3 from sfa.util.config import Config
4 from sfa.util.xrn import Xrn, get_leaf, get_authority, hrn_to_urn
5 from sfa.util.plxrn import hostname_to_hrn, slicename_to_hrn, email_to_hrn, hrn_to_pl_slicename
6 from sfa.trust.gid import create_uuid
7 from sfa.trust.certificate import convert_public_key, Keypair
8 from sfa.storage.alchemy import dbsession
9 from sfa.storage.model import RegRecord, RegAuthority, RegUser, RegSlice, RegNode
10 from sfa.openstack.nova_shell import NovaShell
12 def load_keys(filename):
16 execfile(filename, tmp_dict)
17 if 'keys' in tmp_dict:
18 keys = tmp_dict['keys']
23 def save_keys(filename, keys):
24 f = open(filename, 'w')
25 f.write("keys = %s" % str(keys))
28 class OpenstackImporter:
30 def __init__ (self, auth_hierarchy, logger):
31 self.auth_hierarchy = auth_hierarchy
34 def add_options (self, parser):
35 self.logger.debug ("OpenstackImporter: no options yet")
38 def run (self, options):
39 # we don't have any options for now
40 self.logger.info ("OpenstackImporter.run : to do")
43 interface_hrn = config.SFA_INTERFACE_HRN
44 root_auth = config.SFA_REGISTRY_ROOT_AUTH
45 shell = NovaShell (config)
47 # create dict of all existing sfa records
51 for record in dbsession.query(RegRecord):
52 existing_records[ (record.hrn, record.type,) ] = record
53 existing_hrns.append(record.hrn)
56 persons = shell.auth_manager.get_users()
58 keys_filename = config.config_path + os.sep + 'person_keys.py'
59 old_person_keys = load_keys(keys_filename)
61 for person in persons:
62 hrn = config.SFA_INTERFACE_HRN + "." + person.id
63 persons_dict[hrn] = person
64 old_keys = old_person_keys.get(person.id, [])
65 keys = [k.public_key for k in shell.db.key_pair_get_all_by_user(person.id)]
66 person_keys[person.id] = keys
70 if hrn not in existing_hrns or \
71 (hrn, 'user') not in existing_records or update_record:
72 urn = hrn_to_urn(hrn, 'user')
76 pkey = convert_public_key(keys[0])
78 self.logger.log_exc('unable to convert public key for %s' % hrn)
79 pkey = Keypair(create=True)
81 self.logger.warn("OpenstackImporter: person %s does not have a PL public key"%hrn)
82 pkey = Keypair(create=True)
83 person_gid = self.auth_hierarchy.create_gid(urn, create_uuid(), pkey)
84 person_record = RegUser ()
85 person_record.type='user'
87 person_record.gid=person_gid
88 person_record.authority=get_authority(hrn)
89 dbsession.add(person_record)
91 self.logger.info("OpenstackImporter: imported person %s" % person_record)
94 projects = shell.auth_manager.get_projects()
96 for project in projects:
97 hrn = config.SFA_INTERFACE_HRN + '.' + project.id
98 projects_dict[hrn] = project
99 if hrn not in existing_hrns or \
100 (hrn, 'slice') not in existing_records:
101 pkey = Keypair(create=True)
102 urn = hrn_to_urn(hrn, 'slice')
103 project_gid = self.auth_hierarchy.create_gid(urn, create_uuid(), pkey)
104 project_record = RegSlice ()
105 project_record.type='slice'
106 project_record.hrn=hrn
107 project_record.gid=project_gid
108 project_record.authority=get_authority(hrn)
109 dbsession.add(project_record)
111 self.logger.info("OpenstackImporter: imported slice: %s" % project_record)
113 # remove stale records
114 system_records = [interface_hrn, root_auth, interface_hrn + '.slicemanager']
115 for (record_hrn, type) in existing_records.keys():
116 if record_hrn in system_records:
119 record = existing_records[(record_hrn, type)]
120 if record.peer_authority:
124 if record_hrn in persons_dict:
126 elif type == 'slice':
127 if record_hrn in projects_dict:
132 record_object = existing_records[ (record_hrn, type) ]
133 self.logger.info("OpenstackImporter: removing %s " % record)
134 dbsession.delete(record_object)
138 self.logger.info('OpenstackImporter: saving current pub keys')
139 save_keys(keys_filename, person_keys)