fixes merging of clouds.yaml & secure.yaml (#143)

DSpeichert · web-flow · commit 13abf2251886 · 2021-02-08T21:29:46.000-07:00
* Support for clouds.yaml with per-region overrides (#68) A "cloud" returned from clouds.yaml will not have per-region overrides applied when defined, and when a specific region is requested. This allows defining a cloud with separate Keystone URLs per region. Fixes #68 * added test cases showing cloud without common auth_url
diff --git a/openstack/clientconfig/requests.go b/openstack/clientconfig/requests.go
@@ -299,6 +299,16 @@ func GetCloudFromYAML(opts *ClientOpts) (*Cloud, error) {
 		cloud.Verify = &iTrue
 	}
 
+	// merging per-region value overrides
+	if opts.RegionName != "" {
+		for _, v := range cloud.Regions {
+			if opts.RegionName == v.Name {
+				cloud, err = mergeClouds(v.Values, cloud)
+				break
+			}
+		}
+	}
+
 	// TODO: this is where reading vendor files should go be considered when not found in
 	// clouds-public.yml
 	// https://github.com/openstack/openstacksdk/tree/master/openstack/config/vendors
diff --git a/openstack/clientconfig/results.go b/openstack/clientconfig/results.go
@@ -1,5 +1,7 @@
 package clientconfig
 
+import "encoding/json"
+
 // PublicClouds represents a collection of PublicCloud entries in clouds-public.yaml file.
 // The format of the clouds-public.yml is documented at
 // https://docs.openstack.org/python-openstackclient/latest/configuration/
@@ -16,12 +18,12 @@ type Clouds struct {
 
 // Cloud represents an entry in a clouds.yaml/public-clouds.yaml/secure.yaml file.
 type Cloud struct {
-	Cloud      string        `yaml:"cloud,omitempty" json:"cloud,omitempty"`
-	Profile    string        `yaml:"profile,omitempty" json:"profile,omitempty"`
-	AuthInfo   *AuthInfo     `yaml:"auth,omitempty" json:"auth,omitempty"`
-	AuthType   AuthType      `yaml:"auth_type,omitempty" json:"auth_type,omitempty"`
-	RegionName string        `yaml:"region_name,omitempty" json:"region_name,omitempty"`
-	Regions    []interface{} `yaml:"regions,omitempty" json:"regions,omitempty"`
+	Cloud      string    `yaml:"cloud,omitempty" json:"cloud,omitempty"`
+	Profile    string    `yaml:"profile,omitempty" json:"profile,omitempty"`
+	AuthInfo   *AuthInfo `yaml:"auth,omitempty" json:"auth,omitempty"`
+	AuthType   AuthType  `yaml:"auth_type,omitempty" json:"auth_type,omitempty"`
+	RegionName string    `yaml:"region_name,omitempty" json:"region_name,omitempty"`
+	Regions    []Region  `yaml:"regions,omitempty" json:"regions,omitempty"`
 
 	// EndpointType and Interface both specify whether to use the public, internal,
 	// or admin interface of a service. They should be considered synonymous, but
@@ -125,3 +127,51 @@ type AuthInfo struct {
 	// been specified and a domain is required for scope.
 	DefaultDomain string `yaml:"default_domain,omitempty" json:"default_domain,omitempty"`
 }
+
+// Region represents a region included as part of cloud in clouds.yaml
+// According to Python-based openstacksdk, this can be either a struct (as defined)
+// or a plain string. Custom unmarshallers handle both cases.
+type Region struct {
+	Name   string `yaml:"name,omitempty" json:"name,omitempty"`
+	Values Cloud  `yaml:"values,omitempty" json:"values,omitempty"`
+}
+
+// UnmarshalJSON handles either a plain string acting as the Name property or
+// a struct, mimicking the Python-based openstacksdk.
+func (r *Region) UnmarshalJSON(data []byte) error {
+	var name string
+	if err := json.Unmarshal(data, &name); err == nil {
+		r.Name = name
+		return nil
+	}
+
+	type region Region
+	var tmp region
+	if err := json.Unmarshal(data, &tmp); err != nil {
+		return err
+	}
+	r.Name = tmp.Name
+	r.Values = tmp.Values
+
+	return nil
+}
+
+// UnmarshalYAML handles either a plain string acting as the Name property or
+// a struct, mimicking the Python-based openstacksdk.
+func (r *Region) UnmarshalYAML(unmarshal func(interface{}) error) error {
+	var name string
+	if err := unmarshal(&name); err == nil {
+		r.Name = name
+		return nil
+	}
+
+	type region Region
+	var tmp region
+	if err := unmarshal(&tmp); err != nil {
+		return err
+	}
+	r.Name = tmp.Name
+	r.Values = tmp.Values
+
+	return nil
+}
diff --git a/openstack/clientconfig/testing/clouds.yaml b/openstack/clientconfig/testing/clouds.yaml
@@ -133,10 +133,40 @@ clouds:
       password: "this should be overwritten by secure.yaml"
       project_name: "Some Project"
     region_name: "PHL"
+  philadelphia_complex:
+    auth:
+      auth_url: "https://phl.example.com:5000/v3"
+      username: "jdoe"
+      password: "password"
+      project_name: "Some Project"
+    regions:
+      - name: PHL1
+        values:
+          auth:
+            auth_url: "https://phl1.example.com:5000/v3"
+      - PHL2
   virginia:
     auth_type: "v3applicationcredential"
     auth:
       auth_url: "https://va.example.com:5000/v3"
       application_credential_id: "app-cred-id"
       application_credential_secret: "secret"
     region_name: "VA"
+  disconnected_clouds:
+    auth:
+      username: "jdoe"
+      password: "password"
+      project_name: "Some Project"
+    regions:
+      - name: SOMEWHERE
+        values:
+          auth:
+            auth_url: "https://somewhere.example.com:5000/v3"
+      - name: ANYWHERE
+        values:
+          auth:
+            auth_url: "https://anywhere.example.com:5000/v3"
+      - name: NOWHERE
+        values:
+          auth:
+            auth_url: "https://nowhere.example.com:5000/v3"
diff --git a/openstack/clientconfig/testing/fixtures.go b/openstack/clientconfig/testing/fixtures.go
@@ -44,6 +44,94 @@ var PhiladelphiaCloudYAML = clientconfig.Cloud{
 	AuthType: "password",
 }
 
+var PhiladelphiaComplexPhl1CloudYAML = clientconfig.Cloud{
+	AuthInfo: &clientconfig.AuthInfo{
+		AuthURL:     "https://phl1.example.com:5000/v3",
+		Username:    "jdoe",
+		Password:    "password",
+		ProjectName: "Some Project",
+	},
+	Regions: []clientconfig.Region{
+		{
+			Name:   "PHL1",
+			Values: clientconfig.Cloud{AuthInfo: &clientconfig.AuthInfo{AuthURL: "https://phl1.example.com:5000/v3"}},
+		},
+		{
+			Name:   "PHL2",
+			Values: clientconfig.Cloud{},
+		},
+	},
+	Verify: &iTrue,
+}
+
+var PhiladelphiaComplexPhl2CloudYAML = clientconfig.Cloud{
+	AuthInfo: &clientconfig.AuthInfo{
+		AuthURL:     "https://phl.example.com:5000/v3",
+		Username:    "jdoe",
+		Password:    "password",
+		ProjectName: "Some Project",
+	},
+	Regions: []clientconfig.Region{
+		{
+			Name:   "PHL1",
+			Values: clientconfig.Cloud{AuthInfo: &clientconfig.AuthInfo{AuthURL: "https://phl1.example.com:5000/v3"}},
+		},
+		{
+			Name:   "PHL2",
+			Values: clientconfig.Cloud{},
+		},
+	},
+	Verify: &iTrue,
+}
+
+var disconnected_regions = []clientconfig.Region{
+	{
+		Name:   "SOMEWHERE",
+		Values: clientconfig.Cloud{AuthInfo: &clientconfig.AuthInfo{AuthURL: "https://somewhere.example.com:5000/v3"}},
+	},
+	{
+		Name:   "ANYWHERE",
+		Values: clientconfig.Cloud{AuthInfo: &clientconfig.AuthInfo{AuthURL: "https://anywhere.example.com:5000/v3"}},
+	},
+	{
+		Name:   "NOWHERE",
+		Values: clientconfig.Cloud{AuthInfo: &clientconfig.AuthInfo{AuthURL: "https://nowhere.example.com:5000/v3"}},
+	},
+}
+
+var DisconnectedSomewhereCloudYAML = clientconfig.Cloud{
+	AuthInfo: &clientconfig.AuthInfo{
+		AuthURL:     "https://somewhere.example.com:5000/v3",
+		Username:    "jdoe",
+		Password:    "password",
+		ProjectName: "Some Project",
+	},
+	Regions: disconnected_regions,
+	Verify:  &iTrue,
+}
+
+var DisconnectedAnywhereCloudYAML = clientconfig.Cloud{
+	AuthInfo: &clientconfig.AuthInfo{
+		AuthURL:     "https://anywhere.example.com:5000/v3",
+		Username:    "jdoe",
+		Password:    "password",
+		ProjectName: "Some Project",
+	},
+	Regions: disconnected_regions,
+	Verify:  &iTrue,
+}
+
+var DisconnectedNowhereCloudYAML = clientconfig.Cloud{
+	AuthInfo: &clientconfig.AuthInfo{
+		AuthURL:     "https://nowhere.example.com:5000/v3",
+		Username:    "jdoe",
+		Password:    "password",
+		ProjectName: "Some Project",
+	},
+	Regions: disconnected_regions,
+	Verify:  &iTrue,
+}
+
 var ChicagoCloudYAML = clientconfig.Cloud{
 	Profile:    "rackspace",
 	RegionName: "ORD",
@@ -197,10 +285,11 @@ var FloridaAuthOpts = &gophercloud.AuthOptions{
 
 var CaliforniaCloudYAML = clientconfig.Cloud{
 	EndpointType: "internal",
-	Regions: []interface{}{
-		"SAN",
-		"LAX",
-	},
+	Regions: []clientconfig.Region{{
+		Name: "SAN",
+	}, {
+		Name: "LAX",
+	}},
 	AuthInfo: &clientconfig.AuthInfo{
 		AuthURL:           "https://ca.example.com:5000/v3",
 		Username:          "jdoe",
diff --git a/openstack/clientconfig/testing/requests_test.go b/openstack/clientconfig/testing/requests_test.go
@@ -33,7 +33,27 @@ func TestGetCloudFromYAML(t *testing.T) {
 		"chicago_legacy":     {Cloud: "chicago_legacy"},
 		"chicago_useprofile": {Cloud: "chicago_useprofile"},
 		"philadelphia":       {Cloud: "philadelphia"},
-		"virginia":           {Cloud: "virginia"},
+		"philadelphia_phl1": {
+			Cloud:      "philadelphia_complex",
+			RegionName: "PHL1",
+		},
+		"philadelphia_phl2": {
+			Cloud:      "philadelphia_complex",
+			RegionName: "PHL2",
+		},
+		"virginia": {Cloud: "virginia"},
+		"disconnected_smw": {
+			Cloud:      "disconnected_clouds",
+			RegionName: "SOMEWHERE",
+		},
+		"disconnected_anw": {
+			Cloud:      "disconnected_clouds",
+			RegionName: "ANYWHERE",
+		},
+		"disconnected_now": {
+			Cloud:      "disconnected_clouds",
+			RegionName: "NOWHERE",
+		},
 	}
 
 	expectedClouds := map[string]*clientconfig.Cloud{
@@ -49,7 +69,12 @@ func TestGetCloudFromYAML(t *testing.T) {
 		"chicago_legacy":     &ChicagoCloudLegacyYAML,
 		"chicago_useprofile": &ChicagoCloudUseProfileYAML,
 		"philadelphia":       &PhiladelphiaCloudYAML,
+		"philadelphia_phl1":  &PhiladelphiaComplexPhl1CloudYAML,
+		"philadelphia_phl2":  &PhiladelphiaComplexPhl2CloudYAML,
 		"virginia":           &VirginiaCloudYAML,
+		"disconnected_smw":   &DisconnectedSomewhereCloudYAML,
+		"disconnected_anw":   &DisconnectedAnywhereCloudYAML,
+		"disconnected_now":   &DisconnectedNowhereCloudYAML,
 	}
 
 	for cloud, clientOpts := range allClientOpts {
diff --git a/openstack/clientconfig/utils.go b/openstack/clientconfig/utils.go
@@ -46,7 +46,10 @@ func mergeClouds(override, cloud interface{}) (*Cloud, error) {
 	var mergedCloud Cloud
 	mergedInterface := mergeInterfaces(overrideInterface, cloudInterface)
 	mergedJson, err := json.Marshal(mergedInterface)
-	json.Unmarshal(mergedJson, &mergedCloud)
+	err = json.Unmarshal(mergedJson, &mergedCloud)
+	if err != nil {
+		return nil, err
+	}
 	return &mergedCloud, nil
 }
 
diff --git a/terraform/auth/config.go b/terraform/auth/config.go
@@ -102,6 +102,9 @@ func (c *Config) LoadAndValidate() error {
 	if c.Cloud != "" {
 		clientOpts.Cloud = c.Cloud
 
+		// Passing region allows GetCloudFromYAML to apply per-region overrides
+		clientOpts.RegionName = c.Region
+
 		cloud, err := clientconfig.GetCloudFromYAML(clientOpts)
 		if err != nil {
 			return err
