004ddecf9b
The modifications are to the volumes/cinder area of the dashboard. In the cinder client's API, we exposed the metadata parameter in the "create" method, and then added a choice field to the create form to (optionally) select an encryption mode. The user's selection is then passed in to cinder as volume metadata. We also modified the detailed volume view to display all metadata associated with a volume. We also added a flag in OPENSTACK_HYPERVISOR_FEATURES to enable/disable the encryption field. Finally, we added a test case to exercise the encryption choice field. The following changes were made to Nova to support this feature: Added support to encrypt volumes. Modified the libvirt driver to encrypt volumes during the attach call. Created a new VolumeEncryptor class that is responsible for encrypting volumes. The default implementation does not do enryption, and a DmCryptVolumeEncryptor is provided to encrypt volumes using dmcrypt. Added a new KeyManager interface. The KeyManager is used by the VolumeEncryptor to retrieve the key necessary for encryption. Change-Id: Idb6a923f0e3fa52ca800ebd621e247d972b7c714 Implements: blueprint volume-encryption-field
95 lines
2.6 KiB
Python
95 lines
2.6 KiB
Python
import os
|
|
|
|
from django.utils.translation import ugettext_lazy as _
|
|
|
|
from horizon.test.settings import *
|
|
from horizon.utils.secret_key import generate_or_read_from_file
|
|
|
|
from openstack_dashboard.exceptions import UNAUTHORIZED, RECOVERABLE, NOT_FOUND
|
|
|
|
|
|
TEST_DIR = os.path.dirname(os.path.abspath(__file__))
|
|
ROOT_PATH = os.path.abspath(os.path.join(TEST_DIR, ".."))
|
|
|
|
SECRET_KEY = generate_or_read_from_file(os.path.join(TEST_DIR,
|
|
'.secret_key_store'))
|
|
ROOT_URLCONF = 'openstack_dashboard.urls'
|
|
TEMPLATE_DIRS = (
|
|
os.path.join(TEST_DIR, 'templates'),
|
|
)
|
|
|
|
TEMPLATE_CONTEXT_PROCESSORS += (
|
|
'openstack_dashboard.context_processors.openstack',
|
|
)
|
|
|
|
INSTALLED_APPS = (
|
|
'django.contrib.sessions',
|
|
'django.contrib.staticfiles',
|
|
'django.contrib.messages',
|
|
'django.contrib.humanize',
|
|
'django_nose',
|
|
'openstack_auth',
|
|
'compressor',
|
|
'horizon',
|
|
'openstack_dashboard',
|
|
'openstack_dashboard.dashboards.project',
|
|
'openstack_dashboard.dashboards.admin',
|
|
'openstack_dashboard.dashboards.settings',
|
|
)
|
|
|
|
AUTHENTICATION_BACKENDS = ('openstack_auth.backend.KeystoneBackend',)
|
|
|
|
SITE_BRANDING = 'OpenStack'
|
|
|
|
HORIZON_CONFIG = {
|
|
'dashboards': ('project', 'admin', 'settings'),
|
|
'default_dashboard': 'project',
|
|
"password_validator": {
|
|
"regex": '^.{8,18}$',
|
|
"help_text": _("Password must be between 8 and 18 characters.")
|
|
},
|
|
'user_home': None,
|
|
'help_url': "http://docs.openstack.org",
|
|
'exceptions': {'recoverable': RECOVERABLE,
|
|
'not_found': NOT_FOUND,
|
|
'unauthorized': UNAUTHORIZED},
|
|
}
|
|
|
|
# Set to True to allow users to upload images to glance via Horizon server.
|
|
# When enabled, a file form field will appear on the create image form.
|
|
# See documentation for deployment considerations.
|
|
HORIZON_IMAGES_ALLOW_UPLOAD = True
|
|
|
|
AVAILABLE_REGIONS = [
|
|
('http://localhost:5000/v2.0', 'local'),
|
|
('http://remote:5000/v2.0', 'remote'),
|
|
]
|
|
|
|
OPENSTACK_KEYSTONE_URL = "http://localhost:5000/v2.0"
|
|
OPENSTACK_KEYSTONE_DEFAULT_ROLE = "Member"
|
|
|
|
OPENSTACK_KEYSTONE_BACKEND = {
|
|
'name': 'native',
|
|
'can_edit_user': True,
|
|
'can_edit_project': True
|
|
}
|
|
|
|
OPENSTACK_HYPERVISOR_FEATURES = {
|
|
'can_set_mount_point': True,
|
|
|
|
# NOTE: as of Grizzly this is not yet supported in Nova so enabling this
|
|
# setting will not do anything useful
|
|
'can_encrypt_volumes': False
|
|
}
|
|
|
|
LOGGING['loggers']['openstack_dashboard'] = {
|
|
'handlers': ['test'],
|
|
'propagate': False,
|
|
}
|
|
|
|
NOSE_ARGS = ['--nocapture',
|
|
'--nologcapture',
|
|
'--cover-package=openstack_dashboard',
|
|
'--cover-inclusive',
|
|
'--all-modules']
|