from sfa.util.faults import SfaInvalidArgument, InvalidRSpec, SfatablesRejected
-from sfa.util.xrn import urn_to_hrn
+from sfa.util.sfatime import datetime_to_string
+from sfa.util.xrn import Xrn, urn_to_hrn
from sfa.util.method import Method
from sfa.util.sfatablesRuntime import run_sfatables
from sfa.trust.credential import Credential
from sfa.storage.parameter import Parameter, Mixed
from sfa.rspecs.rspec import RSpec
+from sfa.util.sfalogging import logger
class Allocate(Method):
"""
interfaces = ['aggregate', 'slicemgr']
accepts = [
Parameter(str, "Slice URN"),
- Parameter(dict, "List of credentials"),
+ Parameter(type([dict]), "List of credentials"),
Parameter(str, "RSpec"),
Parameter(dict, "options"),
]
def call(self, xrn, creds, rspec, options):
xrn = Xrn(xrn, type='slice')
- self.api.logger.info("interface: %s\ttarget-hrn: %s\tmethod-name: %s"%(self.api.interface, xrn.get_hrn(), self.name))
# Find the valid credentials
- valid_creds = self.api.auth.checkCredentials(creds, 'createsliver', xrn.get_hrn())
+ valid_creds = self.api.auth.checkCredentialsSpeaksFor(creds, 'createsliver', xrn.get_hrn(), options=options)
+ the_credential = Credential(cred=valid_creds[0])
+
+ # use the expiration from the first valid credential to determine when
+ # the slivers should expire.
+ expiration = datetime_to_string(the_credential.expiration)
- # make sure request is not empty
- slivers = RSpec(rspec).version.get_nodes_with_slivers()
- if not slivers:
- raise InvalidRSpec("Missing <sliver_type> or <sliver> element. Request rspec must explicitly allocate slivers")
+ self.api.logger.debug("Allocate, received expiration from credential: %s"%expiration)
+
+# turned off, as passing an empty rspec is indeed useful for cleaning up the slice
+# # make sure request is not empty
+# slivers = RSpec(rspec).version.get_nodes_with_slivers()
+# if not slivers:
+# raise InvalidRSpec("Missing <sliver_type> or <sliver> element. Request rspec must explicitly allocate slivers")
# flter rspec through sfatables
if self.api.interface in ['aggregate']:
elif self.api.interface in ['slicemgr']:
chain_name = 'FORWARD-INCOMING'
self.api.logger.debug("Allocate: sfatables on chain %s"%chain_name)
- origin_hrn = Credential(string=valid_creds[0]).get_gid_caller().get_hrn()
- rspec = run_sfatables(chain_name, xrn.get_hrn(), origin_hrn, rspec)
- slivers = RSpec(rspec).version.get_nodes_with_slivers()
- if not slivers:
- raise SfatablesRejected(slice_xrn)
+ actual_caller_hrn = the_credential.actual_caller_hrn()
+ self.api.logger.info("interface: %s\tcaller-hrn: %s\ttarget-hrn: %s\tmethod-name: %s"%(self.api.interface, actual_caller_hrn, xrn.get_hrn(), self.name))
+ rspec = run_sfatables(chain_name, xrn.get_hrn(), actual_caller_hrn, rspec)
+# turned off, as passing an empty rspec is indeed useful for cleaning up the slice
+# slivers = RSpec(rspec).version.get_nodes_with_slivers()
+# if not slivers:
+# raise SfatablesRejected(slice_xrn)
- result = self.api.manager.Allocate(self.api, xrn.get_urn(), creds, rspec, options)
+ # pass this to the driver code in case they need it
+ options['actual_caller_hrn'] = actual_caller_hrn
+ result = self.api.manager.Allocate(self.api, xrn.get_urn(), creds, rspec, expiration, options)
return result
git://git.onelab.eu / sfa.git / blobdiff