providers/aws-ec2/src/main/java/org/jclouds/aws/ec2/compute/strategy/CreateKeyPairPlacementAndSecurityGroupsAsNeededAndReturnRunOptions.java - jclouds - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one or more
  * contributor license agreements.  See the NOTICE file distributed with
  * this work for additional information regarding copyright ownership.
  * The ASF licenses this file to You under the Apache License, Version 2.0
  * (the "License"); you may not use this file except in compliance with
  * the License.  You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 package org.jclouds.aws.ec2.compute.strategy;

 import static com.google.common.base.Predicates.and;
 import static com.google.common.base.Predicates.or;

 import java.util.concurrent.ConcurrentMap;

 import javax.annotation.Resource;
 import javax.inject.Inject;
 import javax.inject.Named;
 import javax.inject.Provider;
 import javax.inject.Singleton;

 import org.jclouds.aws.ec2.compute.AWSEC2TemplateOptions;
 import org.jclouds.aws.ec2.domain.RegionNameAndPublicKeyMaterial;
 import org.jclouds.aws.ec2.functions.CreatePlacementGroupIfNeeded;
 import org.jclouds.aws.ec2.options.AWSRunInstancesOptions;
 import org.jclouds.compute.domain.Template;
 import org.jclouds.compute.functions.GroupNamingConvention;
 import org.jclouds.compute.options.TemplateOptions;
 import org.jclouds.compute.reference.ComputeServiceConstants;
 import org.jclouds.ec2.compute.domain.RegionAndName;
 import org.jclouds.ec2.compute.options.EC2TemplateOptions;
 import org.jclouds.ec2.compute.strategy.CreateKeyPairAndSecurityGroupsAsNeededAndReturnRunOptions;
 import org.jclouds.ec2.domain.KeyPair;
 import org.jclouds.ec2.options.RunInstancesOptions;
 import org.jclouds.logging.Logger;

 import com.google.common.annotations.VisibleForTesting;
 import com.google.common.base.Function;
 import com.google.common.base.Predicate;
 import com.google.common.cache.LoadingCache;

 @Singleton
 public class CreateKeyPairPlacementAndSecurityGroupsAsNeededAndReturnRunOptions extends
       CreateKeyPairAndSecurityGroupsAsNeededAndReturnRunOptions {
    @Resource
    @Named(ComputeServiceConstants.COMPUTE_LOGGER)
    protected Logger logger = Logger.NULL;
    @VisibleForTesting
    final LoadingCache<RegionAndName, String> placementGroupMap;
    @VisibleForTesting
    final CreatePlacementGroupIfNeeded createPlacementGroupIfNeeded;
    @VisibleForTesting
    final Function<RegionNameAndPublicKeyMaterial, KeyPair> importExistingKeyPair;

    @Inject
    public CreateKeyPairPlacementAndSecurityGroupsAsNeededAndReturnRunOptions(
          Function<RegionAndName, KeyPair> makeKeyPair, ConcurrentMap<RegionAndName, KeyPair> credentialsMap,
          @Named("SECURITY") LoadingCache<RegionAndName, String> securityGroupMap,
          Provider<RunInstancesOptions> optionsProvider,
          @Named("PLACEMENT") LoadingCache<RegionAndName, String> placementGroupMap,
          CreatePlacementGroupIfNeeded createPlacementGroupIfNeeded,
          Function<RegionNameAndPublicKeyMaterial, KeyPair> importExistingKeyPair,
          GroupNamingConvention.Factory namingConvention) {
       super(makeKeyPair, credentialsMap, securityGroupMap, optionsProvider, namingConvention);
       this.placementGroupMap = placementGroupMap;
       this.createPlacementGroupIfNeeded = createPlacementGroupIfNeeded;
       this.importExistingKeyPair = importExistingKeyPair;
    }

    public AWSRunInstancesOptions execute(String region, String group, Template template) {
       AWSRunInstancesOptions instanceOptions = AWSRunInstancesOptions.class
             .cast(super.execute(region, group, template));

       String placementGroupName = template.getHardware().getId().startsWith("cc") ? createNewPlacementGroupUnlessUserSpecifiedOtherwise(
             region, group, template.getOptions()) : null;

       if (placementGroupName != null)
          instanceOptions.inPlacementGroup(placementGroupName);

       AWSEC2TemplateOptions awsTemplateOptions = AWSEC2TemplateOptions.class.cast(template.getOptions());
       if (awsTemplateOptions.isMonitoringEnabled())
          instanceOptions.enableMonitoring();
       if (awsTemplateOptions.getIAMInstanceProfileArn() != null)
          instanceOptions.withIAMInstanceProfileArn(awsTemplateOptions.getIAMInstanceProfileArn());
       if (awsTemplateOptions.getIAMInstanceProfileName() != null)
          instanceOptions.withIAMInstanceProfileName(awsTemplateOptions.getIAMInstanceProfileName());
       if (awsTemplateOptions.getPrivateIpAddress() != null)
          instanceOptions.withPrivateIpAddress(awsTemplateOptions.getPrivateIpAddress());

       return instanceOptions;
    }

    @VisibleForTesting
    String createNewPlacementGroupUnlessUserSpecifiedOtherwise(String region, String group, TemplateOptions options) {
       String placementGroupName = null;
       boolean shouldAutomaticallyCreatePlacementGroup = true;
       if (options instanceof EC2TemplateOptions) {
          placementGroupName = AWSEC2TemplateOptions.class.cast(options).getPlacementGroup();
          if (placementGroupName == null)
             shouldAutomaticallyCreatePlacementGroup = AWSEC2TemplateOptions.class.cast(options)
                   .shouldAutomaticallyCreatePlacementGroup();
       }
       if (placementGroupName == null && shouldAutomaticallyCreatePlacementGroup) {
          // placementGroupName must be unique within an account per
          // http://docs.amazonwebservices.com/AWSEC2/latest/UserGuide/index.html?using_cluster_computing.html
          placementGroupName = String.format("jclouds#%s#%s", group, region);
          RegionAndName regionAndName = new RegionAndName(region, placementGroupName);
          // make this entry as needed
          placementGroupMap.getUnchecked(regionAndName);
       }
       return placementGroupName;
    }

    @Override
    public String createNewKeyPairUnlessUserSpecifiedOtherwise(String region, String group, TemplateOptions options) {
       RegionAndName key = new RegionAndName(region, group);
       KeyPair pair;
       if (and(hasPublicKeyMaterial, or(doesntNeedSshAfterImportingPublicKey, hasLoginCredential)).apply(options)) {
          pair = importExistingKeyPair.apply(new RegionNameAndPublicKeyMaterial(region, group, options.getPublicKey()));
          options.dontAuthorizePublicKey();
          if (hasLoginCredential.apply(options))
             pair = pair.toBuilder().keyMaterial(options.getLoginPrivateKey()).build();
          credentialsMap.put(key, pair);
       } else {
          if (hasPublicKeyMaterial.apply(options)) {
             logger.warn("to avoid creating temporary keys in aws-ec2, use templateOption overrideLoginCredentialWith(id_rsa)");
          }
          return super.createNewKeyPairUnlessUserSpecifiedOtherwise(region, group, options);
       }
       return pair.getKeyName();
    }

    public static final Predicate<TemplateOptions> hasPublicKeyMaterial = new Predicate<TemplateOptions>() {

       @Override
       public boolean apply(TemplateOptions options) {
          return options.getPublicKey() != null;
       }

    };

    public static final Predicate<TemplateOptions> doesntNeedSshAfterImportingPublicKey = new Predicate<TemplateOptions>() {

       @Override
       public boolean apply(TemplateOptions options) {
          return options.getRunScript() == null && options.getPrivateKey() == null;
       }

    };

    public static final Predicate<TemplateOptions> hasLoginCredential = new Predicate<TemplateOptions>() {

       @Override
       public boolean apply(TemplateOptions options) {
          return options.getLoginPrivateKey() != null;
       }

    };

    @Override
    protected boolean userSpecifiedTheirOwnGroups(TemplateOptions options) {
       return options instanceof AWSEC2TemplateOptions
             && AWSEC2TemplateOptions.class.cast(options).getGroupIds().size() > 0
             || super.userSpecifiedTheirOwnGroups(options);
    }

    @Override
    protected void addSecurityGroups(String region, String group, Template template, RunInstancesOptions instanceOptions) {
       AWSEC2TemplateOptions awsTemplateOptions = AWSEC2TemplateOptions.class.cast(template.getOptions());
       AWSRunInstancesOptions awsInstanceOptions = AWSRunInstancesOptions.class.cast(instanceOptions);
       if (awsTemplateOptions.getGroupIds().size() > 0)
          awsInstanceOptions.withSecurityGroupIds(awsTemplateOptions.getGroupIds());
       String subnetId = awsTemplateOptions.getSubnetId();
       if (subnetId != null) {
          AWSRunInstancesOptions.class.cast(instanceOptions).withSubnetId(subnetId);
       } else {
          super.addSecurityGroups(region, group, template, instanceOptions);
       }
    }
 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one or more
	* contributor license agreements. See the NOTICE file distributed with
	* this work for additional information regarding copyright ownership.
	* The ASF licenses this file to You under the Apache License, Version 2.0
	* (the "License"); you may not use this file except in compliance with
	* the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/
	package org.jclouds.aws.ec2.compute.strategy;

	import static com.google.common.base.Predicates.and;
	import static com.google.common.base.Predicates.or;

	import java.util.concurrent.ConcurrentMap;

	import javax.annotation.Resource;
	import javax.inject.Inject;
	import javax.inject.Named;
	import javax.inject.Provider;
	import javax.inject.Singleton;

	import org.jclouds.aws.ec2.compute.AWSEC2TemplateOptions;
	import org.jclouds.aws.ec2.domain.RegionNameAndPublicKeyMaterial;
	import org.jclouds.aws.ec2.functions.CreatePlacementGroupIfNeeded;
	import org.jclouds.aws.ec2.options.AWSRunInstancesOptions;
	import org.jclouds.compute.domain.Template;
	import org.jclouds.compute.functions.GroupNamingConvention;
	import org.jclouds.compute.options.TemplateOptions;
	import org.jclouds.compute.reference.ComputeServiceConstants;
	import org.jclouds.ec2.compute.domain.RegionAndName;
	import org.jclouds.ec2.compute.options.EC2TemplateOptions;
	import org.jclouds.ec2.compute.strategy.CreateKeyPairAndSecurityGroupsAsNeededAndReturnRunOptions;
	import org.jclouds.ec2.domain.KeyPair;
	import org.jclouds.ec2.options.RunInstancesOptions;
	import org.jclouds.logging.Logger;

	import com.google.common.annotations.VisibleForTesting;
	import com.google.common.base.Function;
	import com.google.common.base.Predicate;
	import com.google.common.cache.LoadingCache;

	@Singleton
	public class CreateKeyPairPlacementAndSecurityGroupsAsNeededAndReturnRunOptions extends
	CreateKeyPairAndSecurityGroupsAsNeededAndReturnRunOptions {
	@Resource
	@Named(ComputeServiceConstants.COMPUTE_LOGGER)
	protected Logger logger = Logger.NULL;
	@VisibleForTesting
	final LoadingCache<RegionAndName, String> placementGroupMap;
	@VisibleForTesting
	final CreatePlacementGroupIfNeeded createPlacementGroupIfNeeded;
	@VisibleForTesting
	final Function<RegionNameAndPublicKeyMaterial, KeyPair> importExistingKeyPair;

	@Inject
	public CreateKeyPairPlacementAndSecurityGroupsAsNeededAndReturnRunOptions(
	Function<RegionAndName, KeyPair> makeKeyPair, ConcurrentMap<RegionAndName, KeyPair> credentialsMap,
	@Named("SECURITY") LoadingCache<RegionAndName, String> securityGroupMap,
	Provider<RunInstancesOptions> optionsProvider,
	@Named("PLACEMENT") LoadingCache<RegionAndName, String> placementGroupMap,
	CreatePlacementGroupIfNeeded createPlacementGroupIfNeeded,
	Function<RegionNameAndPublicKeyMaterial, KeyPair> importExistingKeyPair,
	GroupNamingConvention.Factory namingConvention) {
	super(makeKeyPair, credentialsMap, securityGroupMap, optionsProvider, namingConvention);
	this.placementGroupMap = placementGroupMap;
	this.createPlacementGroupIfNeeded = createPlacementGroupIfNeeded;
	this.importExistingKeyPair = importExistingKeyPair;
	}

	public AWSRunInstancesOptions execute(String region, String group, Template template) {
	AWSRunInstancesOptions instanceOptions = AWSRunInstancesOptions.class
	.cast(super.execute(region, group, template));

	String placementGroupName = template.getHardware().getId().startsWith("cc") ? createNewPlacementGroupUnlessUserSpecifiedOtherwise(
	region, group, template.getOptions()) : null;

	if (placementGroupName != null)
	instanceOptions.inPlacementGroup(placementGroupName);

	AWSEC2TemplateOptions awsTemplateOptions = AWSEC2TemplateOptions.class.cast(template.getOptions());
	if (awsTemplateOptions.isMonitoringEnabled())
	instanceOptions.enableMonitoring();
	if (awsTemplateOptions.getIAMInstanceProfileArn() != null)
	instanceOptions.withIAMInstanceProfileArn(awsTemplateOptions.getIAMInstanceProfileArn());
	if (awsTemplateOptions.getIAMInstanceProfileName() != null)
	instanceOptions.withIAMInstanceProfileName(awsTemplateOptions.getIAMInstanceProfileName());
	if (awsTemplateOptions.getPrivateIpAddress() != null)
	instanceOptions.withPrivateIpAddress(awsTemplateOptions.getPrivateIpAddress());

	return instanceOptions;
	}

	@VisibleForTesting
	String createNewPlacementGroupUnlessUserSpecifiedOtherwise(String region, String group, TemplateOptions options) {
	String placementGroupName = null;
	boolean shouldAutomaticallyCreatePlacementGroup = true;
	if (options instanceof EC2TemplateOptions) {
	placementGroupName = AWSEC2TemplateOptions.class.cast(options).getPlacementGroup();
	if (placementGroupName == null)
	shouldAutomaticallyCreatePlacementGroup = AWSEC2TemplateOptions.class.cast(options)
	.shouldAutomaticallyCreatePlacementGroup();
	}
	if (placementGroupName == null && shouldAutomaticallyCreatePlacementGroup) {
	// placementGroupName must be unique within an account per
	// http://docs.amazonwebservices.com/AWSEC2/latest/UserGuide/index.html?using_cluster_computing.html
	placementGroupName = String.format("jclouds#%s#%s", group, region);
	RegionAndName regionAndName = new RegionAndName(region, placementGroupName);
	// make this entry as needed
	placementGroupMap.getUnchecked(regionAndName);
	}
	return placementGroupName;
	}

	@Override
	public String createNewKeyPairUnlessUserSpecifiedOtherwise(String region, String group, TemplateOptions options) {
	RegionAndName key = new RegionAndName(region, group);
	KeyPair pair;
	if (and(hasPublicKeyMaterial, or(doesntNeedSshAfterImportingPublicKey, hasLoginCredential)).apply(options)) {
	pair = importExistingKeyPair.apply(new RegionNameAndPublicKeyMaterial(region, group, options.getPublicKey()));
	options.dontAuthorizePublicKey();
	if (hasLoginCredential.apply(options))
	pair = pair.toBuilder().keyMaterial(options.getLoginPrivateKey()).build();
	credentialsMap.put(key, pair);
	} else {
	if (hasPublicKeyMaterial.apply(options)) {
	logger.warn("to avoid creating temporary keys in aws-ec2, use templateOption overrideLoginCredentialWith(id_rsa)");
	}
	return super.createNewKeyPairUnlessUserSpecifiedOtherwise(region, group, options);
	}
	return pair.getKeyName();
	}

	public static final Predicate<TemplateOptions> hasPublicKeyMaterial = new Predicate<TemplateOptions>() {

	@Override
	public boolean apply(TemplateOptions options) {
	return options.getPublicKey() != null;
	}

	};

	public static final Predicate<TemplateOptions> doesntNeedSshAfterImportingPublicKey = new Predicate<TemplateOptions>() {

	@Override
	public boolean apply(TemplateOptions options) {
	return options.getRunScript() == null && options.getPrivateKey() == null;
	}

	};

	public static final Predicate<TemplateOptions> hasLoginCredential = new Predicate<TemplateOptions>() {

	@Override
	public boolean apply(TemplateOptions options) {
	return options.getLoginPrivateKey() != null;
	}

	};

	@Override
	protected boolean userSpecifiedTheirOwnGroups(TemplateOptions options) {
	return options instanceof AWSEC2TemplateOptions
	&& AWSEC2TemplateOptions.class.cast(options).getGroupIds().size() > 0
	\|\| super.userSpecifiedTheirOwnGroups(options);
	}

	@Override
	protected void addSecurityGroups(String region, String group, Template template, RunInstancesOptions instanceOptions) {
	AWSEC2TemplateOptions awsTemplateOptions = AWSEC2TemplateOptions.class.cast(template.getOptions());
	AWSRunInstancesOptions awsInstanceOptions = AWSRunInstancesOptions.class.cast(instanceOptions);
	if (awsTemplateOptions.getGroupIds().size() > 0)
	awsInstanceOptions.withSecurityGroupIds(awsTemplateOptions.getGroupIds());
	String subnetId = awsTemplateOptions.getSubnetId();
	if (subnetId != null) {
	AWSRunInstancesOptions.class.cast(instanceOptions).withSubnetId(subnetId);
	} else {
	super.addSecurityGroups(region, group, template, instanceOptions);
	}
	}
	}