packer-cn/builder/openstack/access_config.go

package openstack

import (
	"crypto/tls"
	"fmt"
	"net/http"
	"os"

	"github.com/mitchellh/packer/template/interpolate"
	"github.com/rackspace/gophercloud"
	"github.com/rackspace/gophercloud/openstack"
)

// AccessConfig is for common configuration related to openstack access
type AccessConfig struct {
	Username         string `mapstructure:"username"`
	UserID           string `mapstructure:"user_id"`
	Password         string `mapstructure:"password"`
	APIKey           string `mapstructure:"api_key"`
	IdentityEndpoint string `mapstructure:"identity_endpoint"`
	TenantID         string `mapstructure:"tenant_id"`
	TenantName       string `mapstructure:"tenant_name"`
	DomainID         string `mapstructure:"domain_id"`
	DomainName       string `mapstructure:"domain_name"`
	Insecure         bool   `mapstructure:"insecure"`
	Region           string `mapstructure:"region"`
	EndpointType     string `mapstructure:"endpoint_type"`

	osClient *gophercloud.ProviderClient
}

func (c *AccessConfig) Prepare(ctx *interpolate.Context) []error {
	if c.EndpointType != "internal" && c.EndpointType != "internalURL" &&
		c.EndpointType != "admin" && c.EndpointType != "adminURL" &&
		c.EndpointType != "public" && c.EndpointType != "publicURL" &&
		c.EndpointType != "" {
		return []error{fmt.Errorf("Invalid endpoint type provided")}
	}

	if c.Region == "" {
		c.Region = os.Getenv("OS_REGION_NAME")
	}

	// Legacy RackSpace stuff. We're keeping this around to keep things BC.
	if c.APIKey == "" {
		c.APIKey = os.Getenv("SDK_API_KEY")
	}
	if c.Password == "" {
		c.Password = os.Getenv("SDK_PASSWORD")
	}
	if c.Region == "" {
		c.Region = os.Getenv("SDK_REGION")
	}
	if c.TenantName == "" {
		c.TenantName = os.Getenv("SDK_PROJECT")
	}
	if c.Username == "" {
		c.Username = os.Getenv("SDK_USERNAME")
	}

	// Get as much as possible from the end
	ao, _ := openstack.AuthOptionsFromEnv()

	// Override values if we have them in our config
	overrides := []struct {
		From, To *string
	}{
		{&c.Username, &ao.Username},
		{&c.UserID, &ao.UserID},
		{&c.Password, &ao.Password},
		{&c.APIKey, &ao.APIKey},
		{&c.IdentityEndpoint, &ao.IdentityEndpoint},
		{&c.TenantID, &ao.TenantID},
		{&c.TenantName, &ao.TenantName},
		{&c.DomainID, &ao.DomainID},
		{&c.DomainName, &ao.DomainName},
	}
	for _, s := range overrides {
		if *s.From != "" {
			*s.To = *s.From
		}
	}

	// Build the client itself
	client, err := openstack.NewClient(ao.IdentityEndpoint)
	if err != nil {
		return []error{err}
	}

	// If we have insecure set, then create a custom HTTP client that
	// ignores SSL errors.
	if c.Insecure {
		config := &tls.Config{InsecureSkipVerify: true}
		transport := &http.Transport{TLSClientConfig: config}
		client.HTTPClient.Transport = transport
	}

	// Auth
	err = openstack.Authenticate(client, ao)
	if err != nil {
		return []error{err}
	}

	c.osClient = client
	return nil
}

func (c *AccessConfig) computeV2Client() (*gophercloud.ServiceClient, error) {
	return openstack.NewComputeV2(c.osClient, gophercloud.EndpointOpts{
		Region:       c.Region,
		Availability: c.getEndpointType(),
	})
}

func (c *AccessConfig) getEndpointType() gophercloud.Availability {
	if c.EndpointType == "internal" || c.EndpointType == "internalURL" {
		return gophercloud.AvailabilityInternal
	}
	if c.EndpointType == "admin" || c.EndpointType == "adminURL" {
		return gophercloud.AvailabilityAdmin
	}
	return gophercloud.AvailabilityPublic
}
Add base support for openstack [GH-155] This change adds base support for an openstack builder. Thank you to Rackspace for providing cloud assets to complete this work and @sam-falvo for working with us on the perigee/gophercloud changes. 2013-08-27 00:57:23 -04:00			`package openstack`

			`import (`
Allow OpenStack builder to skip certificate verification 2014-05-05 12:44:25 -04:00			`"crypto/tls"`
Add base support for openstack [GH-155] This change adds base support for an openstack builder. Thank you to Rackspace for providing cloud assets to complete this work and @sam-falvo for working with us on the perigee/gophercloud changes. 2013-08-27 00:57:23 -04:00			`"fmt"`
Add ProxyUrl parameter for OpenStack builder. In my particular case I need to use a separate HTTP proxy to access my OpenStack API than what is set in the environment. This commit adds an optional parameter to the builder configuration and overrides the net/http client that is used by the gophercloud library. 2013-11-19 12:03:35 -05:00			`"net/http"`
Add base support for openstack [GH-155] This change adds base support for an openstack builder. Thank you to Rackspace for providing cloud assets to complete this work and @sam-falvo for working with us on the perigee/gophercloud changes. 2013-08-27 00:57:23 -04:00			`"os"`
builder/openstack: lock to fork for now to compile [GH-1625] 2014-10-27 19:40:49 -04:00
builder/openstack: convert interpolation 2015-05-27 16:02:57 -04:00			`"github.com/mitchellh/packer/template/interpolate"`
builder/openstack 2015-06-12 00:16:43 -04:00			`"github.com/rackspace/gophercloud"`
			`"github.com/rackspace/gophercloud/openstack"`
Add base support for openstack [GH-155] This change adds base support for an openstack builder. Thank you to Rackspace for providing cloud assets to complete this work and @sam-falvo for working with us on the perigee/gophercloud changes. 2013-08-27 00:57:23 -04:00			`)`

			`// AccessConfig is for common configuration related to openstack access`
			`type AccessConfig struct {`
builder/openstack 2015-06-12 00:16:43 -04:00			Username string `mapstructure:"username"`
			UserID string `mapstructure:"user_id"`
			Password string `mapstructure:"password"`
			APIKey string `mapstructure:"api_key"`
			IdentityEndpoint string `mapstructure:"identity_endpoint"`
			TenantID string `mapstructure:"tenant_id"`
			TenantName string `mapstructure:"tenant_name"`
			DomainID string `mapstructure:"domain_id"`
			DomainName string `mapstructure:"domain_name"`
			Insecure bool `mapstructure:"insecure"`
			Region string `mapstructure:"region"`
			EndpointType string `mapstructure:"endpoint_type"`

			`osClient *gophercloud.ProviderClient`
Add base support for openstack [GH-155] This change adds base support for an openstack builder. Thank you to Rackspace for providing cloud assets to complete this work and @sam-falvo for working with us on the perigee/gophercloud changes. 2013-08-27 00:57:23 -04:00			`}`

builder/openstack 2015-06-12 00:16:43 -04:00			`func (c AccessConfig) Prepare(ctx interpolate.Context) []error {`
			`if c.EndpointType != "internal" && c.EndpointType != "internalURL" &&`
			`c.EndpointType != "admin" && c.EndpointType != "adminURL" &&`
			`c.EndpointType != "public" && c.EndpointType != "publicURL" &&`
			`c.EndpointType != "" {`
			`return []error{fmt.Errorf("Invalid endpoint type provided")}`
Append /tokens suffix if not present for specific OpenStack authentication URLs 2014-01-06 16:41:30 -05:00			`}`

builder/openstack 2015-06-12 00:16:43 -04:00			`if c.Region == "" {`
			`c.Region = os.Getenv("OS_REGION_NAME")`
Only pass the project if it is specified 2013-09-02 13:22:14 -04:00			`}`

builder/openstack: support legacy env vars 2015-06-12 00:33:52 -04:00			`// Legacy RackSpace stuff. We're keeping this around to keep things BC.`
			`if c.APIKey == "" {`
			`c.APIKey = os.Getenv("SDK_API_KEY")`
			`}`
			`if c.Password == "" {`
			`c.Password = os.Getenv("SDK_PASSWORD")`
			`}`
			`if c.Region == "" {`
			`c.Region = os.Getenv("SDK_REGION")`
			`}`
			`if c.TenantName == "" {`
			`c.TenantName = os.Getenv("SDK_PROJECT")`
			`}`
			`if c.Username == "" {`
			`c.Username = os.Getenv("SDK_USERNAME")`
			`}`

builder/openstack 2015-06-12 00:16:43 -04:00			`// Get as much as possible from the end`
builder/openstack: modifications to work with rackspace 2015-06-12 00:28:38 -04:00			`ao, _ := openstack.AuthOptionsFromEnv()`
Allow OpenStack builder to skip certificate verification 2014-05-05 12:44:25 -04:00
builder/openstack 2015-06-12 00:16:43 -04:00			`// Override values if we have them in our config`
			`overrides := []struct {`
			`From, To *string`
			`}{`
			`{&c.Username, &ao.Username},`
			`{&c.UserID, &ao.UserID},`
			`{&c.Password, &ao.Password},`
			`{&c.APIKey, &ao.APIKey},`
			`{&c.IdentityEndpoint, &ao.IdentityEndpoint},`
			`{&c.TenantID, &ao.TenantID},`
			`{&c.TenantName, &ao.TenantName},`
			`{&c.DomainID, &ao.DomainID},`
			`{&c.DomainName, &ao.DomainName},`
			`}`
			`for _, s := range overrides {`
			`if *s.From != "" {`
			`s.To = s.From`
Add ProxyUrl parameter for OpenStack builder. In my particular case I need to use a separate HTTP proxy to access my OpenStack API than what is set in the environment. This commit adds an optional parameter to the builder configuration and overrides the net/http client that is used by the gophercloud library. 2013-11-19 12:03:35 -05:00			`}`
builder/openstack 2015-06-12 00:16:43 -04:00			`}`

			`// Build the client itself`
			`client, err := openstack.NewClient(ao.IdentityEndpoint)`
			`if err != nil {`
			`return []error{err}`
			`}`
Add ProxyUrl parameter for OpenStack builder. In my particular case I need to use a separate HTTP proxy to access my OpenStack API than what is set in the environment. This commit adds an optional parameter to the builder configuration and overrides the net/http client that is used by the gophercloud library. 2013-11-19 12:03:35 -05:00
builder/openstack 2015-06-12 00:16:43 -04:00			`// If we have insecure set, then create a custom HTTP client that`
			`// ignores SSL errors.`
			`if c.Insecure {`
			`config := &tls.Config{InsecureSkipVerify: true}`
			`transport := &http.Transport{TLSClientConfig: config}`
			`client.HTTPClient.Transport = transport`
Allow OpenStack builder to skip certificate verification 2014-05-05 12:44:25 -04:00			`}`

builder/openstack 2015-06-12 00:16:43 -04:00			`// Auth`
			`err = openstack.Authenticate(client, ao)`
			`if err != nil {`
			`return []error{err}`
Add ProxyUrl parameter for OpenStack builder. In my particular case I need to use a separate HTTP proxy to access my OpenStack API than what is set in the environment. This commit adds an optional parameter to the builder configuration and overrides the net/http client that is used by the gophercloud library. 2013-11-19 12:03:35 -05:00			`}`

builder/openstack 2015-06-12 00:16:43 -04:00			`c.osClient = client`
			`return nil`
Add base support for openstack [GH-155] This change adds base support for an openstack builder. Thank you to Rackspace for providing cloud assets to complete this work and @sam-falvo for working with us on the perigee/gophercloud changes. 2013-08-27 00:57:23 -04:00			`}`

builder/openstack 2015-06-12 00:16:43 -04:00			`func (c AccessConfig) computeV2Client() (gophercloud.ServiceClient, error) {`
			`return openstack.NewComputeV2(c.osClient, gophercloud.EndpointOpts{`
			`Region: c.Region,`
			`Availability: c.getEndpointType(),`
			`})`
builder/openstack: don't hardcode "DFW" and make region required 2013-09-01 16:22:22 -04:00			`}`

builder/openstack 2015-06-12 00:16:43 -04:00			`func (c *AccessConfig) getEndpointType() gophercloud.Availability {`
			`if c.EndpointType == "internal" \|\| c.EndpointType == "internalURL" {`
			`return gophercloud.AvailabilityInternal`
Make region required for rackspace but not other providers Update test to make it pass. 2014-08-15 14:19:04 -04:00			`}`
builder/openstack 2015-06-12 00:16:43 -04:00			`if c.EndpointType == "admin" \|\| c.EndpointType == "adminURL" {`
			`return gophercloud.AvailabilityAdmin`
Add base support for openstack [GH-155] This change adds base support for an openstack builder. Thank you to Rackspace for providing cloud assets to complete this work and @sam-falvo for working with us on the perigee/gophercloud changes. 2013-08-27 00:57:23 -04:00			`}`
builder/openstack 2015-06-12 00:16:43 -04:00			`return gophercloud.AvailabilityPublic`
Add base support for openstack [GH-155] This change adds base support for an openstack builder. Thank you to Rackspace for providing cloud assets to complete this work and @sam-falvo for working with us on the perigee/gophercloud changes. 2013-08-27 00:57:23 -04:00			`}`