3 from sfa.util.config import Config
4 from sfa.util.xrn import Xrn, get_authority, hrn_to_urn
6 from sfa.senslab.slabdriver import SlabDriver
7 from sfa.senslab.slabpostgres import SenslabXP, slab_dbsession
9 from sfa.trust.certificate import Keypair,convert_public_key
10 from sfa.trust.gid import create_uuid
12 from sfa.storage.alchemy import dbsession
13 from sfa.storage.model import RegRecord, RegAuthority, RegSlice, RegNode, \
15 from sfa.util.sfalogging import logger
17 from sqlalchemy.exc import SQLAlchemyError
20 def _get_site_hrn(site):
26 def __init__ (self, auth_hierarchy, loc_logger):
27 self.auth_hierarchy = auth_hierarchy
28 self.logger = loc_logger
29 self.logger.setLevelDebug()
31 def hostname_to_hrn_escaped(self, root_auth, hostname):
32 return '.'.join( [root_auth,Xrn.escape(hostname)] )
36 def slicename_to_hrn(self, person_hrn):
37 return (person_hrn +'_slice')
39 def add_options (self, parser):
40 # we don't have any options for now
43 def find_record_by_type_hrn(self,type,hrn):
44 return self.records_by_type_hrn.get ( (type, hrn), None)
46 def locate_by_type_pointer (self, type, pointer):
47 print>>sys.stderr, " \r\n \r\n \t SLABPOSTGRES locate_by_type_pointer .........................."
48 ret = self.records_by_type_pointer.get ( (type, pointer), None)
49 print>>sys.stderr, " \r\n \r\n \t SLABPOSTGRES locate_by_type_pointer "
52 def update_just_added_records_dict (self, record):
53 tuple = (record.type, record.hrn)
54 if tuple in self.records_by_type_hrn:
55 self.logger.warning ("SlabImporter.update_just_added_records_dict: duplicate (%s,%s)"%tuple)
57 self.records_by_type_hrn [ tuple ] = record
59 def run (self, options):
62 slabdriver = SlabDriver(config)
64 #Create special slice table for senslab
66 if not slabdriver.db.exists('slab_xp'):
67 slabdriver.db.createtable()
68 self.logger.info ("SlabImporter.run: slab_xp table created ")
70 #retrieve all existing SFA objects
71 all_records = dbsession.query(RegRecord).all()
73 #create hash by (type,hrn)
74 #used to know if a given record is already known to SFA
76 self.records_by_type_hrn = \
77 dict ( [ ( (record.type,record.hrn) , record ) for record in all_records ] )
79 # create hash by (type,pointer)
80 self.records_by_type_pointer = \
81 dict ( [ ( (str(record.type),record.pointer) , record ) for record in all_records if record.pointer != -1] )
83 # initialize record.stale to True by default, then mark stale=False on the ones that are in use
84 for record in all_records:
87 nodes_listdict = slabdriver.GetNodes()
88 nodes_by_id = dict([(node['node_id'],node) for node in nodes_listdict])
89 sites_listdict = slabdriver.GetSites()
91 ldap_person_listdict = slabdriver.GetPersons()
92 print>>sys.stderr,"\r\n SLABIMPORT \t ldap_person_listdict %s \r\n" %(ldap_person_listdict)
93 slices_listdict = slabdriver.GetSlices()
95 slices_by_userid = dict ( [ (one_slice['record_id_user'], one_slice ) for one_slice in slices_listdict ] )
97 self.logger.log_exc("SlabImporter: failed to create list of slices by user id.")
100 for site in sites_listdict:
101 site_hrn = _get_site_hrn(site)
102 site_record = self.find_record_by_type_hrn ('authority', site_hrn)
105 urn = hrn_to_urn(site_hrn, 'authority')
106 if not self.auth_hierarchy.auth_exists(urn):
107 self.auth_hierarchy.create_auth(urn)
108 auth_info = self.auth_hierarchy.get_auth_info(urn)
109 site_record = RegAuthority(hrn=site_hrn, gid=auth_info.get_gid_object(),
111 authority=get_authority(site_hrn))
112 site_record.just_created()
113 dbsession.add(site_record)
115 self.logger.info("SlabImporter: imported authority (site) : %s" % site_record)
116 self.update_just_added_records_dict(site_record)
117 except SQLAlchemyError:
118 # if the site import fails then there is no point in trying to import the
119 # site's child records (node, slices, persons), so skip them.
120 self.logger.log_exc("SlabImporter: failed to import site. Skipping child records")
123 # xxx update the record ...
125 site_record.stale=False
127 # import node records in site
128 for node_id in site['node_ids']:
130 node = nodes_by_id[node_id]
132 self.logger.warning ("SlabImporter: cannot find node_id %s - ignored"%node_id)
134 site_auth = get_authority(site_hrn)
135 site_name = site['name']
136 escaped_hrn = self.hostname_to_hrn_escaped(slabdriver.root_auth, node['hostname'])
137 print>>sys.stderr, "\r\n \r\n SLABIMPORTER node %s " %(node)
141 # xxx this sounds suspicious
142 if len(hrn) > 64: hrn = hrn[:64]
143 node_record = self.find_record_by_type_hrn( 'node', hrn )
146 pkey = Keypair(create=True)
147 urn = hrn_to_urn(escaped_hrn, 'node')
148 node_gid = self.auth_hierarchy.create_gid(urn, create_uuid(), pkey)
149 def slab_get_authority(hrn):
150 return hrn.split(".")[0]
152 node_record = RegNode (hrn=hrn, gid=node_gid,
154 authority=slab_get_authority(hrn))
155 node_record.just_created()
156 dbsession.add(node_record)
158 #self.logger.info("SlabImporter: imported node: %s" % node_record)
159 self.update_just_added_records_dict(node_record)
161 self.logger.log_exc("SlabImporter: failed to import node")
163 # xxx update the record ...
165 node_record.stale=False
169 for person in ldap_person_listdict :
170 print>>sys.stderr,"SlabImporter: person: %s" %(person['hrn'])
171 if 'ssh-rsa' not in person['pkey']:
172 #people with invalid ssh key (ssh-dss, empty, bullshit keys...)
175 person_hrn = person['hrn']
176 slice_hrn = self.slicename_to_hrn(person['hrn'])
178 # xxx suspicious again
179 if len(person_hrn) > 64: person_hrn = person_hrn[:64]
180 person_urn = hrn_to_urn(person_hrn, 'user')
182 user_record = self.find_record_by_type_hrn('user', person_hrn)
183 slice_record = self.find_record_by_type_hrn ('slice', slice_hrn)
185 # return a tuple pubkey (a plc key object) and pkey (a Keypair object)
186 def init_person_key (person, slab_key):
189 # randomly pick first key in set
193 pkey = convert_public_key(pubkey)
195 #key not good. create another pkey
196 self.logger.warn('SlabImporter: \
197 unable to convert public \
198 key for %s' % person_hrn)
199 pkey = Keypair(create=True)
202 # the user has no keys. Creating a random keypair for the user's gid
203 self.logger.warn("SlabImporter: person %s does not have a public key"%person_hrn)
204 pkey = Keypair(create=True)
205 return (pubkey, pkey)
209 slab_key = person['pkey']
212 (pubkey,pkey) = init_person_key (person, slab_key )
213 if pubkey is not None and pkey is not None :
214 person_gid = self.auth_hierarchy.create_gid(person_urn, create_uuid(), pkey)
216 print>>sys.stderr, "\r\n \r\n SLAB IMPORTER PERSON EMAIL OK email %s " %(person['email'])
217 person_gid.set_email(person['email'])
218 user_record = RegUser (hrn=person_hrn, gid=person_gid,
220 authority=get_authority(person_hrn),
221 email=person['email'])
223 user_record = RegUser (hrn=person_hrn, gid=person_gid,
225 authority=get_authority(person_hrn))
228 user_record.reg_keys = [RegKey (pubkey)]
230 self.logger.warning("No key found for user %s"%user_record)
231 user_record.just_created()
232 dbsession.add (user_record)
234 self.logger.info("SlabImporter: imported person: %s" % user_record)
235 self.update_just_added_records_dict( user_record )
237 # update the record ?
238 # if user's primary key has changed then we need to update the
239 # users gid by forcing an update here
240 sfa_keys = user_record.reg_keys
243 if slab_key is not sfa_keys :
246 print>>sys.stderr,"SlabImporter: \t \t USER UPDATE person: %s" %(person['hrn'])
247 (pubkey,pkey) = init_person_key (person, slab_key)
248 person_gid = self.auth_hierarchy.create_gid(person_urn, create_uuid(), pkey)
250 user_record.reg_keys=[]
252 user_record.reg_keys=[ RegKey (pubkey)]
253 self.logger.info("SlabImporter: updated person: %s" % user_record)
256 user_record.email = person['email']
260 user_record.stale = False
262 self.logger.log_exc("SlabImporter: failed to import person %s"%(person) )
265 slice = slices_by_userid[user_record.record_id]
267 self.logger.warning ("SlabImporter: cannot locate slices_by_userid[user_record.record_id] %s - ignored"%user_record)
269 if not slice_record :
271 pkey = Keypair(create=True)
272 urn = hrn_to_urn(slice_hrn, 'slice')
273 slice_gid = self.auth_hierarchy.create_gid(urn, create_uuid(), pkey)
274 slice_record = RegSlice (hrn=slice_hrn, gid=slice_gid,
276 authority=get_authority(slice_hrn))
278 slice_record.just_created()
279 dbsession.add(slice_record)
282 #Serial id created after commit
284 sl_rec = dbsession.query(RegSlice).filter(RegSlice.hrn.match(slice_hrn)).all()
286 #slab_slice = SenslabXP( slice_hrn = slice_hrn, record_id_slice=sl_rec[0].record_id, record_id_user= user_record.record_id)
287 #print>>sys.stderr, "\r\n \r\n SLAB IMPORTER SLICE IMPORT NOTslice_record %s \r\n slab_slice %s" %(sl_rec,slab_slice)
288 #slab_dbsession.add(slab_slice)
289 #slab_dbsession.commit()
290 #self.logger.info("SlabImporter: imported slice: %s" % slice_record)
291 self.update_just_added_records_dict ( slice_record )
294 self.logger.log_exc("SlabImporter: failed to import slice")
296 #No slice update upon import in senslab
298 # xxx update the record ...
299 self.logger.warning ("Slice update not yet implemented")
301 # record current users affiliated with the slice
304 slice_record.reg_researchers = [user_record]
306 slice_record.stale=False
310 ### remove stale records
311 # special records must be preserved
312 system_hrns = [slabdriver.hrn, slabdriver.root_auth, slabdriver.hrn+ '.slicemanager']
313 for record in all_records:
314 if record.hrn in system_hrns:
316 if record.peer_authority:
320 for record in all_records:
321 if record.type == 'user':
322 print>>sys.stderr,"SlabImporter: stale records: hrn %s %s" %(record.hrn,record.stale)
327 self.logger.warning("stale not found with %s"%record)
329 self.logger.info("SlabImporter: deleting stale record: %s" % record)
330 #if record.type == 'user':
331 #rec = slab_dbsession.query(SenslabXP).filter_by(record_id_user = record.record_id).first()
332 #slab_dbsession.delete(rec)
333 #slab_dbsession.commit()
334 dbsession.delete(record)