1
=== modified file 'src/maasserver/models/config.py'
2
--- src/maasserver/models/config.py	2017-04-07 21:52:35 +0000
3
+++ src/maasserver/models/config.py	2017-05-06 00:25:16 +0000
4
@@ -96,11 +96,12 @@
5
96
        'enable_analytics': True,
96
        'enable_analytics': True,
6
97
        # First admin journey.
97
        # First admin journey.
7
98
        'completed_intro': False,
98
        'completed_intro': False,
8
99
        # Script results.
9
99
        'max_node_commissioning_results': 10,
100
        'max_node_commissioning_results': 10,
10
100
        'max_node_testing_results': 10,
101
        'max_node_testing_results': 10,
11
101
        'max_node_installation_results': 1,
102
        'max_node_installation_results': 1,
12
102
        # Notifications.
103
        # Notifications.
14
103
        'subnet_ip_exhaustion_threshold_count': 16
104
        'subnet_ip_exhaustion_threshold_count': 16,
15
104
    }
105
    }
16
105
106
17
106
107
18
107
108
19
=== modified file 'src/maasserver/proxyconfig.py'
20
--- src/maasserver/proxyconfig.py	2017-05-02 19:00:58 +0000
21
+++ src/maasserver/proxyconfig.py	2017-05-06 00:25:16 +0000
22
@@ -10,6 +10,7 @@
23
10
    ]
10
    ]
24
11
11
25
12
import datetime
12
import datetime
26
13
from glob import glob
27
13
import os
14
import os
28
14
import socket
15
import socket
29
15
import sys
16
import sys
30
@@ -63,6 +64,21 @@
31
63
def proxy_update_config(reload_proxy=True):
64
def proxy_update_config(reload_proxy=True):
32
64
    """Regenerate the proxy configuration file."""
65
    """Regenerate the proxy configuration file."""
33
65
66
34
67
    def check_user_proxy_conf(filename):
35
68
        # Squid fails to start if instructed to source a path which does not
36
69
        # exist. Check if the path exists, if it doesn't return None which
37
70
        # tells the template to not source anything.
38
71
        if snappy.running_in_snap():
39
72
            path = os.path.join(snappy.get_snap_common_path(), 'proxy')
40
73
        else:
41
74
            path = os.path.join('/etc', 'maas', 'proxy')
42
75
        if not os.path.exists(path):
43
76
            return None
44
77
        full_path = os.path.join(path, filename)
45
78
        if glob(full_path) == []:
46
79
            return None
47
80
        return full_path
48
81
49
66
    @transactional
82
    @transactional
50
67
    def write_config():
83
    def write_config():
51
68
        allowed_subnets = Subnet.objects.filter(allow_proxy=True)
84
        allowed_subnets = Subnet.objects.filter(allow_proxy=True)
52
@@ -76,6 +92,8 @@
53
76
            'snap_path': snappy.get_snap_path(),
92
            'snap_path': snappy.get_snap_path(),
54
77
            'snap_data_path': snappy.get_snap_data_path(),
93
            'snap_data_path': snappy.get_snap_data_path(),
55
78
            'snap_common_path': snappy.get_snap_common_path(),
94
            'snap_common_path': snappy.get_snap_common_path(),
56
95
            'user_acls': check_user_proxy_conf('*.acl'),
57
96
            'user_conf': check_user_proxy_conf('*.conf'),
58
79
        }
97
        }
59
80
        template_path = locate_template('proxy', MAAS_PROXY_CONF_TEMPLATE)
98
        template_path = locate_template('proxy', MAAS_PROXY_CONF_TEMPLATE)
60
81
        template = tempita.Template.from_filename(
99
        template = tempita.Template.from_filename(
61
82
100
62
=== modified file 'src/maasserver/tests/test_proxyconfig.py'
63
--- src/maasserver/tests/test_proxyconfig.py	2017-05-02 18:42:35 +0000
64
+++ src/maasserver/tests/test_proxyconfig.py	2017-05-06 00:25:16 +0000
65
@@ -86,6 +86,38 @@
66
86
86
67
87
    @wait_for_reactor
87
    @wait_for_reactor
68
88
    @inlineCallbacks
88
    @inlineCallbacks
69
89
    def test__doesnt_include_user_config_when_not_found(self):
70
90
        self.patch(settings, "PROXY_CONNECT", True)
71
91
        yield proxyconfig.proxy_update_config(reload_proxy=False)
72
92
        matcher = Not(Contains("include "))
73
93
        self.assertThat(
74
94
            "%s/%s" % (self.tmpdir, proxyconfig.MAAS_PROXY_CONF_NAME),
75
95
            FileContains(matcher=matcher))
76
96
77
97
    @wait_for_reactor
78
98
    @inlineCallbacks
79
99
    def test__includes_user_config_when_found(self):
80
100
        self.patch(settings, "PROXY_CONNECT", True)
81
101
        self.patch(snappy, 'running_in_snap').return_value = True
82
102
        self.patch(snappy, 'get_snap_common_path').return_value = self.tmpdir
83
103
        proxy_path = os.path.join(self.tmpdir, 'proxy')
84
104
        os.makedirs(proxy_path)
85
105
        open(os.path.join(
86
106
            proxy_path, '%s.acl' % factory.make_name('acl')), 'w').close()
87
107
        open(os.path.join(
88
108
            proxy_path, '%s.conf' % factory.make_name('conf')), 'w').close()
89
109
        yield proxyconfig.proxy_update_config(reload_proxy=False)
90
110
        matcher = Contains("include %s/proxy/*.acl" % self.tmpdir)
91
111
        self.assertThat(
92
112
            "%s/%s" % (self.tmpdir, proxyconfig.MAAS_PROXY_CONF_NAME),
93
113
            FileContains(matcher=matcher))
94
114
        matcher = Contains("include %s/proxy/*.conf" % self.tmpdir)
95
115
        self.assertThat(
96
116
            "%s/%s" % (self.tmpdir, proxyconfig.MAAS_PROXY_CONF_NAME),
97
117
            FileContains(matcher=matcher))
98
118
99
119
    @wait_for_reactor
100
120
    @inlineCallbacks
101
89
    def test__calls_reloadService(self):
121
    def test__calls_reloadService(self):
102
90
        self.patch(settings, "PROXY_CONNECT", True)
122
        self.patch(settings, "PROXY_CONNECT", True)
103
91
        yield deferToDatabase(self.make_subnet)
123
        yield deferToDatabase(self.make_subnet)
104
@@ -99,6 +131,7 @@
105
99
    def test__calls_restartService(self):
131
    def test__calls_restartService(self):
106
100
        self.patch(settings, "PROXY_CONNECT", True)
132
        self.patch(settings, "PROXY_CONNECT", True)
107
101
        self.patch(snappy, 'running_in_snap').return_value = True
133
        self.patch(snappy, 'running_in_snap').return_value = True
108
134
        self.patch(snappy, 'get_snap_common_path').return_value = '/'
109
102
        yield deferToDatabase(self.make_subnet)
135
        yield deferToDatabase(self.make_subnet)
110
103
        yield proxyconfig.proxy_update_config()
136
        yield proxyconfig.proxy_update_config()
111
104
        self.assertThat(
137
        self.assertThat(
112
105
138
113
=== modified file 'src/provisioningserver/templates/proxy/maas-proxy.conf.template'
114
--- src/provisioningserver/templates/proxy/maas-proxy.conf.template	2017-04-05 14:58:22 +0000
115
+++ src/provisioningserver/templates/proxy/maas-proxy.conf.template	2017-05-06 00:25:16 +0000
116
@@ -1,4 +1,6 @@
117
1
# DO NOT EDIT.  This file is automatically created by MAAS.
1
# DO NOT EDIT.  This file is automatically created by MAAS.
118
2
# User defined ACLs can be defined in {{if running_in_snap}}{{snap_common_path}}{{else}}/etc/maas{{endif}}/proxy/*.acl
119
3
# Additional user defined config can be defined in {{if running_in_snap}}{{snap_common_path}}{{else}}/etc/maas{{endif}}/proxy/*.conf
120
2
# Last updated at {{modified}}.
4
# Last updated at {{modified}}.
121
3
5
122
4
# Inspired by UDS's conference proxy
6
# Inspired by UDS's conference proxy
123
@@ -15,6 +17,9 @@
124
15
acl Safe_ports port 443         # https
17
acl Safe_ports port 443         # https
125
16
acl Safe_ports port 1025-65535  # unregistered ports
18
acl Safe_ports port 1025-65535  # unregistered ports
126
17
acl CONNECT method CONNECT
19
acl CONNECT method CONNECT
127
20
{{if user_acls is not None}}
128
21
include {{user_acls}}
129
22
{{endif}}
130
18
http_access allow maas_proxy_manager localhost
23
http_access allow maas_proxy_manager localhost
131
19
http_access deny maas_proxy_manager
24
http_access deny maas_proxy_manager
132
20
http_access deny !Safe_ports
25
http_access deny !Safe_ports
133
@@ -56,3 +61,6 @@
134
56
cache_log /var/log/maas/proxy/cache.log
61
cache_log /var/log/maas/proxy/cache.log
135
57
cache_store_log /var/log/maas/proxy/store.log
62
cache_store_log /var/log/maas/proxy/store.log
136
58
{{endif}}
63
{{endif}}
137
64
{{if user_conf is not None}}
138
65
include {{user_conf}}
139
66
{{endif}}
Status:	Rejected
Rejected by:	MAAS Lander on 2017-06-22
Proposed branch:	lp:~ltrager/maas/peer_proxy
Merge into:	lp:~maas-committers/maas/trunk
Diff against target:	139 lines (+61/-1) 4 files modified src/maasserver/models/config.py (+2/-1) src/maasserver/proxyconfig.py (+18/-0) src/maasserver/tests/test_proxyconfig.py (+33/-0) src/provisioningserver/templates/proxy/maas-proxy.conf.template (+8/-0)
To merge this branch:	bzr merge lp:~ltrager/maas/peer_proxy
Related bugs:	Link a bug report
Reviewer	Review Type	Date Requested	Status
Andres Rodriguez (community)		2017-05-06	Needs Information on 2017-05-06
Review via email: mp+323706@code.launchpad.net
1	=== modified file 'src/maasserver/models/config.py'
2	--- src/maasserver/models/config.py 2017-04-07 21:52:35 +0000
3	+++ src/maasserver/models/config.py 2017-05-06 00:25:16 +0000
4	@@ -96,11 +96,12 @@
5	96	'enable_analytics': True,	96	'enable_analytics': True,
6	97	# First admin journey.	97	# First admin journey.
7	98	'completed_intro': False,	98	'completed_intro': False,
8			99	# Script results.
9	99	'max_node_commissioning_results': 10,	100	'max_node_commissioning_results': 10,
10	100	'max_node_testing_results': 10,	101	'max_node_testing_results': 10,
11	101	'max_node_installation_results': 1,	102	'max_node_installation_results': 1,
12	102	# Notifications.	103	# Notifications.
14	103	'subnet_ip_exhaustion_threshold_count': 16	104	'subnet_ip_exhaustion_threshold_count': 16,
15	104	}	105	}
16	105		106
17	106		107
18	107		108
19	=== modified file 'src/maasserver/proxyconfig.py'
20	--- src/maasserver/proxyconfig.py 2017-05-02 19:00:58 +0000
21	+++ src/maasserver/proxyconfig.py 2017-05-06 00:25:16 +0000
22	@@ -10,6 +10,7 @@
23	10	]	10	]
24	11		11
25	12	import datetime	12	import datetime
26			13	from glob import glob
27	13	import os	14	import os
28	14	import socket	15	import socket
29	15	import sys	16	import sys
30	@@ -63,6 +64,21 @@
31	63	def proxy_update_config(reload_proxy=True):	64	def proxy_update_config(reload_proxy=True):
32	64	"""Regenerate the proxy configuration file."""	65	"""Regenerate the proxy configuration file."""
33	65		66
34			67	def check_user_proxy_conf(filename):
35			68	# Squid fails to start if instructed to source a path which does not
36			69	# exist. Check if the path exists, if it doesn't return None which
37			70	# tells the template to not source anything.
38			71	if snappy.running_in_snap():
39			72	path = os.path.join(snappy.get_snap_common_path(), 'proxy')
40			73	else:
41			74	path = os.path.join('/etc', 'maas', 'proxy')
42			75	if not os.path.exists(path):
43			76	return None
44			77	full_path = os.path.join(path, filename)
45			78	if glob(full_path) == []:
46			79	return None
47			80	return full_path
48			81
49	66	@transactional	82	@transactional
50	67	def write_config():	83	def write_config():
51	68	allowed_subnets = Subnet.objects.filter(allow_proxy=True)	84	allowed_subnets = Subnet.objects.filter(allow_proxy=True)
52	@@ -76,6 +92,8 @@
53	76	'snap_path': snappy.get_snap_path(),	92	'snap_path': snappy.get_snap_path(),
54	77	'snap_data_path': snappy.get_snap_data_path(),	93	'snap_data_path': snappy.get_snap_data_path(),
55	78	'snap_common_path': snappy.get_snap_common_path(),	94	'snap_common_path': snappy.get_snap_common_path(),
56			95	'user_acls': check_user_proxy_conf('*.acl'),
57			96	'user_conf': check_user_proxy_conf('*.conf'),
58	79	}	97	}
59	80	template_path = locate_template('proxy', MAAS_PROXY_CONF_TEMPLATE)	98	template_path = locate_template('proxy', MAAS_PROXY_CONF_TEMPLATE)
60	81	template = tempita.Template.from_filename(	99	template = tempita.Template.from_filename(
61	82		100
62	=== modified file 'src/maasserver/tests/test_proxyconfig.py'
63	--- src/maasserver/tests/test_proxyconfig.py 2017-05-02 18:42:35 +0000
64	+++ src/maasserver/tests/test_proxyconfig.py 2017-05-06 00:25:16 +0000
65	@@ -86,6 +86,38 @@
66	86		86
67	87	@wait_for_reactor	87	@wait_for_reactor
68	88	@inlineCallbacks	88	@inlineCallbacks
69			89	def test__doesnt_include_user_config_when_not_found(self):
70			90	self.patch(settings, "PROXY_CONNECT", True)
71			91	yield proxyconfig.proxy_update_config(reload_proxy=False)
72			92	matcher = Not(Contains("include "))
73			93	self.assertThat(
74			94	"%s/%s" % (self.tmpdir, proxyconfig.MAAS_PROXY_CONF_NAME),
75			95	FileContains(matcher=matcher))
76			96
77			97	@wait_for_reactor
78			98	@inlineCallbacks
79			99	def test__includes_user_config_when_found(self):
80			100	self.patch(settings, "PROXY_CONNECT", True)
81			101	self.patch(snappy, 'running_in_snap').return_value = True
82			102	self.patch(snappy, 'get_snap_common_path').return_value = self.tmpdir
83			103	proxy_path = os.path.join(self.tmpdir, 'proxy')
84			104	os.makedirs(proxy_path)
85			105	open(os.path.join(
86			106	proxy_path, '%s.acl' % factory.make_name('acl')), 'w').close()
87			107	open(os.path.join(
88			108	proxy_path, '%s.conf' % factory.make_name('conf')), 'w').close()
89			109	yield proxyconfig.proxy_update_config(reload_proxy=False)
90			110	matcher = Contains("include %s/proxy/*.acl" % self.tmpdir)
91			111	self.assertThat(
92			112	"%s/%s" % (self.tmpdir, proxyconfig.MAAS_PROXY_CONF_NAME),
93			113	FileContains(matcher=matcher))
94			114	matcher = Contains("include %s/proxy/*.conf" % self.tmpdir)
95			115	self.assertThat(
96			116	"%s/%s" % (self.tmpdir, proxyconfig.MAAS_PROXY_CONF_NAME),
97			117	FileContains(matcher=matcher))
98			118
99			119	@wait_for_reactor
100			120	@inlineCallbacks
101	89	def test__calls_reloadService(self):	121	def test__calls_reloadService(self):
102	90	self.patch(settings, "PROXY_CONNECT", True)	122	self.patch(settings, "PROXY_CONNECT", True)
103	91	yield deferToDatabase(self.make_subnet)	123	yield deferToDatabase(self.make_subnet)
104	@@ -99,6 +131,7 @@
105	99	def test__calls_restartService(self):	131	def test__calls_restartService(self):
106	100	self.patch(settings, "PROXY_CONNECT", True)	132	self.patch(settings, "PROXY_CONNECT", True)
107	101	self.patch(snappy, 'running_in_snap').return_value = True	133	self.patch(snappy, 'running_in_snap').return_value = True
108			134	self.patch(snappy, 'get_snap_common_path').return_value = '/'
109	102	yield deferToDatabase(self.make_subnet)	135	yield deferToDatabase(self.make_subnet)
110	103	yield proxyconfig.proxy_update_config()	136	yield proxyconfig.proxy_update_config()
111	104	self.assertThat(	137	self.assertThat(
112	105		138
113	=== modified file 'src/provisioningserver/templates/proxy/maas-proxy.conf.template'
114	--- src/provisioningserver/templates/proxy/maas-proxy.conf.template 2017-04-05 14:58:22 +0000
115	+++ src/provisioningserver/templates/proxy/maas-proxy.conf.template 2017-05-06 00:25:16 +0000
116	@@ -1,4 +1,6 @@
117	1	# DO NOT EDIT. This file is automatically created by MAAS.	1	# DO NOT EDIT. This file is automatically created by MAAS.
118			2	# User defined ACLs can be defined in {{if running_in_snap}}{{snap_common_path}}{{else}}/etc/maas{{endif}}/proxy/*.acl
119			3	# Additional user defined config can be defined in {{if running_in_snap}}{{snap_common_path}}{{else}}/etc/maas{{endif}}/proxy/*.conf
120	2	# Last updated at {{modified}}.	4	# Last updated at {{modified}}.
121	3		5
122	4	# Inspired by UDS's conference proxy	6	# Inspired by UDS's conference proxy
123	@@ -15,6 +17,9 @@
124	15	acl Safe_ports port 443 # https	17	acl Safe_ports port 443 # https
125	16	acl Safe_ports port 1025-65535 # unregistered ports	18	acl Safe_ports port 1025-65535 # unregistered ports
126	17	acl CONNECT method CONNECT	19	acl CONNECT method CONNECT
127			20	{{if user_acls is not None}}
128			21	include {{user_acls}}
129			22	{{endif}}
130	18	http_access allow maas_proxy_manager localhost	23	http_access allow maas_proxy_manager localhost
131	19	http_access deny maas_proxy_manager	24	http_access deny maas_proxy_manager
132	20	http_access deny !Safe_ports	25	http_access deny !Safe_ports
133	@@ -56,3 +61,6 @@
134	56	cache_log /var/log/maas/proxy/cache.log	61	cache_log /var/log/maas/proxy/cache.log
135	57	cache_store_log /var/log/maas/proxy/store.log	62	cache_store_log /var/log/maas/proxy/store.log
136	58	{{endif}}	63	{{endif}}
137			64	{{if user_conf is not None}}
138			65	include {{user_conf}}
139			66	{{endif}}