If you are new to OpenStack you may be wondering what ini files like this are all about. OpenStack services (Nova, Glance, Quantum etc) use Paste Deployment to wire up middleware like authorisation, API extensions, request rate limiting etc. It helps to have a basic knowledge of this stuff for installing and troubleshooting. This post is a simple example based on this presentation. Here I have put the various parts in different modules.
First the application in a module named app_layer which uses WebOb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from webob import Response | |
| from webob.dec import wsgify | |
| @wsgify | |
| def application(request): | |
| return Response('Hello, welcome to paste \n') | |
| def app_factory(global_config, **local_config): | |
| return application |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from webob.dec import wsgify | |
| from webob import exc | |
| @wsgify.middleware | |
| def auth_filter(request, app): | |
| if request.headers.get('X-Auth-Token') != 'open-sesame': | |
| return exc.HTTPForbidden() | |
| return app(request) | |
| def filter_factory(global_config, **local_config): | |
| return auth_filter |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [pipeline:main] | |
| pipeline = auth hello | |
| [app:hello] | |
| paste.app_factory = app_layer:app_factory | |
| [filter:auth] | |
| paste.filter_factory = auth_layer:filter_factory |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from paste import httpserver | |
| from paste.deploy import loadapp | |
| wsgi_app = loadapp('config:' + '/etc/example/paste.ini') | |
| httpserver.serve(wsgi_app, host='127.0.0.1', port=8080) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ python start_app.py | |
| serving on http://127.0.0.1:8080 | |
| $ curl -H "X-Auth-Token:open-sesame" http://127.0.0.1:8080 | |
| Hello, welccome to paste | |
| $ curl -H "X-Auth-Token:bad-token" http://127.0.0.1:8080 | |
| <html> | |
| <head> | |
| <title>403 Forbidden</title> | |
| </head> | |
| <body> | |
| <h1>403 Forbidden</h1> | |
| Access was denied to this resource.<br /><br /> | |
| </body> | |
| </html> |
