summaryrefslogtreecommitdiffstats
path: root/nova/auth
Commit message (Collapse)AuthorAgeFilesLines
* Move fakeldap.py from auth dir to tests.Yaguang Tang2012-09-232-356/+0
| | | | | | | Also removes the auth dir from nova. fix bug lp:1054848 Change-Id: I9c2710c9789ff8413bc80044eba94f3a851d8544
* Remove deprecated auth codeBrian Waldon2012-07-0911-2395/+0
| | | | | | | | | | | | | * Remove nova.auth.manager -- AuthManager, User, Role, Project, etc. * Remove nova.auth.dbdriver * Remove nova.auth.ldapdriver * Remove nova.auth.signer * Remove arbitrary scripts and schemas in nova/auth/ * Remove nova/auth/novarc.template * Remove or update affected tests * Related to bp remove-deprecated-auth Change-Id: Ide0fefd0ddf79ae1b3bb74cb242c2893575839e7
* Switch to common logging.Andrew Bogott2012-07-023-3/+3
| | | | | | I only just moved logging from nova to common, so behavior should remain the same. Change-Id: I1d7304ca200f9d024bb7244d25be2f9a670318fb
* Replace standard json module with openstack.common.jsonutilsZhongyue Luo2012-06-071-3/+4
| | | | | | | | | | | Implements blueprint use-common-jsonutils 1. Edit openstack-common.conf and import nova/openstack/common/jsonutils.py 2. Remove json package imports and replace with jsonutils Places where using json.load hasn't changed. Change-Id: Ie6feab605fb0474fd505c56ef57b7a9ecfa5269d
* Grammar / spelling correctionsMatt Joyce2012-05-291-1/+1
| | | | Change-Id: Id5b6665a2a40a9bd0830c1a3500b4ad98eec435b
* Alphabetize importsJoe Gordon2012-05-142-2/+2
| | | | | | | Except for nova/api/, nova/tests/, nova/virt/ In preparation for automated checking being enabled (N306) Change-Id: I5af70ea13b470ce58695ef0a5e0ff9da3ac1b135
* Replaces exceptions.Error with NovaExceptionAlex Meade2012-05-072-6/+7
| | | | | | Fixes bug 817107 Change-Id: I6253e6bbcc44676c587b315fa32afba6459e676a
* Use openstack.common.importutils.Russell Bryant2012-04-281-2/+3
| | | | | | | | | | | | | | Use import_class(), import_object(), and import_module() from openstack-common's importutils module. The equivalent functions have been removed from nova.utils. A few modules had import order cleaned up in passing, as well. My initial motivation for this was to remove some more usage of nova bits from nova.rpc as another step towards being able to move nova.rpc import openstack-common. Since I was pulling importutils into nova, I went ahead and converted the whole thing. Change-Id: I7c7786cf0001bcd06db52b9a99ff4284a3f6c6fa
* Improve grammar throughout nova.Paul McMillan2012-04-101-1/+1
| | | | | | | Fixes some "its" and "it's" mistakes, and unifies the tense of some documentation. Change-Id: I9b83aba535b554e80b2cf1e048bb3a4e5cac0e5e
* improve speed of metadataJesse Andrews2012-03-122-2/+2
| | | | | | | | | | | | | | * don't load every possible answer, only do what is needed * cache instance data for a given address for a 15 seconds using either memcache or fake memcache (in-memory). This means only a single queue/db lookup for multiple calls to metadata service * add cache expirey to fake memcache (don't grow forever) and move it to nova.common.memorycache Addresses Bug #851159 Change-Id: Icf794156e055b18915b8b5be9ba2ab97d2338bbe
* Add pybasedir and bindir optionsMark McLoughlin2012-03-091-2/+2
| | | | | | | | | | | Add a pybasedir option so that it can be used for interpolation in the default values of other options. This helps eliminate hard-coded paths from the sample config file. Also add a bindir option for similar reasons, but it also helps with packaging. Change-Id: Iadc746dcf2a24adbdf9bac945b5b330f01faeeb5
* boto shouldn't be required for production deploysChris Behrens2012-03-071-6/+11
| | | | | | | | | | | | | | ... if you're not using ec2/s3. Fixes bug 949631 bin/nova-manage imports auth.manager which imports auth.signer which tries to import boto... but nova-manage doesn't try to authenticate. This patch allows bin/nova-manage to work if you don't have boto installed. Change-Id: I9b7929a15b991498ab0491821521ec20ed0da65c
* Merge "fix restructuredtext formatting in docstrings that show up in the ↵Jenkins2012-03-072-87/+93
|\ | | | | | | developer guide"
| * fix restructuredtext formatting in docstrings that show up in the developer ↵Doug Hellmann2012-03-052-87/+93
| | | | | | | | | | | | | | | | | | | | | | | | | | | | guide blueprint sphinx-doc-cleanup bug 945160 - Correct parameter declarations, list formatting, cross-references, etc. - We don't need "let" in generate_autodoc_index.sh since we aren't doing math. - Change conf.py to not prefix class and function names with full namespace in generated output to save width on the screen. Change-Id: I9adc8681951913fd291d03e7142146e9d46841df
* | Replaces pipelines with flag for auth strategyVishvananda Ishaya2012-03-061-4/+1
| | | | | | | | | | | | | | | | | | Forcing deployers to modify a paste config file to change auth strategies is very fragile. This simplifies things by keying pipeline construction off of a single flag. Note that this will require a small change to devstack. Change-Id: I49728c356266e6084ecafb6c59542390137f89e9
* | Provide a provider for boto.utilsHengqing Hu2012-03-061-0/+2
|/ | | | | | Fixes bug #945355 Change-Id: I0b09f6d8d2373f52359806945de467585421fb65
* Use constant time string comparisons for auth.Russell Bryant2012-02-281-3/+3
| | | | | | | | | Fix bug 942644. Use constant time string comparisons when doing authentication to help guard against timing attacks. Change-Id: Iaaefb13f7618b06834630d9ccb97aff056b4bf4c
* Add utils.tempdir() context manager for easy temp dirsJohannes Erdfelt2012-02-281-40/+37
| | | | | | | | | | Fixes bug 883323 (and others) Users of tempfile.mkdtemp() need to make sure the directory is cleaned up when it's done being used. Unfortunately, not all of the code does so at all, or safely (by using a try/finally block). Change-Id: I270109d83efec4f8b3dd954021493f4d96c6ab79
* fix unicode triggered failure in AuthManagerRussell Sim2012-02-241-1/+1
| | | | | | | * Always return a string from AuthManager._build_mc_key() * Fixes bug 938375 Change-Id: Iffceffab8ae62830202de07e3237230dab4e5a60
* Standardize logging delaration and useJason Kölker2012-02-143-3/+3
| | | | | | * Make modules use getLogger(__name__) and log to the result Change-Id: Ib6d69b4be140ec89affc86ed11e65e422d551df1
* get_user behavior in ldapdriverjohn-griffith2012-02-131-1/+6
| | | | | | | | | | | | | | * Addresses bug 744462 Rather than ldapdriver.get_user() returning None for non-existent user, this change implements exception.LDAPUserNotFound to more closely match the behavior of other drivers (db). Change was made in public method only, and _check_user_exists() which uses get_user() now catches and returns None if applicable. Implemented test of NotFound exception in base auth test class. Change-Id: Ia13af759931ca0c7327d54184730537bafbe52ae
* Remove the last of the gflags shim layerMark McLoughlin2012-02-102-3/+3
| | | | | | | Make FLAGS a ConfigOpts instance and fix up all the places where we expected FlagValues behaviour. Change-Id: I8f96f42e0d8d30ba6b362d29861e717cf0fa9e89
* Backslash continuations (misc.)Zhongyue Luo2012-02-081-2/+2
| | | | | | | | | | | Fixes bug #925166 This patch for packages which have few backslash continuations. Follow up patches will be for packages network, scheduler, virt, db/sqlalchemy, tests, and api/openstack. Change-Id: I4200010b47b33fa8b9115b5d379b543200f6668d
* Merge "Increased coverage of nova/auth/dbdriver.py to 100%. Fixes 828609."Jenkins2012-02-071-11/+1
|\
| * Increased coverage of nova/auth/dbdriver.py to 100%.Tim Simpson2012-02-021-11/+1
| | | | | | | | | | | | Fixes 828609. Change-Id: Iefa36ced27328ad79b9d58f04d915178b9b63bcc
* | Move cfg to nova.openstack.commonMark McLoughlin2012-02-032-2/+2
|/ | | | | | | | | | | | | | | Move it here so that it can be kept in sync with openstack-common using the new update.py script for code in openstack-common's incubation area. See here for more details: http://wiki.openstack.org/CommonLibrary#Incubation Note: this commit just moves the existing code in Nova with no other changes. A subsequent commit will sync it with latest openstack-common so that it is easier see the new changes. Change-Id: If88d678b1b9bad3d37117de7f7159d7fea8ab4c8
* Refactor away the flags.DEFINE_* helpersMark McLoughlin2012-01-282-67/+108
| | | | | | | | | | | | | | | | | | | | | | | | | | The next obvious step in porting to cfg is to define all options using cfg schemas directly rather than using the flags.DEFINE_* helpers. This is a large change, but it is almost entirely pure refactoring and does not result in any functional changes. The only change to note is that the default values for glance_host, glance_api_servers and default_publisher_id options are now using opt value interpolation i.e. -glance_host=_get_my_ip() +glance_host='$my_ip' -glance_api_servers=['%s:%d' % (FLAGS.glance_host, FLAGS.glance_port)] +glance_api_servers=['$glance_host:$glance_port'] -default_publisher_id=FLAGS.host +default_publisher_id='$host' Also note that the lower_bound check on the {report,periodic}_interval options are no more, but this has been true since cfg was first added. Change-Id: Ia58c8f0aaf61628bb55b1b8485118a2a9852ed17
* Merge "Modify the fake ldap driver to fix compatibility."Jenkins2012-01-161-4/+19
|\
| * Modify the fake ldap driver to fix compatibility.Andrew Bogott2012-01-131-4/+19
| | | | | | | | | | | | | | | | | | | | | | | | The fake implementation was raising an exception during a failed search_s where the normal python ldap module does not. So, removed that raise. Also added a modrdn_s implementation because I need it for a network test. (Indirectly) for blueprint public-and-private-dns. Change-Id: Ia86a776afe19ffce72b285bb4c96ce3ed0ae7c4a
* | DECLARE osapi_compute_listen_port for auth managerBrian Waldon2012-01-161-0/+3
| | | | | | | | | | | | Fixes bug 916267 Change-Id: I3bce5c8825b5245d9c58d93a25ac0daaedb6d47c
* | Remove a whole bunch of unused importsVishvananda Ishaya2012-01-131-2/+0
| | | | | | | | Change-Id: I6759e5b6250c48cc0deb4b198b44c948c64c47d1
* | Implements blueprint separate-nova-volumeapiAnthony Young2012-01-131-1/+1
|/ | | | | | | | | | | | | | | | * Moves openstack/v2 directory to compute and fixes tests accordingly * Moves some code from api/openstack/compute to shared location, for use by volume api * Implements basic volume functionality for types, volumes, and snapshots * Changes service name from osapi to osapi_compute (and adds osapi_volume) * Renames nova-api-os to nova-api-os-compute, adds nove-api-os-volume * Separate extension mechanism for compute and volume ** Removes flag osapi_extension and replaces with osapi_compute_extension and osapi_volume_extension * Updates the paste config * Fixes setup.py to include nova-os-api-compute and nova-os-api-volume * Fix bug in volume version code that occurred as result of trunk merge * Update integrated/test_volumes.py to use new endpoint Change-Id: I4c2e57c3cafd4e1a9e2ff3ce201c8cf28326afcd
* PEP8 remove direct type comparisonslzyeval2012-01-031-1/+1
| | | | | | | | | | | | | | | | | | | | Fixes bug #910763 According to PEP8, - Object type comparisons should always use isinstance() instead of comparing types directly. Yes: if isinstance(obj, int): No: if type(obj) is type(1): When checking if an object is a string, keep in mind that it might be a unicode string too! In Python 2.3, str and unicode have a common base class, basestring, so you can do: if isinstance(obj, basestring): Change-Id: I7c0fdecf99872f5b8f72b2c2ed4f5c539c33def1
* First steps towards consolidating testing infrastructureDuncan McGreggor2011-12-062-2/+2
| | | | | | | This commit begins to implement blueprint consolidate-testing-infrastructure by adding a 'testing' subpackage and moving some modules into it. Change-Id: I04bf860bc386bd2016e7dbc5a6f6ef7379a855bb
* Separate metadata api into its own serviceVishvananda Ishaya2011-11-151-1/+1
| | | | | | | | | | | | part 1 of blueprint separate-nova-metadata * adds api/metadata/ and moves code from ec2 * moves metadata into separate binary * changes metadata forward to use metadata host and port * moves the metadata accept rule to the metadata api * adds nova-api-* to setup.py Change-Id: I7f5d8e6cafc55b5c383cd88991f29c6059fb8d82
* Merge "Fixes Bug #861293 nova.auth.signer.Signer now honors the ↵Jenkins2011-11-151-10/+18
|\ | | | | | | SignatureMethod parameter for SHA1 when creating signatures"
| * Fixes Bug #861293Brendan Maguire2011-09-291-10/+18
| | | | | | | | | | | | | | nova.auth.signer.Signer now honors the SignatureMethod parameter for SHA1 when creating signatures Change-Id: I4050407d374d18427f9a955ea98242f7325a5d54
* | More spelling fixes inside of novaJoe Gordon2011-11-092-4/+4
| | | | | | | | Change-Id: I79daf7519c99cc363ac7175c85912298f273da8a
* | Stop returning correct password on api callsAhmad Hassan2011-10-051-8/+2
|/ | | | | | | | | Captured invalid signature exception in authentication step, so that the problem is not returning exception to user, revealing the real password. Fixes bug 868360. Change-Id: Idb31f076a7b14309f0fda698261de816924da354
* Signer no longer fails if hashlib.sha256 is not available. test_signer unit ↵Brendan Maguire2011-09-281-4/+10
| | | | | | test added. Change-Id: I7cea9900c2ccabc30800a167f127ada8386a724b
* fix for rc generation using noauth.Vishvananda Ishaya2011-08-231-2/+11
|
* fix commentVishvananda Ishaya2011-08-221-1/+1
|
* make admin context the default, clean up pipelibVishvananda Ishaya2011-08-171-0/+3
|
* added NOVA_VERSION to novarcSandy Walsh2011-08-041-0/+1
|
* merged trunk and fix time callVishvananda Ishaya2011-07-291-1/+1
|\
| * Removed unused Duplicate catch.Josh Kearney2011-07-281-1/+1
| |
| * Catch DBError for duplicate projects.Josh Kearney2011-07-281-1/+1
| |
* | remove auth manager from instance helperVishvananda Ishaya2011-07-221-4/+0
| |
* | clean up fake auth manager in other placesVishvananda Ishaya2011-07-221-2/+1
| |
* | fix test_accessVishvananda Ishaya2011-07-221-0/+9
| |
generated by cgit (git 2.34.1) at 2026-01-01 03:19:09 +0000