code refactoring for tenant management API #729
Conversation
|
Please review it @msterin @shaominchen |
|
@lipingxue CI failing. Please fix. |
| return operation_fail(error_info) | ||
|
|
||
| name = args.name | ||
| name = args.name |
There was a problem hiding this comment.
Currently we do not validate any parameters. We should. Separate PR is fine with me.
There was a problem hiding this comment.
Issue #734 is filed to track this.
| @@ -324,6 +326,25 @@ def add_volume_to_volumes_table(tenant_uuid, datastore, vol_name, vol_size_in_MB | |||
|
|
|||
| return None | |||
|
|
|||
| def remove_volume_from_volumes_table(tenant_uuid, datastore, vol_name): | |||
| """ Remove volume from volumes table. """ | |||
There was a problem hiding this comment.
Can we add a line about return code e.g. "Returns None on success or error string" to all functions?
| vm_uuid = vmdk_utils.get_vm_uuid_by_name(vm_name) | ||
| if not vm_uuid: | ||
| error_info = "Cannot find vm_uuid for vm {0}, tenant_create failed".format(vm_name) | ||
| return error_info, None |
There was a problem hiding this comment.
I think I had commented on this last PR. We should not terminate loop on first bad VM name. Rather iterate through entire list and return VMs that are successfully assigned and VMs that couldn't be found.
| 'global_visibility': 0, | ||
| 'create_volume': 0, | ||
| 'delete_volume': 0, | ||
| 'mount_volume': 0, |
There was a problem hiding this comment.
nit: Looks off by a space.
| def default_privileges(): | ||
| privileges = [{'datastore': 'datastore1', | ||
| 'global_visibility': 0, | ||
| 'create_volume': 0, |
There was a problem hiding this comment.
Are we going to group privileges as discussed in #709
There was a problem hiding this comment.
I think this is a refactoring of existing code, changing/ grouping provileges should not be in this PR IMO.
There was a problem hiding this comment.
Sure. Fine with separate PR.
There was a problem hiding this comment.
Existing issue #709 tracked this.
| @@ -28,6 +28,7 @@ | |||
| CMD_REMOVE = 'remove' | |||
| CMD_ATTACH = 'attach' | |||
| CMD_DETACH = 'detach' | |||
| CMD_LIST = 'list' | |||
There was a problem hiding this comment.
I had removed this in my last PR. Any reason we are re-introducing?
See executeRequest. Auth checks are bypassed for 'list' command.
There was a problem hiding this comment.
In my unit test code, I need to test 'list' command. It seems that your change assume we only put commands which need authorize in auth.py. I will remove 'list' command from this file and update the comment.
| # mount_volume, max_volume_size, usage_quota) | ||
| privileges_dict = {} | ||
| privileges_dict[auth_data_const.COL_DATASTORE] = privileges[1] | ||
| privileges_dict[auth_data_const.COL_GLOBAL_VISIBILITY] = privileges[2] |
There was a problem hiding this comment.
Didn't we get rid of GLOBAL_VISIBILITY?
There was a problem hiding this comment.
+1 on this one - there are too many open issues on this one , we need to drop it.
There was a problem hiding this comment.
Done. Remove "global_visibility" from the code.
| @@ -359,15 +359,16 @@ def create_tables(self): | |||
| ''' | |||
| CREATE TABLE tenants( | |||
| -- uuid for the tenant, which is generated by create_tenant() API | |||
| id TEXT PRIMARY KEY NOT NULL, | |||
| id TEXT NOT NULL, | |||
There was a problem hiding this comment.
If name is unique then why do we need ID?
There was a problem hiding this comment.
so we can rename without moving volumes, and have something invariant no matter what the ever-changing name is :-)
Still ma consider using it as a key, just need to be careful on rename
There was a problem hiding this comment.
PR ##711 tracks "tenant rename".
| vol_size_in_MB = convert.convert_to_MB(auth.get_vol_size(opts)) | ||
| auth.add_volume_to_volumes_table(tenant_uuid, datastore, vol_name, vol_size_in_MB) | ||
| else: | ||
| logging.warning(" VM %s does not belong to any tenant", vm_name) |
There was a problem hiding this comment.
warnings can flood logs. How about changing it to debug?
There was a problem hiding this comment.
I think it's not a big deal now - we should not have this warning once "_fallback" is implemented - in which case "not belonging to any tenant" is a warning and the access for VM is denied
However given the costs, it's easier to change to debug than discuss :-)
There was a problem hiding this comment.
Change the log to "DEBUG".
| return error_info | ||
| else: | ||
| if not vm_name: | ||
| logging.warning("VM %s does not belong to any tenant", vm_name) |
There was a problem hiding this comment.
Same here. These warnings can flood logs. Change it to debug?
There was a problem hiding this comment.
Please try to avoid copy-n-paste of messages. It is usually an indication that you need to either introduce a global for format string, or a simple function to return formatted string
There was a problem hiding this comment.
In this PR, I just define a global for format string. But in the long run, I think we need to have a file which defines all the error code and corresponding error string for all the error message we used in our code.
| privileges = privileges) | ||
|
|
||
| error_info, tenant = auth_api._tenant_create( | ||
| name = name, |
There was a problem hiding this comment.
Applies to multiple places:
PEP8 https://www.python.org/dev/peps/pep-0008/#whitespace-in-expressions-and-statements:
Don't use spaces around the = sign when used to indicate a keyword argument or a default parameter value.
Yes:
def complex(real, imag=0.0):
return magic(r=real, i=imag)
No:
def complex(real, imag = 0.0):
return magic(r = real, i = imag)
(note that spaces around assignment in other cases are still needed)
| datastore = args.datastore | ||
| rights = args.rights | ||
| volume_maxsize = args.volume_maxsize | ||
| volume_totalsize = args.volume_totalsize |
There was a problem hiding this comment.
are those assignment really needed ? What prevents us from simply callng
error_info = auth_api._tenant_access_add(
name=args.name,
datastore=args.datastore,
privileges=generate_privileges(args),
...| privileges_dict = modify_privileges(privileges_dict, args) | ||
|
|
||
| error_info = tenant.set_datastore_access_privileges(_auth_mgr.conn, [privileges_dict]) | ||
| error_info = auth_api._tenant_access_set(name, datastore, add_rights, rm_rights, volume_maxsize, volume_totalsize) |
There was a problem hiding this comment.
same question - assignment above do not not seem to be needed, you can use param=args.field in the call to _tenant_access_set
the comment applies to the rest of the wrappers too
| import auth_data | ||
| import vmdk_utils | ||
|
|
||
| def get_auth_mgr(): |
There was a problem hiding this comment.
dosctrings are missing, please add - that applies to all new methods/functions
| def get_auth_mgr(): | ||
| try: | ||
| auth_mgr = auth.get_auth_mgr() | ||
| except auth_data.DbConnectionError, e: |
There was a problem hiding this comment.
If it's new code, please use 'except as . If this is just code move, its OK to leave it as is
| if (not self.datastore_name): | ||
| datastores = vmdk_utils.get_datastores() | ||
| datastore = datastores[0] | ||
| if (not datastore): |
There was a problem hiding this comment.
this looks suspicious. Is there a case where non-empty array with None as the first element is returned by get_datastores() ?
|
|
||
| def tearDown(self): | ||
| """ Cleanup after each test """ | ||
| logging.debug("VMDKTenantTest tearDown path") |
There was a problem hiding this comment.
logging.info ? we are in tests, it's important to have traces
| vmdk_ops.removeVMDK(vmdk_path) | ||
|
|
||
| # cleanup existing tenant | ||
| error_info = auth_api._tenant_rm( |
There was a problem hiding this comment.
nit: PEP8 (just a reminder). no spaces around = in param assignment
| self.assertEqual("tenant2_vol2", result[1]['Name']) | ||
| self.assertEqual("tenant2_vol3", result[2]['Name']) | ||
|
|
||
|
|
There was a problem hiding this comment.
A general comment on tests: it is better to have them data drivel . I.e. instead of using tenantx_volx ad opts and other stuff in the code, ALL that should be in data structures and the test should just taverse the structures. See example (testInfo traversing) in vmdk_ops_test.py.
It's OK to leave it as is for this PR but please do open an issue for test rearrangement and making them data driven - that allows to understand tests better and to add to the test set easily
There was a problem hiding this comment.
Issue #740 is filed to track this
| @@ -62,6 +62,7 @@ def test_create_delete(self): | |||
|
|
|||
| def test_delete_nonexistent_policy_fails(self): | |||
| self.assertNotEqual(None, vsan_policy.delete(self.name)) | |||
| print ("The test itself is expected to fail, and please ignore the errors printed above.") | |||
There was a problem hiding this comment.
does not it have to be stderr ? Or log ? (just asking since I do not see this message in the log
There was a problem hiding this comment.
put it in logging.info.
lipingxue
force-pushed
the
auth_refactor.liping
branch
from
68c5e04
to
fd1fa8b
Compare
| @@ -0,0 +1,336 @@ | |||
| import auth | |||
There was a problem hiding this comment.
Please add standard file header
There was a problem hiding this comment.
I thought it was auto-generated? CC/ @kerneltime
There was a problem hiding this comment.
It was auto-generated when we did a pass of adding headers :-). Now it is copy-n-paste before push.
| -- brief description of the tenant, which is specified by user when creating the tenant | ||
| -- this field can be changed laster by using set_description API | ||
| description TEXT, | ||
| -- not use currently | ||
| default_datastore TEXT | ||
| default_datastore TEXT, | ||
| PRIMARY KEY(id, name) |
There was a problem hiding this comment.
why do we need a key with both id, name ? does it mean the key changes when name changes ?
I thought ID would be the key and name would be just a text field (unique is good, but just text, not key) ?
There was a problem hiding this comment.
Done. Make "name" to be UNIQUE, but not the key.
| @@ -446,6 +442,12 @@ def create_tenant(self, name, description, default_datastore, default_privileges | |||
|
|
|||
| """ | |||
| logging.debug ("create_tenant name=%s", name) | |||
| error_info, exist_tenant = self.get_tenant(name) | |||
| if exist_tenant: | |||
| error_info = error_code.TENANT_ALREADY_EXIST.format(name) | |||
| @@ -0,0 +1,7 @@ | |||
| # Tenant related error message | |||
There was a problem hiding this comment.
Please add standard file header
| @@ -214,4 +214,38 @@ def get_vm_uuid_by_name(vm_name): | |||
| return vm[0].config.uuid | |||
| except: | |||
| return None | |||
| def get_datastore_path(ds_name): | |||
| for (datastore, url_name, path) in get_datastores(): | |||
There was a problem hiding this comment.
dosctring (or comment) is missing. Also, an empty line before def is needed
| privileges=privileges) | ||
| if error_info: | ||
| return error_info, None | ||
|
|
There was a problem hiding this comment.
Print/ Log not_found_vms informing user?
| vol_name = vmdk_utils.strip_vmdk_extension(vmdk['filename']), | ||
| vm_name = None, | ||
| tenant_uuid = tenant_id, | ||
| datastore = vmdk['datastore']) |
There was a problem hiding this comment.
Spaces still exist. Forgot to push?
| VM_NOT_BELONG_TO_TENANT = "VM {0} does not belong to any tenant" | ||
| TENANT_NOT_EXIST = "Tenant {0} does not exist" | ||
| TENANT_ALREADY_EXIST = "Tenant {0} already exists" | ||
|
|
| return err(msg) | ||
|
|
||
| error_info = err(msg) | ||
| remove_err = removeVMDK(vmdk_path = vmdk_path, |
| logging.warning(" VM %s does not belong to any tenant", vm_name) | ||
|
|
||
| elif cmd == "create": | ||
| response = createVMDK(vmdk_path = vmdk_path, |
| elif cmd == "remove": | ||
| response = removeVMDK(vmdk_path) | ||
| response = removeVMDK(vmdk_path = vmdk_path, |
|
@lipingxue - it looks like there are some conflicts to be resolved. and the latest changes (marked as "done" are still not in. Looking forward... |
|
Yes. After rebase with the master, there are some conflict with latest change in master(Bruno's change). I am addressing those conflict and rerun the test. Will do the push when it is done. |
lipingxue
force-pushed
the
auth_refactor.liping
branch
from
fd1fa8b
to
f77514a
Compare
|
@msterin I have resolved conflict and push the change. Please take another look. |
| @@ -438,52 +438,6 @@ def remove_vm(si, vm_name): | |||
| task = vm.Destroy_Task() | |||
| vmdk_ops.wait_for_tasks(si, [task]) | |||
|
|
|||
| class ValidationTestCase(unittest.TestCase): | |||
lipingxue
force-pushed
the
auth_refactor.liping
branch
3 times, most recently
from
910a9db
to
3f8b606
Compare
|
@msterin I checked the log and also looked at our code, and I figured out this is reason why I see the above error. We call function "get_auth_mgr()" to get a connection to the DB. This function will call "thread_local._auth_mgr.connect()" ONLY if it does not have a cached value. In function"AuthorizationDataManager.connect()", we have the logic to decide whether we need to create table or not (check whether DB file exists or not). Assume we start from the state that we have pre-exist DB in the testbed.
I think we only need to remove the old DB one time. This logic also apply to the possible DB migration.
Please review this newly added code. |
| logging.debug("auth DB %s exist, try to remove the file", AUTH_DB_PATH) | ||
| os.remove(AUTH_DB_PATH) | ||
| # insert some delay | ||
| time.sleep(60) |
|
|
||
| if os.path.isfile(self.db_path): | ||
| # already exist | ||
| if not has_migrate_auth_db and self.need_migrate_auth_db(): |
There was a problem hiding this comment.
self.need_migrate_auth_db() need to check for 'has already migrated' (what you cann has_migrate_auth_db ) for better encapsulation
| # already exist | ||
| if not has_migrate_auth_db and self.need_migrate_auth_db(): | ||
| self.migrate_auth_db() | ||
| has_migrate_auth_db = True |
There was a problem hiding this comment.
well, since it's global it's "test and set" should be atomic , so I suggest a lock here
| @@ -117,9 +117,11 @@ function deployesx { | |||
| do | |||
| TARGET=root@$ip | |||
| log "Deploying to ESX $TARGET" | |||
| $SSH $TARGET rm -f /etc/vmware/vmdkops/log_config.json | |||
There was a problem hiding this comment.
This one should be a different commit - it's a useful fix
lipingxue
force-pushed
the
auth_refactor.liping
branch
from
3f8b606
to
563c044
Compare
…get a connection to auth DB.
…ent. Those APIs can be called by both AdminCLI and VMODL code.
…sfully. 2. make change to make "tenant name" unique.
1) attachVMDK, detachVMDK, listVMDK 2) test to make sure isolation between tenants
… in vmdkops test for multi-tenancy. Fix small bugs in auth_api.py.
…e testbed." This reverts commit 3f8b606.
Fix a bug in function "get_vm_config_path".
lipingxue
force-pushed
the
auth_refactor.liping
branch
from
563c044
to
84f013f
Compare
|
@msterin I have addressed your comments, please review. |
* Refactor code to add an abstract layer to provide APIs for tenant management. Those APIs can be called by both AdminCLI and VMODL code. * Add unit test for multi-tenancy in "vmdk_ops_test.py" * remove volume from "volumes" table when removing the volume successfully. * make change to make "tenant name" unique in DB schema. * Force remove file "/etc/vmware/vmdkops/log_config.json" in function "deployesx". * Add code to force removing auth DB file before running unit test.
|
Fixed #710 |
This PR includes: