mgr/dashboard: add RGW lifecycle management

Fixes: https://tracker.ceph.com/issues/50327
Signed-off-by: Pedro Gonzalez Gomez <[email protected]>

Author: Pegonzal

src/pybind/mgr/dashboard/controllers/rgw.py

@@ -391,6 +391,18 @@ def _set_tags(self, bucket_name, tags, daemon_name, owner):
         rgw_client = RgwClient.instance(owner, daemon_name)
         return rgw_client.set_tags(bucket_name, tags)
 
+    def _get_lifecycle(self, bucket_name: str, daemon_name, owner):
+        rgw_client = RgwClient.instance(owner, daemon_name)
+        return rgw_client.get_lifecycle(bucket_name)
+
+    def _set_lifecycle(self, bucket_name: str, lifecycle: str, daemon_name, owner):
+        rgw_client = RgwClient.instance(owner, daemon_name)
+        return rgw_client.set_lifecycle(bucket_name, lifecycle)
+
+    def _delete_lifecycle(self, bucket_name: str, daemon_name, owner):
+        rgw_client = RgwClient.instance(owner, daemon_name)
+        return rgw_client.delete_lifecycle(bucket_name)
+
     def _get_acl(self, bucket_name, daemon_name, owner):
         rgw_client = RgwClient.instance(owner, daemon_name)
         return str(rgw_client.get_acl(bucket_name))
@@ -473,6 +485,7 @@ def get(self, bucket, daemon_name=None):
         result['bucket_policy'] = self._get_policy(bucket_name, daemon_name, result['owner'])
         result['acl'] = self._get_acl(bucket_name, daemon_name, result['owner'])
         result['replication'] = self._get_replication(bucket_name, result['owner'], daemon_name)
+        result['lifecycle'] = self._get_lifecycle(bucket_name, daemon_name, result['owner'])
 
         # Append the locking configuration.
         locking = self._get_locking(result['owner'], daemon_name, bucket_name)
@@ -525,7 +538,8 @@ def set(self, bucket, bucket_id, uid, versioning_state=None,
             mfa_delete=None, mfa_token_serial=None, mfa_token_pin=None,
             lock_mode=None, lock_retention_period_days=None,
             lock_retention_period_years=None, tags=None, bucket_policy=None,
-            canned_acl=None, replication=None, daemon_name=None):
+            canned_acl=None, replication=None, lifecycle=None, daemon_name=None):
+        # pylint: disable=R0912
         encryption_state = str_to_bool(encryption_state)
         if replication is not None:
             replication = str_to_bool(replication)
@@ -573,8 +587,12 @@ def set(self, bucket, bucket_id, uid, versioning_state=None,
             self._set_policy(bucket_name, bucket_policy, daemon_name, uid)
         if canned_acl:
             self._set_acl(bucket_name, canned_acl, uid, daemon_name)
-        if replication is not None:
+        if replication:
             self._set_replication(bucket_name, replication, uid, daemon_name)
+        if lifecycle and not lifecycle == '{}':
+            self._set_lifecycle(bucket_name, lifecycle, daemon_name, uid)
+        else:
+            self._delete_lifecycle(bucket_name, daemon_name, uid)
         return self._append_bid(result)
 
     def delete(self, bucket, purge_objects='true', daemon_name=None):

src/pybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-details/rgw-bucket-details.component.html

@@ -127,49 +127,76 @@
       <a ngbNavLink
          i18n>Policies</a>
       <ng-template ngbNavContent>
-
-        <table class="table table-striped table-bordered">
-          <tbody>
-            <tr>
-              <td i18n
-                  class="bold w-25">Bucket policy</td>
-              <td><pre>{{ selection.bucket_policy | json}}</pre></td>
-            </tr>
-            <tr>
-              <td i18n
-                  class="bold w-25">Replication policy</td>
-              <td><pre>{{ selection.replication | json}}</pre></td>
-            </tr>
-            <tr>
-              <td i18n
-                  class="bold w-25">ACL</td>
-              <td>
-                <table class="table">
-                  <thead>
-                    <tr i18n>
-                      <th>Grantee</th>
-                      <th>Permissions</th>
-                    </tr>
-                  </thead>
-                  <tbody>
-                    <tr i18n>
-                      <td>Bucket Owner</td>
-                      <td>{{ aclPermissions.Owner || '-'}}</td>
-                    </tr>
-                    <tr i18n>
-                      <td>Everyone</td>
-                      <td>{{ aclPermissions.AllUsers || '-'}}</td>
-                    </tr>
-                    <tr i18n>
-                      <td>Authenticated users group</td>
-                      <td>{{ aclPermissions.AuthenticatedUsers || '-'}}</td>
-                    </tr>
-                  </tbody>
-                </table>
-              </td>
-            </tr>
-          </tbody>
-        </table>
+        <div class="table-scroller">
+          <table class="table table-striped table-bordered">
+            <tbody>
+              <tr>
+                <td i18n
+                    class="bold w-25">Bucket policy</td>
+                <td><pre>{{ selection.bucket_policy | json}}</pre></td>
+              </tr>
+              <tr>
+                <div>
+                  <td i18n
+                      class="bold w-25">Lifecycle
+                    <div *ngIf="(selection.lifecycle | json) !== '{}'"
+                         class="input-group">
+                      <button type="button"
+                              class="btn btn-light"
+                              [ngClass]="{'active': lifecycleFormat === 'json'}"
+                              (click)="lifecycleFormat = 'json'">
+                            JSON
+                      </button>
+                      <button type="button"
+                              class="btn btn-light"
+                              [ngClass]="{'active': lifecycleFormat === 'xml'}"
+                              (click)="lifecycleFormat = 'xml'">
+                            XML
+                      </button>
+                    </div>
+                  </td>
+                </div>
+                <td>
+                  <pre *ngIf="lifecycleFormat === 'json'">{{selection.lifecycle | json}}</pre>
+                  <pre *ngIf="lifecycleFormat === 'xml'">{{ (selection.lifecycle | xml) || '-'}}</pre>
+                </td>
+              </tr>
+              <tr>
+                <td i18n
+                    class="bold w-25">Replication policy</td>
+                <td><pre>{{ selection.replication | json}}</pre></td>
+              </tr>
+              <tr>
+                <td i18n
+                    class="bold w-25">ACL</td>
+                <td>
+                  <table class="table">
+                    <thead>
+                      <tr i18n>
+                        <th>Grantee</th>
+                        <th>Permissions</th>
+                      </tr>
+                    </thead>
+                    <tbody>
+                      <tr i18n>
+                        <td>Bucket Owner</td>
+                        <td>{{ aclPermissions.Owner || '-'}}</td>
+                      </tr>
+                      <tr i18n>
+                        <td>Everyone</td>
+                        <td>{{ aclPermissions.AllUsers || '-'}}</td>
+                      </tr>
+                      <tr i18n>
+                        <td>Authenticated users group</td>
+                        <td>{{ aclPermissions.AuthenticatedUsers || '-'}}</td>
+                      </tr>
+                    </tbody>
+                  </table>
+                </td>
+              </tr>
+            </tbody>
+          </table>
+        </div>
       </ng-template>
     </ng-container>
   </nav>

src/pybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-details/rgw-bucket-details.component.scss

@@ -5,3 +5,9 @@ table {
 table td {
   word-wrap: break-word;
 }
+
+.table-scroller {
+  height: 100%;
+  max-height: 50vh;
+  overflow: auto;
+}

src/pybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-details/rgw-bucket-details.component.ts

@@ -13,6 +13,7 @@ export class RgwBucketDetailsComponent implements OnChanges {
   @Input()
   selection: any;
 
+  lifecycleFormat: 'json' | 'xml' = 'json';
   aclPermissions: Record<string, string[]> = {};
   replicationStatus = $localize`Disabled`;
 
@@ -23,6 +24,9 @@ export class RgwBucketDetailsComponent implements OnChanges {
       this.rgwBucketService.get(this.selection.bid).subscribe((bucket: object) => {
         bucket['lock_retention_period_days'] = this.rgwBucketService.getLockDays(bucket);
         this.selection = bucket;
+        if (this.lifecycleFormat === 'json' && !this.selection.lifecycle) {
+          this.selection.lifecycle = {};
+        }
         this.aclPermissions = this.parseXmlAcl(this.selection.acl, this.selection.owner);
         if (this.selection.replication?.['Rule']?.['Status']) {
           this.replicationStatus = this.selection.replication?.['Rule']?.['Status'];

src/pybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-form/rgw-bucket-form.component.html

@@ -467,15 +467,15 @@
                             class="form-control resize-vertical"
                             id="bucket_policy"
                             formControlName="bucket_policy"
-                            (change)="bucketPolicyOnChange()">
+                            (change)="textAreaOnChange('bucketPolicyTextArea')">
                   </textarea>
                   <span class="invalid-feedback"
                         *ngIf="bucketForm.showError('bucket_policy', frm, 'invalidJson')"
-                        i18n>Invalid json text</span>
+                        i18n>Invalid json text.</span>
                   <button type="button"
                           id="clear-bucket-policy"
                           class="btn btn-light my-3"
-                          (click)="clearBucketPolicy()"
+                          (click)="clearTextArea('bucket_policy', '{}')"
                           i18n>
                     <i [ngClass]="[icons.destroy]"></i>
                     Clear
@@ -503,6 +503,50 @@
                 </div>
               </div>
 
+              <!-- Lifecycle -->
+              <div *ngIf="editing"
+                   class="form-group row">
+              <label i18n
+                     class="cd-col-form-label"
+                     for="id">Lifecycle
+                <cd-helper>JSON or XML formatted document</cd-helper>
+              </label>
+                <div class="cd-col-form-input">
+                  <textarea #lifecycleTextArea
+                            class="form-control resize-vertical"
+                            id="lifecycle"
+                            formControlName="lifecycle"
+                            (change)="textAreaOnChange('lifecycleTextArea')">
+                  </textarea>
+                  <span class="invalid-feedback"
+                        *ngIf="bucketForm.showError('lifecycle', frm, 'invalidJson')"
+                        i18n>Invalid json text.</span>
+                  <span class="invalid-feedback"
+                        *ngIf="bucketForm.showError('lifecycle', frm, 'invalidXml')"
+                        i18n>Invalid xml text.</span>
+                  <button type="button"
+                          id="clear-lifecycle"
+                          class="btn btn-light my-3"
+                          (click)="clearTextArea('lifecycle', '{}')"
+                          i18n>
+                    <i [ngClass]="[icons.destroy]"></i>
+                    Clear
+                  </button>
+                  <div class="btn-group float-end"
+                       role="group"
+                       aria-label="bucket-policy-helpers">
+                    <button type="button"
+                            id="lifecycle-examples-button"
+                            class="btn btn-light my-3"
+                            (click)="openUrl('https://docs.aws.amazon.com/cli/latest/reference/s3api/put-bucket-lifecycle.html#examples')"
+                            i18n>
+                      <i [ngClass]="[icons.externalUrl]"></i>
+                      Policy examples
+                    </button>
+                  </div>
+                </div>
+              </div>
+
               <div class="form-group row">
 
                 <!-- ACL -->

src/pybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-form/rgw-bucket-form.component.ts

@@ -39,6 +39,7 @@ import { TextAreaJsonFormatterService } from '~/app/shared/services/text-area-js
 import { RgwMultisiteService } from '~/app/shared/api/rgw-multisite.service';
 import { RgwDaemonService } from '~/app/shared/api/rgw-daemon.service';
 import { map, switchMap } from 'rxjs/operators';
+import { TextAreaXmlFormatterService } from '~/app/shared/services/text-area-xml-formatter.service';
 
 @Component({
   selector: 'cd-rgw-bucket-form',
@@ -49,6 +50,8 @@ import { map, switchMap } from 'rxjs/operators';
 export class RgwBucketFormComponent extends CdForm implements OnInit, AfterViewChecked {
   @ViewChild('bucketPolicyTextArea')
   public bucketPolicyTextArea: ElementRef<any>;
+  @ViewChild('lifecycleTextArea')
+  public lifecycleTextArea: ElementRef<any>;
 
   bucketForm: CdFormGroup;
   editing = false;
@@ -96,6 +99,7 @@ export class RgwBucketFormComponent extends CdForm implements OnInit, AfterViewC
     private notificationService: NotificationService,
     private rgwEncryptionModal: RgwBucketEncryptionModel,
     private textAreaJsonFormatterService: TextAreaJsonFormatterService,
+    private textAreaXmlFormatterService: TextAreaXmlFormatterService,
     public actionLabels: ActionLabelsI18n,
     private readonly changeDetectorRef: ChangeDetectorRef,
     private rgwMultisiteService: RgwMultisiteService,
@@ -110,7 +114,8 @@ export class RgwBucketFormComponent extends CdForm implements OnInit, AfterViewC
 
   ngAfterViewChecked(): void {
     this.changeDetectorRef.detectChanges();
-    this.bucketPolicyOnChange();
+    this.textAreaOnChange(this.bucketPolicyTextArea);
+    this.textAreaOnChange(this.lifecycleTextArea);
   }
 
   createForm() {
@@ -160,6 +165,7 @@ export class RgwBucketFormComponent extends CdForm implements OnInit, AfterViewC
       lock_mode: ['COMPLIANCE'],
       lock_retention_period_days: [10, [CdValidators.number(false), lockDaysValidator]],
       bucket_policy: ['{}', CdValidators.json()],
+      lifecycle: ['{}', CdValidators.jsonOrXml()],
       grantee: [Grantee.Owner, [Validators.required]],
       aclPermission: [[aclPermission.FullControl], [Validators.required]],
       replication: [false]
@@ -257,6 +263,7 @@ export class RgwBucketFormComponent extends CdForm implements OnInit, AfterViewC
               bidResp['acl'],
               bidResp['owner']
             );
+            value['lifecycle'] = JSON.stringify(bidResp['lifecycle'] || {});
           }
           this.bucketForm.setValue(value);
           if (this.editing) {
@@ -335,7 +342,8 @@ export class RgwBucketFormComponent extends CdForm implements OnInit, AfterViewC
           xmlStrTags,
           bucketPolicy,
           cannedAcl,
-          values['replication']
+          values['replication'],
+          values['lifecycle']
         )
         .subscribe(
           () => {
@@ -433,18 +441,20 @@ export class RgwBucketFormComponent extends CdForm implements OnInit, AfterViewC
     });
   }
 
-  bucketPolicyOnChange() {
-    if (this.bucketPolicyTextArea) {
-      this.textAreaJsonFormatterService.format(this.bucketPolicyTextArea);
+  textAreaOnChange(textArea: ElementRef<any>) {
+    if (textArea?.nativeElement?.value?.startsWith?.('<')) {
+      this.textAreaXmlFormatterService.format(textArea);
+    } else {
+      this.textAreaJsonFormatterService.format(textArea);
     }
   }
 
   openUrl(url: string) {
     window.open(url, '_blank');
   }
 
-  clearBucketPolicy() {
-    this.bucketForm.get('bucket_policy').setValue('{}');
+  clearTextArea(field: string, defaultValue: string = '') {
+    this.bucketForm.get(field).setValue(defaultValue);
     this.bucketForm.markAsDirty();
     this.bucketForm.updateValueAndValidity();
   }

src/pybind/mgr/dashboard/frontend/src/app/shared/api/rgw-bucket.service.spec.ts

@@ -90,11 +90,12 @@ describe('RgwBucketService', () => {
         null,
         null,
         'private',
-        'true'
+        'true',
+        null
       )
       .subscribe();
     const req = httpTesting.expectOne(
-      `api/rgw/bucket/foo?${RgwHelper.DAEMON_QUERY_PARAM}&bucket_id=bar&uid=baz&versioning_state=Enabled&encryption_state=true&encryption_type=aws%253Akms&key_id=qwerty1&mfa_delete=Enabled&mfa_token_serial=1&mfa_token_pin=223344&lock_mode=GOVERNANCE&lock_retention_period_days=10&tags=null&bucket_policy=null&canned_acl=private&replication=true`
+      `api/rgw/bucket/foo?${RgwHelper.DAEMON_QUERY_PARAM}&bucket_id=bar&uid=baz&versioning_state=Enabled&encryption_state=true&encryption_type=aws%253Akms&key_id=qwerty1&mfa_delete=Enabled&mfa_token_serial=1&mfa_token_pin=223344&lock_mode=GOVERNANCE&lock_retention_period_days=10&tags=null&bucket_policy=null&canned_acl=private&replication=true&lifecycle=null`
     );
     expect(req.request.method).toBe('PUT');
   });

src/pybind/mgr/dashboard/frontend/src/app/shared/api/rgw-bucket.service.ts

@@ -109,7 +109,8 @@ export class RgwBucketService extends ApiClient {
     tags: string,
     bucketPolicy: string,
     cannedAcl: string,
-    replication: string
+    replication: string,
+    lifecycle: string
   ) {
     return this.rgwDaemonService.request((params: HttpParams) => {
       params = params.appendAll({
@@ -127,7 +128,8 @@ export class RgwBucketService extends ApiClient {
         tags: tags,
         bucket_policy: bucketPolicy,
         canned_acl: cannedAcl,
-        replication: replication
+        replication: replication,
+        lifecycle: lifecycle
       });
       return this.http.put(`${this.url}/${bucket}`, null, { params: params });
     });