| import os |
| from django.db import models |
| from core.models import PlCoreBase |
| from core.models import Site |
| from core.models.site import SitePrivilege |
| from core.models import User |
| from core.models import Role |
| from core.models import Controller,ControllerLinkManager,ControllerLinkDeletionManager |
| from core.models import ServiceClass |
| from core.models.serviceclass import get_default_serviceclass |
| from core.models import Tag |
| from django.contrib.contenttypes import generic |
| from core.models import Service |
| from core.models import Controller |
| from core.models import Flavor, Image |
| from django.core.exceptions import PermissionDenied, ValidationError |
| |
| # Create your models here. |
| |
| class Slice(PlCoreBase): |
| name = models.CharField(unique=True, help_text="The Name of the Slice", max_length=80) |
| enabled = models.BooleanField(default=True, help_text="Status for this Slice") |
| omf_friendly = models.BooleanField(default=False) |
| description=models.TextField(blank=True,help_text="High level description of the slice and expected activities", max_length=1024) |
| slice_url = models.URLField(blank=True, max_length=512) |
| site = models.ForeignKey(Site, related_name='slices', help_text="The Site this Slice belongs to") |
| max_slivers = models.IntegerField(default=10) |
| service = models.ForeignKey(Service, related_name='service', null=True, blank=True) |
| network = models.CharField(default="Private Only",null=True, blank=True, max_length=256) |
| tags = generic.GenericRelation(Tag) |
| serviceClass = models.ForeignKey(ServiceClass, related_name = "slices", null=True, default=get_default_serviceclass) |
| creator = models.ForeignKey(User, related_name='slices', blank=True, null=True) |
| |
| # for tenant view |
| default_flavor = models.ForeignKey(Flavor, related_name = "slices", null=True, blank=True) |
| default_image = models.ForeignKey(Image, related_name = "slices", null=True, blank=True); |
| mount_data_sets = models.CharField(default="GenBank",null=True, blank=True, max_length=256) |
| |
| def __unicode__(self): return u'%s' % (self.name) |
| |
| @property |
| def slicename(self): |
| return "%s_%s" % (self.site.login_base, self.name) |
| |
| def save(self, *args, **kwds): |
| site = Site.objects.get(id=self.site.id) |
| # allow preexisting slices to keep their original name for now |
| if not self.id and not self.name.startswith(site.login_base): |
| raise ValidationError('slice name must begin with %s' % site.login_base) |
| |
| if self.name == site.login_base+"_": |
| raise ValidationError('slice name is too short') |
| |
| if " " in self.name: |
| raise ValidationError('slice name must not contain spaces') |
| |
| if self.serviceClass is None: |
| # We allowed None=True for serviceClass because Django evolution |
| # will fail unless it is allowed. But, we we really don't want it to |
| # ever save None, so fix it up here. |
| self.serviceClass = ServiceClass.get_default() |
| |
| # set creator on first save |
| if not self.creator and hasattr(self, 'caller'): |
| self.creator = self.caller |
| |
| # only admins change a slice's creator |
| if 'creator' in self.changed_fields and \ |
| (not hasattr(self, 'caller') or not self.caller.is_admin): |
| |
| if (self._initial["creator"]==None): # and (self.creator==self.caller): |
| # it's okay if the creator is being set by the caller to |
| # himeself on a new slice object. |
| # TODO: self.caller is None when called from slicePlus REST API |
| pass |
| else: |
| raise PermissionDenied("Insufficient privileges to change slice creator") |
| |
| if not self.creator: |
| raise ValidationError('slice has no creator') |
| |
| super(Slice, self).save(*args, **kwds) |
| |
| def can_update(self, user): |
| if user.is_readonly: |
| return False |
| if user.is_admin: |
| return True |
| # slice admins can update |
| slice_privs = SlicePrivilege.objects.filter(user=user, slice=self) |
| for slice_priv in slice_privs: |
| if slice_priv.role.role == 'admin': |
| return True |
| # site pis can update |
| site_privs = SitePrivilege.objects.filter(user=user, site=self.site) |
| for site_priv in site_privs: |
| if site_priv.role.role == 'pi': |
| return True |
| |
| return False |
| |
| @staticmethod |
| def select_by_user(user): |
| if user.is_admin: |
| qs = Slice.objects.all() |
| else: |
| # users can see slices they belong to |
| slice_ids = [sp.slice.id for sp in SlicePrivilege.objects.filter(user=user)] |
| # pis can see slices at their sites |
| sites = [sp.site for sp in SitePrivilege.objects.filter(user=user)\ |
| if sp.role.role == 'pi'] |
| slice_ids.extend([s.id for s in Slice.objects.filter(site__in=sites)]) |
| qs = Slice.objects.filter(id__in=slice_ids) |
| return qs |
| |
| def delete(self, *args, **kwds): |
| # delete networks associated with this slice |
| from core.models.network import Network |
| nets = Network.objects.filter(slices=self) |
| nets.delete() |
| # delete slice controllers |
| slice_controllers = ControllerSlice.objects.filter(slice=self) |
| slice_controllers.delete() |
| # delete slice privilege |
| slice_privileges = SlicePrivilege.objects.filter(slice=self) |
| slice_privileges.delete() |
| # continue with normal delete |
| super(Slice, self).delete(*args, **kwds) |
| |
| |
| class SliceRole(PlCoreBase): |
| ROLE_CHOICES = (('admin','Admin'),('default','Default')) |
| |
| role = models.CharField(choices=ROLE_CHOICES, unique=True, max_length=30) |
| |
| def __unicode__(self): return u'%s' % (self.role) |
| |
| class SlicePrivilege(PlCoreBase): |
| user = models.ForeignKey('User', related_name='sliceprivileges') |
| slice = models.ForeignKey('Slice', related_name='sliceprivileges') |
| role = models.ForeignKey('SliceRole',related_name='sliceprivileges') |
| |
| def __unicode__(self): return u'%s %s %s' % (self.slice, self.user, self.role) |
| |
| def can_update(self, user): |
| return self.slice.can_update(user) |
| |
| @staticmethod |
| def select_by_user(user): |
| if user.is_admin: |
| qs = SlicePrivilege.objects.all() |
| else: |
| sp_ids = [sp.id for sp in SlicePrivilege.objects.filter(user=user)] |
| qs = SlicePrivilege.objects.filter(id__in=sp_ids) |
| return qs |
| |
| class ControllerSlice(PlCoreBase): |
| objects = ControllerLinkManager() |
| deleted_objects = ControllerLinkDeletionManager() |
| |
| controller = models.ForeignKey(Controller, related_name='controllerslices') |
| slice = models.ForeignKey(Slice, related_name='controllerslices') |
| tenant_id = models.CharField(null=True, blank=True, max_length=200, help_text="Keystone tenant id") |
| |
| def __unicode__(self): return u'%s %s' % (self.slice, self.controller) |
| |
| @staticmethod |
| def select_by_user(user): |
| if user.is_admin: |
| qs = ControllerSlice.objects.all() |
| else: |
| slices = Slice.select_by_user(user) |
| qs = ControllerSlice.objects.filter(slice__in=slices) |
| return qs |
| |
| def get_cpu_stats(self): |
| filter = 'project_id=%s'%self.tenant_id |
| return monitor.get_meter('cpu',filter,None) |
| |
| def get_bw_stats(self): |
| filter = 'project_id=%s'%self.tenant_id |
| return monitor.get_meter('network.outgoing.bytes',filter,None) |
| |
| def get_node_stats(self): |
| return len(self.slice.slivers) |