Gitiles
Code Review Sign In
gerrit.opencord.org / xos / 91463d92cb5f49822fa4935b4dc424c2ab84df35 / . / planetstack / observer / steps / sync_site_privileges.py
blob: c22925704d2d505927731d5d1c15a5e7ed74b006 [file] [log] [blame]
Sapan Bhatia24836f12013-08-27 10:16:05 -0400[diff] [blame]1import os
2import base64
Tony Mackae7f30c2013-09-25 12:46:50 -0400[diff] [blame]3from django.db.models import F, Q
Sapan Bhatia24836f12013-08-27 10:16:05 -0400[diff] [blame]4from planetstack.config import Config
Sapan Bhatia04c94ad2013-09-02 18:00:28 -0400[diff] [blame]5from observer.openstacksyncstep import OpenStackSyncStep
Tony Mack91463d92014-06-19 20:42:03 -0400[diff] [blame^]6from core.models import User, UserDeployments, SitePrivilege, SiteDeployments
Sapan Bhatia24836f12013-08-27 10:16:05 -0400[diff] [blame]7
8class SyncSitePrivileges(OpenStackSyncStep):
Tony Mackdacfb982013-09-24 21:57:16 -0400[diff] [blame]9 requested_interval=0
10 provides=[SitePrivilege]
Tony Mack66646d52013-09-24 21:47:12 -0400[diff] [blame]11
12 def fetch_pending(self):
Tony Mack31078dd2013-10-02 12:46:21 -0400[diff] [blame]13 return SitePrivilege.objects.filter(Q(enacted__lt=F('updated')) | Q(enacted=None))
Tony Mack66646d52013-09-24 21:47:12 -0400[diff] [blame]14
Tony Mack37146d22013-10-21 11:02:51 -0400[diff] [blame]15 def sync_record(self, site_priv):
Tony Mackdacfb982013-09-24 21:57:16 -0400[diff] [blame]16 if site_priv.user.kuser_id and site_priv.site.tenant_id:
17 self.driver.add_user_role(site_priv.user.kuser_id,
18 site_priv.site.tenant_id,
Tony Mack00367072013-10-08 18:09:30 -0400[diff] [blame]19 site_priv.role.role)
Tony Macke4be32f2014-03-11 20:45:25 -0400[diff] [blame]20
21 # sync site privileges at all site deployments
22 site_deployments = SiteDeployments.objects.filter(site=site_priv.site)
23 for site_deployment in site_deployments:
24 user_deployments = UserDeployments.objects.filter(deployment=site_deployment.deployment)
25 if user_deployments:
26 kuser_id = user_deployments[0].kuser_id
Tony Mackf77f1402014-04-02 07:06:53 -0400[diff] [blame]27 driver = self.driver.admin_driver(deployment=site_deployment.deployment.name)
Tony Macke4be32f2014-03-11 20:45:25 -0400[diff] [blame]28 driver.add_user_role(kuser_id,
29 site_deployment.tenant_id,
Tony Mackf77f1402014-04-02 07:06:53 -0400[diff] [blame]30 site_priv.role.role)