5824438ec7
Also adds --number_of_servers and --server_id so that we can cycle which server does the pings Also fix problem with database layer being loaded too early Change-Id: Iff1ebc70b3838bbc1559c9e0bcc730fc78b1684b
229 lines
7.1 KiB
Python
229 lines
7.1 KiB
Python
# Copyright 2013 Hewlett-Packard Development Company, L.P.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
import eventlet
|
|
eventlet.monkey_patch()
|
|
import daemon
|
|
import daemon.pidfile
|
|
import daemon.runner
|
|
import grp
|
|
import pwd
|
|
import pecan
|
|
import sys
|
|
import os
|
|
import wsme_overrides
|
|
from libra.api.library.expunge import ExpungeScheduler
|
|
from libra.api import config as api_config
|
|
from libra.api import model
|
|
from libra.api import acl
|
|
from libra.common.options import Options, setup_logging
|
|
from eventlet import wsgi
|
|
|
|
|
|
# Gets rid of pep8 error
|
|
assert wsme_overrides
|
|
|
|
|
|
def get_pecan_config():
|
|
# Set up the pecan configuration
|
|
filename = api_config.__file__.replace('.pyc', '.py')
|
|
return pecan.configuration.conf_from_file(filename)
|
|
|
|
|
|
def setup_app(pecan_config, args):
|
|
|
|
model.init_model()
|
|
|
|
if not pecan_config:
|
|
pecan_config = get_pecan_config()
|
|
config = dict(pecan_config)
|
|
config['database'] = args.db_sections
|
|
config['conffile'] = args.config
|
|
config['swift'] = {
|
|
'swift_basepath': args.swift_basepath,
|
|
'swift_endpoint': args.swift_endpoint
|
|
}
|
|
config['gearman'] = {
|
|
'server': args.gearman,
|
|
'ssl_key': args.gearman_ssl_key,
|
|
'ssl_cert': args.gearman_ssl_cert,
|
|
'ssl_ca': args.gearman_ssl_ca
|
|
}
|
|
config['expire_days'] = args.expire_days
|
|
config['ip_filters'] = args.ip_filters
|
|
if args.debug:
|
|
config['wsme'] = {'debug': True}
|
|
config['app']['debug'] = True
|
|
|
|
pecan.configuration.set_config(config, overwrite=True)
|
|
|
|
app = pecan.make_app(
|
|
pecan_config.app.root,
|
|
static_root=pecan_config.app.static_root,
|
|
template_path=pecan_config.app.template_path,
|
|
debug=getattr(pecan_config.app, 'debug', False),
|
|
force_canonical=getattr(pecan_config.app, 'force_canonical', True),
|
|
guess_content_type_from_ext=getattr(
|
|
pecan_config.app,
|
|
'guess_content_type_from_ext',
|
|
True)
|
|
)
|
|
|
|
final_app = acl.AuthDirector(app, args)
|
|
return final_app
|
|
|
|
|
|
class LogStdout(object):
|
|
def __init__(self, logger):
|
|
self.logger = logger.info
|
|
|
|
def write(self, data):
|
|
if data.strip() != '':
|
|
self.logger(data)
|
|
|
|
# Gearman calls this
|
|
def flush(self):
|
|
pass
|
|
|
|
|
|
def main():
|
|
options = Options('api', 'API Server')
|
|
options.parser.add_argument(
|
|
'--host', help='IP address to bind to, 0.0.0.0 for all IPs',
|
|
default='0.0.0.0'
|
|
)
|
|
options.parser.add_argument(
|
|
'--port', help='Port number for API server', type=int, default=443
|
|
)
|
|
options.parser.add_argument(
|
|
'--disable_keystone', help='Unauthenticated server, for testing only',
|
|
action='store_true'
|
|
)
|
|
options.parser.add_argument(
|
|
'--db_sections', action='append', default=[],
|
|
help='MySQL config sections in the config file'
|
|
)
|
|
options.parser.add_argument(
|
|
'--gearman', action='append', metavar='HOST:PORT', default=[],
|
|
help='Gearman job servers'
|
|
)
|
|
options.parser.add_argument(
|
|
'--gearman_ssl_ca', metavar='FILE',
|
|
help='Gearman SSL certificate authority'
|
|
)
|
|
options.parser.add_argument(
|
|
'--gearman_ssl_cert', metavar='FILE',
|
|
help='Gearman SSL certificate'
|
|
)
|
|
options.parser.add_argument(
|
|
'--gearman_ssl_key', metavar='FILE',
|
|
help='Gearman SSL key'
|
|
)
|
|
options.parser.add_argument(
|
|
'--keystone_module',
|
|
default='keystoneclient.middleware.auth_token:AuthProtocol',
|
|
help='A colon separated module and class for keystone middleware'
|
|
)
|
|
options.parser.add_argument(
|
|
'--swift_basepath',
|
|
help='Default swift container to use for pushing log files to'
|
|
)
|
|
options.parser.add_argument(
|
|
'--swift_endpoint',
|
|
help='Default endpoint URL (tenant ID will be appended to this)'
|
|
)
|
|
options.parser.add_argument(
|
|
'--ssl_certfile',
|
|
help='Path to an SSL certificate file'
|
|
)
|
|
options.parser.add_argument(
|
|
'--ssl_keyfile',
|
|
help='Path to an SSL key file'
|
|
)
|
|
options.parser.add_argument(
|
|
'--expire_days', default=0,
|
|
help='Number of days until deleted load balancers are expired'
|
|
)
|
|
options.parser.add_argument(
|
|
'--ip_filters', action='append', default=[],
|
|
help='IP filters for backend nodes in the form xxx.xxx.xxx.xxx/yy'
|
|
)
|
|
|
|
args = options.run()
|
|
|
|
required_args = [
|
|
'db_sections', 'swift_basepath',
|
|
'swift_endpoint', 'ssl_certfile', 'ssl_keyfile'
|
|
]
|
|
|
|
missing_args = 0
|
|
for req in required_args:
|
|
test_var = getattr(args, req)
|
|
if test_var is None:
|
|
missing_args += 1
|
|
sys.stderr.write(
|
|
'{app}: error: argument --{test_var} is required\n'
|
|
.format(app=os.path.basename(sys.argv[0]), test_var=req))
|
|
if missing_args:
|
|
return 2
|
|
|
|
if not args.gearman:
|
|
# NOTE(shrews): Can't set a default in argparse method because the
|
|
# value is appended to the specified default.
|
|
args.gearman.append('localhost:4730')
|
|
elif not isinstance(args.gearman, list):
|
|
# NOTE(shrews): The Options object cannot intelligently handle
|
|
# creating a list from an option that may have multiple values.
|
|
# We convert it to the expected type here.
|
|
svr_list = args.gearman.split()
|
|
args.gearman = svr_list
|
|
|
|
if not isinstance(args.db_sections, list):
|
|
db_list = args.db_sections.split()
|
|
args.db_sections = db_list
|
|
|
|
if not isinstance(args.ip_filters, list):
|
|
ip_list = args.ip_filters.split()
|
|
args.ip_filters = ip_list
|
|
|
|
pc = get_pecan_config()
|
|
if not args.nodaemon:
|
|
pidfile = daemon.pidfile.TimeoutPIDLockFile(args.pid, 10)
|
|
if daemon.runner.is_pidfile_stale(pidfile):
|
|
pidfile.break_lock()
|
|
context = daemon.DaemonContext(
|
|
working_directory='/',
|
|
umask=0o022,
|
|
pidfile=pidfile
|
|
)
|
|
if args.user:
|
|
context.uid = pwd.getpwnam(args.user).pw_uid
|
|
if args.group:
|
|
context.gid = grp.getgrnam(args.group).gr_gid
|
|
context.open()
|
|
# Use the root logger due to lots of services using logger
|
|
logger = setup_logging('', args)
|
|
logger.info('Starting on {0}:{1}'.format(args.host, args.port))
|
|
api = setup_app(pc, args)
|
|
ExpungeScheduler(logger)
|
|
sys.stderr = LogStdout(logger)
|
|
ssl_sock = eventlet.wrap_ssl(
|
|
eventlet.listen((args.host, args.port)),
|
|
certfile=args.ssl_certfile,
|
|
keyfile=args.ssl_keyfile,
|
|
server_side=True
|
|
)
|
|
wsgi.server(ssl_sock, api, keepalive=False, debug=args.debug)
|
|
|
|
return 0
|