]> git.proxmox.com Git - ceph.git/blame - ceph/qa/tasks/radosgw_admin.py
projects / ceph.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
import 15.2.4
[ceph.git] / ceph / qa / tasks / radosgw_admin.py
CommitLineData
7c673cae
FG		 1"""
2Rgw admin testing against a running instance
3"""
4# The test cases in this file have been annotated for inventory.
5# To extract the inventory (in csv format) use the command:
6#
7# grep '^ *# TESTCASE' | sed 's/^ *# TESTCASE //'
8#
181888fb
FG		 9# to run this standalone:
10# python qa/tasks/radosgw_admin.py [USER] HOSTNAME
11#
7c673cae 12
7c673cae
FG		 13import json
14import logging
15import time
16import datetime
e306af50 17from six.moves import queue
181888fb
FG		 18
19import sys
e306af50 20import six
7c673cae 21
e306af50 22from io import BytesIO
7c673cae
FG		 23
24import boto.exception
25import boto.s3.connection
26import boto.s3.acl
27
28import httplib2
29
7c673cae 30
e306af50 31from tasks.util.rgw import rgwadmin, get_user_summary, get_user_successful_ops
7c673cae
FG		 32
33log = logging.getLogger(__name__)
34
181888fb
FG		 35def usage_acc_findentry2(entries, user, add=True):
36 for e in entries:
37 if e['user'] == user:
38 return e
39 if not add:
40 return None
41 e = {'user': user, 'buckets': []}
42 entries.append(e)
43 return e
44def usage_acc_findsum2(summaries, user, add=True):
45 for e in summaries:
46 if e['user'] == user:
47 return e
48 if not add:
49 return None
50 e = {'user': user, 'categories': [],
51 'total': {'bytes_received': 0,
52 'bytes_sent': 0, 'ops': 0, 'successful_ops': 0 }}
53 summaries.append(e)
54 return e
55def usage_acc_update2(x, out, b_in, err):
56 x['bytes_sent'] += b_in
57 x['bytes_received'] += out
58 x['ops'] += 1
59 if not err:
60 x['successful_ops'] += 1
61def usage_acc_validate_fields(r, x, x2, what):
62 q=[]
63 for field in ['bytes_sent', 'bytes_received', 'ops', 'successful_ops']:
64 try:
65 if x2[field] < x[field]:
66 q.append("field %s: %d < %d" % (field, x2[field], x[field]))
67 except Exception as ex:
68 r.append( "missing/bad field " + field + " in " + what + " " + str(ex))
69 return
70 if len(q) > 0:
71 r.append("incomplete counts in " + what + ": " + ", ".join(q))
72class usage_acc:
73 def __init__(self):
74 self.results = {'entries': [], 'summary': []}
75 def findentry(self, user):
76 return usage_acc_findentry2(self.results['entries'], user)
77 def findsum(self, user):
78 return usage_acc_findsum2(self.results['summary'], user)
79 def e2b(self, e, bucket, add=True):
80 for b in e['buckets']:
81 if b['bucket'] == bucket:
82 return b
83 if not add:
84 return None
85 b = {'bucket': bucket, 'categories': []}
86 e['buckets'].append(b)
87 return b
88 def c2x(self, c, cat, add=True):
89 for x in c:
90 if x['category'] == cat:
91 return x
92 if not add:
93 return None
94 x = {'bytes_received': 0, 'category': cat,
95 'bytes_sent': 0, 'ops': 0, 'successful_ops': 0 }
96 c.append(x)
97 return x
98 def update(self, c, cat, user, out, b_in, err):
99 x = self.c2x(c, cat)
100 usage_acc_update2(x, out, b_in, err)
e306af50 101 if not err and cat == 'create_bucket' and 'owner' not in x:
181888fb
FG		 102 x['owner'] = user
103 def make_entry(self, cat, bucket, user, out, b_in, err):
104 if cat == 'create_bucket' and err:
105 return
106 e = self.findentry(user)
107 b = self.e2b(e, bucket)
108 self.update(b['categories'], cat, user, out, b_in, err)
109 s = self.findsum(user)
110 x = self.c2x(s['categories'], cat)
111 usage_acc_update2(x, out, b_in, err)
112 x = s['total']
113 usage_acc_update2(x, out, b_in, err)
114 def generate_make_entry(self):
115 return lambda cat,bucket,user,out,b_in,err: self.make_entry(cat, bucket, user, out, b_in, err)
116 def get_usage(self):
117 return self.results
118 def compare_results(self, results):
e306af50 119 if 'entries' not in results or 'summary' not in results:
181888fb
FG		 120 return ['Missing entries or summary']
121 r = []
122 for e in self.results['entries']:
123 try:
124 e2 = usage_acc_findentry2(results['entries'], e['user'], False)
125 except Exception as ex:
126 r.append("malformed entry looking for user "
127 + e['user'] + " " + str(ex))
128 break
129 if e2 == None:
130 r.append("missing entry for user " + e['user'])
131 continue
132 for b in e['buckets']:
133 c = b['categories']
134 if b['bucket'] == 'nosuchbucket':
9f95a23c 135 print("got here")
181888fb
FG		 136 try:
137 b2 = self.e2b(e2, b['bucket'], False)
138 if b2 != None:
139 c2 = b2['categories']
140 except Exception as ex:
141 r.append("malformed entry looking for bucket "
142 + b['bucket'] + " in user " + e['user'] + " " + str(ex))
143 break
144 if b2 == None:
145 r.append("can't find bucket " + b['bucket']
146 + " in user " + e['user'])
147 continue
148 for x in c:
149 try:
150 x2 = self.c2x(c2, x['category'], False)
151 except Exception as ex:
152 r.append("malformed entry looking for "
153 + x['category'] + " in bucket " + b['bucket']
154 + " user " + e['user'] + " " + str(ex))
155 break
156 usage_acc_validate_fields(r, x, x2, "entry: category "
157 + x['category'] + " bucket " + b['bucket']
158 + " in user " + e['user'])
159 for s in self.results['summary']:
160 c = s['categories']
161 try:
162 s2 = usage_acc_findsum2(results['summary'], s['user'], False)
163 except Exception as ex:
164 r.append("malformed summary looking for user " + e['user']
165 + " " + str(ex))
166 break
9f95a23c
TL		 167 if s2 == None:
168 r.append("missing summary for user " + e['user'] + " " + str(ex))
169 continue
181888fb
FG		 170 try:
171 c2 = s2['categories']
172 except Exception as ex:
173 r.append("malformed summary missing categories for user "
174 + e['user'] + " " + str(ex))
175 break
176 for x in c:
177 try:
178 x2 = self.c2x(c2, x['category'], False)
179 except Exception as ex:
180 r.append("malformed summary looking for "
181 + x['category'] + " user " + e['user'] + " " + str(ex))
182 break
183 usage_acc_validate_fields(r, x, x2, "summary: category "
184 + x['category'] + " in user " + e['user'])
185 x = s['total']
186 try:
187 x2 = s2['total']
188 except Exception as ex:
189 r.append("malformed summary looking for totals for user "
9f95a23c 190 + e['user'] + " " + str(ex))
181888fb
FG		 191 break
192 usage_acc_validate_fields(r, x, x2, "summary: totals for user" + e['user'])
193 return r
194
195def ignore_this_entry(cat, bucket, user, out, b_in, err):
196 pass
197class requestlog_queue():
198 def __init__(self, add):
e306af50 199 self.q = queue.Queue(1000)
181888fb
FG		 200 self.adder = add
201 def handle_request_data(self, request, response, error=False):
202 now = datetime.datetime.now()
9f95a23c
TL		 203 if error:
204 pass
205 elif response.status < 200 or response.status >= 400:
206 error = True
92f5a8d4 207 self.q.put({'t': now, 'o': request, 'i': response, 'e': error})
181888fb
FG		 208 def clear(self):
209 with self.q.mutex:
210 self.q.queue.clear()
211 def log_and_clear(self, cat, bucket, user, add_entry = None):
212 while not self.q.empty():
213 j = self.q.get()
9f95a23c 214 bytes_out = 0
92f5a8d4 215 if 'Content-Length' in j['o'].headers:
9f95a23c 216 bytes_out = int(j['o'].headers['Content-Length'])
181888fb 217 bytes_in = 0
e306af50
TL		 218 msg = j['i'].msg if six.PY3 else j['i'].msg.dict
219 if 'content-length'in msg:
220 bytes_in = int(msg['content-length'])
181888fb 221 log.info('RL: %s %s %s bytes_out=%d bytes_in=%d failed=%r'
9f95a23c
TL		 222 % (cat, bucket, user, bytes_out, bytes_in, j['e']))
223 if add_entry == None:
224 add_entry = self.adder
225 add_entry(cat, bucket, user, bytes_out, bytes_in, j['e'])
181888fb 226
7c673cae
FG		 227def create_presigned_url(conn, method, bucket_name, key_name, expiration):
228 return conn.generate_url(expires_in=expiration,
229 method=method,
230 bucket=bucket_name,
231 key=key_name,
232 query_auth=True,
233 )
234
235def send_raw_http_request(conn, method, bucket_name, key_name, follow_redirects = False):
236 url = create_presigned_url(conn, method, bucket_name, key_name, 3600)
9f95a23c 237 print(url)
7c673cae
FG		 238 h = httplib2.Http()
239 h.follow_redirects = follow_redirects
240 return h.request(url, method)
241
242
243def get_acl(key):
244 """
245 Helper function to get the xml acl from a key, ensuring that the xml
246 version tag is removed from the acl response
247 """
e306af50 248 raw_acl = six.ensure_str(key.get_xml_acl())
7c673cae
FG		 249
250 def remove_version(string):
251 return string.split(
252 '<?xml version="1.0" encoding="UTF-8"?>'
253 )[-1]
254
255 def remove_newlines(string):
256 return string.strip('\n')
257
258 return remove_version(
259 remove_newlines(raw_acl)
260 )
261
262def task(ctx, config):
263 """
264 Test radosgw-admin functionality against a running rgw instance.
265 """
266 global log
267
7c673cae
FG		 268 assert ctx.rgw.config, \
269 "radosgw_admin task needs a config passed from the rgw task"
270 config = ctx.rgw.config
271 log.debug('config is: %r', config)
272
273 clients_from_config = config.keys()
274
275 # choose first client as default
e306af50 276 client = next(iter(clients_from_config))
7c673cae 277
7c673cae
FG		 278 # once the client is chosen, pull the host name and assigned port out of
279 # the role_endpoints that were assigned by the rgw task
11fdf7f2 280 endpoint = ctx.rgw.role_endpoints[client]
7c673cae 281
7c673cae
FG		 282 ##
283 user1='foo'
284 user2='fud'
9f95a23c
TL		 285 user3='bar'
286 user4='bud'
7c673cae
FG		 287 subuser1='foo:foo1'
288 subuser2='foo:foo2'
289 display_name1='Foo'
290 display_name2='Fud'
9f95a23c 291 display_name3='Bar'
7c673cae 292 email='foo@foo.com'
7c673cae
FG		 293 access_key='9te6NH5mcdcq0Tc5i8i1'
294 secret_key='Ny4IOauQoL18Gp2zM7lC1vLmoawgqcYP/YGcWfXu'
295 access_key2='p5YnriCv1nAtykxBrupQ'
296 secret_key2='Q8Tk6Q/27hfbFSYdSkPtUqhqx1GgzvpXa4WARozh'
9f95a23c
TL		 297 access_key3='NX5QOQKC6BH2IDN8HC7A'
298 secret_key3='LnEsqNNqZIpkzauboDcLXLcYaWwLQ3Kop0zAnKIn'
7c673cae
FG		 299 swift_secret1='gpS2G9RREMrnbqlp29PP2D36kgPR1tm72n5fPYfL'
300 swift_secret2='ri2VJQcKSYATOY6uaDUX7pxgkW+W1YmC6OCxPHwy'
301
302 bucket_name='myfoo'
303 bucket_name2='mybar'
304
305 # connect to rgw
306 connection = boto.s3.connection.S3Connection(
307 aws_access_key_id=access_key,
308 aws_secret_access_key=secret_key,
309 is_secure=False,
11fdf7f2
TL		 310 port=endpoint.port,
311 host=endpoint.hostname,
7c673cae
FG		 312 calling_format=boto.s3.connection.OrdinaryCallingFormat(),
313 )
314 connection2 = boto.s3.connection.S3Connection(
315 aws_access_key_id=access_key2,
316 aws_secret_access_key=secret_key2,
317 is_secure=False,
11fdf7f2
TL		 318 port=endpoint.port,
319 host=endpoint.hostname,
7c673cae
FG		 320 calling_format=boto.s3.connection.OrdinaryCallingFormat(),
321 )
9f95a23c
TL		 322 connection3 = boto.s3.connection.S3Connection(
323 aws_access_key_id=access_key3,
324 aws_secret_access_key=secret_key3,
325 is_secure=False,
326 port=endpoint.port,
327 host=endpoint.hostname,
328 calling_format=boto.s3.connection.OrdinaryCallingFormat(),
329 )
7c673cae 330
181888fb
FG		 331 acc = usage_acc()
332 rl = requestlog_queue(acc.generate_make_entry())
333 connection.set_request_hook(rl)
334 connection2.set_request_hook(rl)
9f95a23c 335 connection3.set_request_hook(rl)
181888fb 336
7c673cae
FG		 337 # legend (test cases can be easily grep-ed out)
338 # TESTCASE 'testname','object','method','operation','assertion'
181888fb
FG		 339
340 # TESTCASE 'usage-show0' 'usage' 'show' 'all usage' 'succeeds'
341 (err, summary0) = rgwadmin(ctx, client, ['usage', 'show'], check_status=True)
342
7c673cae
FG		 343 # TESTCASE 'info-nosuch','user','info','non-existent user','fails'
344 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1])
345 assert err
346
347 # TESTCASE 'create-ok','user','create','w/all valid info','succeeds'
348 (err, out) = rgwadmin(ctx, client, [
349 'user', 'create',
350 '--uid', user1,
351 '--display-name', display_name1,
352 '--email', email,
353 '--access-key', access_key,
354 '--secret', secret_key,
355 '--max-buckets', '4'
356 ],
357 check_status=True)
358
359 # TESTCASE 'duplicate email','user','create','existing user email','fails'
360 (err, out) = rgwadmin(ctx, client, [
361 'user', 'create',
362 '--uid', user2,
363 '--display-name', display_name2,
364 '--email', email,
365 ])
366 assert err
367
368 # TESTCASE 'info-existing','user','info','existing user','returns correct info'
369 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1], check_status=True)
370 assert out['user_id'] == user1
371 assert out['email'] == email
372 assert out['display_name'] == display_name1
373 assert len(out['keys']) == 1
374 assert out['keys'][0]['access_key'] == access_key
375 assert out['keys'][0]['secret_key'] == secret_key
376 assert not out['suspended']
377
7c673cae
FG		 378 # TESTCASE 'suspend-ok','user','suspend','active user','succeeds'
379 (err, out) = rgwadmin(ctx, client, ['user', 'suspend', '--uid', user1],
380 check_status=True)
381
382 # TESTCASE 'suspend-suspended','user','suspend','suspended user','succeeds w/advisory'
383 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1], check_status=True)
384 assert out['suspended']
385
386 # TESTCASE 're-enable','user','enable','suspended user','succeeds'
387 (err, out) = rgwadmin(ctx, client, ['user', 'enable', '--uid', user1], check_status=True)
388
389 # TESTCASE 'info-re-enabled','user','info','re-enabled user','no longer suspended'
390 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1], check_status=True)
391 assert not out['suspended']
392
393 # TESTCASE 'add-keys','key','create','w/valid info','succeeds'
394 (err, out) = rgwadmin(ctx, client, [
395 'key', 'create', '--uid', user1,
396 '--access-key', access_key2, '--secret', secret_key2,
397 ], check_status=True)
398
399 # TESTCASE 'info-new-key','user','info','after key addition','returns all keys'
400 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1],
401 check_status=True)
402 assert len(out['keys']) == 2
403 assert out['keys'][0]['access_key'] == access_key2 or out['keys'][1]['access_key'] == access_key2
404 assert out['keys'][0]['secret_key'] == secret_key2 or out['keys'][1]['secret_key'] == secret_key2
405
406 # TESTCASE 'rm-key','key','rm','newly added key','succeeds, key is removed'
407 (err, out) = rgwadmin(ctx, client, [
408 'key', 'rm', '--uid', user1,
409 '--access-key', access_key2,
410 ], check_status=True)
411 assert len(out['keys']) == 1
412 assert out['keys'][0]['access_key'] == access_key
413 assert out['keys'][0]['secret_key'] == secret_key
414
415 # TESTCASE 'add-swift-key','key','create','swift key','succeeds'
416 subuser_access = 'full'
417 subuser_perm = 'full-control'
418
419 (err, out) = rgwadmin(ctx, client, [
420 'subuser', 'create', '--subuser', subuser1,
421 '--access', subuser_access
422 ], check_status=True)
423
424 # TESTCASE 'add-swift-key','key','create','swift key','succeeds'
425 (err, out) = rgwadmin(ctx, client, [
426 'subuser', 'modify', '--subuser', subuser1,
427 '--secret', swift_secret1,
428 '--key-type', 'swift',
429 ], check_status=True)
430
431 # TESTCASE 'subuser-perm-mask', 'subuser', 'info', 'test subuser perm mask durability', 'succeeds'
432 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1])
433
434 assert out['subusers'][0]['permissions'] == subuser_perm
435
436 # TESTCASE 'info-swift-key','user','info','after key addition','returns all keys'
437 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1], check_status=True)
438 assert len(out['swift_keys']) == 1
439 assert out['swift_keys'][0]['user'] == subuser1
440 assert out['swift_keys'][0]['secret_key'] == swift_secret1
441
442 # TESTCASE 'add-swift-subuser','key','create','swift sub-user key','succeeds'
443 (err, out) = rgwadmin(ctx, client, [
444 'subuser', 'create', '--subuser', subuser2,
445 '--secret', swift_secret2,
446 '--key-type', 'swift',
447 ], check_status=True)
448
449 # TESTCASE 'info-swift-subuser','user','info','after key addition','returns all sub-users/keys'
450 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1], check_status=True)
451 assert len(out['swift_keys']) == 2
452 assert out['swift_keys'][0]['user'] == subuser2 or out['swift_keys'][1]['user'] == subuser2
453 assert out['swift_keys'][0]['secret_key'] == swift_secret2 or out['swift_keys'][1]['secret_key'] == swift_secret2
454
455 # TESTCASE 'rm-swift-key1','key','rm','subuser','succeeds, one key is removed'
456 (err, out) = rgwadmin(ctx, client, [
457 'key', 'rm', '--subuser', subuser1,
458 '--key-type', 'swift',
459 ], check_status=True)
460 assert len(out['swift_keys']) == 1
461
462 # TESTCASE 'rm-subuser','subuser','rm','subuser','success, subuser is removed'
463 (err, out) = rgwadmin(ctx, client, [
464 'subuser', 'rm', '--subuser', subuser1,
465 ], check_status=True)
466 assert len(out['subusers']) == 1
467
468 # TESTCASE 'rm-subuser-with-keys','subuser','rm','subuser','succeeds, second subser and key is removed'
469 (err, out) = rgwadmin(ctx, client, [
470 'subuser', 'rm', '--subuser', subuser2,
471 '--key-type', 'swift', '--purge-keys',
472 ], check_status=True)
473 assert len(out['swift_keys']) == 0
474 assert len(out['subusers']) == 0
475
476 # TESTCASE 'bucket-stats','bucket','stats','no session/buckets','succeeds, empty list'
477 (err, out) = rgwadmin(ctx, client, ['bucket', 'stats', '--uid', user1],
478 check_status=True)
479 assert len(out) == 0
480
7c673cae
FG		 481 # TESTCASE 'bucket-stats2','bucket','stats','no buckets','succeeds, empty list'
482 (err, out) = rgwadmin(ctx, client, ['bucket', 'list', '--uid', user1], check_status=True)
483 assert len(out) == 0
484
485 # create a first bucket
486 bucket = connection.create_bucket(bucket_name)
487
181888fb
FG		 488 rl.log_and_clear("create_bucket", bucket_name, user1)
489
7c673cae
FG		 490 # TESTCASE 'bucket-list','bucket','list','one bucket','succeeds, expected list'
491 (err, out) = rgwadmin(ctx, client, ['bucket', 'list', '--uid', user1], check_status=True)
492 assert len(out) == 1
493 assert out[0] == bucket_name
494
181888fb
FG		 495 bucket_list = connection.get_all_buckets()
496 assert len(bucket_list) == 1
497 assert bucket_list[0].name == bucket_name
498
499 rl.log_and_clear("list_buckets", '', user1)
500
7c673cae
FG		 501 # TESTCASE 'bucket-list-all','bucket','list','all buckets','succeeds, expected list'
502 (err, out) = rgwadmin(ctx, client, ['bucket', 'list'], check_status=True)
503 assert len(out) >= 1
504 assert bucket_name in out;
505
506 # TESTCASE 'max-bucket-limit,'bucket','create','4 buckets','5th bucket fails due to max buckets == 4'
507 bucket2 = connection.create_bucket(bucket_name + '2')
181888fb 508 rl.log_and_clear("create_bucket", bucket_name + '2', user1)
7c673cae 509 bucket3 = connection.create_bucket(bucket_name + '3')
181888fb 510 rl.log_and_clear("create_bucket", bucket_name + '3', user1)
7c673cae 511 bucket4 = connection.create_bucket(bucket_name + '4')
181888fb 512 rl.log_and_clear("create_bucket", bucket_name + '4', user1)
7c673cae
FG		 513 # the 5th should fail.
514 failed = False
515 try:
516 connection.create_bucket(bucket_name + '5')
517 except Exception:
518 failed = True
519 assert failed
181888fb 520 rl.log_and_clear("create_bucket", bucket_name + '5', user1)
7c673cae
FG		 521
522 # delete the buckets
523 bucket2.delete()
181888fb 524 rl.log_and_clear("delete_bucket", bucket_name + '2', user1)
7c673cae 525 bucket3.delete()
181888fb 526 rl.log_and_clear("delete_bucket", bucket_name + '3', user1)
7c673cae 527 bucket4.delete()
181888fb 528 rl.log_and_clear("delete_bucket", bucket_name + '4', user1)
7c673cae
FG		 529
530 # TESTCASE 'bucket-stats3','bucket','stats','new empty bucket','succeeds, empty list'
531 (err, out) = rgwadmin(ctx, client, [
532 'bucket', 'stats', '--bucket', bucket_name], check_status=True)
533 assert out['owner'] == user1
534 bucket_id = out['id']
535
536 # TESTCASE 'bucket-stats4','bucket','stats','new empty bucket','succeeds, expected bucket ID'
537 (err, out) = rgwadmin(ctx, client, ['bucket', 'stats', '--uid', user1], check_status=True)
538 assert len(out) == 1
539 assert out[0]['id'] == bucket_id # does it return the same ID twice in a row?
540
541 # use some space
542 key = boto.s3.key.Key(bucket)
543 key.set_contents_from_string('one')
181888fb 544 rl.log_and_clear("put_obj", bucket_name, user1)
7c673cae
FG		 545
546 # TESTCASE 'bucket-stats5','bucket','stats','after creating key','succeeds, lists one non-empty object'
547 (err, out) = rgwadmin(ctx, client, [
548 'bucket', 'stats', '--bucket', bucket_name], check_status=True)
549 assert out['id'] == bucket_id
550 assert out['usage']['rgw.main']['num_objects'] == 1
551 assert out['usage']['rgw.main']['size_kb'] > 0
552
9f95a23c
TL		 553 #validate we have a positive user stats now
554 (err, out) = rgwadmin(ctx, client,
555 ['user', 'stats','--uid', user1, '--sync-stats'],
556 check_status=True)
557 assert out['stats']['size'] > 0
558
7c673cae
FG		 559 # reclaim it
560 key.delete()
181888fb 561 rl.log_and_clear("delete_obj", bucket_name, user1)
7c673cae
FG		 562
563 # TESTCASE 'bucket unlink', 'bucket', 'unlink', 'unlink bucket from user', 'fails', 'access denied error'
564 (err, out) = rgwadmin(ctx, client,
565 ['bucket', 'unlink', '--uid', user1, '--bucket', bucket_name],
566 check_status=True)
567
568 # create a second user to link the bucket to
569 (err, out) = rgwadmin(ctx, client, [
570 'user', 'create',
571 '--uid', user2,
572 '--display-name', display_name2,
573 '--access-key', access_key2,
574 '--secret', secret_key2,
575 '--max-buckets', '1',
576 ],
577 check_status=True)
578
579 # try creating an object with the first user before the bucket is relinked
580 denied = False
581 key = boto.s3.key.Key(bucket)
582
583 try:
584 key.set_contents_from_string('two')
585 except boto.exception.S3ResponseError:
586 denied = True
587
588 assert not denied
181888fb 589 rl.log_and_clear("put_obj", bucket_name, user1)
7c673cae
FG		 590
591 # delete the object
592 key.delete()
181888fb 593 rl.log_and_clear("delete_obj", bucket_name, user1)
7c673cae
FG		 594
595 # link the bucket to another user
596 (err, out) = rgwadmin(ctx, client, ['metadata', 'get', 'bucket:{n}'.format(n=bucket_name)],
597 check_status=True)
598
599 bucket_data = out['data']
600 assert bucket_data['bucket']['name'] == bucket_name
601
602 bucket_id = bucket_data['bucket']['bucket_id']
603
604 # link the bucket to another user
605 (err, out) = rgwadmin(ctx, client, ['bucket', 'link', '--uid', user2, '--bucket', bucket_name, '--bucket-id', bucket_id],
606 check_status=True)
607
608 # try to remove user, should fail (has a linked bucket)
609 (err, out) = rgwadmin(ctx, client, ['user', 'rm', '--uid', user2])
610 assert err
611
612 # TESTCASE 'bucket unlink', 'bucket', 'unlink', 'unlink bucket from user', 'succeeds, bucket unlinked'
613 (err, out) = rgwadmin(ctx, client, ['bucket', 'unlink', '--uid', user2, '--bucket', bucket_name],
614 check_status=True)
615
616 # relink the bucket to the first user and delete the second user
617 (err, out) = rgwadmin(ctx, client,
618 ['bucket', 'link', '--uid', user1, '--bucket', bucket_name, '--bucket-id', bucket_id],
619 check_status=True)
620
621 (err, out) = rgwadmin(ctx, client, ['user', 'rm', '--uid', user2],
622 check_status=True)
623
9f95a23c
TL		 624 #TESTCASE 'bucket link', 'bucket', 'tenanted user', 'succeeds'
625 tenant_name = "testx"
626 # create a tenanted user to link the bucket to
627 (err, out) = rgwadmin(ctx, client, [
628 'user', 'create',
629 '--tenant', tenant_name,
630 '--uid', 'tenanteduser',
631 '--display-name', 'tenanted-user',
632 '--access-key', access_key2,
633 '--secret', secret_key2,
634 '--max-buckets', '1',
635 ],
636 check_status=True)
637
638 # link the bucket to a tenanted user
639 (err, out) = rgwadmin(ctx, client, ['bucket', 'link', '--bucket', '/' + bucket_name, '--tenant', tenant_name, '--uid', 'tenanteduser'],
640 check_status=True)
641
642 # check if the bucket name has tenant/ prefix
643 (err, out) = rgwadmin(ctx, client, ['metadata', 'get', 'bucket:{n}'.format(n= tenant_name + '/' + bucket_name)],
644 check_status=True)
645
646 bucket_data = out['data']
647 assert bucket_data['bucket']['name'] == bucket_name
648 assert bucket_data['bucket']['tenant'] == tenant_name
649
650 # relink the bucket to the first user and delete the tenanted user
651 (err, out) = rgwadmin(ctx, client,
652 ['bucket', 'link', '--bucket', tenant_name + '/' + bucket_name, '--uid', user1],
653 check_status=True)
654
655 (err, out) = rgwadmin(ctx, client, ['user', 'rm', '--tenant', tenant_name, '--uid', 'tenanteduser'],
656 check_status=True)
657
7c673cae
FG		 658 # TESTCASE 'object-rm', 'object', 'rm', 'remove object', 'succeeds, object is removed'
659
660 # upload an object
661 object_name = 'four'
662 key = boto.s3.key.Key(bucket, object_name)
663 key.set_contents_from_string(object_name)
181888fb
FG		 664 rl.log_and_clear("put_obj", bucket_name, user1)
665
666 # fetch it too (for usage stats presently)
e306af50 667 s = key.get_contents_as_string(encoding='ascii')
181888fb
FG		 668 rl.log_and_clear("get_obj", bucket_name, user1)
669 assert s == object_name
670 # list bucket too (for usage stats presently)
671 keys = list(bucket.list())
672 rl.log_and_clear("list_bucket", bucket_name, user1)
673 assert len(keys) == 1
674 assert keys[0].name == object_name
7c673cae
FG		 675
676 # now delete it
677 (err, out) = rgwadmin(ctx, client,
678 ['object', 'rm', '--bucket', bucket_name, '--object', object_name],
679 check_status=True)
680
681 # TESTCASE 'bucket-stats6','bucket','stats','after deleting key','succeeds, lists one no objects'
682 (err, out) = rgwadmin(ctx, client, [
683 'bucket', 'stats', '--bucket', bucket_name],
684 check_status=True)
685 assert out['id'] == bucket_id
686 assert out['usage']['rgw.main']['num_objects'] == 0
687
688 # list log objects
689 # TESTCASE 'log-list','log','list','after activity','succeeds, lists one no objects'
690 (err, out) = rgwadmin(ctx, client, ['log', 'list'], check_status=True)
691 assert len(out) > 0
692
693 for obj in out:
694 # TESTCASE 'log-show','log','show','after activity','returns expected info'
695 if obj[:4] == 'meta' or obj[:4] == 'data' or obj[:18] == 'obj_delete_at_hint':
696 continue
697
698 (err, rgwlog) = rgwadmin(ctx, client, ['log', 'show', '--object', obj],
699 check_status=True)
700 assert len(rgwlog) > 0
701
702 # exempt bucket_name2 from checking as it was only used for multi-region tests
703 assert rgwlog['bucket'].find(bucket_name) == 0 or rgwlog['bucket'].find(bucket_name2) == 0
704 assert rgwlog['bucket'] != bucket_name or rgwlog['bucket_id'] == bucket_id
705 assert rgwlog['bucket_owner'] == user1 or rgwlog['bucket'] == bucket_name + '5' or rgwlog['bucket'] == bucket_name2
706 for entry in rgwlog['log_entries']:
707 log.debug('checking log entry: ', entry)
708 assert entry['bucket'] == rgwlog['bucket']
709 possible_buckets = [bucket_name + '5', bucket_name2]
710 user = entry['user']
711 assert user == user1 or user.endswith('system-user') or \
712 rgwlog['bucket'] in possible_buckets
713
714 # TESTCASE 'log-rm','log','rm','delete log objects','succeeds'
715 (err, out) = rgwadmin(ctx, client, ['log', 'rm', '--object', obj],
716 check_status=True)
717
718 # TODO: show log by bucket+date
719
7c673cae
FG		 720 # TESTCASE 'user-suspend2','user','suspend','existing user','succeeds'
721 (err, out) = rgwadmin(ctx, client, ['user', 'suspend', '--uid', user1],
722 check_status=True)
723
724 # TESTCASE 'user-suspend3','user','suspend','suspended user','cannot write objects'
181888fb 725 denied = False
7c673cae
FG		 726 try:
727 key = boto.s3.key.Key(bucket)
728 key.set_contents_from_string('five')
729 except boto.exception.S3ResponseError as e:
181888fb 730 denied = True
7c673cae
FG		 731 assert e.status == 403
732
181888fb
FG		 733 assert denied
734 rl.log_and_clear("put_obj", bucket_name, user1)
735
7c673cae
FG		 736 # TESTCASE 'user-renable2','user','enable','suspended user','succeeds'
737 (err, out) = rgwadmin(ctx, client, ['user', 'enable', '--uid', user1],
738 check_status=True)
739
740 # TESTCASE 'user-renable3','user','enable','reenabled user','can write objects'
741 key = boto.s3.key.Key(bucket)
742 key.set_contents_from_string('six')
181888fb 743 rl.log_and_clear("put_obj", bucket_name, user1)
7c673cae
FG		 744
745 # TESTCASE 'gc-list', 'gc', 'list', 'get list of objects ready for garbage collection'
746
747 # create an object large enough to be split into multiple parts
748 test_string = 'foo'*10000000
749
750 big_key = boto.s3.key.Key(bucket)
751 big_key.set_contents_from_string(test_string)
181888fb 752 rl.log_and_clear("put_obj", bucket_name, user1)
7c673cae
FG		 753
754 # now delete the head
755 big_key.delete()
181888fb 756 rl.log_and_clear("delete_obj", bucket_name, user1)
7c673cae
FG		 757
758 # wait a bit to give the garbage collector time to cycle
759 time.sleep(15)
760
761 (err, out) = rgwadmin(ctx, client, ['gc', 'list'])
762
763 assert len(out) > 0
764
765 # TESTCASE 'gc-process', 'gc', 'process', 'manually collect garbage'
766 (err, out) = rgwadmin(ctx, client, ['gc', 'process'], check_status=True)
767
768 #confirm
769 (err, out) = rgwadmin(ctx, client, ['gc', 'list'])
770
771 assert len(out) == 0
772
773 # TESTCASE 'rm-user-buckets','user','rm','existing user','fails, still has buckets'
774 (err, out) = rgwadmin(ctx, client, ['user', 'rm', '--uid', user1])
775 assert err
776
777 # delete should fail because ``key`` still exists
778 try:
779 bucket.delete()
780 except boto.exception.S3ResponseError as e:
781 assert e.status == 409
181888fb 782 rl.log_and_clear("delete_bucket", bucket_name, user1)
7c673cae
FG		 783
784 key.delete()
181888fb 785 rl.log_and_clear("delete_obj", bucket_name, user1)
7c673cae 786 bucket.delete()
181888fb 787 rl.log_and_clear("delete_bucket", bucket_name, user1)
7c673cae
FG		 788
789 # TESTCASE 'policy', 'bucket', 'policy', 'get bucket policy', 'returns S3 policy'
790 bucket = connection.create_bucket(bucket_name)
181888fb 791 rl.log_and_clear("create_bucket", bucket_name, user1)
7c673cae
FG		 792
793 # create an object
794 key = boto.s3.key.Key(bucket)
795 key.set_contents_from_string('seven')
181888fb 796 rl.log_and_clear("put_obj", bucket_name, user1)
7c673cae
FG		 797
798 # should be private already but guarantee it
799 key.set_acl('private')
181888fb 800 rl.log_and_clear("put_acls", bucket_name, user1)
7c673cae
FG		 801
802 (err, out) = rgwadmin(ctx, client,
e306af50 803 ['policy', '--bucket', bucket.name, '--object', six.ensure_str(key.key)],
7c673cae
FG		 804 check_status=True, format='xml')
805
806 acl = get_acl(key)
181888fb 807 rl.log_and_clear("get_acls", bucket_name, user1)
7c673cae
FG		 808
809 assert acl == out.strip('\n')
810
811 # add another grantee by making the object public read
812 key.set_acl('public-read')
181888fb 813 rl.log_and_clear("put_acls", bucket_name, user1)
7c673cae
FG		 814
815 (err, out) = rgwadmin(ctx, client,
e306af50 816 ['policy', '--bucket', bucket.name, '--object', six.ensure_str(key.key)],
7c673cae
FG		 817 check_status=True, format='xml')
818
819 acl = get_acl(key)
181888fb 820 rl.log_and_clear("get_acls", bucket_name, user1)
7c673cae
FG		 821
822 assert acl == out.strip('\n')
823
824 # TESTCASE 'rm-bucket', 'bucket', 'rm', 'bucket with objects', 'succeeds'
825 bucket = connection.create_bucket(bucket_name)
181888fb 826 rl.log_and_clear("create_bucket", bucket_name, user1)
7c673cae
FG		 827 key_name = ['eight', 'nine', 'ten', 'eleven']
828 for i in range(4):
829 key = boto.s3.key.Key(bucket)
830 key.set_contents_from_string(key_name[i])
181888fb 831 rl.log_and_clear("put_obj", bucket_name, user1)
7c673cae
FG		 832
833 (err, out) = rgwadmin(ctx, client,
834 ['bucket', 'rm', '--bucket', bucket_name, '--purge-objects'],
835 check_status=True)
836
837 # TESTCASE 'caps-add', 'caps', 'add', 'add user cap', 'succeeds'
838 caps='user=read'
839 (err, out) = rgwadmin(ctx, client, ['caps', 'add', '--uid', user1, '--caps', caps])
840
841 assert out['caps'][0]['perm'] == 'read'
842
843 # TESTCASE 'caps-rm', 'caps', 'rm', 'remove existing cap from user', 'succeeds'
844 (err, out) = rgwadmin(ctx, client, ['caps', 'rm', '--uid', user1, '--caps', caps])
845
846 assert not out['caps']
847
848 # TESTCASE 'rm-user','user','rm','existing user','fails, still has buckets'
849 bucket = connection.create_bucket(bucket_name)
181888fb 850 rl.log_and_clear("create_bucket", bucket_name, user1)
7c673cae
FG		 851 key = boto.s3.key.Key(bucket)
852
853 (err, out) = rgwadmin(ctx, client, ['user', 'rm', '--uid', user1])
854 assert err
855
856 # TESTCASE 'rm-user2', 'user', 'rm', 'user with data', 'succeeds'
857 bucket = connection.create_bucket(bucket_name)
181888fb 858 rl.log_and_clear("create_bucket", bucket_name, user1)
7c673cae
FG		 859 key = boto.s3.key.Key(bucket)
860 key.set_contents_from_string('twelve')
181888fb
FG		 861 rl.log_and_clear("put_obj", bucket_name, user1)
862
863 time.sleep(35)
864
865 # need to wait for all usage data to get flushed, should take up to 30 seconds
866 timestamp = time.time()
867 while time.time() - timestamp <= (2 * 60): # wait up to 20 minutes
868 (err, out) = rgwadmin(ctx, client, ['usage', 'show', '--categories', 'delete_obj']) # one of the operations we did is delete_obj, should be present.
869 if get_user_successful_ops(out, user1) > 0:
870 break
871 time.sleep(1)
872
873 assert time.time() - timestamp <= (20 * 60)
874
875 # TESTCASE 'usage-show' 'usage' 'show' 'all usage' 'succeeds'
876 (err, out) = rgwadmin(ctx, client, ['usage', 'show'], check_status=True)
877 assert len(out['entries']) > 0
878 assert len(out['summary']) > 0
879
880 r = acc.compare_results(out)
881 if len(r) != 0:
882 sys.stderr.write(("\n".join(r))+"\n")
883 assert(len(r) == 0)
884
885 user_summary = get_user_summary(out, user1)
886
887 total = user_summary['total']
888 assert total['successful_ops'] > 0
889
890 # TESTCASE 'usage-show2' 'usage' 'show' 'user usage' 'succeeds'
891 (err, out) = rgwadmin(ctx, client, ['usage', 'show', '--uid', user1],
892 check_status=True)
893 assert len(out['entries']) > 0
894 assert len(out['summary']) > 0
895 user_summary = out['summary'][0]
896 for entry in user_summary['categories']:
897 assert entry['successful_ops'] > 0
898 assert user_summary['user'] == user1
899
900 # TESTCASE 'usage-show3' 'usage' 'show' 'user usage categories' 'succeeds'
901 test_categories = ['create_bucket', 'put_obj', 'delete_obj', 'delete_bucket']
902 for cat in test_categories:
903 (err, out) = rgwadmin(ctx, client, ['usage', 'show', '--uid', user1, '--categories', cat],
904 check_status=True)
905 assert len(out['summary']) > 0
906 user_summary = out['summary'][0]
907 assert user_summary['user'] == user1
908 assert len(user_summary['categories']) == 1
909 entry = user_summary['categories'][0]
910 assert entry['category'] == cat
911 assert entry['successful_ops'] > 0
912
9f95a23c
TL		 913 # TESTCASE 'user-rename', 'user', 'rename', 'existing user', 'new user', 'succeeds'
914 # create a new user user3
915 (err, out) = rgwadmin(ctx, client, [
916 'user', 'create',
917 '--uid', user3,
918 '--display-name', display_name3,
919 '--access-key', access_key3,
920 '--secret', secret_key3,
921 '--max-buckets', '4'
922 ],
923 check_status=True)
924
925 # create a bucket
926 bucket = connection3.create_bucket(bucket_name + '6')
927
928 rl.log_and_clear("create_bucket", bucket_name + '6', user3)
929
930 # create object
931 object_name1 = 'thirteen'
932 key1 = boto.s3.key.Key(bucket, object_name1)
933 key1.set_contents_from_string(object_name1)
934 rl.log_and_clear("put_obj", bucket_name + '6', user3)
935
936 # rename user3
937 (err, out) = rgwadmin(ctx, client, ['user', 'rename', '--uid', user3, '--new-uid', user4], check_status=True)
938 assert out['user_id'] == user4
939 assert out['keys'][0]['access_key'] == access_key3
940 assert out['keys'][0]['secret_key'] == secret_key3
941
942 time.sleep(5)
943
944 # get bucket and object to test if user keys are preserved
945 bucket = connection3.get_bucket(bucket_name + '6')
e306af50 946 s = key1.get_contents_as_string(encoding='ascii')
9f95a23c
TL		 947 rl.log_and_clear("get_obj", bucket_name + '6', user4)
948 assert s == object_name1
949
950 # TESTCASE 'user-rename', 'user', 'rename', 'existing user', 'another existing user', 'fails'
951 # create a new user user2
952 (err, out) = rgwadmin(ctx, client, [
953 'user', 'create',
954 '--uid', user2,
955 '--display-name', display_name2,
956 '--access-key', access_key2,
957 '--secret', secret_key2,
958 '--max-buckets', '4'
959 ],
960 check_status=True)
961
962 # create a bucket
963 bucket = connection2.create_bucket(bucket_name + '7')
964
965 rl.log_and_clear("create_bucket", bucket_name + '7', user2)
966
967 # create object
968 object_name2 = 'fourteen'
969 key2 = boto.s3.key.Key(bucket, object_name2)
970 key2.set_contents_from_string(object_name2)
971 rl.log_and_clear("put_obj", bucket_name + '7', user2)
972
973 (err, out) = rgwadmin(ctx, client, ['user', 'rename', '--uid', user4, '--new-uid', user2])
974 assert err
975
976 # test if user 2 and user4 can still access their bucket and objects after rename fails
977 bucket = connection3.get_bucket(bucket_name + '6')
e306af50 978 s = key1.get_contents_as_string(encoding='ascii')
9f95a23c
TL		 979 rl.log_and_clear("get_obj", bucket_name + '6', user4)
980 assert s == object_name1
981
982 bucket = connection2.get_bucket(bucket_name + '7')
e306af50 983 s = key2.get_contents_as_string(encoding='ascii')
9f95a23c
TL		 984 rl.log_and_clear("get_obj", bucket_name + '7', user2)
985 assert s == object_name2
986
987 (err, out) = rgwadmin(ctx, client,
988 ['user', 'rm', '--uid', user4, '--purge-data' ],
989 check_status=True)
990
991 (err, out) = rgwadmin(ctx, client,
992 ['user', 'rm', '--uid', user2, '--purge-data' ],
993 check_status=True)
994
995 time.sleep(5)
996
181888fb
FG		 997 # should be all through with connection. (anything using connection
998 # should be BEFORE the usage stuff above.)
999 rl.log_and_clear("(before-close)", '-', '-', ignore_this_entry)
1000 connection.close()
1001 connection = None
1002
1003 # the usage flush interval is 30 seconds, wait that much an then some
1004 # to make sure everything has been flushed
1005 time.sleep(35)
1006
1007 # TESTCASE 'usage-trim' 'usage' 'trim' 'user usage' 'succeeds, usage removed'
1008 (err, out) = rgwadmin(ctx, client, ['usage', 'trim', '--uid', user1],
1009 check_status=True)
1010 (err, out) = rgwadmin(ctx, client, ['usage', 'show', '--uid', user1],
1011 check_status=True)
1012 assert len(out['entries']) == 0
1013 assert len(out['summary']) == 0
7c673cae
FG		 1014
1015 (err, out) = rgwadmin(ctx, client,
1016 ['user', 'rm', '--uid', user1, '--purge-data' ],
1017 check_status=True)
1018
1019 # TESTCASE 'rm-user3','user','rm','deleted user','fails'
1020 (err, out) = rgwadmin(ctx, client, ['user', 'info', '--uid', user1])
1021 assert err
1022
1023 # TESTCASE 'zone-info', 'zone', 'get', 'get zone info', 'succeeds, has default placement rule'
1024 #
1025
31f18b77 1026 (err, out) = rgwadmin(ctx, client, ['zone', 'get','--rgw-zone','default'])
7c673cae
FG		 1027 orig_placement_pools = len(out['placement_pools'])
1028
1029 # removed this test, it is not correct to assume that zone has default placement, it really
1030 # depends on how we set it up before
1031 #
1032 # assert len(out) > 0
1033 # assert len(out['placement_pools']) == 1
1034
1035 # default_rule = out['placement_pools'][0]
1036 # assert default_rule['key'] == 'default-placement'
1037
1038 rule={'key': 'new-placement', 'val': {'data_pool': '.rgw.buckets.2', 'index_pool': '.rgw.buckets.index.2'}}
1039
1040 out['placement_pools'].append(rule)
1041
1042 (err, out) = rgwadmin(ctx, client, ['zone', 'set'],
e306af50 1043 stdin=BytesIO(six.ensure_binary(json.dumps(out))),
7c673cae
FG		 1044 check_status=True)
1045
b32b8144 1046 (err, out) = rgwadmin(ctx, client, ['zone', 'get'])
7c673cae
FG		 1047 assert len(out) > 0
1048 assert len(out['placement_pools']) == orig_placement_pools + 1
181888fb
FG		 1049
1050 zonecmd = ['zone', 'placement', 'rm',
9f95a23c
TL		 1051 '--rgw-zone', 'default',
1052 '--placement-id', 'new-placement']
181888fb
FG		 1053
1054 (err, out) = rgwadmin(ctx, client, zonecmd, check_status=True)
1055
b32b8144
FG		 1056 # TESTCASE 'zonegroup-info', 'zonegroup', 'get', 'get zonegroup info', 'succeeds'
1057 (err, out) = rgwadmin(ctx, client, ['zonegroup', 'get'], check_status=True)
1058
181888fb
FG		 1059from teuthology.config import config
1060from teuthology.orchestra import cluster, remote
1061import argparse;
1062
1063def main():
1064 if len(sys.argv) == 3:
9f95a23c
TL		 1065 user = sys.argv[1] + "@"
1066 host = sys.argv[2]
181888fb
FG		 1067 elif len(sys.argv) == 2:
1068 user = ""
9f95a23c 1069 host = sys.argv[1]
181888fb
FG		 1070 else:
1071 sys.stderr.write("usage: radosgw_admin.py [user] host\n")
9f95a23c 1072 exit(1)
181888fb
FG		 1073 client0 = remote.Remote(user + host)
1074 ctx = config
1075 ctx.cluster=cluster.Cluster(remotes=[(client0,
e306af50 1076 [ 'ceph.client.rgw.%s' % (host), ]),])
181888fb
FG		 1077 ctx.rgw = argparse.Namespace()
1078 endpoints = {}
1079 endpoints['ceph.client.rgw.%s' % host] = (host, 80)
1080 ctx.rgw.role_endpoints = endpoints
1081 ctx.rgw.realm = None
1082 ctx.rgw.regions = {'region0': { 'api name': 'api1',
e306af50
TL		 1083 'is master': True, 'master zone': 'r0z0',
1084 'zones': ['r0z0', 'r0z1'] }}
181888fb
FG		 1085 ctx.rgw.config = {'ceph.client.rgw.%s' % host: {'system user': {'name': '%s-system-user' % host}}}
1086 task(config, None)
1087 exit()
1088
1089if __name__ == '__main__':
1090 main()
Ceph