¡@

Home 

OpenStack Study: certificates.py

OpenStack Index

**** CubicPower OpenStack Study ****

# Copyright (c) 2012 OpenStack Foundation

#

# Licensed under the Apache License, Version 2.0 (the "License"); you may

# not use this file except in compliance with the License. You may obtain

# a copy of the License at

#

# http://www.apache.org/licenses/LICENSE-2.0

#

# Unless required by applicable law or agreed to in writing, software

# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT

# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the

# License for the specific language governing permissions and limitations

# under the License.

import webob.exc

from nova.api.openstack import extensions

from nova.api.openstack import wsgi

from nova.api.openstack import xmlutil

import nova.cert.rpcapi

from nova.openstack.common.gettextutils import _

authorize = extensions.extension_authorizer('compute', 'certificates')

**** CubicPower OpenStack Study ****

def make_certificate(elem):

    elem.set('data')

    elem.set('private_key')

**** CubicPower OpenStack Study ****

class CertificateTemplate(xmlutil.TemplateBuilder):

**** CubicPower OpenStack Study ****

    def construct(self):

        root = xmlutil.TemplateElement('certificate',

                                       selector='certificate')

        make_certificate(root)

        return xmlutil.MasterTemplate(root, 1)

def _translate_certificate_view(certificate, private_key=None):

    return {

        'data': certificate,

        'private_key': private_key,

    }

**** CubicPower OpenStack Study ****

def _translate_certificate_view(certificate, private_key=None):

    return {

        'data': certificate,

        'private_key': private_key,

    }

**** CubicPower OpenStack Study ****

class CertificatesController(object):

"""The x509 Certificates API controller for the OpenStack API."""

**** CubicPower OpenStack Study ****

    def __init__(self):

        self.cert_rpcapi = nova.cert.rpcapi.CertAPI()

        super(CertificatesController, self).__init__()

    @wsgi.serializers(xml=CertificateTemplate)

**** CubicPower OpenStack Study ****

    def show(self, req, id):

        """Return certificate information."""

        context = req.environ['nova.context']

        authorize(context)

        if id != 'root':

            msg = _("Only root certificate can be retrieved.")

            raise webob.exc.HTTPNotImplemented(explanation=msg)

        cert = self.cert_rpcapi.fetch_ca(context,

                project_id=context.project_id)

        return {'certificate': _translate_certificate_view(cert)}

    @wsgi.serializers(xml=CertificateTemplate)

**** CubicPower OpenStack Study ****

    def create(self, req, body=None):

        """Create a certificate."""

        context = req.environ['nova.context']

        authorize(context)

        pk, cert = self.cert_rpcapi.generate_x509_cert(context,

                user_id=context.user_id, project_id=context.project_id)

        return {'certificate': _translate_certificate_view(cert, pk)}

**** CubicPower OpenStack Study ****

class Certificates(extensions.ExtensionDescriptor):

"""Certificates support."""

name = "Certificates"

alias = "os-certificates"

namespace = ("http://docs.openstack.org/compute/ext/"

"certificates/api/v1.1")

updated = "2012-01-19T00:00:00+00:00"

**** CubicPower OpenStack Study ****

    def get_resources(self):

        resources = []

        res = extensions.ResourceExtension('os-certificates',

                         CertificatesController(),

                         member_actions={})

        resources.append(res)

        return resources