lywsvip/cloudpods
1
0
Fork 0
mirror of https://github.com/yunionio/cloudpods.git synced 2026-05-31 13:00:41 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
d7da3c6e9cd73dc052d871bb00dd2d2f8953aefd
cloudpods/pkg/multicloud/apsara/dbinstance_account.go
Qu Xuan 4af24a2928 fix(region): split provider tag sync
2021-05-28 20:18:10 +08:00

179 lines
5.5 KiB
Go
Raw Blame History

// Copyright 2019 Yunion
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package apsara
import (
"fmt"
"yunion.io/x/pkg/errors"
api "yunion.io/x/onecloud/pkg/apis/compute"
"yunion.io/x/onecloud/pkg/cloudprovider"
"yunion.io/x/onecloud/pkg/multicloud"
)
type SDatabasePrivileges struct {
DatabasePrivilege []SDatabasePrivilege
}
type SDBInstanceAccount struct {
multicloud.SDBInstanceAccountBase
multicloud.ApsaraTags
instance *SDBInstance
AccountDescription string
AccountName string
AccountStatus string
AccountType string
DBInstanceId string
DatabasePrivileges SDatabasePrivileges
PrivExceeded string
}
func (account *SDBInstanceAccount) GetName() string {
return account.AccountName
}
func (account *SDBInstanceAccount) Delete() error {
return account.instance.region.DeleteDBInstanceAccount(account.DBInstanceId, account.AccountName)
}
func (account *SDBInstanceAccount) RevokePrivilege(database string) error {
return account.instance.region.RevokeDBInstancePrivilege(account.DBInstanceId, account.AccountName, database)
}
func (region *SRegion) RevokeDBInstancePrivilege(instanceId, account, database string) error {
params := map[string]string{
"DBInstanceId": instanceId,
"AccountName": account,
"DBName": database,
}
_, err := region.rdsRequest("RevokeAccountPrivilege", params)
return err
}
func (account *SDBInstanceAccount) GrantPrivilege(database, privilege string) error {
return account.instance.region.GrantDBInstancePrivilege(account.DBInstanceId, account.AccountName, database, privilege)
}
func (region *SRegion) GrantDBInstancePrivilege(instanceId, account, database, privilege string) error {
params := map[string]string{
"DBInstanceId": instanceId,
"AccountName": account,
"DBName": database,
}
switch privilege {
case api.DATABASE_PRIVILEGE_R:
params["AccountPrivilege"] = "ReadOnly"
case api.DATABASE_PRIVILEGE_RW:
params["AccountPrivilege"] = "ReadWrite"
case api.DATABASE_PRIVILEGE_DDL:
params["AccountPrivilege"] = "DDLOnly"
case api.DATABASE_PRIVILEGE_DML:
params["AccountPrivilege"] = "DMLOnly"
case api.DATABASE_PRIVILEGE_OWNER:
params["AccountPrivilege"] = "DBOwner"
default:
return fmt.Errorf("Unknown privilege [%s]", privilege)
}
_, err := region.rdsRequest("GrantAccountPrivilege", params)
return err
}
func (account *SDBInstanceAccount) ResetPassword(password string) error {
return account.instance.region.ResetDBInstanceAccountPassword(account.DBInstanceId, account.AccountName, password, account.AccountType)
}
func (region *SRegion) ResetDBInstanceAccountPassword(instanceId, account, password, accountType string) error {
action := "ResetAccountPassword"
if accountType == "Super" {
action = "ResetAccount"
}
params := map[string]string{
"DBInstanceId": instanceId,
"AccountName": account,
"AccountPassword": password,
}
_, err := region.rdsRequest(action, params)
return err
}
func (account *SDBInstanceAccount) GetStatus() string {
switch account.AccountStatus {
case "Available":
return api.DBINSTANCE_USER_AVAILABLE
case "Unavailable":
return api.DBINSTANCE_USER_UNAVAILABLE
}
return account.AccountStatus
}
func (account *SDBInstanceAccount) GetIDBInstanceAccountPrivileges() ([]cloudprovider.ICloudDBInstanceAccountPrivilege, error) {
privileves := []cloudprovider.ICloudDBInstanceAccountPrivilege{}
for i := 0; i < len(account.DatabasePrivileges.DatabasePrivilege); i++ {
account.DatabasePrivileges.DatabasePrivilege[i].account = account
privileves = append(privileves, &account.DatabasePrivileges.DatabasePrivilege[i])
}
return privileves, nil
}
func (region *SRegion) GetDBInstanceAccounts(instanceId string, offset int, limit int) ([]SDBInstanceAccount, int, error) {
if limit > 50 || limit <= 0 {
limit = 50
}
params := map[string]string{
"RegionId": region.RegionId,
"PageSize": fmt.Sprintf("%d", limit),
"PageNumber": fmt.Sprintf("%d", (offset/limit)+1),
"DBInstanceId": instanceId,
}
body, err := region.rdsRequest("DescribeAccounts", params)
if err != nil {
return nil, 0, errors.Wrap(err, "DescribeAccounts")
}
accounts := []SDBInstanceAccount{}
err = body.Unmarshal(&accounts, "Accounts", "DBInstanceAccount")
if err != nil {
return nil, 0, errors.Wrap(err, "Unmarshal")
}
total, _ := body.Int("TotalRecordCount")
return accounts, int(total), nil
}
func (region *SRegion) DeleteDBInstanceAccount(instanceId string, accountName string) error {
params := map[string]string{
"RegionId": region.RegionId,
"DBInstanceId": instanceId,
"AccountName": accountName,
}
_, err := region.rdsRequest("DeleteAccount", params)
return err
}
func (region *SRegion) CreateDBInstanceAccount(instanceId string, name string, password string, desc string) error {
params := map[string]string{
"RegionId": region.RegionId,
"DBInstanceId": instanceId,
"AccountName": name,
"AccountPassword": password,
"AccountDescription": desc,
}
_, err := region.rdsRequest("CreateAccount", params)
return err
}
Reference in New Issue View Git Blame Copy Permalink