¡@
OpenStack Study: volume_encryption_metadata.py**** CubicPower OpenStack Study ****
# Copyright (c) 2013 The Johns Hopkins University/Applied Physics Laboratory # All Rights Reserved. # # Licensed under the Apache License, Version 2.0 (the "License"); you may # not use this file except in compliance with the License. You may obtain # a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the # License for the specific language governing permissions and limitations # under the License. """The volume encryption metadata extension.""" from cinder.api import extensions from cinder.api.openstack import wsgi from cinder.api import xmlutil from cinder import db from cinder.volume import volume_types authorize = extensions.extension_authorizer('volume', 'volume_encryption_metadata')
**** CubicPower OpenStack Study **** class VolumeEncryptionMetadataTemplate(xmlutil.TemplateBuilder):
**** CubicPower OpenStack Study **** def construct(self): root = xmlutil.make_flat_dict('encryption', selector='encryption') return xmlutil.MasterTemplate(root, 1)
**** CubicPower OpenStack Study **** class VolumeEncryptionMetadataController(wsgi.Controller): """The volume encryption metadata API extension."""
**** CubicPower OpenStack Study **** def _get_volume_encryption_metadata(self, context, volume_id): return db.volume_encryption_metadata_get(context, volume_id)
**** CubicPower OpenStack Study **** def _is_volume_type_encrypted(self, context, volume_id): volume_ref = db.volume_get(context, volume_id) volume_type_id = volume_ref['volume_type_id'] return volume_types.is_encrypted(context, volume_type_id)
**** CubicPower OpenStack Study **** def _get_metadata(self, req, volume_id): context = req.environ['cinder.context'] authorize(context) if self._is_volume_type_encrypted(context, volume_id): return self._get_volume_encryption_metadata(context, volume_id) else: return { 'encryption_key_id': None, # Additional metadata defaults could go here. } @wsgi.serializers(xml=VolumeEncryptionMetadataTemplate)
**** CubicPower OpenStack Study **** def index(self, req, volume_id): """Returns the encryption metadata for a given volume.""" return self._get_metadata(req, volume_id) @wsgi.serializers(xml=VolumeEncryptionMetadataTemplate)
**** CubicPower OpenStack Study **** def show(self, req, volume_id, id): """Return a single encryption item.""" encryption_item = self.index(req, volume_id) if encryption_item is not None: return encryption_item[id] else: return None
**** CubicPower OpenStack Study **** class Volume_encryption_metadata(extensions.ExtensionDescriptor): """Volume encryption metadata retrieval support.""" name = "VolumeEncryptionMetadata" alias = "os-volume-encryption-metadata" namespace = ("http://docs.openstack.org/volume/ext/" "os-volume-encryption-metadata/api/v1") updated = "2013-07-10T00:00:00+00:00"
**** CubicPower OpenStack Study **** def get_resources(self): resources = [] res = extensions.ResourceExtension( 'encryption', VolumeEncryptionMetadataController(), parent=dict(member_name='volume', collection_name='volumes')) resources.append(res) return resources
|