Home Explore Help
Register Sign In
publics
/
etcd-io__etcd
0
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge pull request #3346 from xiang90/auth_skip

etcdserver/auth: cache auth enable result
Xiang Li 10 years ago
parent
e8e507b29b 11a689d063
commit
07af0b3e5b
3 changed files with 24 additions and 10 deletions
Split View Show Diff Stats
  1. 5 0
      etcdserver/auth/auth.go
  2. 6 0
      etcdserver/auth/auth_requests.go
  3. 13 10
      etcdserver/auth/auth_test.go

+ 5 - 0
etcdserver/auth/auth.go
View File 

@@ -93,6 +93,7 @@ type store struct {
 
 	server      doer
 
 	timeout     time.Duration
 
 	ensuredOnce bool
 
+	enabled     *bool
 
 }
 
 
 type User struct {
 
@@ -398,6 +399,8 @@ func (s *store) EnableAuth() error {
 
 	}
 
 	err = s.enableAuth()
 
 	if err == nil {
 
+		b := true
 
+		s.enabled = &b
 
 		plog.Noticef("auth: enabled auth")
 
 	} else {
 
 		plog.Errorf("error enabling auth (%v)", err)
 
@@ -411,6 +414,8 @@ func (s *store) DisableAuth() error {
 
 	}
 
 	err := s.disableAuth()
 
 	if err == nil {
 
+		b := false
 
+		s.enabled = &b
 
 		plog.Noticef("auth: disabled auth")
 
 	} else {
 
 		plog.Errorf("error disabling auth (%v)", err)

+ 6 - 0
etcdserver/auth/auth_requests.go
View File 

@@ -85,10 +85,15 @@ func (s *store) detectAuth() bool {
 
 	if s.server == nil {
 
 		return false
 
 	}
 
+	if s.enabled != nil {
 
+		return *s.enabled
 
+	}
 
 	value, err := s.requestResource("/enabled", false)
 
 	if err != nil {
 
 		if e, ok := err.(*etcderr.Error); ok {
 
 			if e.ErrorCode == etcderr.EcodeKeyNotFound {
 
+				b := false
 
+				s.enabled = &b
 
 				return false
 
 			}
 
 		}
 
@@ -102,6 +107,7 @@ func (s *store) detectAuth() bool {
 
 		plog.Errorf("internal bookkeeping value for enabled isn't valid JSON (%v)", err)
 
 		return false
 
 	}
 
+	s.enabled = &u
 
 	return u
 
 }

+ 13 - 10
etcdserver/auth/auth_test.go
View File 

@@ -210,7 +210,7 @@ func TestAllUsers(t *testing.T) {
 
 	}
 
 	expected := []string{"cat", "dog"}
 
 
-	s := store{d, testTimeout, false}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: false}
 
 	users, err := s.AllUsers()
 
 	if err != nil {
 
 		t.Error("Unexpected error", err)
 
@@ -238,7 +238,7 @@ func TestGetAndDeleteUser(t *testing.T) {
 
 	}
 
 	expected := User{User: "cat", Roles: []string{"animal"}}
 
 
-	s := store{d, testTimeout, false}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: false}
 
 	out, err := s.GetUser("cat")
 
 	if err != nil {
 
 		t.Error("Unexpected error", err)
 
@@ -275,7 +275,7 @@ func TestAllRoles(t *testing.T) {
 
 	}
 
 	expected := []string{"animal", "human", "root"}
 
 
-	s := store{d, testTimeout, false}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: false}
 
 	out, err := s.AllRoles()
 
 	if err != nil {
 
 		t.Error("Unexpected error", err)
 
@@ -303,7 +303,7 @@ func TestGetAndDeleteRole(t *testing.T) {
 
 	}
 
 	expected := Role{Role: "animal"}
 
 
-	s := store{d, testTimeout, false}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: false}
 
 	out, err := s.GetRole("animal")
 
 	if err != nil {
 
 		t.Error("Unexpected error", err)
 
@@ -350,7 +350,7 @@ func TestEnsure(t *testing.T) {
 
 		},
 
 	}
 
 
-	s := store{d, testTimeout, false}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: false}
 
 	err := s.ensureAuthDirectories()
 
 	if err != nil {
 
 		t.Error("Unexpected error", err)
 
@@ -410,7 +410,7 @@ func TestCreateAndUpdateUser(t *testing.T) {
 
 	update := User{User: "cat", Grant: []string{"pet"}}
 
 	expected := User{User: "cat", Roles: []string{"animal", "pet"}}
 
 
-	s := store{d, testTimeout, true}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: true}
 
 	out, created, err := s.CreateOrUpdateUser(user)
 
 	if created == false {
 
 		t.Error("Should have created user, instead updated?")
 
@@ -465,7 +465,7 @@ func TestUpdateRole(t *testing.T) {
 
 	update := Role{Role: "animal", Grant: &Permissions{KV: RWPermission{Read: []string{}, Write: []string{"/animal"}}}}
 
 	expected := Role{Role: "animal", Permissions: Permissions{KV: RWPermission{Read: []string{"/animal"}, Write: []string{"/animal"}}}}
 
 
-	s := store{d, testTimeout, true}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: true}
 
 	out, err := s.UpdateRole(update)
 
 	if err != nil {
 
 		t.Error("Unexpected error", err)
 
@@ -496,7 +496,7 @@ func TestCreateRole(t *testing.T) {
 
 	}
 
 	r := Role{Role: "animal", Permissions: Permissions{KV: RWPermission{Read: []string{"/animal"}, Write: []string{}}}}
 
 
-	s := store{d, testTimeout, true}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: true}
 
 	err := s.CreateRole(Role{Role: "root"})
 
 	if err == nil {
 
 		t.Error("Should error creating root role")
 
@@ -562,7 +562,7 @@ func TestEnableAuth(t *testing.T) {
 
 		},
 
 		explicitlyEnabled: false,
 
 	}
 
-	s := store{d, testTimeout, true}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: true}
 
 	err := s.EnableAuth()
 
 	if err != nil {
 
 		t.Error("Unexpected error", err)
 
@@ -605,11 +605,14 @@ func TestDisableAuth(t *testing.T) {
 
 		},
 
 		explicitlyEnabled: false,
 
 	}
 
-	s := store{d, testTimeout, true}
 
+	s := store{server: d, timeout: testTimeout, ensuredOnce: true}
 
 	err := s.DisableAuth()
 
 	if err == nil {
 
 		t.Error("Expected error; already disabled")
 
 	}
 
+
 
+	// clear cache
 
+	s.enabled = nil
 
 	err = s.DisableAuth()
 
 	if err != nil {
 
 		t.Error("Unexpected error", err)