From 195f4d4758091ffae8ccb5a88ec4406438210d4d Mon Sep 17 00:00:00 2001 From: Sridhar Ramaswamy Date: Sat, 2 Aug 2014 16:06:58 -0700 Subject: [PATCH] Move Cisco VPN RESTapi URI strings to constants Cisco VPN RESTapi URI strings are currently spread out throughout the cisco vpn device driver code. This create challenge towards consistently using REST resource identifiers as this code gets enhanced in the future. This change moves those URIs as string contents towards the top of the device driver file. This addresses the review comment received during the cisco-vpnaas BP implementation. Change-Id: I17e02cca95b1d14d9218f1a2745780bd14c9f89d Closes-Bug: #1313801 --- .../device_drivers/cisco_csr_rest_client.py | 42 +++++++++++++------ 1 file changed, 29 insertions(+), 13 deletions(-) diff --git a/neutron/services/vpn/device_drivers/cisco_csr_rest_client.py b/neutron/services/vpn/device_drivers/cisco_csr_rest_client.py index d8e79789aa..b4bd801140 100644 --- a/neutron/services/vpn/device_drivers/cisco_csr_rest_client.py +++ b/neutron/services/vpn/device_drivers/cisco_csr_rest_client.py @@ -30,6 +30,22 @@ LOG = logging.getLogger(__name__) HEADER_CONTENT_TYPE_JSON = {'content-type': 'application/json'} URL_BASE = 'https://%(host)s/api/v1/%(resource)s' +# CSR RESTapi URIs + +URI_VPN_IPSEC_POLICIES = 'vpn-svc/ipsec/policies' +URI_VPN_IPSEC_POLICIES_ID = URI_VPN_IPSEC_POLICIES + '/%s' +URI_VPN_IKE_POLICIES = 'vpn-svc/ike/policies' +URI_VPN_IKE_POLICIES_ID = URI_VPN_IKE_POLICIES + '/%s' +URI_VPN_IKE_KEYRINGS = 'vpn-svc/ike/keyrings' +URI_VPN_IKE_KEYRINGS_ID = URI_VPN_IKE_KEYRINGS + '/%s' +URI_VPN_IKE_KEEPALIVE = 'vpn-svc/ike/keepalive' +URI_VPN_SITE_TO_SITE = 'vpn-svc/site-to-site' +URI_VPN_SITE_TO_SITE_ID = URI_VPN_SITE_TO_SITE + '/%s' +URI_VPN_SITE_TO_SITE_STATE = URI_VPN_SITE_TO_SITE + '/%s/state' +URI_VPN_SITE_ACTIVE_SESSIONS = URI_VPN_SITE_TO_SITE + '/active/sessions' +URI_ROUTING_STATIC_ROUTES = 'routing-svc/static-routes' +URI_ROUTING_STATIC_ROUTES_ID = URI_ROUTING_STATIC_ROUTES + '/%s' + def make_route_id(cidr, interface): """Build ID that will be used to identify route for later deletion.""" @@ -198,36 +214,36 @@ class CsrRestClient(object): base_ike_policy_info = {u'version': u'v1', u'local-auth-method': u'pre-share'} base_ike_policy_info.update(policy_info) - return self.post_request('vpn-svc/ike/policies', + return self.post_request(URI_VPN_IKE_POLICIES, payload=base_ike_policy_info) def create_ipsec_policy(self, policy_info): base_ipsec_policy_info = {u'mode': u'tunnel'} base_ipsec_policy_info.update(policy_info) - return self.post_request('vpn-svc/ipsec/policies', + return self.post_request(URI_VPN_IPSEC_POLICIES, payload=base_ipsec_policy_info) def create_pre_shared_key(self, psk_info): - return self.post_request('vpn-svc/ike/keyrings', payload=psk_info) + return self.post_request(URI_VPN_IKE_KEYRINGS, payload=psk_info) def create_ipsec_connection(self, connection_info): base_conn_info = {u'vpn-type': u'site-to-site', u'ip-version': u'ipv4'} connection_info.update(base_conn_info) - return self.post_request('vpn-svc/site-to-site', + return self.post_request(URI_VPN_SITE_TO_SITE, payload=connection_info) def configure_ike_keepalive(self, keepalive_info): base_keepalive_info = {u'periodic': True} keepalive_info.update(base_keepalive_info) - return self.put_request('vpn-svc/ike/keepalive', keepalive_info) + return self.put_request(URI_VPN_IKE_KEEPALIVE, keepalive_info) def create_static_route(self, route_info): - return self.post_request('routing-svc/static-routes', + return self.post_request(URI_ROUTING_STATIC_ROUTES, payload=route_info) def delete_static_route(self, route_id): - return self.delete_request('routing-svc/static-routes/%s' % route_id) + return self.delete_request(URI_ROUTING_STATIC_ROUTES_ID % route_id) def set_ipsec_connection_state(self, tunnel, admin_up=True): """Set the IPSec site-to-site connection (tunnel) admin state. @@ -235,22 +251,22 @@ class CsrRestClient(object): Note: When a tunnel is created, it will be admin up. """ info = {u'vpn-interface-name': tunnel, u'enabled': admin_up} - return self.put_request('vpn-svc/site-to-site/%s/state' % tunnel, info) + return self.put_request(URI_VPN_SITE_TO_SITE_STATE % tunnel, info) def delete_ipsec_connection(self, conn_id): - return self.delete_request('vpn-svc/site-to-site/%s' % conn_id) + return self.delete_request(URI_VPN_SITE_TO_SITE_ID % conn_id) def delete_ipsec_policy(self, policy_id): - return self.delete_request('vpn-svc/ipsec/policies/%s' % policy_id) + return self.delete_request(URI_VPN_IPSEC_POLICIES_ID % policy_id) def delete_ike_policy(self, policy_id): - return self.delete_request('vpn-svc/ike/policies/%s' % policy_id) + return self.delete_request(URI_VPN_IKE_POLICIES_ID % policy_id) def delete_pre_shared_key(self, key_id): - return self.delete_request('vpn-svc/ike/keyrings/%s' % key_id) + return self.delete_request(URI_VPN_IKE_KEYRINGS_ID % key_id) def read_tunnel_statuses(self): - results = self.get_request('vpn-svc/site-to-site/active/sessions') + results = self.get_request(URI_VPN_SITE_ACTIVE_SESSIONS) if self.status != requests.codes.OK or not results: return [] tunnels = [(t[u'vpn-interface-name'], t[u'status'])