2 # vim:set ts=4 sw=4 expandtab:
3 # NodeManager plugin to empower slivers to make API calls
6 Sliver authentication support for NodeManager.
20 def start(options, conf):
21 logger.log("sliverauth plugin starting up...")
23 def SetSliverTag(plc, slice, tagname, value):
24 node_id = tools.node_id()
25 slivertags=plc.GetSliceTags({"name":slice,"node_id":node_id,"tagname":tagname})
26 if len(slivertags)==0:
27 slivertag_id=plc.AddSliceTag(slice,tagname,value,node_id)
29 slivertag_id=slivertags[0]['slice_tag_id']
30 plc.UpdateSliceTag(slivertag_id,value)
32 def GetSlivers(data, config, plc):
33 if 'slivers' not in data:
34 logger.log("sliverauth: getslivers data lack's sliver information. IGNORING!")
37 for sliver in data['slivers']:
39 for attribute in sliver['attributes']:
40 name = attribute.get('tagname',attribute.get('name',''))
43 hmac = attribute['value']
47 # XXX need a better random seed?!
48 random.seed(time.time())
49 d = [random.choice(string.letters) for x in xrange(32)]
51 SetSliverTag(plc,sliver['name'],'hmac',hmac)
52 logger.log("sliverauth setting %s hmac" % sliver['name'])
54 path = '/vservers/%s/etc/planetlab' % sliver['name']
55 if os.path.exists(path):
56 keyfile = '%s/key' % path
58 if os.path.exists(keyfile):
64 # create a temporary file in the vserver
65 fd, name = tempfile.mkstemp('','key',path)
68 if os.path.exists(keyfile):
70 os.rename(name,keyfile)
71 logger.log("sliverauth writing hmac to %s " % keyfile)
73 os.chmod(keyfile,0400)