forked from ManageIQ/manageiq
-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Add a verify_credentials_task method
This adds a method that takes the options returned by ems.params_for_create and calls a common verify_credentials API call on the provider. This can be called by the API/UI without needing to know anything about the specific provider in a common way.
- Loading branch information
Showing
3 changed files
with
78 additions
and
27 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,77 @@ | ||
module VerifyCredentialsMixin | ||
extend ActiveSupport::Concern | ||
|
||
included do | ||
class << self | ||
Vmdb::Deprecation.deprecate_methods self, :validate_credentials_task => :verify_credentials_task | ||
end | ||
end | ||
|
||
module ClassMethods | ||
def validate_credentials_task(args, user_id, zone) | ||
task_opts = { | ||
:action => "Validate EMS Provider Credentials", | ||
:userid => user_id | ||
} | ||
|
||
queue_opts = { | ||
:args => [*args], | ||
:class_name => name, | ||
:method_name => "raw_connect?", | ||
:queue_name => "generic", | ||
:role => "ems_operations", | ||
:zone => zone | ||
} | ||
|
||
task_id = MiqTask.generic_action_with_callback(task_opts, queue_opts) | ||
task = MiqTask.wait_for_taskid(task_id, :timeout => 30) | ||
|
||
if task.nil? | ||
error_message = "Task Error" | ||
elsif MiqTask.status_error?(task.status) || MiqTask.status_timeout?(task.status) | ||
error_message = task.message | ||
end | ||
|
||
[error_message.blank?, error_message] | ||
end | ||
|
||
def verify_credentials_task(userid, zone, options) | ||
task_opts = { | ||
:action => "Verify EMS Provider Credentials", | ||
:userid => userid | ||
} | ||
|
||
encrypt_verify_credential_params!(options) | ||
|
||
queue_opts = { | ||
:args => [options], | ||
:class_name => name, | ||
:method_name => "verify_credentials?", | ||
:queue_name => "generic", | ||
:role => "ems_operations", | ||
:zone => zone | ||
} | ||
|
||
MiqTask.generic_action_with_callback(task_opts, queue_opts) | ||
end | ||
|
||
def verify_credentials?(args) | ||
# Prevent the connection details, including the password, from being leaked into the logs | ||
# and MiqQueue by only returning true/false | ||
!!verify_credentials(args) | ||
end | ||
|
||
private | ||
|
||
# Ensure that any passwords are encrypted before putting them onto the queue for any | ||
# DDF fields which are a password type | ||
def encrypt_verify_credential_params!(options) | ||
params_for_create[:fields].each do |field| | ||
key_path = field[:name].split(".") | ||
if options.key_path?(key_path) | ||
options.store_path(key_path, MiqPassword.try_encrypt(options.fetch_path(key_path))) if field[:type] == "password" | ||
end | ||
end | ||
end | ||
end | ||
end |