Startsida Utforska
Logga in
jan
/
packstack_ironic_ocata
Bevaka 1
Stjärnmärk 0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: 18444d70b0
Grenar Taggar
packstack_ir...
/
packstack
/
plugins
/
amqp_002.py

amqp_002.py 7.4 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204 
  1. # -*- coding: utf-8 -*-
    2. 

  2. # Licensed under the Apache License, Version 2.0 (the "License");
    3. 

  3. # you may not use this file except in compliance with the License.
    4. 

  4. # You may obtain a copy of the License at
    5. 

  5. #
    6. 

  6. #    http://www.apache.org/licenses/LICENSE-2.0
    7. 

  7. #
    8. 

  8. # Unless required by applicable law or agreed to in writing, software
    9. 

  9. # distributed under the License is distributed on an "AS IS" BASIS,
    10. 

  10. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
    11. 

  11. # implied.
    12. 

  12. # See the License for the specific language governing permissions and
    13. 

  13. # limitations under the License.
    14. 

  14. 

  15. """
    16. 

  16. Installs and configures AMQP
    17. 

  17. """
    18. 

  18. 

  19. from packstack.installer import basedefs
    20. 

  20. from packstack.installer import validators
    21. 

  21. from packstack.installer import processors
    22. 

  22. from packstack.installer import utils
    23. 

  23. 

  24. from packstack.modules.common import filtered_hosts
    25. 

  25. from packstack.modules.documentation import update_params_usage
    26. 

  26. from packstack.modules.ospluginutils import generate_ssl_cert
    27. 

  27. 

  28. # ------------- AMQP Packstack Plugin Initialization --------------
    29. 

  29. 

  30. PLUGIN_NAME = "AMQP"
    31. 

  31. PLUGIN_NAME_COLORED = utils.color_text(PLUGIN_NAME, 'blue')
    32. 

  32. 

  33. 

  34. def initConfig(controller):
    35. 

  35.     params = [
    36. 

  36.         {"CMD_OPTION": "amqp-backend",
    37. 

  37.          "PROMPT": "Set the AMQP service backend",
    38. 

  38.          "OPTION_LIST": ["rabbitmq"],
    39. 

  39.          "VALIDATORS": [validators.validate_options],
    40. 

  40.          "DEFAULT_VALUE": "rabbitmq",
    41. 

  41.          "MASK_INPUT": False,
    42. 

  42.          "LOOSE_VALIDATION": False,
    43. 

  43.          "CONF_NAME": "CONFIG_AMQP_BACKEND",
    44. 

  44.          "USE_DEFAULT": False,
    45. 

  45.          "NEED_CONFIRM": False,
    46. 

  46.          "CONDITION": False,
    47. 

  47.          "DEPRECATES": ['CONFIG_AMQP_SERVER']},
    48. 

  48. 

  49.         {"CMD_OPTION": "amqp-host",
    50. 

  50.          "PROMPT": "Enter the host for the AMQP service",
    51. 

  51.          "OPTION_LIST": [],
    52. 

  52.          "VALIDATORS": [validators.validate_ssh],
    53. 

  53.          "DEFAULT_VALUE": utils.get_localhost_ip(),
    54. 

  54.          "MASK_INPUT": False,
    55. 

  55.          "LOOSE_VALIDATION": True,
    56. 

  56.          "CONF_NAME": "CONFIG_AMQP_HOST",
    57. 

  57.          "USE_DEFAULT": False,
    58. 

  58.          "NEED_CONFIRM": False,
    59. 

  59.          "CONDITION": False},
    60. 

  60. 

  61.         {"CMD_OPTION": "amqp-enable-ssl",
    62. 

  62.          "PROMPT": "Enable SSL for the AMQP service?",
    63. 

  63.          "OPTION_LIST": ["y", "n"],
    64. 

  64.          "VALIDATORS": [validators.validate_options],
    65. 

  65.          "DEFAULT_VALUE": "n",
    66. 

  66.          "MASK_INPUT": False,
    67. 

  67.          "LOOSE_VALIDATION": False,
    68. 

  68.          "CONF_NAME": "CONFIG_AMQP_ENABLE_SSL",
    69. 

  69.          "USE_DEFAULT": False,
    70. 

  70.          "NEED_CONFIRM": False,
    71. 

  71.          "CONDITION": False},
    72. 

  72. 

  73.         {"CMD_OPTION": "amqp-enable-auth",
    74. 

  74.          "PROMPT": "Enable Authentication for the AMQP service?",
    75. 

  75.          "OPTION_LIST": ["y", "n"],
    76. 

  76.          "VALIDATORS": [validators.validate_options],
    77. 

  77.          "DEFAULT_VALUE": "n",
    78. 

  78.          "MASK_INPUT": False,
    79. 

  79.          "LOOSE_VALIDATION": False,
    80. 

  80.          "CONF_NAME": "CONFIG_AMQP_ENABLE_AUTH",
    81. 

  81.          "USE_DEFAULT": False,
    82. 

  82.          "NEED_CONFIRM": False,
    83. 

  83.          "CONDITION": False},
    84. 

  84.     ]
    85. 

  85.     update_params_usage(basedefs.PACKSTACK_DOC, params, sectioned=False)
    86. 

  86.     group = {"GROUP_NAME": "AMQP",
    87. 

  87.              "DESCRIPTION": "AMQP Config parameters",
    88. 

  88.              "PRE_CONDITION": False,
    89. 

  89.              "PRE_CONDITION_MATCH": True,
    90. 

  90.              "POST_CONDITION": False,
    91. 

  91.              "POST_CONDITION_MATCH": True}
    92. 

  92.     controller.addGroup(group, params)
    93. 

  93. 

  94.     params = [
    95. 

  95.         {"CMD_OPTION": "amqp-nss-certdb-pw",
    96. 

  96.          "PROMPT": "Enter the password for NSS certificate database",
    97. 

  97.          "OPTION_LIST": [],
    98. 

  98.          "VALIDATORS": [validators.validate_not_empty],
    99. 

  99.          "DEFAULT_VALUE": "PW_PLACEHOLDER",
    100. 

  100.          "PROCESSORS": [processors.process_password],
    101. 

  101.          "MASK_INPUT": True,
    102. 

  102.          "LOOSE_VALIDATION": True,
    103. 

  103.          "CONF_NAME": "CONFIG_AMQP_NSS_CERTDB_PW",
    104. 

  104.          "USE_DEFAULT": False,
    105. 

  105.          "NEED_CONFIRM": True,
    106. 

  106.          "CONDITION": False},
    107. 

  107.     ]
    108. 

  108.     update_params_usage(basedefs.PACKSTACK_DOC, params, sectioned=False)
    109. 

  109.     group = {"GROUP_NAME": "AMQPSSL",
    110. 

  110.              "DESCRIPTION": "AMQP Config SSL parameters",
    111. 

  111.              "PRE_CONDITION": "CONFIG_AMQP_ENABLE_SSL",
    112. 

  112.              "PRE_CONDITION_MATCH": "y",
    113. 

  113.              "POST_CONDITION": False,
    114. 

  114.              "POST_CONDITION_MATCH": True}
    115. 

  115.     controller.addGroup(group, params)
    116. 

  116. 

  117.     params = [
    118. 

  118.         {"CMD_OPTION": "amqp-auth-user",
    119. 

  119.          "PROMPT": "Enter the user for amqp authentication",
    120. 

  120.          "OPTION_LIST": [],
    121. 

  121.          "VALIDATORS": [validators.validate_not_empty],
    122. 

  122.          "DEFAULT_VALUE": "amqp_user",
    123. 

  123.          "MASK_INPUT": False,
    124. 

  124.          "LOOSE_VALIDATION": True,
    125. 

  125.          "CONF_NAME": "CONFIG_AMQP_AUTH_USER",
    126. 

  126.          "USE_DEFAULT": False,
    127. 

  127.          "NEED_CONFIRM": False,
    128. 

  128.          "CONDITION": False},
    129. 

  129. 

  130.         {"CMD_OPTION": "amqp-auth-password",
    131. 

  131.          "PROMPT": "Enter the password for user authentication",
    132. 

  132.          "OPTION_LIST": ["y", "n"],
    133. 

  133.          "VALIDATORS": [validators.validate_not_empty],
    134. 

  134.          "PROCESSORS": [processors.process_password],
    135. 

  135.          "DEFAULT_VALUE": "PW_PLACEHOLDER",
    136. 

  136.          "MASK_INPUT": True,
    137. 

  137.          "LOOSE_VALIDATION": True,
    138. 

  138.          "CONF_NAME": "CONFIG_AMQP_AUTH_PASSWORD",
    139. 

  139.          "USE_DEFAULT": False,
    140. 

  140.          "NEED_CONFIRM": True,
    141. 

  141.          "CONDITION": False},
    142. 

  142.     ]
    143. 

  143.     update_params_usage(basedefs.PACKSTACK_DOC, params, sectioned=False)
    144. 

  144.     group = {"GROUP_NAME": "AMQPAUTH",
    145. 

  145.              "DESCRIPTION": "AMQP Config Athentication parameters",
    146. 

  146.              "PRE_CONDITION": "CONFIG_AMQP_ENABLE_AUTH",
    147. 

  147.              "PRE_CONDITION_MATCH": "y",
    148. 

  148.              "POST_CONDITION": False,
    149. 

  149.              "POST_CONDITION_MATCH": True}
    150. 

  150.     controller.addGroup(group, params)
    151. 

  151. 

  152. 

  153. def initSequences(controller):
    154. 

  154.     amqpsteps = [
    155. 

  155.         {'title': 'Preparing AMQP entries',
    156. 

  156.          'functions': [create_manifest]}
    157. 

  157.     ]
    158. 

  158.     controller.addSequence("Installing AMQP", [], [], amqpsteps)
    159. 

  159. 

  160. 

  161. # ------------------------ step functions -------------------------
    162. 

  162. 

  163. def create_manifest(config, messages):
    164. 

  164.     server = utils.ScriptRunner(config['CONFIG_AMQP_HOST'])
    165. 

  165.     if config['CONFIG_AMQP_ENABLE_SSL'] == 'y':
    166. 

  166.         config['CONFIG_AMQP_SSL_ENABLED'] = True
    167. 

  167.         config['CONFIG_AMQP_PROTOCOL'] = 'ssl'
    168. 

  168.         config['CONFIG_AMQP_CLIENTS_PORT'] = "5671"
    169. 

  169.         amqp_host = config['CONFIG_AMQP_HOST']
    170. 

  170.         service = 'AMQP'
    171. 

  171.         ssl_key_file = '/etc/pki/tls/private/ssl_amqp.key'
    172. 

  172.         ssl_cert_file = '/etc/pki/tls/certs/ssl_amqp.crt'
    173. 

  173.         cacert = config['CONFIG_AMQP_SSL_CACERT_FILE'] = (
    174. 

  174.             config['CONFIG_SSL_CACERT']
    175. 

  175.         )
    176. 

  176.         generate_ssl_cert(config, amqp_host, service, ssl_key_file,
    177. 

  177.                           ssl_cert_file)
    178. 

  178.     else:
    179. 

  179.         # Set default values
    180. 

  180.         config['CONFIG_AMQP_CLIENTS_PORT'] = "5672"
    181. 

  181.         config['CONFIG_AMQP_SSL_ENABLED'] = False
    182. 

  182.         config['CONFIG_AMQP_PROTOCOL'] = 'tcp'
    183. 

  183. 

  184.     if config['CONFIG_AMQP_ENABLE_AUTH'] == 'n':
    185. 

  185.         config['CONFIG_AMQP_AUTH_PASSWORD'] = 'guest'
    186. 

  186.         config['CONFIG_AMQP_AUTH_USER'] = 'guest'
    187. 

  187. 

  188.     if config['CONFIG_IP_VERSION'] == 'ipv6':
    189. 

  189.         config['CONFIG_AMQP_HOST_URL'] = "[%s]" % config['CONFIG_AMQP_HOST']
    190. 

  190.     else:
    191. 

  191.         config['CONFIG_AMQP_HOST_URL'] = config['CONFIG_AMQP_HOST']
    192. 

  192. 

  193.     fw_details = dict()
    194. 

  194.     # All hosts should be able to talk to amqp
    195. 

  195.     for host in filtered_hosts(config, exclude=False):
    196. 

  196.         key = "amqp_%s" % host
    197. 

  197.         fw_details.setdefault(key, {})
    198. 

  198.         fw_details[key]['host'] = "%s" % host
    199. 

  199.         fw_details[key]['service_name'] = "amqp"
    200. 

  200.         fw_details[key]['chain'] = "INPUT"
    201. 

  201.         fw_details[key]['ports'] = ['5671', '5672']
    202. 

  202.         fw_details[key]['proto'] = "tcp"
    203. 

  203.     config['FIREWALL_AMQP_RULES'] = fw_details
    204. 

  204.