Changeset 6c57fe9 for fedd/federation/access.py

Timestamp:

Sep 2, 2009 10:36:18 AM (15 years ago)

Author:

Ted Faber <faber@…>

Branches:

axis_example, compt_changes, info-ops, master, version-2.00, version-3.01, version-3.02

Children:

f9ef40b

Parents:

cc8d8e9

Message:

checkpoint

File:

• fedd/federation/access.py (modified) (5 diffs)

fedd/federation/access.py

@@ -18 +18 @@
 from remote_service import xmlrpc_handler, soap_handler, service_caller
 
+import topdl
+import httplib
+import tempfile
+from urlparse import urlparse
+
 
 # Make log messages disappear if noone configures a fedd logger
@@ -57 +62 @@
         self.fileserver = config.get("access", "fileserver")
         self.eventserver = config.get("access", "eventserver")
+        self.certdir = config.get("access","certdir")
 
         self.attrs = { }
@@ -649 +655 @@
             for o in owners:
                 self.auth.set_attribute(o, allocID)
+            try:
+                f = open("%s/%s.pem" % (self.certdir, aid), "w")
+                print >>f, alloc_cert
+                f.close()
+            except IOError, e:
+                raise service_error(service_error.internal, 
+                        "Can't open %s/%s : %s" % (self.certdir, aid, e))
             resp = self.build_response({ 'fedid': allocID } , ap)
             return resp
@@ -1124 +1137 @@
 
     def StartSegment(self, req, fid):
+        def get_url(url, cf, tmpdir):
+            po = urlparse(url)
+            fn = po.path.rpartition('/')[2]
+            try:
+                conn = httplib.HTTPSConnection(po.hostname, port=po.port, 
+                        cert_file=cf, key_file=cf)
+                conn.putrequest('GET', po.path)
+                conn.endheaders()
+                response = conn.getresponse()
+
+                lf = open("%s/%s" % (tmpdir, fn), "w")
+                buf = response.read(4096)
+                while buf:
+                    lf.write(buf)
+                    buf = response.read(4096)
+                lf.close()
+            except IOError, e:
+                raise service_error(service_error.internal,
+                        "Erro writing tempfile: %s" %e)
+            except httplib.HTTPException, e:
+                raise service_error(service_error.internal, 
+                        "Error retrieving data: %s" % e)
+
+        configs = set(('hosts', 'ssh_pubkey', 'ssh_secretkey'))
+
+
         try:
             req = req['StartSegmentRequestBody']
@@ -1129 +1168 @@
             raise service_error(server_error.req, "Badly formed request")
         auth_attr = req['allocID']['fedid']
+        attrs = req.get('fedAttr', [])
+        print auth_attr
+        print "%s" % auth_attr
         if self.auth.check_attribute(fid, auth_attr):
             print "OK"
         else:
             print "Fail"
+
+        if req.has_key('segmentdescription') and \
+                req['segmentdescription'].has_key('topdldescription'):
+            topo = \
+                topdl.Topology(**req['segmentdescription']['topdldescription'])
+        else:
+            raise service_error(service_error.req, 
+                    "Request missing segmentdescription'")
+
+        certfile = "%s/%s.pem" % (self.certdir, auth_attr)
+        try:
+            tmpdir = tempfile.mkdtemp(prefix="access-")
+        except IOError:
+            raise service_error(service_error.internal, "Cannot create tmp dir")
+
+        sw = set()
+        for e in [c for c in topo.elements if getattr(c, 'software', False)]:
+            for s in e.software:
+                sw.add(s.location)
+        for s in sw:
+            get_url(s, certfile, tmpdir)
+
+        for a in attrs:
+            if a['attribute'] in configs:
+                get_url(a['value'], certfile, tmpdir)
+
         return { 'allocID': req['allocID'] }