Gitiles
Code Review Sign In
spfactory.storpool.com / tempest / 1e0a9f8f643b193a7bb49401fcee747d840e7b01 / . / tempest / services / identity / v3 / xml / identity_client.py
blob: 5c436929fc178dc11cff0cb52e09da8fdc381a29 [file] [log] [blame]
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]1# Copyright 2013 OpenStack Foundation
2# All Rights Reserved.
3#
4# Licensed under the Apache License, Version 2.0 (the "License"); you may
5# not use this file except in compliance with the License. You may obtain
6# a copy of the License at
7#
8# http://www.apache.org/licenses/LICENSE-2.0
9#
10# Unless required by applicable law or agreed to in writing, software
11# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13# License for the specific language governing permissions and limitations
14# under the License.
15
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]16import json
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]17import urllib
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]18
19from lxml import etree
20
vponomaryov960eeb42014-02-22 18:25:25 +0200[diff] [blame]21from tempest.common import rest_client
Matthew Treinish28f164c2014-03-04 18:55:06 +0000[diff] [blame]22from tempest.common import xml_utils as common
Matthew Treinish684d8992014-01-30 16:27:40 +0000[diff] [blame]23from tempest import config
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]24from tempest import exceptions
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]25
Matthew Treinish684d8992014-01-30 16:27:40 +0000[diff] [blame]26CONF = config.CONF
27
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]28XMLNS = "http://docs.openstack.org/identity/api/v3"
29
30
vponomaryov960eeb42014-02-22 18:25:25 +0200[diff] [blame]31class IdentityV3ClientXML(rest_client.RestClient):
32 TYPE = "xml"
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]33
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]34 def __init__(self, auth_provider):
35 super(IdentityV3ClientXML, self).__init__(auth_provider)
Matthew Treinish684d8992014-01-30 16:27:40 +0000[diff] [blame]36 self.service = CONF.identity.catalog_type
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]37 self.endpoint_url = 'adminURL'
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]38 self.api_version = "v3"
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]39
40 def _parse_projects(self, node):
41 array = []
42 for child in node.getchildren():
43 tag_list = child.tag.split('}', 1)
44 if tag_list[1] == "project":
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]45 array.append(common.xml_to_json(child))
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]46 return array
47
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]48 def _parse_domains(self, node):
49 array = []
50 for child in node.getchildren():
51 tag_list = child.tag.split('}', 1)
52 if tag_list[1] == "domain":
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]53 array.append(common.xml_to_json(child))
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]54 return array
55
wanglianmin29b0f4c2014-03-06 19:09:16 +0800[diff] [blame]56 def _parse_groups(self, node):
57 array = []
58 for child in node.getchildren():
59 tag_list = child.tag.split('}', 1)
60 if tag_list[1] == "group":
61 array.append(common.xml_to_json(child))
62 return array
63
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]64 def _parse_group_users(self, node):
65 array = []
66 for child in node.getchildren():
67 tag_list = child.tag.split('}', 1)
68 if tag_list[1] == "user":
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]69 array.append(common.xml_to_json(child))
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]70 return array
71
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]72 def _parse_roles(self, node):
73 array = []
74 for child in node.getchildren():
75 tag_list = child.tag.split('}', 1)
76 if tag_list[1] == "role":
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]77 array.append(common.xml_to_json(child))
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]78 return array
79
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]80 def _parse_users(self, node):
81 array = []
82 for child in node.getchildren():
83 tag_list = child.tag.split('}', 1)
84 if tag_list[1] == "user":
85 array.append(common.xml_to_json(child))
86 return array
87
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]88 def _parse_array(self, node):
89 array = []
90 for child in node.getchildren():
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]91 array.append(common.xml_to_json(child))
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]92 return array
93
94 def _parse_body(self, body):
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]95 _json = common.xml_to_json(body)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]96 return _json
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]97
98 def create_user(self, user_name, **kwargs):
99 """Creates a user."""
100 password = kwargs.get('password', None)
101 email = kwargs.get('email', None)
102 en = kwargs.get('enabled', 'true')
103 project_id = kwargs.get('project_id', None)
104 description = kwargs.get('description', None)
105 domain_id = kwargs.get('domain_id', 'default')
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]106 post_body = common.Element("user",
107 xmlns=XMLNS,
108 name=user_name,
109 password=password,
110 description=description,
111 email=email,
112 enabled=str(en).lower(),
113 project_id=project_id,
114 domain_id=domain_id)
115 resp, body = self.post('users', str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]116 self.expected_success(201, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]117 body = self._parse_body(etree.fromstring(body))
118 return resp, body
119
120 def update_user(self, user_id, name, **kwargs):
121 """Updates a user."""
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]122 _, body = self.get_user(user_id)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]123 email = kwargs.get('email', body['email'])
124 en = kwargs.get('enabled', body['enabled'])
125 project_id = kwargs.get('project_id', body['project_id'])
126 description = kwargs.get('description', body['description'])
127 domain_id = kwargs.get('domain_id', body['domain_id'])
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]128 update_user = common.Element("user",
129 xmlns=XMLNS,
130 name=name,
131 email=email,
132 project_id=project_id,
133 domain_id=domain_id,
134 description=description,
135 enabled=str(en).lower())
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]136 resp, body = self.patch('users/%s' % user_id,
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]137 str(common.Document(update_user)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]138 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]139 body = self._parse_body(etree.fromstring(body))
140 return resp, body
141
ravikumar-venkatesand35d6442014-05-05 12:14:45 +0000[diff] [blame]142 def update_user_password(self, user_id, password, original_password):
143 """Updates a user password."""
144 update_user = common.Element("user",
145 xmlns=XMLNS,
146 password=password,
147 original_password=original_password)
148 resp, _ = self.post('users/%s/password' % user_id,
149 str(common.Document(update_user)))
150 self.expected_success(204, resp.status)
151 return resp
152
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]153 def list_user_projects(self, user_id):
154 """Lists the projects on which a user has roles assigned."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]155 resp, body = self.get('users/%s/projects' % user_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]156 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]157 body = self._parse_projects(etree.fromstring(body))
158 return resp, body
159
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]160 def get_users(self, params=None):
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]161 """Get the list of users."""
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]162 url = 'users'
163 if params:
164 url += '?%s' % urllib.urlencode(params)
165 resp, body = self.get(url)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]166 self.expected_success(200, resp.status)
nayna-patel2db83b32014-05-15 11:41:03 +0000[diff] [blame]167 body = self._parse_users(etree.fromstring(body))
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]168 return resp, body
169
170 def get_user(self, user_id):
171 """GET a user."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]172 resp, body = self.get("users/%s" % user_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]173 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]174 body = self._parse_body(etree.fromstring(body))
175 return resp, body
176
177 def delete_user(self, user_id):
178 """Deletes a User."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]179 resp, body = self.delete("users/%s" % user_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]180 self.expected_success(204, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]181 return resp, body
182
183 def create_project(self, name, **kwargs):
184 """Creates a project."""
185 description = kwargs.get('description', None)
186 en = kwargs.get('enabled', 'true')
187 domain_id = kwargs.get('domain_id', 'default')
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]188 post_body = common.Element("project",
189 xmlns=XMLNS,
190 description=description,
191 domain_id=domain_id,
192 enabled=str(en).lower(),
193 name=name)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]194 resp, body = self.post('projects',
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]195 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]196 self.expected_success(201, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]197 body = self._parse_body(etree.fromstring(body))
198 return resp, body
199
nayna-patel153e9dd2014-05-16 09:00:05 +0000[diff] [blame]200 def list_projects(self, params=None):
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]201 """Get the list of projects."""
nayna-patel153e9dd2014-05-16 09:00:05 +0000[diff] [blame]202 url = 'projects'
203 if params:
204 url += '?%s' % urllib.urlencode(params)
205 resp, body = self.get(url)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]206 self.expected_success(200, resp.status)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]207 body = self._parse_projects(etree.fromstring(body))
208 return resp, body
209
210 def update_project(self, project_id, **kwargs):
211 """Updates a Project."""
212 resp, body = self.get_project(project_id)
213 name = kwargs.get('name', body['name'])
214 desc = kwargs.get('description', body['description'])
215 en = kwargs.get('enabled', body['enabled'])
216 domain_id = kwargs.get('domain_id', body['domain_id'])
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]217 post_body = common.Element("project",
218 xmlns=XMLNS,
219 name=name,
220 description=desc,
221 enabled=str(en).lower(),
222 domain_id=domain_id)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]223 resp, body = self.patch('projects/%s' % project_id,
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]224 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]225 self.expected_success(200, resp.status)
Nayna Patele6331362013-08-12 06:59:48 +0000[diff] [blame]226 body = self._parse_body(etree.fromstring(body))
227 return resp, body
228
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]229 def get_project(self, project_id):
230 """GET a Project."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]231 resp, body = self.get("projects/%s" % project_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]232 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]233 body = self._parse_body(etree.fromstring(body))
234 return resp, body
235
236 def delete_project(self, project_id):
237 """Delete a project."""
238 resp, body = self.delete('projects/%s' % str(project_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]239 self.expected_success(204, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]240 return resp, body
241
242 def create_role(self, name):
243 """Create a Role."""
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]244 post_body = common.Element("role",
245 xmlns=XMLNS,
246 name=name)
247 resp, body = self.post('roles', str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]248 self.expected_success(201, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]249 body = self._parse_body(etree.fromstring(body))
250 return resp, body
251
252 def get_role(self, role_id):
253 """GET a Role."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]254 resp, body = self.get('roles/%s' % str(role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]255 self.expected_success(200, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]256 body = self._parse_body(etree.fromstring(body))
257 return resp, body
258
wanglianmina3e84ea2014-03-26 17:30:33 +0800[diff] [blame]259 def list_roles(self):
260 """Get the list of Roles."""
261 resp, body = self.get("roles")
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]262 self.expected_success(200, resp.status)
wanglianmina3e84ea2014-03-26 17:30:33 +0800[diff] [blame]263 body = self._parse_roles(etree.fromstring(body))
264 return resp, body
265
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]266 def update_role(self, name, role_id):
267 """Updates a Role."""
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]268 post_body = common.Element("role",
269 xmlns=XMLNS,
270 name=name)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]271 resp, body = self.patch('roles/%s' % str(role_id),
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]272 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]273 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]274 body = self._parse_body(etree.fromstring(body))
275 return resp, body
276
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]277 def delete_role(self, role_id):
278 """Delete a role."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]279 resp, body = self.delete('roles/%s' % str(role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]280 self.expected_success(204, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]281 return resp, body
282
283 def assign_user_role(self, project_id, user_id, role_id):
284 """Add roles to a user on a tenant."""
285 resp, body = self.put('projects/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]286 (project_id, user_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]287 self.expected_success(204, resp.status)
rajalakshmi-ganesan7312bb52013-01-29 20:03:42 +0530[diff] [blame]288 return resp, body
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]289
290 def create_domain(self, name, **kwargs):
291 """Creates a domain."""
292 description = kwargs.get('description', None)
293 en = kwargs.get('enabled', True)
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]294 post_body = common.Element("domain",
295 xmlns=XMLNS,
296 name=name,
297 description=description,
298 enabled=str(en).lower())
299 resp, body = self.post('domains', str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]300 self.expected_success(201, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]301 body = self._parse_body(etree.fromstring(body))
302 return resp, body
303
304 def list_domains(self):
305 """Get the list of domains."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]306 resp, body = self.get("domains")
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]307 self.expected_success(200, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]308 body = self._parse_domains(etree.fromstring(body))
309 return resp, body
310
311 def delete_domain(self, domain_id):
312 """Delete a domain."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]313 resp, body = self.delete('domains/%s' % domain_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]314 self.expected_success(204, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]315 return resp, body
316
317 def update_domain(self, domain_id, **kwargs):
318 """Updates a domain."""
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]319 _, body = self.get_domain(domain_id)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]320 description = kwargs.get('description', body['description'])
321 en = kwargs.get('enabled', body['enabled'])
322 name = kwargs.get('name', body['name'])
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]323 post_body = common.Element("domain",
324 xmlns=XMLNS,
325 name=name,
326 description=description,
327 enabled=str(en).lower())
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]328 resp, body = self.patch('domains/%s' % domain_id,
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]329 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]330 self.expected_success(200, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]331 body = self._parse_body(etree.fromstring(body))
332 return resp, body
333
334 def get_domain(self, domain_id):
335 """Get Domain details."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]336 resp, body = self.get('domains/%s' % domain_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]337 self.expected_success(200, resp.status)
nayna-patel4df72dc2013-05-29 10:27:24 +0000[diff] [blame]338 body = self._parse_body(etree.fromstring(body))
339 return resp, body
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]340
341 def get_token(self, resp_token):
342 """GET a Token Details."""
343 headers = {'Content-Type': 'application/xml',
344 'Accept': 'application/xml',
345 'X-Subject-Token': resp_token}
346 resp, body = self.get("auth/tokens", headers=headers)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]347 self.expected_success(200, resp.status)
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]348 body = self._parse_body(etree.fromstring(body))
349 return resp, body
350
351 def delete_token(self, resp_token):
352 """Delete a Given Token."""
353 headers = {'X-Subject-Token': resp_token}
354 resp, body = self.delete("auth/tokens", headers=headers)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]355 self.expected_success(204, resp.status)
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]356 return resp, body
357
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]358 def create_group(self, name, **kwargs):
359 """Creates a group."""
360 description = kwargs.get('description', None)
361 domain_id = kwargs.get('domain_id', 'default')
362 project_id = kwargs.get('project_id', None)
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]363 post_body = common.Element("group",
364 xmlns=XMLNS,
365 name=name,
366 description=description,
367 domain_id=domain_id,
368 project_id=project_id)
369 resp, body = self.post('groups', str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]370 self.expected_success(201, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]371 body = self._parse_body(etree.fromstring(body))
372 return resp, body
373
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]374 def get_group(self, group_id):
375 """Get group details."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]376 resp, body = self.get('groups/%s' % group_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]377 self.expected_success(200, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]378 body = self._parse_body(etree.fromstring(body))
379 return resp, body
380
381 def update_group(self, group_id, **kwargs):
382 """Updates a group."""
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]383 _, body = self.get_group(group_id)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]384 name = kwargs.get('name', body['name'])
385 description = kwargs.get('description', body['description'])
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]386 post_body = common.Element("group",
387 xmlns=XMLNS,
388 name=name,
389 description=description)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]390 resp, body = self.patch('groups/%s' % group_id,
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]391 str(common.Document(post_body)))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]392 self.expected_success(200, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]393 body = self._parse_body(etree.fromstring(body))
394 return resp, body
395
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]396 def delete_group(self, group_id):
397 """Delete a group."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]398 resp, body = self.delete('groups/%s' % group_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]399 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]400 return resp, body
401
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]402 def add_group_user(self, group_id, user_id):
403 """Add user into group."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]404 resp, body = self.put('groups/%s/users/%s' % (group_id, user_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]405 self.expected_success(204, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]406 return resp, body
407
408 def list_group_users(self, group_id):
409 """List users in group."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]410 resp, body = self.get('groups/%s/users' % group_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]411 self.expected_success(200, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]412 body = self._parse_group_users(etree.fromstring(body))
413 return resp, body
414
wanglianmin29b0f4c2014-03-06 19:09:16 +0800[diff] [blame]415 def list_user_groups(self, user_id):
416 """Lists the groups which a user belongs to."""
417 resp, body = self.get('users/%s/groups' % user_id)
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]418 self.expected_success(200, resp.status)
wanglianmin29b0f4c2014-03-06 19:09:16 +0800[diff] [blame]419 body = self._parse_groups(etree.fromstring(body))
420 return resp, body
421
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]422 def delete_group_user(self, group_id, user_id):
423 """Delete user in group."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]424 resp, body = self.delete('groups/%s/users/%s' % (group_id, user_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]425 self.expected_success(204, resp.status)
Zhi Kun Liue8136f02014-01-07 18:56:28 +0800[diff] [blame]426 return resp, body
427
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]428 def assign_user_role_on_project(self, project_id, user_id, role_id):
429 """Add roles to a user on a project."""
430 resp, body = self.put('projects/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]431 (project_id, user_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]432 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]433 return resp, body
434
435 def assign_user_role_on_domain(self, domain_id, user_id, role_id):
436 """Add roles to a user on a domain."""
437 resp, body = self.put('domains/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]438 (domain_id, user_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]439 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]440 return resp, body
441
442 def list_user_roles_on_project(self, project_id, user_id):
443 """list roles of a user on a project."""
444 resp, body = self.get('projects/%s/users/%s/roles' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]445 (project_id, user_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]446 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]447 body = self._parse_roles(etree.fromstring(body))
448 return resp, body
449
450 def list_user_roles_on_domain(self, domain_id, user_id):
451 """list roles of a user on a domain."""
452 resp, body = self.get('domains/%s/users/%s/roles' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]453 (domain_id, user_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]454 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]455 body = self._parse_roles(etree.fromstring(body))
456 return resp, body
457
458 def revoke_role_from_user_on_project(self, project_id, user_id, role_id):
459 """Delete role of a user on a project."""
460 resp, body = self.delete('projects/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]461 (project_id, user_id, role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]462 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]463 return resp, body
464
465 def revoke_role_from_user_on_domain(self, domain_id, user_id, role_id):
466 """Delete role of a user on a domain."""
467 resp, body = self.delete('domains/%s/users/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]468 (domain_id, user_id, role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]469 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]470 return resp, body
471
472 def assign_group_role_on_project(self, project_id, group_id, role_id):
473 """Add roles to a user on a project."""
474 resp, body = self.put('projects/%s/groups/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]475 (project_id, group_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]476 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]477 return resp, body
478
479 def assign_group_role_on_domain(self, domain_id, group_id, role_id):
480 """Add roles to a user on a domain."""
481 resp, body = self.put('domains/%s/groups/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]482 (domain_id, group_id, role_id), '')
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]483 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]484 return resp, body
485
486 def list_group_roles_on_project(self, project_id, group_id):
487 """list roles of a user on a project."""
488 resp, body = self.get('projects/%s/groups/%s/roles' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]489 (project_id, group_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]490 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]491 body = self._parse_roles(etree.fromstring(body))
492 return resp, body
493
494 def list_group_roles_on_domain(self, domain_id, group_id):
495 """list roles of a user on a domain."""
496 resp, body = self.get('domains/%s/groups/%s/roles' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]497 (domain_id, group_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]498 self.expected_success(200, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]499 body = self._parse_roles(etree.fromstring(body))
500 return resp, body
501
502 def revoke_role_from_group_on_project(self, project_id, group_id, role_id):
503 """Delete role of a user on a project."""
504 resp, body = self.delete('projects/%s/groups/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]505 (project_id, group_id, role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]506 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]507 return resp, body
508
509 def revoke_role_from_group_on_domain(self, domain_id, group_id, role_id):
510 """Delete role of a user on a domain."""
511 resp, body = self.delete('domains/%s/groups/%s/roles/%s' %
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]512 (domain_id, group_id, role_id))
David Kranze9d2f422014-07-02 13:57:41 -0400[diff] [blame]513 self.expected_success(204, resp.status)
nayna-patel755d8142013-07-16 06:45:34 +0000[diff] [blame]514 return resp, body
515
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]516
vponomaryov960eeb42014-02-22 18:25:25 +0200[diff] [blame]517class V3TokenClientXML(rest_client.RestClient):
518 TYPE = "xml"
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]519
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]520 def __init__(self):
521 super(V3TokenClientXML, self).__init__(None)
522 auth_url = CONF.identity.uri_v3
ajayaa1fdc78a2014-07-09 16:51:13 +0530[diff] [blame]523 if not auth_url:
Matthew Treinishdb2c5972014-01-31 22:18:59 +0000[diff] [blame]524 raise exceptions.InvalidConfiguration('you must specify a v3 uri '
525 'if using the v3 identity '
526 'api')
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]527 if 'auth/tokens' not in auth_url:
528 auth_url = auth_url.rstrip('/') + '/auth/tokens'
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]529
530 self.auth_url = auth_url
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]531
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]532 def auth(self, user=None, password=None, tenant=None, user_type='id',
533 domain=None, token=None):
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]534 """
535 :param user: user id or name, as specified in user_type
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]536 :param domain: the user and tenant domain
537 :param token: a token to re-scope.
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]538
539 Accepts different combinations of credentials. Restrictions:
540 - tenant and domain are only name (no id)
541 - user domain and tenant domain are assumed identical
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]542 - domain scope is not supported here
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]543 Sample sample valid combinations:
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]544 - token
545 - token, tenant, domain
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]546 - user_id, password
547 - username, password, domain
548 - username, password, tenant, domain
549 Validation is left to the server side.
550 """
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]551
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]552 methods = common.Element('methods')
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]553 identity = common.Element('identity')
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]554
555 if token:
556 method = common.Element('method')
557 method.append(common.Text('token'))
558 methods.append(method)
559
560 token = common.Element('token', id=token)
561 identity.append(token)
562
563 if user and password:
564 if user_type == 'id':
565 _user = common.Element('user', id=user, password=password)
566 else:
567 _user = common.Element('user', name=user, password=password)
568 if domain is not None:
569 _domain = common.Element('domain', name=domain)
570 _user.append(_domain)
571
572 password = common.Element('password')
573 password.append(_user)
574 method = common.Element('method')
575 method.append(common.Text('password'))
576 methods.append(method)
577 identity.append(password)
578
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]579 identity.append(methods)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]580
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]581 auth = common.Element('auth')
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]582 auth.append(identity)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]583
584 if tenant is not None:
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]585 project = common.Element('project', name=tenant)
Brant Knudsonc5553292014-03-15 11:06:05 -0500[diff] [blame]586 _domain = common.Element('domain', name=domain)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]587 project.append(_domain)
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]588 scope = common.Element('scope')
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]589 scope.append(project)
590 auth.append(scope)
591
Haiwei Xuaad85db2014-03-05 05:17:39 +0900[diff] [blame]592 resp, body = self.post(self.auth_url, body=str(common.Document(auth)))
David Kranzfb3efa72014-08-28 16:58:25 -0400[diff] [blame]593 self.expected_success(201, resp.status)
nayna-patelb35f7232013-06-28 07:08:44 +0000[diff] [blame]594 return resp, body
595
Sergey Murashov4fccd322014-03-22 09:58:52 +0400[diff] [blame]596 def request(self, method, url, extra_headers=False, headers=None,
597 body=None):
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]598 """A simple HTTP request interface."""
Valeriy Ponomaryov88686d82014-02-16 12:24:51 +0200[diff] [blame]599 if headers is None:
600 # Always accept 'json', for xml token client too.
601 # Because XML response is not easily
602 # converted to the corresponding JSON one
603 headers = self.get_headers(accept_type="json")
Sergey Murashov4fccd322014-03-22 09:58:52 +0400[diff] [blame]604 elif extra_headers:
605 try:
606 headers.update(self.get_headers(accept_type="json"))
607 except (ValueError, TypeError):
608 headers = self.get_headers(accept_type="json")
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]609 resp, resp_body = self.http_obj.request(url, method,
610 headers=headers, body=body)
Sean Dague89a85912014-03-19 16:37:29 -0400[diff] [blame]611 self._log_request(method, url, resp)
Andrea Frittoli8bbdb162014-01-06 11:06:13 +0000[diff] [blame]612
613 if resp.status in [401, 403]:
614 resp_body = json.loads(resp_body)
615 raise exceptions.Unauthorized(resp_body['error']['message'])
616 elif resp.status not in [200, 201, 204]:
617 raise exceptions.IdentityError(
618 'Unexpected status code {0}'.format(resp.status))
619
620 return resp, json.loads(resp_body)
621
622 def get_token(self, user, password, tenant, domain='Default',
623 auth_data=False):
624 """
625 :param user: username
626 Returns (token id, token data) for supplied credentials
627 """
628 resp, body = self.auth(user, password, tenant, user_type='name',
629 domain=domain)
630
631 token = resp.get('x-subject-token')
632 if auth_data:
633 return token, body['token']
634 else:
635 return token