Openstack Swift DB Backups

[jerryk55]

In support of the RFE described in BZ https://bugzilla.redhat.com/show_bug.cgi?id=1615488.

Add a new FileDepot subclass for Swift.
Since we need to pass info in to the Mount Session (in gems-pending) regarding the Openstack
connection, utilize the URI with Query Parameters to do so.

@carbonin @NickLaMuro @roliveri please review.

Links

• https://bugzilla.redhat.com/show_bug.cgi?id=1615488
• Swift DB Backups Requirements manageiq-schema#259
• https://github.com/ManageIQ/manageiq-gems-pending

[jerryk55]

I would agree 100% if that was what we are doing. But its not. The credentials are being passed/stored just as they are for the other FileDepot implementations. We are only adding the additional parameters not used by other FileDepots to the URI as Query parameters.

…

On Tue, Sep 11, 2018 at 9:56 AM Marek Aufart ***@***.***> wrote: Just $0.02 from OpenStack provider point of view. This seems to be as pretty much of duplication of credentials and config needed to connect to OpenStack. Storing credentials in encoded URL looks to me to have also security implications since it is different (older) way than Authentications are stored now. — You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub <#17967 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AF1cZy_p1BwpK7GVzrZcUcWrZoIKP7JWks5uZ8EMgaJpZM4WiMPF> .

-- JERRY KESELMAN PRINCIPAL SOFTWARE ENGINEER, CLOUDFORMS VM SMARTSTATE ANALYSIS & STORAGE Red Hat Inc. <https://www.redhat.com/> jerryk@redhat.com Gitter: jerryk55 IRC: jerrykbiker

[jerryk55]

@carbonin any chance of a final review and merge on this? Thanks!

[NickLaMuro]

Just something I noticed that is in regards to what I am working on. (Update: Derp... this is wrong... resolving)

I was clearly confused... ignore me

[carbonin]

@agrare can you weigh in on how we should be writing out Open[s|S]tack?

[carbonin]

Should this be OpenStack? Not sure how exact we need to be with branding here (I'm not sure if this is displayed to the user).

[agrare]

I believe this should be OpenStack per https://www.redhat.com/en/technologies/linux-platforms/openstack-platform and https://www.openstack.org/

[jerryk55]

Ok cool. I have to change this in here and in the UI code as well. Thanks for pointing it out.

[carbonin]

Couldn't we just make 'default' the .. well .. default value for the parameter in the method definition? Why have the parameter default be nil then set a value if it's nil.

[jerryk55]

Absolutely.

[carbonin]

Same question here about Openstack vs OpenStack

[carbonin]

I think we could simplify this a bit by building a list of query elements outside of the uri.query string object. Like this:

query_elements = []
query_elements << "region=#{openstack_region}"              if openstack_region.present?
query_elements << "api_version=#{keystone_api_version}"     if keystone_api_version.present?
query_elements << "domain_id=#{v3_domain_ident}"]           if v3_domain_ident.present?
query_elements << "security_protocol=#{security_protocol}"] if security_protocol.present?
uri.query = query_elements.join('&').presence

Also we can drop the .present? calls if these will only ever be nil or usable.

[jerryk55]

If its nil then we'll end up with query strings like "region=&api_version=&domain_id=", won't we?

[carbonin]

Nope, I'm pretty sure my version works as I'm only adding the key=value if the value is present, then joining only when the array is fully assembled.

Also, I'm not sure what "it" you're referencing here, but we should probably have a test for this method either way. I would suggest writing some tests that cover nil values and then we can refactor with confidence.

[jerryk55]

@carbonin I'm referring to your question about dropping the ".present?" calls if these will be nil or usable. if they're nil, and there is no .present? call, then the wrong thing will happen. Your code works correctly as written.

[carbonin]

if they're nil, and there is no .present? call, then the wrong thing will happen.

No, nil is falsey.

This won't print anything:

foo = nil
puts "this won't print" if foo

What present? and presence do is move empty strings (and also other empty objects like arrays, hashes, etc) to also be false or nil respectively. So when I saw you using present? I assumed that these could possibly be empty strings, but that seemed strange, which is why I asked.

[jerryk55]

Doh! Obviously my physical exhaustion is affecting my mental capacity. Of course what you're saying is true. I think I need more coffee...

[carbonin]

Same as the others.

[carbonin]

We should add specs here. At least for FileDepotSwift#merged_uri, but ideally for more.

[carbonin]

Ah this was supposed to be part of the review, but this is rather complicated and I don't understand what it is accomplishing. Specs would help.

[jerryk55]

Putting the port in the URI.

[NickLaMuro]

Since we had the same kind of things here:

ManageIQ/manageiq-appliance_console#66 (review)

Can we switch to just assigning port to the uri object as well? (instead of the quadruple URI.parse)

[jerryk55]

yes! I thought that was in this PR someplace - I forgot where we'd done it. Thanks!

[jerryk55]

@NickLaMuro @carbonin I've fixed the issue with credential verification. I see that there was a request for a spec in one case but other than this should be ready to go. The UI PR is ready to go and waiting on this one. I have gems-pending code from Nick L to push out and we should be ready at least with the Backup side of the equation if I can get buy-in from everyone. Let me look at a spec here.

[NickLaMuro]

I think this looks good to me, but I am a bit fuzzy on the workflow of the FileDepot code, so I might have missed something.

The comments I left are minor, so they don't need to hold up the merge.

[NickLaMuro]

Is this used?

[jerryk55]

Not that I'm aware of. Removing.

[jerryk55]

@carbonin tests added. ready to rock and roll?

[carbonin]

Nearly there, just some minor cleanup type stuff.

[carbonin]

Same

[jerryk55]

@carbonin All comments addressed and pushed.

[carbonin]

This should really be the name of the method under test in this block. Also I prefer describe for blocks which are testing a particular method and use context for blocks which define shared setup.

So this would be the convention we normally would use here:

describe "#merged_uri" do

[jerryk55]

@carbonin spec changes made as requested.

[carbonin]

@jerryk55 We're still targeting hammer for this right?

[jerryk55]

Yup. Assuming that the restore side can be finished by then. Which we are relying on @NickLaMuro to do the bulk of that... UI, Core, and Schema are merged. I'm working through comments on the backup side of the gems-pending PR, and there is still an outstanding appliance_console PR.

[simaishi]

Hammer backport details:

$ git log -1
commit e5e724a18e9887514fc0753b7d122991c9f81ec4
Author: Nick Carboni <ncarboni@redhat.com>
Date:   Thu Oct 11 11:48:16 2018 -0400

    Merge pull request #17967 from jerryk55/swift_db_backups
    
    Openstack Swift DB Backups
    
    (cherry picked from commit 520f0077af3b3373bab9b692f50224575cfc332b)
    
    https://bugzilla.redhat.com/show_bug.cgi?id=1615488

[miq-bot]

Checked commits jerryk55/manageiq@fc21e30~...c25ac99 with ruby 2.3.3, rubocop 0.52.1, haml-lint 0.20.0, and yamllint 1.10.0
8 files checked, 4 offenses detected

app/models/file_depot_swift.rb

• ❗ - Line 34, Col 7 - Style/RescueStandardError - Avoid rescuing without specifying an error class.
• ❗ - Line 50, Col 3 - Style/RescueStandardError - Avoid rescuing without specifying an error class.

spec/models/file_depot_swift_spec.rb

• ❗ - Line 23, Col 8 - Layout/TrailingWhitespace - Trailing whitespace detected.
• ❗ - Line 27, Col 8 - Layout/TrailingWhitespace - Trailing whitespace detected.