**** CubicPower OpenStack Study ****
# Copyright (c) 2012 OpenStack Foundation
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import webob.exc
from nova.api.openstack import extensions
from nova.api.openstack import wsgi
from nova.api.openstack import xmlutil
import nova.cert.rpcapi
from nova.openstack.common.gettextutils import _
authorize = extensions.extension_authorizer('compute', 'certificates')
**** CubicPower OpenStack Study ****
def make_certificate(elem):
elem.set('data')
elem.set('private_key')
**** CubicPower OpenStack Study ****
class CertificateTemplate(xmlutil.TemplateBuilder):
**** CubicPower OpenStack Study ****
def construct(self):
root = xmlutil.TemplateElement('certificate',
selector='certificate')
make_certificate(root)
return xmlutil.MasterTemplate(root, 1)
def _translate_certificate_view(certificate, private_key=None):
return {
'data': certificate,
'private_key': private_key,
}
**** CubicPower OpenStack Study ****
def _translate_certificate_view(certificate, private_key=None):
return {
'data': certificate,
'private_key': private_key,
}
**** CubicPower OpenStack Study ****
class CertificatesController(object):
"""The x509 Certificates API controller for the OpenStack API."""
**** CubicPower OpenStack Study ****
def __init__(self):
self.cert_rpcapi = nova.cert.rpcapi.CertAPI()
super(CertificatesController, self).__init__()
@wsgi.serializers(xml=CertificateTemplate)
**** CubicPower OpenStack Study ****
def show(self, req, id):
"""Return certificate information."""
context = req.environ['nova.context']
authorize(context)
if id != 'root':
msg = _("Only root certificate can be retrieved.")
raise webob.exc.HTTPNotImplemented(explanation=msg)
cert = self.cert_rpcapi.fetch_ca(context,
project_id=context.project_id)
return {'certificate': _translate_certificate_view(cert)}
@wsgi.serializers(xml=CertificateTemplate)
**** CubicPower OpenStack Study ****
def create(self, req, body=None):
"""Create a certificate."""
context = req.environ['nova.context']
authorize(context)
pk, cert = self.cert_rpcapi.generate_x509_cert(context,
user_id=context.user_id, project_id=context.project_id)
return {'certificate': _translate_certificate_view(cert, pk)}
**** CubicPower OpenStack Study ****
class Certificates(extensions.ExtensionDescriptor):
"""Certificates support."""
name = "Certificates"
alias = "os-certificates"
namespace = ("http://docs.openstack.org/compute/ext/"
"certificates/api/v1.1")
updated = "2012-01-19T00:00:00+00:00"
**** CubicPower OpenStack Study ****
def get_resources(self):
resources = []
res = extensions.ResourceExtension('os-certificates',
CertificatesController(),
member_actions={})
resources.append(res)
return resources