Specs of impelementing root-enable, root-disable in redis.

Implement root-enable, root-disable for redis to manage redis authentication. Implements: blueprint root-enable-in-redis Change-Id: I55301bbfc770431b6eca75042619f5a5ffbf8ada Signed-off-by: Fan Zhang <zh.f@outlook.com>
2017-10-25 14:50:09 +08:00 · 2017-10-25 14:50:09 +08:00 · 52c0aea585
commit 52c0aea585
parent 831fb304e6
2 changed files with 272 additions and 0 deletions
--- a/doc/source/index.rst
+++ b/doc/source/index.rst
@ -12,6 +12,14 @@ Contents:

   specs/*

+Queens approved specs:
+
+.. toctree::
+   :glob:
+   :maxdepth: 1
+
+   specs/queens/*
+
 Ocata approved specs:

 .. toctree::
--- a/specs/queens/impelment-root-enable-for-redis.rst
+++ b/specs/queens/impelment-root-enable-for-redis.rst
@ -0,0 +1,264 @@
+..
+    This work is licensed under a Creative Commons Attribution 3.0 Unported
+    License.
+
+    http://creativecommons.org/licenses/by/3.0/legalcode
+
+    Sections of this template were taken directly from the Nova spec
+    template at:
+    https://github.com/openstack/nova-specs/blob/master/specs/juno-template.rst
+
+..
+
+
+======================================================
+Implement root-enable/root-disable/root-show for Redis
+======================================================
+
+.. If section numbers are desired, unindent this
+    .. sectnum::
+
+.. If a TOC is desired, unindent this
+    .. contents::
+
+Trove currently has support for enabling root user, disabling root user
+and showing root-enabled status for database instances, but that functionality
+is lacking for redis. This blueprint outlines a framework and API for
+implementing authentication management for redis.
+
+Launchpad Blueprint:
+https://blueprints.launchpad.net/trove/+spec/root-enable-in-redis
+
+
+Problem Description
+===================
+
+Trove does not currently support root-enable, root-disable, root-show for
+redis instances.
+
+
+Proposed Change
+===============
+
+Implement root-enable, root-disable and root-show API for redis. It will
+support two scenarios including redis single instance and redis replica
+instances which these operations only support master instance but can make
+effect on slave instances.
+
+This implementation does not support a cluster of redis instances.
+
+Here are the details:
+
+Root-enable
+-----------
+
+* Precondition checks to make sure that it's not cluster or slave instance to
+  execute this action.
+
+* Get slave instances of given instance.
+
+* Try to get original auth password for the sake of rolling back.
+
+* Do root enable for given instance. Considering it's a single instance or
+  a master of redis replica sets, roll back once using original auth password
+  and raise exception if any error occurs.
+
+* If things go well, and there are some slave instances, get root password and
+  use root password above to do root enable. Get failed slave instances' id
+  if any, store them into a list.
+
+* Return redis root created view alongside the failed slave instances' id list.
+
+Root-disable
+------------
+
+* Precondition checks to make sure that it's not cluster or slave instance to
+  execute this action.
+
+* Get slave instances of given instance.
+
+* Try to get original auth password for the sake of rolling back.
+
+* Do root disable for given instance. Considering it's a single instance or
+  a master of redis replica sets, roll back once using original auth password
+  and raise exception if any error occurs.
+
+* If things go well, and there are some slave instances, do root disable. Get
+  failed slave instances' id if any, store them into a list.
+
+* If there are any failed slaves, return http code 200 with failed slaves list.
+  If not, just return None with http code 204.
+
+Root-show
+---------
+
+Using root-show of mysql. It can satisfy what we ask for.
+
+Configuration
+-------------
+
+Changing the follow configuration value:
+
+.. code-block:: python
+
+    cfg.StrOpt('root_controller',
+               default='trove.extensions.redis.service.RedisRootController',
+               help='Root controller implementation for redis.'),
+
+
+Remove requirepass in trove/templates/redis/validation-rules.json to avoid
+modifying authentication by configuration group.
+
+Database
+--------
+
+None
+
+Public API
+----------
+
+Change the return contents of root-enable and root-disable. Since redis does
+not have a root user, just show '-' as user name. Return failed slaves if any.
+For example:
+
+.. code-block:: python
+
+    {
+        "failed_slaves": [
+            "67c2f6d6-7c01-4ce9-bb18-aa951ca5a39b"
+        ],
+        "user": {
+            "password": "bdQhBXVpk7TE689aGgqdNmJmg4qHdpdBegae",
+            "name": "-"
+        }
+    }
+
+Public API Security
+-------------------
+
+None
+
+Python API
+----------
+
+None
+
+CLI (python-troveclient)
+------------------------
+
+Change the return content to meet API above.
+
+Internal API
+------------
+
+None
+
+Guest Agent
+-----------
+
+The work will require some implementation of the guest manager:
+
+* Add requirepass and masterauth into redis.conf when executing root enable,
+  and apply overrides to bring into effect without restarting redis service.
+  Rebuild admin client to make sure guest agent can still talk to task manager
+  after adding enabling/disabling root in redis, which has been done in this
+  patch [1]_.
+
+* Remove requirepass and masterauth in redis.conf when executing root disable,
+  and apply overrides to bring into effect without restarting redis service.
+  Still, rebuild admin client.
+
+
+Alternatives
+------------
+
+We can achieve authentication management for redis by configuration group, but
+it looks like less convenient than using root-enable and root-disable.
+
+
+Dashboard Impact (UX)
+=====================
+
+None
+
+Implementation
+==============
+
+Assignee(s)
+-----------
+
+Primary assignee:
+  fanzhang <zh.f@outlook.com>
+
+Milestones
+----------
+
+Target Milestone for completion:
+  Queens-Q2
+
+
+Work Items
+----------
+
+* Implement redis root controller, service, models and views.
+
+* Implement redis guest agent, including manager, service and models.
+
+
+Upgrade Implications
+====================
+
+None
+
+
+Dependencies
+============
+
+None
+
+
+Testing
+=======
+
+Inside the int_tests.py, root_actions_groups will be added to redis supported
+groups in order to reuse some scenario tests with proper modification to meet
+the root actions functionality of redis.
+
+Unittests will be added to test the derived controller functionality, for
+example:
+
+* Test root-enable on single redis instance.
+
+* Test root-enable on master instance of redis replication.
+
+* Test root-enable on slave instance of redis replication.
+
+* Test root-enable with is_cluster=True.
+
+* Test root-delete in the cases of above.
+
+Unittests will be also added to test the implemented functions inside guest-
+agent including enable_root and disable_root.
+
+
+Documentation Impact
+====================
+
+The documentation [2]_ should be updated to add the following features:
+
+* Successful response examples of enabling/disabling root in redis.
+
+* Failed response examples of enabling/disabling root in redis.
+
+But it is not mandatory to add.
+
+References
+==========
+
+.. [1] https://bugs.launchpad.net/trove/+bug/1708376
+.. [2] https://developer.openstack.org/api-ref/database/#users-users
+
+Appendix
+========
+
+None.