diff options
| author | Jenkins <jenkins@review.openstack.org> | 2016-04-15 01:55:40 +0000 |
|---|---|---|
| committer | Gerrit Code Review <review@openstack.org> | 2016-04-15 01:55:40 +0000 |
| commit | 60ca0ceb185592fd7bdb8ede2764ad123259b275 (patch) | |
| tree | e4715c844ae579dd8955bfdfd372afd2d4110310 | |
| parent | 31a90594605886dc7e12cbc443556f547ce24419 (diff) | |
| parent | cb7863235025a48741128dcd387a3d307ab3a666 (diff) | |
| download | python-keystoneclient-60ca0ceb185592fd7bdb8ede2764ad123259b275.tar.gz | |
Merge "Get revocation list with only audit ids"3.0.0
| -rw-r--r-- | keystoneclient/tests/unit/v3/test_tokens.py | 23 | ||||
| -rw-r--r-- | keystoneclient/v3/tokens.py | 16 |
2 files changed, 35 insertions, 4 deletions
diff --git a/keystoneclient/tests/unit/v3/test_tokens.py b/keystoneclient/tests/unit/v3/test_tokens.py index 1234da9..7c82d37 100644 --- a/keystoneclient/tests/unit/v3/test_tokens.py +++ b/keystoneclient/tests/unit/v3/test_tokens.py @@ -44,8 +44,31 @@ class TokenTests(utils.ClientTestCase, testresources.ResourcedTestCase): self.stub_url('GET', ['auth', 'tokens', 'OS-PKI', 'revoked'], json=sample_revoked_response) resp = self.client.tokens.get_revoked() + self.assertQueryStringIs() + self.assertEqual(sample_revoked_response, resp) + + def test_get_revoked_audit_id_only(self): + # When get_revoked(audit_id_only=True) then ?audit_id_only is set on + # the request. + sample_revoked_response = { + 'revoked': [ + { + 'audit_id': uuid.uuid4().hex, + 'expires': '2016-01-21T15:53:52Z', + }, + ], + } + self.stub_url('GET', ['auth', 'tokens', 'OS-PKI', 'revoked'], + json=sample_revoked_response) + resp = self.client.tokens.get_revoked(audit_id_only=True) + self.assertQueryStringIs('audit_id_only') self.assertEqual(sample_revoked_response, resp) + def test_get_revoked_audit_id_only_positional_exc(self): + # When get_revoked(True) an exception is raised because this must be + # called with named parameter. + self.assertRaises(TypeError, self.client.tokens.get_revoked, True) + def test_validate_token_with_token_id(self): # Can validate a token passing a string token ID. token_id = uuid.uuid4().hex diff --git a/keystoneclient/v3/tokens.py b/keystoneclient/v3/tokens.py index 1b03002..924d67e 100644 --- a/keystoneclient/v3/tokens.py +++ b/keystoneclient/v3/tokens.py @@ -41,15 +41,23 @@ class TokenManager(object): headers = {'X-Subject-Token': token_id} return self._client.delete('/auth/tokens', headers=headers) - def get_revoked(self): + @positional.method(0) + def get_revoked(self, audit_id_only=False): """Get revoked tokens list. - :returns: A dict containing "signed" which is a CMS formatted string. + :param bool audit_id_only: If true, the server is requested to not send + token IDs. **New in version 2.2.0.** + :returns: A dict containing ``signed`` which is a CMS formatted string + if the server signed the response. If `audit_id_only` then the + response may be a dict containing ``revoked`` which is the list of + token audit IDs and expiration times. :rtype: dict """ - - resp, body = self._client.get('/auth/tokens/OS-PKI/revoked') + path = '/auth/tokens/OS-PKI/revoked' + if audit_id_only: + path += '?audit_id_only' + resp, body = self._client.get(path) return body @positional.method(1) |