body = self._parse_roles(etree.fromstring(body))
238 return resp, body
239
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]240 def update_role(self, name, role_id):
241 """Updates a Role."""
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]242 post_body = common.Element("role",
243 xmlns=XMLNS,
244 name=name)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]245 resp, body = self.patch('roles/%s' % str(role_id),
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]246 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]247 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]248 body = self._parse_body(etree.fromstring(body))
249 return resp, body
250
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]251 def delete_role(self, role_id):
252 """Delete a role."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]253 resp, body = self.delete('roles/%s' % str(role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]254 self.expected_success(204, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]255 return resp, body
256
257 def assign_user_role(self, project_id, user_id, role_id):
258 """Add roles to a user on a tenant."""
259 resp, body = self.put('projects/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]260 (project_id, user_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]261 self.expected_success(204, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]262 return resp, body
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]263
264 def create_domain(self, name, **kwargs):
265 """Creates a domain."""
266 description = kwargs.get('description', None)
267 en = kwargs.get('enabled', True)
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]268 post_body = common.Element("domain",
269 xmlns=XMLNS,
270 name=name,
271 description=description,
272 enabled=str(en).lower())
273 resp, body = self.post('domains', str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]274 self.expected_success(201, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]275 body = self._parse_body(etree.fromstring(body))
276 return resp, body
277
278 def list_domains(self):
279 """Get the list of domains."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]280 resp, body = self.get("domains")
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]281 self.expected_success(200, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]282 body = self._parse_domains(etree.fromstring(body))
283 return resp, body
284
285 def delete_domain(self, domain_id):
286 """Delete a domain."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]287 resp, body = self.delete('domains/%s' % domain_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]288 self.expected_success(204, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]289 return resp, body
290
291 def update_domain(self, domain_id, **kwargs):
292 """Updates a domain."""
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]293 _, body = self.get_domain(domain_id)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]294 description = kwargs.get('description', body['description'])
295 en = kwargs.get('enabled', body['enabled'])
296 name = kwargs.get('name', body['name'])
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]297 post_body = common.Element("domain",
298 xmlns=XMLNS,
299 name=name,
300 description=description,
301 enabled=str(en).lower())
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]302 resp, body = self.patch('domains/%s' % domain_id,
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]303 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]304 self.expected_success(200, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]305 body = self._parse_body(etree.fromstring(body))
306 return resp, body
307
308 def get_domain(self, domain_id):
309 """Get Domain details."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]310 resp, body = self.get('domains/%s' % domain_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]311 self.expected_success(200, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]312 body = self._parse_body(etree.fromstring(body))
313 return resp, body
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]314
315 def get_token(self, resp_token):
316 """GET a Token Details."""
317 headers = {'Content-Type': 'application/xml',
318 'Accept': 'application/xml',
319 'X-Subject-Token': resp_token}
320 resp, body = self.get("auth/tokens", headers=headers)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]321 self.expected_success(200, resp.status)
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]322 body = self._parse_body(etree.fromstring(body))
323 return resp, body
324
325 def delete_token(self, resp_token):
326 """Delete a Given Token."""
327 headers = {'X-Subject-Token': resp_token}
328 resp, body = self.delete("auth/tokens", headers=headers)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]329 self.expected_success(204, resp.status)
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]330 return resp, body
331
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]332 def create_group(self, name, **kwargs):
333 """Creates a group."""
334 description = kwargs.get('description', None)
335 domain_id = kwargs.get('domain_id', 'default')
336 project_id = kwargs.get('project_id', None)
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]337 post_body = common.Element("group",
338 xmlns=XMLNS,
339 name=name,
340 description=description,
341 domain_id=domain_id,
342 project_id=project_id)
343 resp, body = self.post('groups', str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]344 self.expected_success(201, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]345 body = self._parse_body(etree.fromstring(body))
346 return resp, body
347
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]348 def get_group(self, group_id):
349 """Get group details."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]350 resp, body = self.get('groups/%s' % group_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]351 self.expected_success(200, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]352 body = self._parse_body(etree.fromstring(body))
353 return resp, body
354
355 def update_group(self, group_id, **kwargs):
356 """Updates a group."""
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]357 _, body = self.get_group(group_id)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]358 name = kwargs.get('name', body['name'])
359 description = kwargs.get('description', body['description'])
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]360 post_body = common.Element("group",
361 xmlns=XMLNS,
362 name=name,
363 description=description)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]364 resp, body = self.patch('groups/%s' % group_id,
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]365 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]366 self.expected_success(200, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]367 body = self._parse_body(etree.fromstring(body))
368 return resp, body
369
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]370 def delete_group(self, group_id):
371 """Delete a group."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]372 resp, body = self.delete('groups/%s' % group_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]373 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]374 return resp, body
375
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]376 def add_group_user(self, group_id, user_id):
377 """Add user into group."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]378 resp, body = self.put('groups/%s/users/%s' % (group_id, user_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]379 self.expected_success(204, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]380 return resp, body
381
382 def list_group_users(self, group_id):
383 """List users in group."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]384 resp, body = self.get('groups/%s/users' % group_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]385 self.expected_success(200, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]386 body = self._parse_group_users(etree.fromstring(body))
387 return resp, body
388
wanglianmin29b0f4c2014-03-06 19:09:16 +0800[diff] [blame]389 def list_user_groups(self, user_id):
390 """Lists the groups which a user belongs to."""
391 resp, body = self.get('users/%s/groups' % user_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]392 self.expected_success(200, resp.status)
wanglianmin29b0f4c2014-03-06 19:09:16 +0800[diff] [blame]393 body = self._parse_groups(etree.fromstring(body))
394 return resp, body
395
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]396 def delete_group_user(self, group_id, user_id):
397 """Delete user in group."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]398 resp, body = self.delete('groups/%s/users/%s' % (group_id, user_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]399 self.expected_success(204, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]400 return resp, body
401
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]402 def assign_user_role_on_project(self, project_id, user_id, role_id):
403 """Add roles to a user on a project."""
404 resp, body = self.put('projects/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]405 (project_id, user_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]406 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]407 return resp, body
408
409 def assign_user_role_on_domain(self, domain_id, user_id, role_id):
410 """Add roles to a user on a domain."""
411 resp, body = self.put('domains/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]412 (domain_id, user_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]413 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]414 return resp, body
415
416 def list_user_roles_on_project(self, project_id, user_id):
417 """list roles of a user on a project."""
418 resp, body = self.get('projects/%s/users/%s/roles' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]419 (project_id, user_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]420 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]421 body = self._parse_roles(etree.fromstring(body))
422 return resp, body
423
424 def list_user_roles_on_domain(self, domain_id, user_id):
425 """list roles of a user on a domain."""
426 resp, body = self.get('domains/%s/users/%s/roles' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]427 (domain_id, user_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]428 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]429 body = self._parse_roles(etree.fromstring(body))
430 return resp, body
431
432 def revoke_role_from_user_on_project(self, project_id, user_id, role_id):
433 """Delete role of a user on a project."""
434 resp, body = self.delete('projects/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]435 (project_id, user_id, role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]436 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]437 return resp, body
438
439 def revoke_role_from_user_on_domain(self, domain_id, user_id, role_id):
440 """Delete role of a user on a domain."""
441 resp, body = self.delete('domains/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]442 (domain_id, user_id, role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]443 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]444 return resp, body
445
446 def assign_group_role_on_project(self, project_id, group_id, role_id):
447 """Add roles to a user on a project."""
448 resp, body = self.put('projects/%s/groups/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]449 (project_id, group_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]450 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]451 return resp, body
452
453 def assign_group_role_on_domain(self, domain_id, group_id, role_id):
454 """Add roles to a user on a domain."""
455 resp, body = self.put('domains/%s/groups/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]456 (domain_id, group_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]457 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]458 return resp, body
459
460 def list_group_roles_on_project(self, project_id, group_id):
461 """list roles of a user on a project."""
462 resp, body = self.get('projects/%s/groups/%s/roles' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]463 (project_id, group_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]464 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]465 body = self._parse_roles(etree.fromstring(body))
466 return resp, body
467
468 def list_group_roles_on_domain(self, domain_id, group_id):
469 """list roles of a user on a domain."""
470 resp, body = self.get('domains/%s/groups/%s/roles' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]471 (domain_id, group_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]472 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]473 body = self._parse_roles(etree.fromstring(body))
474 return resp, body
475
476 def revoke_role_from_group_on_project(self, project_id, group_id, role_id):
477 """Delete role of a user on a project."""
478 resp, body = self.delete('projects/%s/groups/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]479 (project_id, group_id, role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]480 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]481 return resp, body
482
483 def revoke_role_from_group_on_domain(self, domain_id, group_id, role_id):
484 """Delete role of a user on a domain."""
485 resp, body = self.delete('domains/%s/groups/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]486 (domain_id, group_id, role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]487 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]488 return resp, body
489
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]490
vponomaryov960eeb42014-02-22 18:25:25 +0200[diff] [blame]491class V3TokenClientXML(rest_client.RestClient):
492 TYPE = "xml"
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]493
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]494 def __init__(self):
495 super(V3TokenClientXML, self).__init__(None)
496 auth_url = CONF.identity.uri_v3
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]497 if not auth_url and CONF.identity_feature_enabled.api_v3:
498 raise exceptions.InvalidConfiguration('you must specify a v3 uri '
499 'if using the v3 identity '
500 'api')
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]501 if 'auth/tokens' not in auth_url:
502 auth_url = auth_url.rstrip('/') + '/auth/tokens'
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]503
504 self.auth_url = auth_url
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]505
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]506 def auth(self, user=None, password=None, tenant=None, user_type='id',
507 domain=None, token=None):
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]508 """
509 :param user: user id or name, as specified in user_type
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]510 :param domain: the user and tenant domain
511 :param token: a token to re-scope.
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]512
513 Accepts different combinations of credentials. Restrictions:
514 - tenant and domain are only name (no id)
515 - user domain and tenant domain are assumed identical
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]516 - domain scope is not supported here
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]517 Sample sample valid combinations:
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]518 - token
519 - token, tenant, domain
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]520 - user_id, password
521 - username, password, domain
522 - username, password, tenant, domain
523 Validation is left to the server side.
524 """
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]525
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]526 methods = common.Element('methods')
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]527 identity = common.Element('identity')
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]528
529 if token:
530 method = common.Element('method')
531 method.append(common.Text('token'))
532 methods.append(method)
533
534 token = common.Element('token', id=token)
535 identity.append(token)
536
537 if user and password:
538 if user_type == 'id':
539 _user = common.Element('user', id=user, password=password)
540 else:
541 _user = common.Element('user', name=user, password=password)
542 if domain is not None:
543 _domain = common.Element('domain', name=domain)
544 _user.append(_domain)
545
546 password = common.Element('password')
547 password.append(_user)
548 method = common.Element('method')
549 method.append(common.Text('password'))
550 methods.append(method)
551 identity.append(password)
552
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]553 identity.append(methods)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]554
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]555 auth = common.Element('auth')
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]556 auth.append(identity)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]557
558 if tenant is not None:
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]559 project = common.Element('project', name=tenant)
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]560 _domain = common.Element('domain', name=domain)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]561 project.append(_domain)
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]562 scope = common.Element('scope')
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]563 scope.append(project)
564 auth.append(scope)
565
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]566 resp, body = self.post(self.auth_url, body=str(common.Document(auth)))
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]567 return resp, body
568
Sergey Murashov4fccd322014-03-22 09:58:52 +0400[diff] [blame]569 def request(self, method, url, extra_headers=False, headers=None,
570 body=None):
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]571 """A simple HTTP request interface."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]572 if headers is None:
573 # Always accept 'json', for xml token client too.
574 # Because XML response is not easily
575 # converted to the corresponding JSON one
576 headers = self.get_headers(accept_type="json")
Sergey Murashov4fccd322014-03-22 09:58:52 +0400[diff] [blame]577 elif extra_headers:
578 try:
579 headers.update(self.get_headers(accept_type="json"))
580 except (ValueError, TypeError):
581 headers = self.get_headers(accept_type="json")
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]582 resp, resp_body = self.http_obj.request(url, method,
583 headers=headers, body=body)
Sean Dague89a85912014-03-19 16:37:29 -0400[diff] [blame]584 self._log_request(method, url, resp)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]585
586 if resp.status in [401, 403]:
587 resp_body = json.loads(resp_body)
588 raise exceptions.Unauthorized(resp_body['error']['message'])
589 elif resp.status not in [200, 201, 204]:
590 raise exceptions.IdentityError(
591 'Unexpected status code {0}'.format(resp.status))
592
593 return resp, json.loads(resp_body)
594
595 def get_token(self, user, password, tenant, domain='Default',
596 auth_data=False):
597 """
598 :param user: username
599 Returns (token id, token data) for supplied credentials
600 """
601 resp, body = self.auth(user, password, tenant, user_type='name',
602 domain=domain)
603
604 token = resp.get('x-subject-token')
605 if auth_data:
606 return token, body['token']
607 else:
608 return token