3 from sfa.util.config import Config
4 from sfa.util.xrn import Xrn, get_authority, hrn_to_urn
6 from sfa.senslab.slabdriver import SlabDriver
7 from sfa.senslab.slabpostgres import SliceSenslab, slab_dbsession
9 from sfa.trust.certificate import Keypair,convert_public_key
10 from sfa.trust.gid import create_uuid
12 from sfa.storage.alchemy import dbsession
13 from sfa.storage.model import RegRecord, RegAuthority, RegSlice, RegNode, \
15 from sfa.util.sfalogging import logger
17 from sqlalchemy.exc import SQLAlchemyError
20 def _get_site_hrn(site):
26 def __init__ (self, auth_hierarchy, loc_logger):
27 self.auth_hierarchy = auth_hierarchy
28 self.logger = loc_logger
29 self.logger.setLevelDebug()
31 def hostname_to_hrn_escaped(self, root_auth, hostname):
32 return '.'.join( [root_auth,Xrn.escape(hostname)] )
36 def slicename_to_hrn(self, person_hrn):
37 return (person_hrn +'_slice')
39 def add_options (self, parser):
40 # we don't have any options for now
43 def find_record_by_type_hrn(self,type,hrn):
44 return self.records_by_type_hrn.get ( (type, hrn), None)
46 def locate_by_type_pointer (self, type, pointer):
47 print>>sys.stderr, " \r\n \r\n \t SLABPOSTGRES locate_by_type_pointer .........................."
48 ret = self.records_by_type_pointer.get ( (type, pointer), None)
49 print>>sys.stderr, " \r\n \r\n \t SLABPOSTGRES locate_by_type_pointer "
52 def update_just_added_records_dict (self, record):
53 tuple = (record.type, record.hrn)
54 if tuple in self.records_by_type_hrn:
55 self.logger.warning ("SlabImporter.update_just_added_records_dict: duplicate (%s,%s)"%tuple)
57 self.records_by_type_hrn [ tuple ] = record
59 def run (self, options):
62 slabdriver = SlabDriver(config)
64 #Create special slice table for senslab
66 if not slabdriver.db.exists('slice_senslab'):
67 slabdriver.db.createtable('slice_senslab')
68 self.logger.info ("SlabImporter.run: slice_senslab table created ")
70 #retrieve all existing SFA objects
71 all_records = dbsession.query(RegRecord).all()
73 #create hash by (type,hrn)
74 #used to know if a given record is already known to SFA
76 self.records_by_type_hrn = \
77 dict ( [ ( (record.type,record.hrn) , record ) for record in all_records ] )
79 # create hash by (type,pointer)
80 self.records_by_type_pointer = \
81 dict ( [ ( (str(record.type),record.pointer) , record ) for record in all_records if record.pointer != -1] )
83 # initialize record.stale to True by default, then mark stale=False on the ones that are in use
84 for record in all_records:
87 nodes_listdict = slabdriver.GetNodes()
88 nodes_by_id = dict([(node['node_id'],node) for node in nodes_listdict])
89 sites_listdict = slabdriver.GetSites()
91 ldap_person_listdict = slabdriver.GetPersons()
92 slices_listdict = slabdriver.GetSlices()
94 slices_by_userid = dict ( [ (one_slice['record_id_user'], one_slice ) for one_slice in slices_listdict ] )
96 self.logger.log_exc("SlabImporter: failed to create list of slices by user id.")
99 for site in sites_listdict:
100 site_hrn = _get_site_hrn(site)
101 site_record = self.find_record_by_type_hrn ('authority', site_hrn)
104 urn = hrn_to_urn(site_hrn, 'authority')
105 if not self.auth_hierarchy.auth_exists(urn):
106 self.auth_hierarchy.create_auth(urn)
107 auth_info = self.auth_hierarchy.get_auth_info(urn)
108 site_record = RegAuthority(hrn=site_hrn, gid=auth_info.get_gid_object(),
110 authority=get_authority(site_hrn))
111 site_record.just_created()
112 dbsession.add(site_record)
114 self.logger.info("SlabImporter: imported authority (site) : %s" % site_record)
115 self.update_just_added_records_dict(site_record)
116 except SQLAlchemyError:
117 # if the site import fails then there is no point in trying to import the
118 # site's child records (node, slices, persons), so skip them.
119 self.logger.log_exc("SlabImporter: failed to import site. Skipping child records")
122 # xxx update the record ...
124 site_record.stale=False
126 # import node records in site
127 for node_id in site['node_ids']:
129 node = nodes_by_id[node_id]
131 self.logger.warning ("SlabImporter: cannot find node_id %s - ignored"%node_id)
133 site_auth = get_authority(site_hrn)
134 site_name = site['name']
135 escaped_hrn = self.hostname_to_hrn_escaped(slabdriver.root_auth, node['hostname'])
136 print>>sys.stderr, "\r\n \r\n SLABIMPORTER node %s " %(node)
140 # xxx this sounds suspicious
141 if len(hrn) > 64: hrn = hrn[:64]
142 node_record = self.find_record_by_type_hrn( 'node', hrn )
145 pkey = Keypair(create=True)
146 urn = hrn_to_urn(escaped_hrn, 'node')
147 node_gid = self.auth_hierarchy.create_gid(urn, create_uuid(), pkey)
148 def slab_get_authority(hrn):
149 return hrn.split(".")[0]
151 node_record = RegNode (hrn=hrn, gid=node_gid,
153 authority=slab_get_authority(hrn))
154 node_record.just_created()
155 dbsession.add(node_record)
157 self.logger.info("SlabImporter: imported node: %s" % node_record)
158 self.update_just_added_records_dict(node_record)
160 self.logger.log_exc("SlabImporter: failed to import node")
162 # xxx update the record ...
164 node_record.stale=False
168 for person in ldap_person_listdict :
169 if 'ssh-rsa' not in person['pkey']:
171 person_hrn = person['hrn']
172 slice_hrn = self.slicename_to_hrn(person['hrn'])
174 # xxx suspicious again
175 if len(person_hrn) > 64: person_hrn = person_hrn[:64]
176 person_urn = hrn_to_urn(person_hrn, 'user')
178 user_record = self.find_record_by_type_hrn('user', person_hrn)
179 slice_record = self.find_record_by_type_hrn ('slice', slice_hrn)
181 # return a tuple pubkey (a plc key object) and pkey (a Keypair object)
182 def init_person_key (person, slab_key):
185 # randomly pick first key in set
189 pkey = convert_public_key(pubkey)
191 #key not good. create another pkey
192 self.logger.warn('SlabImporter: \
193 unable to convert public \
194 key for %s' % person_hrn)
195 pkey = Keypair(create=True)
198 # the user has no keys. Creating a random keypair for the user's gid
199 self.logger.warn("SlabImporter: person %s does not have a PL public key"%person_hrn)
200 pkey = Keypair(create=True)
201 return (pubkey, pkey)
205 slab_key = person['pkey']
208 (pubkey,pkey) = init_person_key (person, slab_key )
209 if pubkey is not None and pkey is not None :
210 person_gid = self.auth_hierarchy.create_gid(person_urn, create_uuid(), pkey)
212 print>>sys.stderr, "\r\n \r\n SLAB IMPORTER PERSON EMAIL OK email %s " %(person['email'])
213 person_gid.set_email(person['email'])
214 user_record = RegUser (hrn=person_hrn, gid=person_gid,
216 authority=get_authority(person_hrn),
217 email=person['email'])
219 user_record = RegUser (hrn=person_hrn, gid=person_gid,
221 authority=get_authority(person_hrn))
224 user_record.reg_keys = [RegKey (pubkey)]
226 self.logger.warning("No key found for user %s"%user_record)
227 user_record.just_created()
228 dbsession.add (user_record)
230 self.logger.info("SlabImporter: imported person: %s" % user_record)
231 print>>sys.stderr, "\r\n \r\n SLAB IMPORTER PERSON IMPORT NOTuser_record %s " %(user_record)
232 self.update_just_added_records_dict( user_record )
234 # update the record ?
235 # if user's primary key has changed then we need to update the
236 # users gid by forcing an update here
237 sfa_keys = user_record.reg_keys
240 if slab_key is not sfa_keys :
243 (pubkey,pkey) = init_person_key (person, slab_key)
244 person_gid = self.auth_hierarchy.create_gid(person_urn, create_uuid(), pkey)
246 user_record.reg_keys=[]
248 user_record.reg_keys=[ RegKey (pubkey)]
249 self.logger.info("SlabImporter: updated person: %s" % user_record)
251 user_record.email = person['email']
253 user_record.stale=False
255 self.logger.log_exc("SlabImporter: failed to import person %s"%(person) )
258 slice = slices_by_userid[user_record.record_id]
260 self.logger.warning ("SlabImporter: cannot locate slices_by_userid[user_record.record_id] %s - ignored"%user_record)
262 if not slice_record :
264 pkey = Keypair(create=True)
265 urn = hrn_to_urn(slice_hrn, 'slice')
266 slice_gid = self.auth_hierarchy.create_gid(urn, create_uuid(), pkey)
267 slice_record = RegSlice (hrn=slice_hrn, gid=slice_gid,
269 authority=get_authority(slice_hrn))
271 slice_record.just_created()
272 dbsession.add(slice_record)
275 #Serial id created after commit
277 sl_rec = dbsession.query(RegSlice).filter(RegSlice.hrn.match(slice_hrn)).all()
279 slab_slice = SliceSenslab( slice_hrn = slice_hrn, record_id_slice=sl_rec[0].record_id, record_id_user= user_record.record_id)
280 print>>sys.stderr, "\r\n \r\n SLAB IMPORTER SLICE IMPORT NOTslice_record %s \r\n slab_slice %s" %(sl_rec,slab_slice)
281 slab_dbsession.add(slab_slice)
282 slab_dbsession.commit()
283 self.logger.info("SlabImporter: imported slice: %s" % slice_record)
284 self.update_just_added_records_dict ( slice_record )
287 self.logger.log_exc("SlabImporter: failed to import slice")
289 #No slice update upon import in senslab
291 # xxx update the record ...
292 self.logger.warning ("Slice update not yet implemented")
294 # record current users affiliated with the slice
297 slice_record.reg_researchers = [user_record]
299 slice_record.stale=False
303 ### remove stale records
304 # special records must be preserved
305 system_hrns = [slabdriver.hrn, slabdriver.root_auth, slabdriver.hrn+ '.slicemanager']
306 for record in all_records:
307 if record.hrn in system_hrns:
309 if record.peer_authority:
313 for record in all_records:
318 self.logger.warning("stale not found with %s"%record)
320 self.logger.info("SlabImporter: deleting stale record: %s" % record)
321 dbsession.delete(record)