[OpenStack] openstack keystone api 实验(curl)

最新推荐文章于 2016-12-02 16:33:12 发布
最新推荐文章于 2016-12-02 16:33:12 发布
阅读量806 收藏 1
点赞数
分类专栏: OpenStack Keystone
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/lifeifei2010/article/details/8148581
版权

http://www.pubyun.com/blog/openstack/openstack-keystone-api-%E5%AE%9E%E9%AA%8Ccurl/
 
参考文档:
 
http://keystone.openstack.org/configuration.html
 
http://keystone.openstack.org/api_curl_examples.html
 
1、重要概念:
 
Admin Token
所有服务共享的一个密钥,如果设置不同,哪些依赖keystone的服务将无法正常工作。
 
Tenants
做keystone里,Tenants 是一个高层次的组,表示一组用户。一个tenant 是一个小组,共同拥有 Nova里的虚拟机,或者Swift里的容器。一个tenant可以有一个或者多个用户,用户可以属于一个或者多个tenant,针对每个tenant,用户拥有一个角色(role)。
Tenants are the high level grouping within Keystone that represent groups of users. A tenant is the grouping that owns virtual machines within Nova, or containers within Swift. A tenant can have zero or more users, Users can be associated with more than one tenant, and each tenant – user pairing can have a role associated with it.
 
认证几个要素:tenants, users, roles
 
业务端口:5000
管理端口:35357
2、业务API 测试:
 
获取版本号:
curl http://127.0.0.1:5000/ | python -mjson.tool
curl http://127.0.0.1:5000/v2.0/ | python -mjson.tool
 
获取api扩展:
curl http://127.0.0.1:5000/v2.0/extensions | python -mjson.tool
 
用普通用户登录:
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "admin", "password": "nova"}}}' -H "Content-type: application/json" http://127.0.0.1:5000/v2.0/tokens | python -mjson.tool
 
查看自己的租户:
curl -H "X-Auth-Token:614be856b02449439b116c0b28e94217″ http://127.0.0.1:5000/v2.0/tenants | python -mjson.tool
 
3、管理API测试:
 
获取版本号:
curl http://127.0.0.1:35357/ | python -mjson.tool
curl http://127.0.0.1:35357/v2.0/ | python -mjson.tool
 
获取api扩展:
curl http://0.0.0.0:35357/v2.0/extensions | python -mjson.tool
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "admin", "password": "nova"}}}' -H "Content-type: application/json" http://127.0.0.1:35357/v2.0/tokens | python -mjson.tool
 
用角色 admin 登录:
curl -X POST -d '{"auth": {"tenantId": "6a524dbe23dd4e4ab672cd163c85a27d", "passwordCredentials":{"username": "admin", "password": "nova"}}}' -H "Content-type: application/json" http://127.0.0.1:35357/v2.0/tokens | python -mjson.tool
 
校验 token 的有效,并返回token的信息:
curl -H "X-Auth-Token: 32efbc8c22af4ad6a8f03d051dc3413b" http://127.0.0.1:35357/v2.0/tokens/82c8d77cac0a4fdba83b2191185ddb39 |python -mjson.tool
 
使用 HEAD校验,如果返回码是 20X, 表示 token 有效:
curl -I -H "X-Auth-Token: 5a10b008add4435f8473d2b11d3ba8a8″ http://127.0.0.1:35357/v2.0/tokens/5a10b008add4435f8473d2b11d3ba8a8
 
这个api不对:
curl -H "X-Auth-Token:5a10b008add4435f8473d2b11d3ba8a8″ http://localhost:35357/v2.0/tokens/5a10b008add4435f8473d2b11d3ba8a8/endpoints
 
返回租户:
curl -H "X-Auth-Token:5a10b008add4435f8473d2b11d3ba8a8″ http://localhost:35357/v2.0/tenants|python -mjson.tool
 
返回某个租户:
curl -H "X-Auth-Token:5a10b008add4435f8473d2b11d3ba8a8″ http://localhost:35357/v2.0/tenants/6a524dbe23dd4e4ab672cd163c85a27d |python -mjson.tool
 
返回用户:
curl -H "X-Auth-Token:5a10b008add4435f8473d2b11d3ba8a8″ http://localhost:35357/v2.0/users|python -mjson.tool
 
返回某个用户:
curl -H "X-Auth-Token:5a10b008add4435f8473d2b11d3ba8a8″ http://localhost:35357/v2.0/users/3ff8fbca9794436c996d8c6e41427530|python -mjson.tool
 
返回某个租户上,用户授予的角色:
curl -H "X-Auth-Token:5a10b008add4435f8473d2b11d3ba8a8″ http://localhost:35357/v2.0/tenants/6a524dbe23dd4e4ab672cd163c85a27d/users/3ff8fbca9794436c996d8c6e41427530/roles |python -mjson.tool
 
返回某个用户的角色:(出错,没有实现,参见 https://bugs.launchpad.net/keystone/+bug/933565)
curl -H "X-Auth-Token:5a10b008add4435f8473d2b11d3ba8a8″ http://localhost:35357/v2.0/users/3ff8fbca9794436c996d8c6e41427530/roles
 
 
 
===========================动手实验部分=============================
 
 
 

 

Creating Users
 
Create the users by executing the following commands. In this case, we are creating four users - admin, nova, glance and swift
 keystone user-create --name admin --pass admin --email admin@foobar.com
keystone user-create --name nova --pass nova   --email nova@foobar.com
keystone user-create --name glance --pass glance   --email glance@foobar.com
keystone user-create --name swift --pass swift   --email swift@foobar.com

localadmin@OpenStack-1:~$ keystone user-list+----------------------------------+---------+-------------------+--------+|                id                | enabled |       email       |  name  |+----------------------------------+---------+-------------------+--------+| 2acc3e1b7f90484d88a51d668496b664 | True    | swift@foobar.com  | swift  || 3e8c6c6a7013469cbf673538d9cca353 | True    | admin@foobar.com  | admin  || 97f20d8dada74684940383217a5d77cc | True    | nova@foobar.com   | nova   || d2536af05c1c4972aea56b0edbd9ea35 | True    | glance@foobar.com | glance |+----------------------------------+---------+-------------------+--------+


业务API 测试:
获取版本号:
curl http://192.168.26.128:5000/ | python -mjson.tool
curl http://192.168.26.128:5000/v2.0/ | python -mjson.tool
 
 
 
localadmin@OpenStack-1:~$ curl http://192.168.26.128:5000/ | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   630  100   630    0     0   9200      0 --:--:-- --:--:-- --:--:-- 10500
{
    "versions": {
        "values": [
            {
                "id": "v2.0",
                "links": [
                    {
                        "href": "http://192.168.26.128:5000/v2.0/",
                        "rel": "self"
                    },
                    {
                        "href": "http://docs.openstack.org/api/openstack-identity-service/2.0/content/",
                        "rel": "describedby",
                        "type": "text/html"
                    },
                    {
                        "href": "http://docs.openstack.org/api/openstack-identity-service/2.0/identity-dev-guide-2.0.pdf",
                        "rel": "describedby",
                        "type": "application/pdf"
                    }
                ],
                "media-types": [
                    {
                        "base": "application/json",
                        "type": "application/vnd.openstack.identity-v2.0+json"
                    },
                    {
                        "base": "application/xml",
                        "type": "application/vnd.openstack.identity-v2.0+xml"
                    }
                ],
                "status": "beta",
                "updated": "2011-11-19T00:00:00Z"
            }
        ]
    }
}
 
 
 
localadmin@OpenStack-1:~$ curl http://192.168.26.128:5000/v2.0/ | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   615    0   615    0     0   9919      0 --:--:-- --:--:-- --:--:-- 10081
{
    "version": {
        "id": "v2.0",
        "links": [
            {
                "href": "http://192.168.26.128:5000/v2.0/",
                "rel": "self"
            },
            {
                "href": "http://docs.openstack.org/api/openstack-identity-service/2.0/content/",
                "rel": "describedby",
                "type": "text/html"
            },
            {
                "href": "http://docs.openstack.org/api/openstack-identity-service/2.0/identity-dev-guide-2.0.pdf",
                "rel": "describedby",
                "type": "application/pdf"
            }
        ],
        "media-types": [
            {
                "base": "application/json",
                "type": "application/vnd.openstack.identity-v2.0+json"
            },
            {
                "base": "application/xml",
                "type": "application/vnd.openstack.identity-v2.0+xml"
            }
        ],
        "status": "beta",
        "updated": "2011-11-19T00:00:00Z"
    }
}
 
获取api扩展:
curl http://192.168.26.128:5000/v2.0/extensions | python -mjson.tool
 
localadmin@OpenStack-1:~$ curl http://192.168.26.128:5000/v2.0/extensions | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100    30    0    30    0     0   1428      0 --:--:-- --:--:-- --:--:--  2727
{
    "extensions": {
        "values": []
    }
}
 
 
 
用普通用户登录:
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "admin", "password": "admin"}}}' -H "Content-type: application/json" http://192.168.26.128:5000/v2.0/tokens | python -mjson.tool
 
 
 
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"passwordCredentials":{"username": "admin", "password": "admin"}}}' -H "Content-type: application/json" http://192.168.26.128:5000/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   320    0   244  100    76   2632    820 --:--:-- --:--:-- --:--:--  2804
{
    "access": {
        "serviceCatalog": {},
        "token": {
            "expires": "2012-06-05T05:02:37Z",
            "id": "c73b3cde38994acaaccba4b3fb19d3f5"
        },
        "user": {
            "id": "3e8c6c6a7013469cbf673538d9cca353",
            "name": "admin",
            "roles": [],
            "roles_links": [],
            "username": "admin"
        }
    }
}
 
 
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "nova", "password": "nova"}}}' -H "Content-type: application/json" http://192.168.26.128:5000/v2.0/tokens | python -mjson.tool
 
 
 
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"passwordCredentials":{"username": "nova", "password": "nova"}}}' -H "Content-type: application/json" http://192.168.26.128:5000/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   316    0   242  100    74   2725    833 --:--:-- --:--:-- --:--:--  2915
{
    "access": {
        "serviceCatalog": {},
        "token": {
            "expires": "2012-06-05T05:03:46Z",
            "id": "87ef70de64e844e0a165c5ff73b50935"
        },
        "user": {
            "id": "97f20d8dada74684940383217a5d77cc",
            "name": "nova",
            "roles": [],
            "roles_links": [],
            "username": "nova"
        }
    }
}
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "swift", "password": "swift"}}}' -H "Content-type: application/json" http://192.168.26.128:5000/v2.0/tokens | python -mjson.tool
 
 
 
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"passwordCredentials":{"username": "swift", "password": "swift"}}}' -H "Content-type: application/json" http://192.168.26.128:5000/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   320    0   244  100    76   2753    857 --:--:-- --:--:-- --:--:--  3050
{
    "access": {
        "serviceCatalog": {},
        "token": {
            "expires": "2012-06-05T05:05:10Z",
            "id": "3db07905ac854baf8776fb47e9b33019"
        },
        "user": {
            "id": "2acc3e1b7f90484d88a51d668496b664",
            "name": "swift",
            "roles": [],
            "roles_links": [],
            "username": "swift"
        }
    }
}
 
 
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "glance", "password": "glance"}}}' -H "Content-type: application/json" http://192.168.26.128:5000/v2.0/tokens | python -mjson.tool
 
 
 
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"passwordCredentials":{"username": "glance", "password": "glance"}}}' -H "Content-type: application/json" http://192.168.26.128:5000/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   324    0   246  100    78   2928    928 --:--:-- --:--:-- --:--:--  3113
{
    "access": {
        "serviceCatalog": {},
        "token": {
            "expires": "2012-06-05T05:05:27Z",
            "id": "4099cd0ae475460c90a7e32369b8127b"
        },
        "user": {
            "id": "d2536af05c1c4972aea56b0edbd9ea35",
            "name": "glance",
            "roles": [],
            "roles_links": [],
            "username": "glance"
        }
    }
}
 
查看自己的租户:
 
User   UserID                           Token ID
admin  3e8c6c6a7013469cbf673538d9cca353 c73b3cde38994acaaccba4b3fb19d3f5
nova   97f20d8dada74684940383217a5d77cc 87ef70de64e844e0a165c5ff73b50935
swift  2acc3e1b7f90484d88a51d668496b664 3db07905ac854baf8776fb47e9b33019
glance d2536af05c1c4972aea56b0edbd9ea35 4099cd0ae475460c90a7e32369b8127b
 
 
 
admin:
curl -H "X-Auth-Token:c73b3cde38994acaaccba4b3fb19d3f5" http://192.168.26.128:5000/v2.0/tenants | python -mjson.tool
 
nova:
 
curl -H "X-Auth-Token:87ef70de64e844e0a165c5ff73b50935" http://192.168.26.128:5000/v2.0/tenants | python -mjson.tool
 
swift:
 
curl -H "X-Auth-Token:3db07905ac854baf8776fb47e9b33019" http://192.168.26.128:5000/v2.0/tenants | python -mjson.tool
 
glance:
 
curl -H "X-Auth-Token:4099cd0ae475460c90a7e32369b8127b" http://192.168.26.128:5000/v2.0/tenants | python -mjson.tool
 
运行结果:
 
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:c73b3cde38994acaaccba4b3fb19d3f5" http://192.168.26.128:5000/v2.0/tenants | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   133    0   133    0     0   2557      0 --:--:-- --:--:-- --:--:--  3022
{
    "tenants": [
        {
            "description": null,
            "enabled": true,
            "id": "938c2aeb59f842c58c03a1e5bbe50e20",
            "name": "admin"
        }
    ],
    "tenants_links": []
}
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:87ef70de64e844e0a165c5ff73b50935" http://192.168.26.128:5000/v2.0/tenants | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   135    0   135    0     0   5606      0 --:--:-- --:--:-- --:--:--  6136
{
    "tenants": [
        {
            "description": null,
            "enabled": true,
            "id": "a4a59e33b382439bab47cc8c2d01caf1",
            "name": "service"
        }
    ],
    "tenants_links": []
}
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:3db07905ac854baf8776fb47e9b33019" http://192.168.26.128:5000/v2.0/tenants | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   135    0   135    0     0   4664      0 --:--:-- --:--:-- --:--:--  6136
{
    "tenants": [
        {
            "description": null,
            "enabled": true,
            "id": "a4a59e33b382439bab47cc8c2d01caf1",
            "name": "service"
        }
    ],
    "tenants_links": []
}
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:4099cd0ae475460c90a7e32369b8127b" http://192.168.26.128:5000/v2.0/tenants | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   135    0   135    0     0   4421      0 --:--:-- --:--:-- --:--:--  4821
{
    "tenants": [
        {
            "description": null,
            "enabled": true,
            "id": "a4a59e33b382439bab47cc8c2d01caf1",
            "name": "service"
        }
    ],
    "tenants_links": []
}
 
 
 
 
 
管理API测试:
 
获取版本号:
curl http://192.168.26.128:35357/ | python -mjson.tool
curl http://192.168.26.128:35357/v2.0/ | python -mjson.tool
 
运行结果:
 
localadmin@OpenStack-1:~$ curl http://192.168.26.128:35357/ | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   631  100   631    0     0   9259      0 --:--:-- --:--:-- --:--:-- 10177
{
    "versions": {
        "values": [
            {
                "id": "v2.0",
                "links": [
                    {
                        "href": "http://192.168.26.128:35357/v2.0/",
                        "rel": "self"
                    },
                    {
                        "href": "http://docs.openstack.org/api/openstack-identity-service/2.0/content/",
                        "rel": "describedby",
                        "type": "text/html"
                    },
                    {
                        "href": "http://docs.openstack.org/api/openstack-identity-service/2.0/identity-dev-guide-2.0.pdf",
                        "rel": "describedby",
                        "type": "application/pdf"
                    }
                ],
                "media-types": [
                    {
                        "base": "application/json",
                        "type": "application/vnd.openstack.identity-v2.0+json"
                    },
                    {
                        "base": "application/xml",
                        "type": "application/vnd.openstack.identity-v2.0+xml"
                    }
                ],
                "status": "beta",
                "updated": "2011-11-19T00:00:00Z"
            }
        ]
    }
}
localadmin@OpenStack-1:~$ curl http://192.168.26.128:35357/v2.0/ | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   616    0   616    0     0   8395      0 --:--:-- --:--:-- --:--:--  9194
{
    "version": {
        "id": "v2.0",
        "links": [
            {
                "href": "http://192.168.26.128:35357/v2.0/",
                "rel": "self"
            },
            {
                "href": "http://docs.openstack.org/api/openstack-identity-service/2.0/content/",
                "rel": "describedby",
                "type": "text/html"
            },
            {
                "href": "http://docs.openstack.org/api/openstack-identity-service/2.0/identity-dev-guide-2.0.pdf",
                "rel": "describedby",
                "type": "application/pdf"
            }
        ],
        "media-types": [
            {
                "base": "application/json",
                "type": "application/vnd.openstack.identity-v2.0+json"
            },
            {
                "base": "application/xml",
                "type": "application/vnd.openstack.identity-v2.0+xml"
            }
        ],
        "status": "beta",
        "updated": "2011-11-19T00:00:00Z"
    }
}
 
获取api扩展:
curl http://0.0.0.0:35357/v2.0/extensions | python -mjson.tool
 
运行结果:
 
localadmin@OpenStack-1:~$ curl http://0.0.0.0:35357/v2.0/extensions | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   396    0   396    0     0  24336      0 --:--:-- --:--:-- --:--:-- 39600
{
    "extensions": {
        "values": [
            {
                "alias": "OS-KSADM",
                "description": "Openstack extensions to Keystone v2.0 API enabling Admin Operations.",
                "links": [
                    {
                        "href": "https://github.com/openstack/identity-api",
                        "rel": "describedby",
                        "type": "text/html"
                    }
                ],
                "name": "Openstack Keystone Admin",
                "namespace": "http://docs.openstack.org/identity/api/ext/OS-KSADM/v1.0",
                "updated": "2011-08-19T13:25:27-06:00"
            }
        ]
    }
}
 
权限验证:
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "admin", "password": "admin"}}}' -H "Content-type: application/json" http://192.168.26.128:35357/v2.0/tokens | python -mjson.tool
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "nova", "password": "nova"}}}' -H "Content-type: application/json" http://192.168.26.128:35357/v2.0/tokens | python -mjson.tool
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "swift", "password": "swift"}}}' -H "Content-type: application/json" http://192.168.26.128:35357/v2.0/tokens | python -mjson.tool
 
curl -X POST -d '{"auth": {"passwordCredentials":{"username": "glance", "password": "glance"}}}' -H "Content-type: application/json" http://192.168.26.128:35357/v2.0/tokens | python -mjson.tool
 
运行结果:
 
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"passwordCredentials":{"username": "admin", "password": "admin"}}}' -H "Content-type: application/json" http://192.168.26.128:35357/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   320    0   244  100    76   2218    690 --:--:-- --:--:-- --:--:--  2259
{
    "access": {
        "serviceCatalog": {},
        "token": {
            "expires": "2012-06-05T05:30:40Z",
            "id": "4dbb421c43c94fd6bdb9678fb0ae8e26"
        },
        "user": {
            "id": "3e8c6c6a7013469cbf673538d9cca353",
            "name": "admin",
            "roles": [],
            "roles_links": [],
            "username": "admin"
        }
    }
}
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"passwordCredentials":{"username": "nova", "password": "nova"}}}' -H "Content-type: application/json" http://192.168.26.128:35357/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   316    0   242  100    74   2039    623 --:--:-- --:--:-- --:--:--  2068
{
    "access": {
        "serviceCatalog": {},
        "token": {
            "expires": "2012-06-05T05:33:38Z",
            "id": "2841da2fb72948529e6f9f89a87efceb"
        },
        "user": {
            "id": "97f20d8dada74684940383217a5d77cc",
            "name": "nova",
            "roles": [],
            "roles_links": [],
            "username": "nova"
        }
    }
}
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"passwordCredentials":{"username": "swift", "password": "swift"}}}' -H "Content-type: application/json" http://192.168.26.128:35357/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   320    0   244  100    76   1973    614 --:--:-- --:--:-- --:--:--  2067
{
    "access": {
        "serviceCatalog": {},
        "token": {
            "expires": "2012-06-05T05:33:55Z",
            "id": "2042dee3e64846638779d129d03e8863"
        },
        "user": {
            "id": "2acc3e1b7f90484d88a51d668496b664",
            "name": "swift",
            "roles": [],
            "roles_links": [],
            "username": "swift"
        }
    }
}
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"passwordCredentials":{"username": "glance", "password": "glance"}}}' -H "Content-type: application/json" http://192.168.26.128:35357/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   324    0   246  100    78   2699    855 --:--:-- --:--:-- --:--:--  2733
{
    "access": {
        "serviceCatalog": {},
        "token": {
            "expires": "2012-06-05T05:34:05Z",
            "id": "5895947fee934dd0944f4c834ff4c5c4"
        },
        "user": {
            "id": "d2536af05c1c4972aea56b0edbd9ea35",
            "name": "glance",
            "roles": [],
            "roles_links": [],
            "username": "glance"
        }
    }
}
 
User    User ID                                             Token ID
 
admin  3e8c6c6a7013469cbf673538d9cca353 4dbb421c43c94fd6bdb9678fb0ae8e26
nova   97f20d8dada74684940383217a5d77cc 2841da2fb72948529e6f9f89a87efceb
swift  2acc3e1b7f90484d88a51d668496b664 2042dee3e64846638779d129d03e8863
glance d2536af05c1c4972aea56b0edbd9ea35 5895947fee934dd0944f4c834ff4c5c4
 
 
 
用角色 admin 登录:
curl -X POST -d '{"auth": {"tenantId": "938c2aeb59f842c58c03a1e5bbe50e20", "passwordCredentials":{"username": "admin", "password": "admin"}}}' -H "Content-type: application/json" http://localhost:35357/v2.0/tokens | python -mjson.tool
 
运行结果:
 
localadmin@OpenStack-1:~$ curl -X POST -d '{"auth": {"tenantId": "938c2aeb59f842c58c03a1e5bbe50e20", "passwordCredentials":{"username": "admin", "password": "admin"}}}' -H "Content-type: application/json" http://localhost:35357/v2.0/tokens | python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  2348    0  2224  100   124  13850    772 --:--:-- --:--:-- --:--:-- 14535
{
    "access": {
        "serviceCatalog": [
            {
                "endpoints": [
                    {
                        "adminURL": "http://192.168.26.128:8774/v2/938c2aeb59f842c58c03a1e5bbe50e20",
                        "internalURL": "http://192.168.26.128:8774/v2/938c2aeb59f842c58c03a1e5bbe50e20",
                        "publicURL": "http://192.168.26.128:8774/v2/938c2aeb59f842c58c03a1e5bbe50e20",
                        "region": "myregion"
                    }
                ],
                "endpoints_links": [],
                "name": "nova",
                "type": "compute"
            },
            {
                "endpoints": [
                    {
                        "adminURL": "http://192.168.26.128:9292/v1",
                        "internalURL": "http://192.168.26.128:9292/v1",
                        "publicURL": "http://192.168.26.128:9292/v1",
                        "region": "myregion"
                    }
                ],
                "endpoints_links": [],
                "name": "glance",
                "type": "image"
            },
            {
                "endpoints": [
                    {
                        "adminURL": "http://192.168.26.128:8776/v1/938c2aeb59f842c58c03a1e5bbe50e20",
                        "internalURL": "http://192.168.26.128:8776/v1/938c2aeb59f842c58c03a1e5bbe50e20",
                        "publicURL": "http://192.168.26.128:8776/v1/938c2aeb59f842c58c03a1e5bbe50e20",
                        "region": "myregion"
                    }
                ],
                "endpoints_links": [],
                "name": "volume",
                "type": "volume"
            },
            {
                "endpoints": [
                    {
                        "adminURL": "http://192.168.26.128:8773/services/Admin",
                        "internalURL": "http://192.168.26.128:8773/services/Cloud",
                        "publicURL": "http://192.168.26.128:8773/services/Cloud",
                        "region": "myregion"
                    }
                ],
                "endpoints_links": [],
                "name": "ec2",
                "type": "ec2"
            },
            {
                "endpoints": [
                    {
                        "adminURL": "http://192.168.26.128:8080/v1",
                        "internalURL": "http://192.168.26.128:8080/v1/AUTH_938c2aeb59f842c58c03a1e5bbe50e20",
                        "publicURL": "http://192.168.26.128:8080/v1/AUTH_938c2aeb59f842c58c03a1e5bbe50e20",
                        "region": "myregion"
                    }
                ],
                "endpoints_links": [],
                "name": "swift",
                "type": "object-store"
            },
            {
                "endpoints": [
                    {
                        "adminURL": "http://192.168.26.128:35357/v2.0",
                        "internalURL": "http://192.168.26.128:5000/v2.0",
                        "publicURL": "http://192.168.26.128:5000/v2.0",
                        "region": "myregion"
                    }
                ],
                "endpoints_links": [],
                "name": "keystone",
                "type": "identity"
            }
        ],
        "token": {
            "expires": "2012-06-05T05:49:43Z",
            "id": "bba8b794a2e54663bfe4dbf903c9bce1",
            "tenant": {
                "description": null,
                "enabled": true,
                "id": "938c2aeb59f842c58c03a1e5bbe50e20",
                "name": "admin"
            }
        },
        "user": {
            "id": "3e8c6c6a7013469cbf673538d9cca353",
            "name": "admin",
            "roles": [
                {
                    "id": "fde51bfee49a49c6a7d718ea6d78eeff",
                    "name": "admin"
                },
                {
                    "id": "3544b420d0ac4b98a9192c102e17af3f",
                    "name": "Member"
                }
            ],
            "roles_links": [],
            "username": "admin"
        }
    }
}
 
校验 token 的有效,并返回token的信息:
curl -H "X-Auth-Token: 32efbc8c22af4ad6a8f03d051dc3413b" http://127.0.0.1:35357/v2.0/tokens/82c8d77cac0a4fdba83b2191185ddb39 |python -mjson.tool
 
使用 HEAD校验,如果返回码是 20X, 表示 token 有效:
curl -I -H "X-Auth-Token: 5a10b008add4435f8473d2b11d3ba8a8″ http://127.0.0.1:35357/v2.0/tokens/5a10b008add4435f8473d2b11d3ba8a8
 
返回租户:
curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1" http://localhost:35357/v2.0/tenants|python -mjson.tool
 
运行结果:
 
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1" http://localhost:35357/v2.0/tenants|python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   234    0   234    0     0   5989      0 --:--:-- --:--:-- --:--:--  7090
{
    "tenants": [
        {
            "description": null,
            "enabled": true,
            "id": "938c2aeb59f842c58c03a1e5bbe50e20",
            "name": "admin"
        },
        {
            "description": null,
            "enabled": true,
            "id": "a4a59e33b382439bab47cc8c2d01caf1",
            "name": "service"
        }
    ],
    "tenants_links": []
}
 
 
 
返回租户:
curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1" http://localhost:35357/v2.0/tenants|python -mjson.tool
 
返回某个租户:
curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1" http://localhost:35357/v2.0/tenants/a4a59e33b382439bab47cc8c2d01caf1 |python -mjson.tool
 
返回用户:
curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1" http://localhost:35357/v2.0/users|python -mjson.tool
 
返回某个用户:
curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1" http://localhost:35357/v2.0/users/3e8c6c6a7013469cbf673538d9cca353|python -mjson.tool
 
运行结果:
 
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   234    0   234    0     0   7407      0 --:--:-- --:--:-- --:--:--  7800
{
    "tenants": [
        {
            "description": null,
            "enabled": true,
            "id": "938c2aeb59f842c58c03a1e5bbe50e20",
            "name": "admin"
        },
        {
            "description": null,
            "enabled": true,
            "id": "a4a59e33b382439bab47cc8c2d01caf1",
            "name": "service"
        }
    ],
    "tenants_links": []
}
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1                                                                                        " http://localhost:35357/v2.0/tenants/a4a59e33b382439bab47cc8c2d01caf1 |python -                                                                                        mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   111    0   111    0     0   3174      0 --:--:-- --:--:-- --:--:--  3964
{
    "tenant": {
        "description": null,
        "enabled": true,
        "id": "a4a59e33b382439bab47cc8c2d01caf1",
        "name": "service"
    }
}
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1" http://localhost:35357/v2.0/users|python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   511    0   511    0     0  14227      0 --:--:-- --:--:-- --:--:-- 17620
{
    "users": [
        {
            "email": "swift@foobar.com",
            "enabled": true,
            "id": "2acc3e1b7f90484d88a51d668496b664",
            "name": "swift",
            "tenantId": null
        },
        {
            "email": "admin@foobar.com",
            "enabled": true,
            "id": "3e8c6c6a7013469cbf673538d9cca353",
            "name": "admin",
            "tenantId": null
        },
        {
            "email": "nova@foobar.com",
            "enabled": true,
            "id": "97f20d8dada74684940383217a5d77cc",
            "name": "nova",
            "tenantId": null
        },
        {
            "email": "glance@foobar.com",
            "enabled": true,
            "id": "d2536af05c1c4972aea56b0edbd9ea35",
            "name": "glance",
            "tenantId": null
        }
    ]
}
localadmin@OpenStack-1:~$ curl -H "X-Auth-Token:bba8b794a2e54663bfe4dbf903c9bce1" http://localhost:35357/v2.0/users/3e8c6c6a7013469cbf673538d9cca353|python -mjson.tool
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   133    0   133    0     0   3493      0 --:--:-- --:--:-- --:--:--  4750
{
    "user": {
        "email": "admin@foobar.com",
        "enabled": true,
        "id": "3e8c6c6a7013469cbf673538d9cca353",
        "name": "admin",
        "tenantId": null
    }
}

 

openstack-barbican-api
10-28
例如,你可以使用`openstack token issue`命令或者通过curl命令向Keystone API发送POST请求来获取token。 在Python中,JSON对象与字典对应,而JSON数组则对应于列表。因此,当你解析JSON数据到Python对象时,JSON...
openstack keystone api 实验(curl)
wsl的专栏
01-04 538
地址:http://www.pubyun.com/blog/openstack/openstack-keystone-api-%E5%AE%9E%E9%AA%8Ccurl/   openstack keystone api 实验(curl) 发表于 2012 年 3 月 25 日 由 refactor 参考文档: http://keystone.openstack.org/
keystone commands summary
晓飞趋势
01-01 909
1、Writing in the front work for cloud computer(openstack),接触了keystone,mark some common commands 自己 always used about 两周ago,Thank You! 2、Keystone Common Commands ~目录下:source openrc.s
用pycurl直接认证keystone curl创建虚拟机
tinny77的专栏
02-07 1103
#!/usr/bin/python import json import pycurl from urllib import urlencode c = pycurl.Curl() c.setopt(c.URL, 'http://10.0.0.80:5000/v2.0/tokens') post_data = {"auth":{"tenantName": "admin", "p
curl 访问openstack keystone v3 时出现The request you have made requires authentication 401
热门推荐
yanko
12-02 1万+
1.主要原因是 Keystone是基于Http RESTful风格的API接口。既然如此,它就应该有一个WEB服务器,以及相关的应用程序。 Openstack-status查看服务是否开启 Openstack-keystone认证服务需要开启才能使用curl https://bugzilla.redhat.com/show_bug.cgi?id=1213149
(六)、获取Keystone token的三种方式
alvine008的专栏
05-06 1万+
让我们简单Let’s take a look at three (very basic) ways to get a scoped token from Keystone (theOpenStack Identity Project). Keep in mind that these are just a few ways you can go about this. Before tryin
OpenStack_API
03-28
2. 向API发送请求:通过API请求与OpenStack云进行交互,可以使用多种工具,比如cURL、Python等。这里以cURL为例,演示如何使用cURL命令来请求令牌。生成令牌后,可以通过在请求头中包含X-Auth-Token字段,向...
OpenStackCurl使用
02-07
综上所述,本篇文档主要介绍了如何使用curl工具来操作OpenStackkeystone API,涵盖了从基础的API调用到具体的业务和管理API测试,以及如何使用curl进行API调试和Swift ReST API操作的相关知识。掌握这些知识点,...
使用curl操作openstack swift.docx
01-02
### 使用curl操作OpenStack Swift详解 #### 一、概述 在云计算领域,OpenStack作为一款开源的云操作系统,提供了丰富的功能和服务。其中Swift是OpenStack项目中的一个子项目,主要负责提供对象存储服务,用于存储...
OpenStack Grizzly版本单节点双网卡实验部署指导书
08-31
### OpenStack Grizzly版本单节点双网卡实验部署知识点概览 #### 一、OpenStack部署准备工作 **1. 安装操作系统** - **选择操作系统:** 本实验选择了Ubuntu Server 12.04作为基础操作系统。这一步非常重要,因为...
了解和使用keystone(五)获取token
愷风(Wei)的专栏
09-10 9890
创建一个json文件,作为HTTP消息的内容 $ cat token-request.json { "auth": { "identity": { "methods": [ "password" ], "password": { "us
openstack keystone认证过程之一
云智禅师的专栏
09-25 1666
1、使用keystone 导入环境变量,当然也可以在每次执行keystone命令时加上这方面的参数 export SERVICE_TOKEN=ADMIN exportSERVICE_ENDPOINT=http://192.168.2.10:35357/v2.0 添加tenant: keystonetenant-create --name adminTenant --descrip
OpenStack Identity(Keystone)身份服务-体系结构与中间件
云智禅师的专栏
09-25 1604
OpenStack Identity(Keystone)服务为运行OpenStack Compute上的OpenStack云提供了认证和管理用户、帐号和角色信息服务,并为OpenStack Object Storage提供授权服务。 Keystone体系结构 Keystone 有两个主要部件:验证和服务目录 验证:提供了一个基于令牌的验证服务,主要有以下几个概念: 租户(Tenan
devstack错误总结
云智禅师的专栏
09-25 1361
按照如下命令,下载并执行脚本即可: wget http://www.scalegrid.net/blog/wp-content/uploads/2012/06/restart_stack.txt mv ./restart_stack.txt ./restart_stack.sh chmod 775 ./restart_stack.sh ./restart_stack.sh     http
OpenStack最新版本Folsom架构解析
云智禅师的专栏
11-05 532
OpenStack最新版本Folsom架构解析 OpenStackFolsomSwiftNovaQuantum 摘要:OpenStack的第6版,版本代号为Folsom的最新版于今年九月底正式发布,Folsom将支持下一代软件定义网络(SDN)作为其核心组成部分。Folsom改进了现有代码的可用性和稳定性,包括185个新功能,最主要是虚拟网络方面的功能,而且这也是新成立的OpenStack基金
macOS_Sequoia_15.1.password(imacos.top).rdr.split.016
11-09
macOS_Sequoia_15.1.password(imacos.top).rdr.split.016
【java毕业设计】小区物业管理系统(springboot+vue+mysql+说明文档).zip
最新发布
11-09
项目经过测试均可完美运行! 环境说明: 开发语言:java jdk:jdk1.8 数据库:mysql 5.7+ 数据库工具:Navicat11+ 管理工具:maven 开发工具:idea/eclipse
里面全部都是浪漫的爱心特效,有html和python编写的,大概几十种,欢迎下载,收藏
11-09
里面全部都是浪漫的爱心特效,有html和python编写的,大概几十种,欢迎下载,收藏
OpenStack API 使用与安全指南
在安装并启动这些服务后,用户可以通过认证服务(通常由Keystone提供)获取令牌,然后使用OpenStackAPI来创建实例、上传和管理镜像、配置网络、存储块设备、存取对象数据、部署数据库以及监控云环境的状态。...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值