planetstack/observer/steps/sync_users.py

   1 import os
   2 import base64
   3 import hashlib
   4 from django.db.models import F, Q
   5 from planetstack.config import Config
   6 from observer.openstacksyncstep import OpenStackSyncStep
   7 from core.models.user import User
   8
   9 class SyncUsers(OpenStackSyncStep):
  10     provides=[User]
  11     requested_interval=0
  12
  13     def fetch_pending(self):
  14         return User.objects.filter(Q(enacted__lt=F('updated')) | Q(enacted=None))
  15
  16     def sync_record(self, user):
  17         name = user.email[:user.email.find('@')]
  18         user_fields = {'name': name,
  19                        'email': user.email,
  20                        'password': hashlib.md5(user.password).hexdigest()[:6],
  21                        'enabled': True}
  22         if not user.kuser_id:
  23             keystone_user = self.driver.create_user(**user_fields)
  24             user.kuser_id = keystone_user.id
  25         else:
  26             self.driver.update_user(user.kuser_id, user_fields)
  27
  28         if user.site:
  29             self.driver.add_user_role(user.kuser_id, user.site.tenant_id, 'user')
  30             if user.is_admin:
  31                 self.driver.add_user_role(user.kuser_id, user.site.tenant_id, 'admin')
  32             else:
  33                 # may have admin role so attempt to remove it
  34                 self.driver.delete_user_role(user.kuser_id, user.site.tenant_id, 'admin')
  35
  36         if user.public_key:
  37             driver = self.driver.client_driver(caller=user, tenant=user.site.login_base)
  38             key_fields =  {'name': user.keyname,
  39                            'public_key': user.public_key}
  40             driver.create_keypair(**key_fields)
  41
  42         user.save()