From 54be28647ac3ad401006bca3069b1dfc1a65d093 Mon Sep 17 00:00:00 2001
From: Brian Waldon <brian.waldon@rackspace.com>
Date: Tue, 12 Jul 2011 14:35:09 -0400
Subject: server create deserialization functional and tested

---
 nova/api/openstack/create_instance_helper.py | 81 ++++++++++++++++++++--------
 nova/api/openstack/servers.py                | 63 ++++++++++++++++++++--
 nova/api/openstack/wsgi.py                   | 21 ++++++++
 3 files changed, 139 insertions(+), 26 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/create_instance_helper.py b/nova/api/openstack/create_instance_helper.py
index 2654e3c40..eea973a56 100644
--- a/nova/api/openstack/create_instance_helper.py
+++ b/nova/api/openstack/create_instance_helper.py
@@ -180,7 +180,7 @@ class CreateInstanceHelper(object):
         Overrides normal behavior in the case of xml content
         """
         if request.content_type == "application/xml":
-            deserializer = ServerCreateRequestXMLDeserializer()
+            deserializer = ServerXMLDeserializer()
             return deserializer.deserialize(request.body)
         else:
             return self._deserialize(request.body, request.get_content_type())
@@ -295,9 +295,15 @@ class ServerXMLDeserializer(wsgi.XMLDeserializer):
         """Marshal the server attribute of a parsed request"""
         server = {}
         server_node = self._find_first_child_named(node, 'server')
-        for attr in ["name", "imageId", "flavorId", "imageRef", "flavorRef"]:
+        for attr in ["name", "imageId", "flavorId"]:
             if server_node.getAttribute(attr):
                 server[attr] = server_node.getAttribute(attr)
+        image = self._extract_image(server_node)
+        if image is not None:
+            server["image"] = image
+        flavor = self._extract_flavor(server_node)
+        if flavor is not None:
+            server["flavor"] = flavor
         metadata = self._extract_metadata(server_node)
         if metadata is not None:
             server["metadata"] = metadata
@@ -306,6 +312,56 @@ class ServerXMLDeserializer(wsgi.XMLDeserializer):
             server["personality"] = personality
         return server
 
+    def _extract_image(self, server_node):
+        """Retrieve an image entity from the server node"""
+        image_node = self._find_first_child_named(server_node, "image")
+        if image_node is None:
+            return  None
+
+        image = {}
+        image_id = image_node.getAttribute('id')
+        if image_id:
+            image['id'] = image_id
+
+        image_links = self._extract_links_from_node(image_node)
+        if len(image_links) > 0:
+            image['links'] = image_links
+
+        return image
+
+    def _extract_flavor(self, server_node):
+        """Retrieve a flavor entity from the server node"""
+        flavor_node = self._find_first_child_named(server_node, "flavor")
+        if flavor_node is None:
+            return  None
+
+        flavor = {}
+        flavor_id = flavor_node.getAttribute('id')
+        if flavor_id:
+            flavor['id'] = flavor_id
+
+        flavor_links = self._extract_links_from_node(flavor_node)
+        if len(flavor_links) > 0:
+            flavor['links'] = flavor_links
+
+        return flavor
+
+    def _extract_links_from_node(self, parent_node):
+        """Retrieve link entities from a links container provided node"""
+        links = []
+
+        for link_node in self._find_children_named(parent_node, 'atom:link'):
+            link = {}
+            link_rel = link_node.getAttribute('rel')
+            if link_rel is not None:
+                link['rel'] = link_rel
+            link_href = link_node.getAttribute('href')
+            if link_href is not None:
+                link['href'] = link_href
+            links.append(link)
+
+        return links
+
     def _extract_metadata(self, server_node):
         """Marshal the metadata attribute of a parsed request"""
         metadata_node = self._find_first_child_named(server_node, "metadata")
@@ -331,24 +387,3 @@ class ServerXMLDeserializer(wsgi.XMLDeserializer):
             item["contents"] = self._extract_text(file_node)
             personality.append(item)
         return personality
-
-    def _find_first_child_named(self, parent, name):
-        """Search a nodes children for the first child with a given name"""
-        for node in parent.childNodes:
-            if node.nodeName == name:
-                return node
-        return None
-
-    def _find_children_named(self, parent, name):
-        """Return all of a nodes children who have the given name"""
-        for node in parent.childNodes:
-            if node.nodeName == name:
-                yield node
-
-    def _extract_text(self, node):
-        """Get the text field contained by the given node"""
-        if len(node.childNodes) == 1:
-            child = node.childNodes[0]
-            if child.nodeType == child.TEXT_NODE:
-                return child.nodeValue
-        return ""
diff --git a/nova/api/openstack/servers.py b/nova/api/openstack/servers.py
index 12af44a8d..f239044ff 100644
--- a/nova/api/openstack/servers.py
+++ b/nova/api/openstack/servers.py
@@ -492,11 +492,68 @@ class ControllerV11(Controller):
             return faults.Fault(exc.HTTPNotFound())
 
     def _image_ref_from_req_data(self, data):
-        return data['server']['imageRef']
+        try:
+            image = data['server']['image']
+        except (AttributeError, KeyError):
+            msg = _("Missing image entity")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        try:
+            links = image.get('links', [])
+        except AttributeError:
+            msg = _("Malformed image entity")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        image_ref = None
+        for link in links:
+            try:
+                if link.get('rel') == 'bookmark':
+                    image_ref = link.get('href')
+                    break
+            except AttributeError:
+                msg = _("Malformed image link")
+                raise exc.HTTPBadRequest(explanation=msg)
+
+        if image_ref is None:
+            try:
+                image_ref = image['id']
+            except KeyError:
+                msg = _("Missing id attribute on image entity")
+                raise exc.HTTPBadRequest(explanation=msg)
+
+        return image_ref
 
     def _flavor_id_from_req_data(self, data):
-        href = data['server']['flavorRef']
-        return common.get_id_from_href(href)
+        try:
+            flavor = data['server']['flavor']
+        except (AttributeError, KeyError):
+            msg = _("Missing flavor entity")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        try:
+            links = flavor.get('links', [])
+        except AttributeError:
+            msg = _("Malformed flavor entity")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        flavor_ref = None
+        for link in links:
+            try:
+                if link.get('rel') == 'bookmark':
+                    flavor_ref = link.get('href')
+                    break
+            except AttributeError:
+                msg = _("Malformed flavor link")
+                raise exc.HTTPBadRequest(explanation=msg)
+
+        if flavor_ref is None:
+            try:
+                return flavor['id']
+            except (KeyError, AttributeError):
+                msg = _("Missing id attribute in flavor entity")
+                raise exc.HTTPBadRequest(explanation=msg)
+        else:
+            return common.get_id_from_href(flavor_ref)
 
     def _get_view_builder(self, req):
         base_url = req.application_url
diff --git a/nova/api/openstack/wsgi.py b/nova/api/openstack/wsgi.py
index 8eff9e441..0ece2cff0 100644
--- a/nova/api/openstack/wsgi.py
+++ b/nova/api/openstack/wsgi.py
@@ -134,6 +134,27 @@ class XMLDeserializer(TextDeserializer):
                                                                  listnames)
             return result
 
+    def _find_first_child_named(self, parent, name):
+        """Search a nodes children for the first child with a given name"""
+        for node in parent.childNodes:
+            if node.nodeName == name:
+                return node
+        return None
+
+    def _find_children_named(self, parent, name):
+        """Return all of a nodes children who have the given name"""
+        for node in parent.childNodes:
+            if node.nodeName == name:
+                yield node
+
+    def _extract_text(self, node):
+        """Get the text field contained by the given node"""
+        if len(node.childNodes) == 1:
+            child = node.childNodes[0]
+            if child.nodeType == child.TEXT_NODE:
+                return child.nodeValue
+        return ""
+
     def default(self, datastring):
         return {'body': self._from_xml(datastring)}
 
-- 
cgit 


From 07baabb67d9491da61fa5bfe9adc52f7ff744e22 Mon Sep 17 00:00:00 2001
From: Brian Waldon <brian.waldon@rackspace.com>
Date: Tue, 12 Jul 2011 16:02:39 -0400
Subject: cleanup

---
 nova/api/openstack/create_instance_helper.py | 24 ++++++----------
 nova/api/openstack/servers.py                | 41 ++++++++++++----------------
 2 files changed, 27 insertions(+), 38 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/create_instance_helper.py b/nova/api/openstack/create_instance_helper.py
index eea973a56..e46bc9d98 100644
--- a/nova/api/openstack/create_instance_helper.py
+++ b/nova/api/openstack/create_instance_helper.py
@@ -320,12 +320,10 @@ class ServerXMLDeserializer(wsgi.XMLDeserializer):
 
         image = {}
         image_id = image_node.getAttribute('id')
-        if image_id:
+        if image_id is not None:
             image['id'] = image_id
 
-        image_links = self._extract_links_from_node(image_node)
-        if len(image_links) > 0:
-            image['links'] = image_links
+        image['links'] = self._extract_links_from_node(image_node)
 
         return image
 
@@ -340,9 +338,7 @@ class ServerXMLDeserializer(wsgi.XMLDeserializer):
         if flavor_id:
             flavor['id'] = flavor_id
 
-        flavor_links = self._extract_links_from_node(flavor_node)
-        if len(flavor_links) > 0:
-            flavor['links'] = flavor_links
+        flavor['links'] = self._extract_links_from_node(flavor_node)
 
         return flavor
 
@@ -351,14 +347,12 @@ class ServerXMLDeserializer(wsgi.XMLDeserializer):
         links = []
 
         for link_node in self._find_children_named(parent_node, 'atom:link'):
-            link = {}
-            link_rel = link_node.getAttribute('rel')
-            if link_rel is not None:
-                link['rel'] = link_rel
-            link_href = link_node.getAttribute('href')
-            if link_href is not None:
-                link['href'] = link_href
-            links.append(link)
+            link = {
+                'rel': link_node.getAttribute('rel'),
+                'href': link_node.getAttribute('href'),
+            }
+            if link['rel'] is not None and link['href'] is not None:
+                links.append(link)
 
         return links
 
diff --git a/nova/api/openstack/servers.py b/nova/api/openstack/servers.py
index f239044ff..1e8749f56 100644
--- a/nova/api/openstack/servers.py
+++ b/nova/api/openstack/servers.py
@@ -491,10 +491,21 @@ class ControllerV11(Controller):
         except exception.NotFound:
             return faults.Fault(exc.HTTPNotFound())
 
+    def _href_from_bookmark_links(self, links)
+        for link in links:
+            try:
+                if link.get('rel') == 'bookmark':
+                    href = link.get('href')
+                    if href is not None:
+                        return href
+            except AttributeError:
+                msg = _("Malformed link entity")
+                raise exc.HTTPBadRequest(explanation=msg)
+
     def _image_ref_from_req_data(self, data):
         try:
             image = data['server']['image']
-        except (AttributeError, KeyError):
+        except (TypeError, KeyError):
             msg = _("Missing image entity")
             raise exc.HTTPBadRequest(explanation=msg)
 
@@ -504,29 +515,21 @@ class ControllerV11(Controller):
             msg = _("Malformed image entity")
             raise exc.HTTPBadRequest(explanation=msg)
 
-        image_ref = None
-        for link in links:
-            try:
-                if link.get('rel') == 'bookmark':
-                    image_ref = link.get('href')
-                    break
-            except AttributeError:
-                msg = _("Malformed image link")
-                raise exc.HTTPBadRequest(explanation=msg)
+        image_ref = self._href_from_bookmark_links(links)
 
         if image_ref is None:
             try:
-                image_ref = image['id']
+                return image['id']
             except KeyError:
                 msg = _("Missing id attribute on image entity")
                 raise exc.HTTPBadRequest(explanation=msg)
-
-        return image_ref
+        else:
+            return image_ref
 
     def _flavor_id_from_req_data(self, data):
         try:
             flavor = data['server']['flavor']
-        except (AttributeError, KeyError):
+        except (TypeError, KeyError):
             msg = _("Missing flavor entity")
             raise exc.HTTPBadRequest(explanation=msg)
 
@@ -536,15 +539,7 @@ class ControllerV11(Controller):
             msg = _("Malformed flavor entity")
             raise exc.HTTPBadRequest(explanation=msg)
 
-        flavor_ref = None
-        for link in links:
-            try:
-                if link.get('rel') == 'bookmark':
-                    flavor_ref = link.get('href')
-                    break
-            except AttributeError:
-                msg = _("Malformed flavor link")
-                raise exc.HTTPBadRequest(explanation=msg)
+        flavor_ref = self._href_from_bookmark_links(links)
 
         if flavor_ref is None:
             try:
-- 
cgit 


From 486afc9b9e38a68c18b80daab4f23c5b936ee185 Mon Sep 17 00:00:00 2001
From: Brian Waldon <brian.waldon@rackspace.com>
Date: Wed, 13 Jul 2011 11:17:05 -0400
Subject: pep8

---
 nova/api/openstack/servers.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/servers.py b/nova/api/openstack/servers.py
index 1e8749f56..50d1442d4 100644
--- a/nova/api/openstack/servers.py
+++ b/nova/api/openstack/servers.py
@@ -491,7 +491,7 @@ class ControllerV11(Controller):
         except exception.NotFound:
             return faults.Fault(exc.HTTPNotFound())
 
-    def _href_from_bookmark_links(self, links)
+    def _href_from_bookmark_links(self, links):
         for link in links:
             try:
                 if link.get('rel') == 'bookmark':
-- 
cgit 


From 5f75097eb46fa03814fe53c5d9fda84f0000fdd4 Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Thu, 21 Jul 2011 22:46:57 +0000
Subject: start removing references to AuthManager

---
 nova/api/direct.py         |  3 ++-
 nova/api/ec2/__init__.py   | 10 ++++++----
 nova/api/openstack/auth.py | 26 +++++++-------------------
 3 files changed, 15 insertions(+), 24 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/direct.py b/nova/api/direct.py
index ec79151b1..993815fc7 100644
--- a/nova/api/direct.py
+++ b/nova/api/direct.py
@@ -107,7 +107,8 @@ class DelegatedAuthMiddleware(wsgi.Middleware):
     def process_request(self, request):
         os_user = request.headers['X-OpenStack-User']
         os_project = request.headers['X-OpenStack-Project']
-        context_ref = context.RequestContext(user=os_user, project=os_project)
+        context_ref = context.RequestContext(user_id=os_user,
+                                             project_id=os_project)
         request.environ['openstack.context'] = context_ref
 
 
diff --git a/nova/api/ec2/__init__.py b/nova/api/ec2/__init__.py
index cf1734281..8bb2ea944 100644
--- a/nova/api/ec2/__init__.py
+++ b/nova/api/ec2/__init__.py
@@ -174,8 +174,8 @@ class Authenticate(wsgi.Middleware):
         remote_address = req.remote_addr
         if FLAGS.use_forwarded_for:
             remote_address = req.headers.get('X-Forwarded-For', remote_address)
-        ctxt = context.RequestContext(user=user,
-                                      project=project,
+        ctxt = context.RequestContext(user_id=user.id,
+                                      project_id=project.id,
                                       remote_address=remote_address)
         req.environ['ec2.context'] = ctxt
         uname = user.name
@@ -295,13 +295,15 @@ class Authorizer(wsgi.Middleware):
 
     def _matches_any_role(self, context, roles):
         """Return True if any role in roles is allowed in context."""
-        if context.user.is_superuser():
+        authman = manager.AuthManager()
+        user = authman.get_user(context.user_id)
+        if user.is_superuser():
             return True
         if 'all' in roles:
             return True
         if 'none' in roles:
             return False
-        return any(context.project.has_role(context.user_id, role)
+        return any(authman.has_role(context.user_id, role, context.project_id)
                    for role in roles)
 
 
diff --git a/nova/api/openstack/auth.py b/nova/api/openstack/auth.py
index 7c3e683d6..5b387c081 100644
--- a/nova/api/openstack/auth.py
+++ b/nova/api/openstack/auth.py
@@ -48,31 +48,19 @@ class AuthMiddleware(wsgi.Middleware):
     def __call__(self, req):
         if not self.has_authentication(req):
             return self.authenticate(req)
-        user = self.get_user_by_authentication(req)
-        if not user:
+        user_id = self.get_user_by_authentication(req)
+        if not user_id:
             token = req.headers["X-Auth-Token"]
-            msg = _("%(user)s could not be found with token '%(token)s'")
+            msg = _("%(user_id)s could not be found with token '%(token)s'")
             LOG.warn(msg % locals())
             return faults.Fault(webob.exc.HTTPUnauthorized())
 
         try:
-            account = req.headers["X-Auth-Project-Id"]
+            project_id = req.headers["X-Auth-Project-Id"]
         except KeyError:
-            # FIXME(usrleon): It needed only for compatibility
-            # while osapi clients don't use this header
-            accounts = self.auth.get_projects(user=user)
-            if accounts:
-                account = accounts[0]
-            else:
-                return faults.Fault(webob.exc.HTTPUnauthorized())
-
-        if not self.auth.is_admin(user) and \
-           not self.auth.is_project_member(user, account):
-            msg = _("%(user)s must be an admin or a member of %(account)s")
-            LOG.warn(msg % locals())
-            return faults.Fault(webob.exc.HTTPUnauthorized())
+            project_id = user_id
 
-        req.environ['nova.context'] = context.RequestContext(user, account)
+        req.environ['nova.context'] = context.RequestContext(user_id, project_id)
         return self.application
 
     def has_authentication(self, req):
@@ -133,7 +121,7 @@ class AuthMiddleware(wsgi.Middleware):
             if delta.days >= 2:
                 self.db.auth_token_destroy(ctxt, token['token_hash'])
             else:
-                return self.auth.get_user(token['user_id'])
+                return token['user_id']
         return None
 
     def _authorize_user(self, username, key, req):
-- 
cgit 


From e1cf345fa82c3a9b8088237f1025c41db0f4e829 Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Fri, 22 Jul 2011 00:39:53 +0000
Subject: fix a whole bunch of tests

---
 nova/api/ec2/__init__.py | 20 ++++++++++++++------
 1 file changed, 14 insertions(+), 6 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/ec2/__init__.py b/nova/api/ec2/__init__.py
index 8bb2ea944..edae94331 100644
--- a/nova/api/ec2/__init__.py
+++ b/nova/api/ec2/__init__.py
@@ -138,8 +138,19 @@ class Lockout(wsgi.Middleware):
         return res
 
 
-class Authenticate(wsgi.Middleware):
+class InjectContext(wsgi.Middleware):
+    """Always add a fake 'ec2.context' to WSGI environ."""
+    def __init__(self, context, *args, **kwargs):
+        self.context = context
+        super(InjectContext, self).__init__(*args, **kwargs)
 
+    @webob.dec.wsgify(RequestClass=wsgi.Request)
+    def __call__(self, req):
+        req.environ['ec2.context'] = self.context
+        return self.application
+
+
+class Authenticate(wsgi.Middleware):
     """Authenticate an EC2 request and add 'ec2.context' to WSGI environ."""
 
     @webob.dec.wsgify(RequestClass=wsgi.Request)
@@ -295,16 +306,13 @@ class Authorizer(wsgi.Middleware):
 
     def _matches_any_role(self, context, roles):
         """Return True if any role in roles is allowed in context."""
-        authman = manager.AuthManager()
-        user = authman.get_user(context.user_id)
-        if user.is_superuser():
+        if context.is_admin:
             return True
         if 'all' in roles:
             return True
         if 'none' in roles:
             return False
-        return any(authman.has_role(context.user_id, role, context.project_id)
-                   for role in roles)
+        return any(role in context.roles for role in roles)
 
 
 class Executor(wsgi.Application):
-- 
cgit 


From 44d1024a53b8150cf9542d08d5886f430365f161 Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Fri, 22 Jul 2011 19:47:41 +0000
Subject: fix all tests

---
 nova/api/ec2/__init__.py   | 29 +++++++++--------------------
 nova/api/openstack/auth.py | 20 ++++++++++++++++++--
 2 files changed, 27 insertions(+), 22 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/ec2/__init__.py b/nova/api/ec2/__init__.py
index edae94331..0a743075c 100644
--- a/nova/api/ec2/__init__.py
+++ b/nova/api/ec2/__init__.py
@@ -66,7 +66,7 @@ class RequestLogging(wsgi.Middleware):
         else:
             controller = None
             action = None
-        ctxt = request.environ.get('ec2.context', None)
+        ctxt = request.environ.get('nova.context', None)
         delta = utils.utcnow() - start
         seconds = delta.seconds
         microseconds = delta.microseconds
@@ -138,20 +138,8 @@ class Lockout(wsgi.Middleware):
         return res
 
 
-class InjectContext(wsgi.Middleware):
-    """Always add a fake 'ec2.context' to WSGI environ."""
-    def __init__(self, context, *args, **kwargs):
-        self.context = context
-        super(InjectContext, self).__init__(*args, **kwargs)
-
-    @webob.dec.wsgify(RequestClass=wsgi.Request)
-    def __call__(self, req):
-        req.environ['ec2.context'] = self.context
-        return self.application
-
-
 class Authenticate(wsgi.Middleware):
-    """Authenticate an EC2 request and add 'ec2.context' to WSGI environ."""
+    """Authenticate an EC2 request and add 'nova.context' to WSGI environ."""
 
     @webob.dec.wsgify(RequestClass=wsgi.Request)
     def __call__(self, req):
@@ -187,12 +175,13 @@ class Authenticate(wsgi.Middleware):
             remote_address = req.headers.get('X-Forwarded-For', remote_address)
         ctxt = context.RequestContext(user_id=user.id,
                                       project_id=project.id,
+                                      is_admin=user.is_admin(),
                                       remote_address=remote_address)
-        req.environ['ec2.context'] = ctxt
+        req.environ['nova.context'] = ctxt
         uname = user.name
         pname = project.name
         msg = _('Authenticated Request For %(uname)s:%(pname)s)') % locals()
-        LOG.audit(msg, context=req.environ['ec2.context'])
+        LOG.audit(msg, context=req.environ['nova.context'])
         return self.application
 
 
@@ -239,7 +228,7 @@ class Authorizer(wsgi.Middleware):
     """Authorize an EC2 API request.
 
     Return a 401 if ec2.controller and ec2.action in WSGI environ may not be
-    executed in ec2.context.
+    executed in nova.context.
     """
 
     def __init__(self, application):
@@ -293,7 +282,7 @@ class Authorizer(wsgi.Middleware):
 
     @webob.dec.wsgify(RequestClass=wsgi.Request)
     def __call__(self, req):
-        context = req.environ['ec2.context']
+        context = req.environ['nova.context']
         controller = req.environ['ec2.request'].controller.__class__.__name__
         action = req.environ['ec2.request'].action
         allowed_roles = self.action_roles[controller].get(action, ['none'])
@@ -319,14 +308,14 @@ class Executor(wsgi.Application):
 
     """Execute an EC2 API request.
 
-    Executes 'ec2.action' upon 'ec2.controller', passing 'ec2.context' and
+    Executes 'ec2.action' upon 'ec2.controller', passing 'nova.context' and
     'ec2.action_args' (all variables in WSGI environ.)  Returns an XML
     response, or a 400 upon failure.
     """
 
     @webob.dec.wsgify(RequestClass=wsgi.Request)
     def __call__(self, req):
-        context = req.environ['ec2.context']
+        context = req.environ['nova.context']
         api_request = req.environ['ec2.request']
         result = None
         try:
diff --git a/nova/api/openstack/auth.py b/nova/api/openstack/auth.py
index 5b387c081..9caa14a4e 100644
--- a/nova/api/openstack/auth.py
+++ b/nova/api/openstack/auth.py
@@ -58,9 +58,25 @@ class AuthMiddleware(wsgi.Middleware):
         try:
             project_id = req.headers["X-Auth-Project-Id"]
         except KeyError:
-            project_id = user_id
+            # FIXME(usrleon): It needed only for compatibility
+            # while osapi clients don't use this header
+            projects = self.auth.get_projects(user_id)
+            if projects:
+                project_id = projects[0]
+            else:
+                return faults.Fault(webob.exc.HTTPUnauthorized())
+
+        is_admin = self.auth.is_admin(user_id)
+        req.environ['nova.context'] = context.RequestContext(user_id,
+                                                             project_id,
+                                                             is_admin)
+        if not is_admin and not self.auth.is_project_member(user_id,
+                                                            project_id):
+            msg = _("%(user_id)s must be an admin or a "
+                    "member of %(project_id)s")
+            LOG.warn(msg % locals())
+            return faults.Fault(webob.exc.HTTPUnauthorized())
 
-        req.environ['nova.context'] = context.RequestContext(user_id, project_id)
         return self.application
 
     def has_authentication(self, req):
-- 
cgit 


From 0f8eee7ff32a91c866742939b1f551f3610f1276 Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Fri, 22 Jul 2011 20:20:31 +0000
Subject: fix auth tests

---
 nova/api/openstack/auth.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/auth.py b/nova/api/openstack/auth.py
index 9caa14a4e..d42abe1f8 100644
--- a/nova/api/openstack/auth.py
+++ b/nova/api/openstack/auth.py
@@ -62,7 +62,7 @@ class AuthMiddleware(wsgi.Middleware):
             # while osapi clients don't use this header
             projects = self.auth.get_projects(user_id)
             if projects:
-                project_id = projects[0]
+                project_id = projects[0].id
             else:
                 return faults.Fault(webob.exc.HTTPUnauthorized())
 
-- 
cgit 


From e8defa6bdd5af85486d0d3acce8956670ca16882 Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Fri, 22 Jul 2011 20:41:46 +0000
Subject: fix test_access

---
 nova/api/ec2/__init__.py | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'nova/api')

diff --git a/nova/api/ec2/__init__.py b/nova/api/ec2/__init__.py
index 0a743075c..1ea26fdeb 100644
--- a/nova/api/ec2/__init__.py
+++ b/nova/api/ec2/__init__.py
@@ -156,8 +156,9 @@ class Authenticate(wsgi.Middleware):
         auth_params.pop('Signature')
 
         # Authenticate the request.
+        authman = manager.AuthManager()
         try:
-            (user, project) = manager.AuthManager().authenticate(
+            (user, project) = authman.authenticate(
                     access,
                     signature,
                     auth_params,
@@ -173,9 +174,12 @@ class Authenticate(wsgi.Middleware):
         remote_address = req.remote_addr
         if FLAGS.use_forwarded_for:
             remote_address = req.headers.get('X-Forwarded-For', remote_address)
+        roles = authman.get_active_roles(user, project)
+        LOG.warn(roles)
         ctxt = context.RequestContext(user_id=user.id,
                                       project_id=project.id,
                                       is_admin=user.is_admin(),
+                                      roles=roles,
                                       remote_address=remote_address)
         req.environ['nova.context'] = ctxt
         uname = user.name
@@ -295,6 +299,7 @@ class Authorizer(wsgi.Middleware):
 
     def _matches_any_role(self, context, roles):
         """Return True if any role in roles is allowed in context."""
+        LOG.info(context.roles)
         if context.is_admin:
             return True
         if 'all' in roles:
-- 
cgit 


From ccb5119280d341a2ea1b3e8352acbf32b7f243af Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Fri, 22 Jul 2011 21:36:41 +0000
Subject: clean up fake auth manager in other places

---
 nova/api/ec2/__init__.py | 2 --
 1 file changed, 2 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/ec2/__init__.py b/nova/api/ec2/__init__.py
index 1ea26fdeb..af232edda 100644
--- a/nova/api/ec2/__init__.py
+++ b/nova/api/ec2/__init__.py
@@ -175,7 +175,6 @@ class Authenticate(wsgi.Middleware):
         if FLAGS.use_forwarded_for:
             remote_address = req.headers.get('X-Forwarded-For', remote_address)
         roles = authman.get_active_roles(user, project)
-        LOG.warn(roles)
         ctxt = context.RequestContext(user_id=user.id,
                                       project_id=project.id,
                                       is_admin=user.is_admin(),
@@ -299,7 +298,6 @@ class Authorizer(wsgi.Middleware):
 
     def _matches_any_role(self, context, roles):
         """Return True if any role in roles is allowed in context."""
-        LOG.info(context.roles)
         if context.is_admin:
             return True
         if 'all' in roles:
-- 
cgit 


From 164afd51017721b9cbaf2880b9dada3d4cd9b42c Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Fri, 22 Jul 2011 22:04:52 +0000
Subject: remove auth manager from instance helper

---
 nova/api/openstack/create_instance_helper.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/create_instance_helper.py b/nova/api/openstack/create_instance_helper.py
index 7249f1261..2034e8ada 100644
--- a/nova/api/openstack/create_instance_helper.py
+++ b/nova/api/openstack/create_instance_helper.py
@@ -20,6 +20,7 @@ import webob
 from webob import exc
 from xml.dom import minidom
 
+from nova import db
 from nova import exception
 from nova import flags
 from nova import log as logging
@@ -29,7 +30,6 @@ from nova import utils
 
 from nova.compute import instance_types
 from nova.api.openstack import wsgi
-from nova.auth import manager as auth_manager
 
 
 LOG = logging.getLogger('nova.api.openstack.create_instance_helper')
@@ -77,7 +77,8 @@ class CreateInstanceHelper(object):
 
         key_name = None
         key_data = None
-        key_pairs = auth_manager.AuthManager.get_key_pairs(context)
+        key_pairs = db.key_pair_get_all_by_user(context.elevated(),
+                                                context.user_id)
         if key_pairs:
             key_pair = key_pairs[0]
             key_name = key_pair['name']
-- 
cgit 


From 8de3c0fcaee546fae3d415ef5ddcbb51fb1db6d7 Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Mon, 25 Jul 2011 17:49:09 +0000
Subject: fix for reviews

---
 nova/api/openstack/create_instance_helper.py | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'nova/api')

diff --git a/nova/api/openstack/create_instance_helper.py b/nova/api/openstack/create_instance_helper.py
index 2034e8ada..573153f68 100644
--- a/nova/api/openstack/create_instance_helper.py
+++ b/nova/api/openstack/create_instance_helper.py
@@ -77,6 +77,8 @@ class CreateInstanceHelper(object):
 
         key_name = None
         key_data = None
+        # TODO(vish): Key pair access should move into a common library
+        #             instead of being accessed directly from the db.
         key_pairs = db.key_pair_get_all_by_user(context.elevated(),
                                                 context.user_id)
         if key_pairs:
-- 
cgit 


From 1ad5f2eaf49904d8e14546d59699b1472a1a5bb2 Mon Sep 17 00:00:00 2001
From: Brian Waldon <brian.waldon@rackspace.com>
Date: Tue, 26 Jul 2011 12:57:06 -0400
Subject: xml deserialization works now

---
 nova/api/openstack/create_instance_helper.py | 79 ++++++----------------------
 nova/api/openstack/wsgi.py                   |  9 ++--
 2 files changed, 19 insertions(+), 69 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/create_instance_helper.py b/nova/api/openstack/create_instance_helper.py
index 03272443a..b717b8ac0 100644
--- a/nova/api/openstack/create_instance_helper.py
+++ b/nova/api/openstack/create_instance_helper.py
@@ -303,79 +303,30 @@ class ServerXMLDeserializer(wsgi.MetadataXMLDeserializer):
         """Marshal the server attribute of a parsed request"""
         server = {}
         server_node = self.find_first_child_named(node, 'server')
-        for attr in ["name", "imageId", "flavorId"]:
+
+        attributes = ["name", "imageId", "flavorId", "imageRef",
+                     "flavorRef", "adminPass"]
+        for attr in attributes:
             if server_node.getAttribute(attr):
                 server[attr] = server_node.getAttribute(attr)
-        image = self._extract_image(server_node)
-        if image is not None:
-            server["image"] = image
-        flavor = self._extract_flavor(server_node)
-        if flavor is not None:
-            server["flavor"] = flavor
-        metadata_node = self.find_first_child_named(server_node, "metadata")
-        metadata = self.extract_metadata(metadata_node)
-        if metadata is not None:
-            server["metadata"] = metadata
-        personality = self._extract_personality(server_node)
-        if personality is not None:
-            server["personality"] = personality
-        return server
-
-    def _extract_image(self, server_node):
-        """Retrieve an image entity from the server node"""
-        image_node = self.find_first_child_named(server_node, "image")
-        if image_node is None:
-            return  None
-
-        image = {}
-        image_id = image_node.getAttribute('id')
-        if image_id is not None:
-            image['id'] = image_id
-
-        image['links'] = self._extract_links_from_node(image_node)
-
-        return image
 
-    def _extract_flavor(self, server_node):
-        """Retrieve a flavor entity from the server node"""
-        flavor_node = self.find_first_child_named(server_node, "flavor")
-        if flavor_node is None:
-            return  None
-
-        flavor = {}
-        flavor_id = flavor_node.getAttribute('id')
-        if flavor_id:
-            flavor['id'] = flavor_id
-
-        flavor['links'] = self._extract_links_from_node(flavor_node)
-
-        return flavor
-
-    def _extract_links_from_node(self, parent_node):
-        """Retrieve link entities from a links container provided node"""
-        links = []
+        metadata_node = self.find_first_child_named(server_node, "metadata")
+        server["metadata"] = self.extract_metadata(metadata_node)
 
-        for link_node in self.find_children_named(parent_node, 'atom:link'):
-            link = {
-                'rel': link_node.getAttribute('rel'),
-                'href': link_node.getAttribute('href'),
-            }
-            if link['rel'] is not None and link['href'] is not None:
-                links.append(link)
+        server["personality"] = self._extract_personality(server_node)
 
-        return links
+        return server
 
     def _extract_personality(self, server_node):
         """Marshal the personality attribute of a parsed request"""
         personality_node = \
                 self.find_first_child_named(server_node, "personality")
-        if personality_node is None:
-            return None
         personality = []
-        for file_node in self.find_children_named(personality_node, "file"):
-            item = {}
-            if file_node.hasAttribute("path"):
-                item["path"] = file_node.getAttribute("path")
-            item["contents"] = self.extract_text(file_node)
-            personality.append(item)
+        if personality_node is not None:
+            for file_node in self.find_children_named(personality_node, "file"):
+                item = {}
+                if file_node.hasAttribute("path"):
+                    item["path"] = file_node.getAttribute("path")
+                item["contents"] = self.extract_text(file_node)
+                personality.append(item)
         return personality
diff --git a/nova/api/openstack/wsgi.py b/nova/api/openstack/wsgi.py
index a28443d12..53dab22e8 100644
--- a/nova/api/openstack/wsgi.py
+++ b/nova/api/openstack/wsgi.py
@@ -165,12 +165,11 @@ class MetadataXMLDeserializer(XMLDeserializer):
 
     def extract_metadata(self, metadata_node):
         """Marshal the metadata attribute of a parsed request"""
-        if metadata_node is None:
-            return None
         metadata = {}
-        for meta_node in self.find_children_named(metadata_node, "meta"):
-            key = meta_node.getAttribute("key")
-            metadata[key] = self.extract_text(meta_node)
+        if metadata_node is not None:
+            for meta_node in self.find_children_named(metadata_node, "meta"):
+                key = meta_node.getAttribute("key")
+                metadata[key] = self.extract_text(meta_node)
         return metadata
 
 
-- 
cgit 


From 3db1c53486fdb669ac2bab303335548d7a7c617d Mon Sep 17 00:00:00 2001
From: Brian Waldon <brian.waldon@rackspace.com>
Date: Tue, 26 Jul 2011 13:28:11 -0400
Subject: updating imageRef and flavorRef parsing

---
 nova/api/openstack/servers.py | 42 +++++-------------------------------------
 1 file changed, 5 insertions(+), 37 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/servers.py b/nova/api/openstack/servers.py
index e1f845f36..06112eee3 100644
--- a/nova/api/openstack/servers.py
+++ b/nova/api/openstack/servers.py
@@ -493,51 +493,19 @@ class ControllerV11(Controller):
 
     def _image_ref_from_req_data(self, data):
         try:
-            image = data['server']['image']
+            return data['server']['imageRef']
         except (TypeError, KeyError):
-            msg = _("Missing image entity")
+            msg = _("Missing imageRef attribute")
             raise exc.HTTPBadRequest(explanation=msg)
 
-        try:
-            links = image.get('links', [])
-        except AttributeError:
-            msg = _("Malformed image entity")
-            raise exc.HTTPBadRequest(explanation=msg)
-
-        image_ref = self._href_from_bookmark_links(links)
-
-        if image_ref is None:
-            try:
-                return image['id']
-            except KeyError:
-                msg = _("Missing id attribute on image entity")
-                raise exc.HTTPBadRequest(explanation=msg)
-        else:
-            return image_ref
-
     def _flavor_id_from_req_data(self, data):
         try:
-            flavor = data['server']['flavor']
+            flavor_ref = data['server']['flavorRef']
         except (TypeError, KeyError):
-            msg = _("Missing flavor entity")
+            msg = _("Missing flavorRef attribute")
             raise exc.HTTPBadRequest(explanation=msg)
 
-        try:
-            links = flavor.get('links', [])
-        except AttributeError:
-            msg = _("Malformed flavor entity")
-            raise exc.HTTPBadRequest(explanation=msg)
-
-        flavor_ref = self._href_from_bookmark_links(links)
-
-        if flavor_ref is None:
-            try:
-                return flavor['id']
-            except (KeyError, AttributeError):
-                msg = _("Missing id attribute in flavor entity")
-                raise exc.HTTPBadRequest(explanation=msg)
-        else:
-            return common.get_id_from_href(flavor_ref)
+        return common.get_id_from_href(flavor_ref)
 
     def _build_view(self, req, instance, is_detail=False):
         base_url = req.application_url
-- 
cgit 


From 94866fef798a6b72061720cb654442cd194b9f5f Mon Sep 17 00:00:00 2001
From: Brian Waldon <brian.waldon@rackspace.com>
Date: Tue, 26 Jul 2011 13:47:37 -0400
Subject: reverting tests to use imageRef, flavorRef

---
 nova/api/openstack/create_instance_helper.py | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/create_instance_helper.py b/nova/api/openstack/create_instance_helper.py
index b717b8ac0..1342397c4 100644
--- a/nova/api/openstack/create_instance_helper.py
+++ b/nova/api/openstack/create_instance_helper.py
@@ -319,11 +319,10 @@ class ServerXMLDeserializer(wsgi.MetadataXMLDeserializer):
 
     def _extract_personality(self, server_node):
         """Marshal the personality attribute of a parsed request"""
-        personality_node = \
-                self.find_first_child_named(server_node, "personality")
+        node = self.find_first_child_named(server_node, "personality")
         personality = []
-        if personality_node is not None:
-            for file_node in self.find_children_named(personality_node, "file"):
+        if node is not None:
+            for file_node in self.find_children_named(node, "file"):
                 item = {}
                 if file_node.hasAttribute("path"):
                     item["path"] = file_node.getAttribute("path")
-- 
cgit 


From 24e1f23dbaf9ffd3f42fe05c24b980a6a0f09499 Mon Sep 17 00:00:00 2001
From: Brian Waldon <brian.waldon@rackspace.com>
Date: Tue, 26 Jul 2011 14:06:02 -0400
Subject: removing extra function

---
 nova/api/openstack/servers.py | 11 -----------
 1 file changed, 11 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/servers.py b/nova/api/openstack/servers.py
index 06112eee3..618778ea3 100644
--- a/nova/api/openstack/servers.py
+++ b/nova/api/openstack/servers.py
@@ -480,17 +480,6 @@ class ControllerV11(Controller):
         except exception.NotFound:
             raise exc.HTTPNotFound()
 
-    def _href_from_bookmark_links(self, links):
-        for link in links:
-            try:
-                if link.get('rel') == 'bookmark':
-                    href = link.get('href')
-                    if href is not None:
-                        return href
-            except AttributeError:
-                msg = _("Malformed link entity")
-                raise exc.HTTPBadRequest(explanation=msg)
-
     def _image_ref_from_req_data(self, data):
         try:
             return data['server']['imageRef']
-- 
cgit 


From 2e652f4cc72976ecc471a6c6f3b48afb3eb5a420 Mon Sep 17 00:00:00 2001
From: Alex Meade <alex.meade@rackspace.com>
Date: Tue, 26 Jul 2011 16:42:16 -0400
Subject: Updated test stubs to contain the correct data Updated created and
 updated in responses to use correct time format

---
 nova/api/openstack/views/servers.py | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/views/servers.py b/nova/api/openstack/views/servers.py
index be25e1e40..c90801724 100644
--- a/nova/api/openstack/views/servers.py
+++ b/nova/api/openstack/views/servers.py
@@ -15,6 +15,7 @@
 #    License for the specific language governing permissions and limitations
 #    under the License.
 
+import datetime
 import hashlib
 import os
 
@@ -149,8 +150,10 @@ class ViewBuilderV11(ViewBuilder):
 
     def _build_detail(self, inst):
         response = super(ViewBuilderV11, self)._build_detail(inst)
-        response['server']['created'] = inst['created_at']
-        response['server']['updated'] = inst['updated_at']
+        response['server']['created'] = \
+            self._convert_timeformat(inst['created_at'])
+        response['server']['updated'] =  \
+            self._convert_timeformat(inst['updated_at'])
         if 'status' in response['server']:
             if response['server']['status'] == "ACTIVE":
                 response['server']['progress'] = 100
@@ -221,3 +224,11 @@ class ViewBuilderV11(ViewBuilder):
         """Create an url that refers to a specific flavor id."""
         return os.path.join(common.remove_version_from_href(self.base_url),
             "servers", str(server_id))
+
+    def _convert_timeformat(self, time):
+        """Converts the given time into the common time format
+
+        :param time: should be a datetime
+
+        """
+        return time.strftime(utils.TIME_FORMAT)
-- 
cgit 


From e4e9d7550c2eb29c5d8fed3af0b9112976d262de Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Tue, 26 Jul 2011 20:44:29 +0000
Subject: Update security gropu rules to properly support new format and boto
 2.0

---
 nova/api/ec2/cloud.py | 53 +++++++++++++++++++++++++++++++++------------------
 1 file changed, 34 insertions(+), 19 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/ec2/cloud.py b/nova/api/ec2/cloud.py
index 10720a804..4b8c4cf80 100644
--- a/nova/api/ec2/cloud.py
+++ b/nova/api/ec2/cloud.py
@@ -539,15 +539,20 @@ class CloudController(object):
             return rules
         if 'ip_ranges' in kwargs:
             rules = self._cidr_args_split(kwargs)
+        else:
+            rules = [kwargs]
         finalset = []
         for rule in rules:
             if 'groups' in rule:
                 groups_values = self._groups_args_split(rule)
                 for groups_value in groups_values:
-                    finalset.append(groups_value)
+                    final = self._rule_dict_last_step(context, **groups_value)
+                    finalset.append(final)
             else:
                 if rule:
-                    finalset.append(rule)
+                    final = self._rule_dict_last_step(context, **rule)
+                    finalset.append(final)
+        LOG.warn(finalset)
         return finalset
 
     def _cidr_args_split(self, kwargs):
@@ -590,6 +595,9 @@ class CloudController(object):
                     db.security_group_get_by_name(context.elevated(),
                                                   source_project_id,
                                                   source_security_group_name)
+            notfound = exception.SecurityGroupNotFound
+            if not source_security_group:
+                raise notfound(security_group_id=source_security_group_name)
             values['group_id'] = source_security_group['id']
         elif cidr_ip:
             # If this fails, it throws an exception. This is what we want.
@@ -628,7 +636,7 @@ class CloudController(object):
         for rule in security_group.rules:
             if 'group_id' in values:
                 if rule['group_id'] == values['group_id']:
-                    return True
+                    return rule['id']
             else:
                 is_duplicate = True
                 for key in ('cidr', 'from_port', 'to_port', 'protocol'):
@@ -636,7 +644,7 @@ class CloudController(object):
                         is_duplicate = False
                         break
                 if is_duplicate:
-                    return True
+                    return rule['id']
         return False
 
     def revoke_security_group_ingress(self, context, group_name=None,
@@ -659,23 +667,30 @@ class CloudController(object):
 
         msg = "Revoke security group ingress %s"
         LOG.audit(_(msg), security_group['name'], context=context)
+        prevalues = []
+        try:
+            prevalues = kwargs['ip_permissions']
+        except KeyError:
+            prevalues.append(kwargs)
+        postvalues = []
+        for values in prevalues:
+            rulesvalues = self._rule_args_to_dict(context, values)
+            if not rulesvalues:
+                err = "%s Not enough parameters to build a valid rule"
+                raise exception.ApiError(_(err % rulesvalues))
 
-        criteria = self._rule_args_to_dict(context, kwargs)[0]
-        if criteria is None:
-            raise exception.ApiError(_("Not enough parameters to build a "
-                                       "valid rule."))
-
-        for rule in security_group.rules:
-            match = True
-            for (k, v) in criteria.iteritems():
-                if getattr(rule, k, False) != v:
-                    match = False
-            if match:
-                db.security_group_rule_destroy(context, rule['id'])
-                self.compute_api.trigger_security_group_rules_refresh(context,
-                                        security_group_id=security_group['id'])
+            rule_id = None
+            for values_for_rule in rulesvalues:
+                values_for_rule['parent_group_id'] = security_group.id
+                rule_id = self._security_group_rule_exists(security_group,
+                                                           values_for_rule)
+                if rule_id:
+                    db.security_group_rule_destroy(context, rule_id)
+                    self.compute_api.trigger_security_group_rules_refresh(context,
+                                            security_group_id=security_group['id'])
+            if rule_id:
                 return True
-        raise exception.ApiError(_("No rule for the specified parameters."))
+            raise exception.ApiError(_("No rule for the specified parameters."))
 
     # TODO(soren): This has only been tested with Boto as the client.
     #              Unfortunately, it seems Boto is using an old API
-- 
cgit 


From 5bd11c44f791cfe4c371b33cd1b1253013a8f836 Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Tue, 26 Jul 2011 20:49:46 +0000
Subject: remove some logging, remove extra if

---
 nova/api/ec2/cloud.py | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/ec2/cloud.py b/nova/api/ec2/cloud.py
index 4b8c4cf80..4045dfc61 100644
--- a/nova/api/ec2/cloud.py
+++ b/nova/api/ec2/cloud.py
@@ -549,10 +549,8 @@ class CloudController(object):
                     final = self._rule_dict_last_step(context, **groups_value)
                     finalset.append(final)
             else:
-                if rule:
-                    final = self._rule_dict_last_step(context, **rule)
-                    finalset.append(final)
-        LOG.warn(finalset)
+                final = self._rule_dict_last_step(context, **rule)
+                finalset.append(final)
         return finalset
 
     def _cidr_args_split(self, kwargs):
-- 
cgit 


From d4b2a2b3d552103414e4052773ac97939c66fa53 Mon Sep 17 00:00:00 2001
From: Vishvananda Ishaya <vishvananda@gmail.com>
Date: Tue, 26 Jul 2011 20:58:02 +0000
Subject: pep8 and simplify rule refresh logic

---
 nova/api/ec2/cloud.py | 31 +++++++++++++++++--------------
 1 file changed, 17 insertions(+), 14 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/ec2/cloud.py b/nova/api/ec2/cloud.py
index 4045dfc61..0294c09c5 100644
--- a/nova/api/ec2/cloud.py
+++ b/nova/api/ec2/cloud.py
@@ -670,25 +670,26 @@ class CloudController(object):
             prevalues = kwargs['ip_permissions']
         except KeyError:
             prevalues.append(kwargs)
-        postvalues = []
+        rule_id = None
         for values in prevalues:
             rulesvalues = self._rule_args_to_dict(context, values)
             if not rulesvalues:
                 err = "%s Not enough parameters to build a valid rule"
                 raise exception.ApiError(_(err % rulesvalues))
 
-            rule_id = None
             for values_for_rule in rulesvalues:
                 values_for_rule['parent_group_id'] = security_group.id
                 rule_id = self._security_group_rule_exists(security_group,
                                                            values_for_rule)
                 if rule_id:
                     db.security_group_rule_destroy(context, rule_id)
-                    self.compute_api.trigger_security_group_rules_refresh(context,
-                                            security_group_id=security_group['id'])
-            if rule_id:
-                return True
-            raise exception.ApiError(_("No rule for the specified parameters."))
+        if rule_id:
+            # NOTE(vish): we removed a rule, so refresh
+            self.compute_api.trigger_security_group_rules_refresh(
+                    context,
+                    security_group_id=security_group['id'])
+            return True
+        raise exception.ApiError(_("No rule for the specified parameters."))
 
     # TODO(soren): This has only been tested with Boto as the client.
     #              Unfortunately, it seems Boto is using an old API
@@ -734,15 +735,17 @@ class CloudController(object):
                 postvalues.append(values_for_rule)
 
         for values_for_rule in postvalues:
-            security_group_rule = db.security_group_rule_create(context,
-                                                               values_for_rule)
+            security_group_rule = db.security_group_rule_create(
+                    context,
+                    values_for_rule)
 
-        self.compute_api.trigger_security_group_rules_refresh(context,
-                                  security_group_id=security_group['id'])
+        if postvalues:
+            self.compute_api.trigger_security_group_rules_refresh(
+                    context,
+                    security_group_id=security_group['id'])
+            return True
 
-        group = db.security_group_get_by_name(context, context.project_id,
-                                              security_group['name'])
-        return True
+        raise exception.ApiError(_("No rule for the specified parameters."))
 
     def _get_source_project_id(self, context, source_security_group_owner_id):
         if source_security_group_owner_id:
-- 
cgit 


From 0300c952d925ccaad2d3d4191d87c08656d4b413 Mon Sep 17 00:00:00 2001
From: Alex Meade <alex.meade@rackspace.com>
Date: Wed, 27 Jul 2011 12:54:12 -0400
Subject: removed unused import

---
 nova/api/openstack/image_metadata.py | 1 -
 1 file changed, 1 deletion(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/image_metadata.py b/nova/api/openstack/image_metadata.py
index da753dee5..aaf64a123 100644
--- a/nova/api/openstack/image_metadata.py
+++ b/nova/api/openstack/image_metadata.py
@@ -22,7 +22,6 @@ from nova import image
 from nova import quota
 from nova import utils
 from nova.api.openstack import common
-from nova.api.openstack import faults
 from nova.api.openstack import wsgi
 
 
-- 
cgit 


From b8183e11e56781fce27ec1af261c5e53bca78ca5 Mon Sep 17 00:00:00 2001
From: Alex Meade <alex.meade@rackspace.com>
Date: Wed, 27 Jul 2011 15:15:48 -0400
Subject: change local variable name

---
 nova/api/openstack/views/servers.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/views/servers.py b/nova/api/openstack/views/servers.py
index c90801724..659a43522 100644
--- a/nova/api/openstack/views/servers.py
+++ b/nova/api/openstack/views/servers.py
@@ -225,10 +225,10 @@ class ViewBuilderV11(ViewBuilder):
         return os.path.join(common.remove_version_from_href(self.base_url),
             "servers", str(server_id))
 
-    def _convert_timeformat(self, time):
+    def _convert_timeformat(self, date_time):
         """Converts the given time into the common time format
 
-        :param time: should be a datetime
+        :param date_time: the datetime object to convert
 
         """
-        return time.strftime(utils.TIME_FORMAT)
+        return date_time.strftime(utils.TIME_FORMAT)
-- 
cgit 


From 7a165843aa5c1a98b1dbf13dedf556878a3d0435 Mon Sep 17 00:00:00 2001
From: Brian Lamar <brian.lamar@rackspace.com>
Date: Fri, 29 Jul 2011 11:06:02 -0400
Subject: Updated resize to call compute API with instance_type identifiers
 instead of flavor identifiers. Updated tests.

---
 nova/api/openstack/servers.py | 63 +++++++++++++++++++++++++++----------------
 1 file changed, 40 insertions(+), 23 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/servers.py b/nova/api/openstack/servers.py
index f6841318d..096fb229c 100644
--- a/nova/api/openstack/servers.py
+++ b/nova/api/openstack/servers.py
@@ -17,11 +17,10 @@ import base64
 import traceback
 
 from webob import exc
-import webob
 from xml.dom import minidom
+import webob
 
 from nova import compute
-from nova import db
 from nova import exception
 from nova import flags
 from nova import log as logging
@@ -29,13 +28,14 @@ from nova import utils
 from nova.api.openstack import common
 from nova.api.openstack import create_instance_helper as helper
 from nova.api.openstack import ips
+from nova.api.openstack import wsgi
+from nova.compute import instance_types
+from nova.scheduler import api as scheduler_api
+import nova.api.openstack
 import nova.api.openstack.views.addresses
 import nova.api.openstack.views.flavors
 import nova.api.openstack.views.images
 import nova.api.openstack.views.servers
-from nova.api.openstack import wsgi
-import nova.api.openstack
-from nova.scheduler import api as scheduler_api
 
 
 LOG = logging.getLogger('nova.api.openstack.servers')
@@ -438,13 +438,21 @@ class ControllerV10(Controller):
 
     def _action_resize(self, input_dict, req, id):
         """ Resizes a given instance to the flavor size requested """
-        if 'resize' in input_dict and 'flavorId' in input_dict['resize']:
-            flavor_id = input_dict['resize']['flavorId']
-            self.compute_api.resize(req.environ['nova.context'], id,
-                    flavor_id)
-        else:
-            LOG.exception(_("Missing 'flavorId' argument for resize"))
-            raise exc.HTTPUnprocessableEntity()
+        try:
+            flavor_id = input_dict["resize"]["flavorId"]
+        except (KeyError, TypeError):
+            msg = _("Resize requests require 'flavorId' attribute.")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        try:
+            i_type = instance_types.get_instance_type_by_flavor_id(flavor_id)
+        except exception.FlavorNotFound:
+            msg = _("Unable to locate requested flavor.")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        context = req.environ["nova.context"]
+        self.compute_api.resize(context, id, i_type["id"])
+
         return webob.Response(status_int=202)
 
     def _action_rebuild(self, info, request, instance_id):
@@ -555,17 +563,26 @@ class ControllerV11(Controller):
     def _action_resize(self, input_dict, req, id):
         """ Resizes a given instance to the flavor size requested """
         try:
-            if 'resize' in input_dict and 'flavorRef' in input_dict['resize']:
-                flavor_ref = input_dict['resize']['flavorRef']
-                flavor_id = common.get_id_from_href(flavor_ref)
-                self.compute_api.resize(req.environ['nova.context'], id,
-                        flavor_id)
-            else:
-                LOG.exception(_("Missing 'flavorRef' argument for resize"))
-                raise exc.HTTPUnprocessableEntity()
-        except Exception, e:
-            LOG.exception(_("Error in resize %s"), e)
-            raise exc.HTTPBadRequest()
+            flavor = input_dict["resize"]["flavor"]
+        except (KeyError, TypeError):
+            msg = _("Resize requests require a flavor to resize instance.")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        try:
+            flavor_id = flavor["id"]
+        except (KeyError, TypeError):
+            msg = _("Resize flavor requires 'id' attribute.")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        try:
+            i_type = instance_types.get_instance_type_by_flavor_id(flavor_id)
+        except exception.FlavorNotFound:
+            msg = _("Unable to locate requested flavor.")
+            raise exc.HTTPBadRequest(explanation=msg)
+
+        context = req.environ["nova.context"]
+        self.compute_api.resize(context, id, i_type["id"])
+
         return webob.Response(status_int=202)
 
     def _action_rebuild(self, info, request, instance_id):
-- 
cgit 


From 50abd79432ff82a23da1934cc4d297c0c5051668 Mon Sep 17 00:00:00 2001
From: Brian Lamar <brian.lamar@rackspace.com>
Date: Fri, 29 Jul 2011 11:57:40 -0400
Subject: Oops, I wasn't actually being compatible with the spec here.

---
 nova/api/openstack/servers.py | 12 +++---------
 1 file changed, 3 insertions(+), 9 deletions(-)

(limited to 'nova/api')

diff --git a/nova/api/openstack/servers.py b/nova/api/openstack/servers.py
index 096fb229c..30169d450 100644
--- a/nova/api/openstack/servers.py
+++ b/nova/api/openstack/servers.py
@@ -563,19 +563,13 @@ class ControllerV11(Controller):
     def _action_resize(self, input_dict, req, id):
         """ Resizes a given instance to the flavor size requested """
         try:
-            flavor = input_dict["resize"]["flavor"]
+            flavor_ref = input_dict["resize"]["flavorRef"]
         except (KeyError, TypeError):
-            msg = _("Resize requests require a flavor to resize instance.")
+            msg = _("Resize requests require 'flavorRef' attribute.")
             raise exc.HTTPBadRequest(explanation=msg)
 
         try:
-            flavor_id = flavor["id"]
-        except (KeyError, TypeError):
-            msg = _("Resize flavor requires 'id' attribute.")
-            raise exc.HTTPBadRequest(explanation=msg)
-
-        try:
-            i_type = instance_types.get_instance_type_by_flavor_id(flavor_id)
+            i_type = instance_types.get_instance_type_by_flavor_id(flavor_ref)
         except exception.FlavorNotFound:
             msg = _("Unable to locate requested flavor.")
             raise exc.HTTPBadRequest(explanation=msg)
-- 
cgit