100 lines
3.7 KiB
Python
100 lines
3.7 KiB
Python
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
||
# not use this file except in compliance with the License. You may obtain
|
||
# a copy of the License at
|
||
#
|
||
# http://www.apache.org/licenses/LICENSE-2.0
|
||
#
|
||
# Unless required by applicable law or agreed to in writing, software
|
||
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
||
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
||
# License for the specific language governing permissions and limitations
|
||
# under the License.
|
||
|
||
from openstack import exceptions
|
||
from openstack import resource
|
||
from openstack import utils
|
||
|
||
|
||
class ShareAccessRule(resource.Resource):
|
||
resource_key = "access"
|
||
resources_key = "access_list"
|
||
base_path = "/share-access-rules"
|
||
|
||
# capabilities
|
||
allow_create = True
|
||
allow_fetch = True
|
||
allow_commit = False
|
||
allow_delete = True
|
||
allow_list = True
|
||
allow_head = False
|
||
|
||
_query_mapping = resource.QueryParameters("share_id")
|
||
|
||
# Restricted access rules became available in 2.82
|
||
_max_microversion = '2.82'
|
||
|
||
#: Properties
|
||
#: The access credential of the entity granted share access.
|
||
access_key = resource.Body("access_key", type=str)
|
||
#: The access level to the share.
|
||
access_level = resource.Body("access_level", type=str)
|
||
#: The object of the access rule.
|
||
access_list = resource.Body("access_list", type=str)
|
||
#: The value that defines the access.
|
||
access_to = resource.Body("access_to", type=str)
|
||
#: The access rule type.
|
||
access_type = resource.Body("access_type", type=str)
|
||
#: The date and time stamp when the resource was created within the
|
||
#: service’s database.
|
||
created_at = resource.Body("created_at", type=str)
|
||
#: One or more access rule metadata key and value pairs as a dictionary
|
||
#: of strings.
|
||
metadata = resource.Body("metadata", type=dict)
|
||
#: The UUID of the share to which you are granted or denied access.
|
||
share_id = resource.Body("share_id", type=str)
|
||
#: The state of the access rule.
|
||
state = resource.Body("state", type=str)
|
||
#: The date and time stamp when the resource was last updated within
|
||
#: the service’s database.
|
||
updated_at = resource.Body("updated_at", type=str)
|
||
#: Whether the visibility of some sensitive fields is restricted or not
|
||
lock_visibility = resource.Body("lock_visibility", type=bool)
|
||
#: Whether the deletion of the access rule should be restricted or not
|
||
lock_deletion = resource.Body("lock_deletion", type=bool)
|
||
#: Reason for placing the loc
|
||
lock_reason = resource.Body("lock_reason", type=bool)
|
||
|
||
def _action(self, session, body, url, action='patch', microversion=None):
|
||
headers = {'Accept': ''}
|
||
|
||
if microversion is None:
|
||
microversion = self._get_microversion(session, action=action)
|
||
|
||
return session.post(
|
||
url, json=body, headers=headers, microversion=microversion
|
||
)
|
||
|
||
def create(self, session, **kwargs):
|
||
return super().create(
|
||
session,
|
||
resource_request_key='allow_access',
|
||
resource_response_key='access',
|
||
**kwargs
|
||
)
|
||
|
||
def delete(
|
||
self, session, share_id, ignore_missing=True, *, unrestrict=False
|
||
):
|
||
body = {"deny_access": {"access_id": self.id}}
|
||
if unrestrict:
|
||
body['deny_access']['unrestrict'] = True
|
||
url = utils.urljoin("/shares", share_id, "action")
|
||
response = self._action(session, body, url)
|
||
try:
|
||
response = self._action(session, body, url)
|
||
self._translate_response(response)
|
||
except exceptions.ResourceNotFound:
|
||
if not ignore_missing:
|
||
raise
|
||
return response
|