shiftstack
diff --git a/‎acceptance/openstack/identity/v3/ec2credentials_test.go
Lines changed: 96 additions & 0 deletions b/‎acceptance/openstack/identity/v3/ec2credentials_test.go
Lines changed: 96 additions & 0 deletions
diff --git a/‎openstack/identity/v3/extensions/ec2credentials/doc.go
Lines changed: 21 additions & 0 deletions b/‎openstack/identity/v3/extensions/ec2credentials/doc.go
Lines changed: 21 additions & 0 deletions
diff --git a/‎openstack/identity/v3/extensions/ec2credentials/requests.go
Lines changed: 50 additions & 0 deletions b/‎openstack/identity/v3/extensions/ec2credentials/requests.go
Lines changed: 50 additions & 0 deletions
diff --git a/‎openstack/identity/v3/extensions/ec2credentials/results.go
Lines changed: 88 additions & 0 deletions b/‎openstack/identity/v3/extensions/ec2credentials/results.go
Lines changed: 88 additions & 0 deletions
@@ -0,0 +1,96 @@
+// +build acceptance
+
+package v3
+
+import (
+	"testing"
+
+	"github.com/gophercloud/gophercloud/acceptance/clients"
+	"github.com/gophercloud/gophercloud/acceptance/tools"
+	"github.com/gophercloud/gophercloud/openstack"
+	"github.com/gophercloud/gophercloud/openstack/identity/v3/extensions/ec2credentials"
+	"github.com/gophercloud/gophercloud/openstack/identity/v3/tokens"
+	th "github.com/gophercloud/gophercloud/testhelper"
+)
+
+func TestEC2CredentialsCRD(t *testing.T) {
+	client, err := clients.NewIdentityV3Client()
+	th.AssertNoErr(t, err)
+
+	ao, err := openstack.AuthOptionsFromEnv()
+	th.AssertNoErr(t, err)
+
+	authOptions := tokens.AuthOptions{
+		Username:   ao.Username,
+		Password:   ao.Password,
+		DomainName: ao.DomainName,
+		DomainID:   ao.DomainID,
+		// We need a scope to get the token roles list
+		Scope: tokens.Scope{
+			ProjectID:   ao.TenantID,
+			ProjectName: ao.TenantName,
+			DomainID:    ao.DomainID,
+			DomainName:  ao.DomainName,
+		},
+	}
+
+	res := tokens.Create(client, &authOptions)
+	th.AssertNoErr(t, res.Err)
+	token, err := res.Extract()
+	th.AssertNoErr(t, err)
+	tools.PrintResource(t, token)
+
+	user, err := res.ExtractUser()
+	th.AssertNoErr(t, err)
+	tools.PrintResource(t, user)
+
+	project, err := res.ExtractProject()
+	th.AssertNoErr(t, err)
+	tools.PrintResource(t, project)
+
+	createOpts := ec2credentials.CreateOpts{
+		TenantID: project.ID,
+	}
+
+	ec2credential, err := ec2credentials.Create(client, user.ID, createOpts).Extract()
+	th.AssertNoErr(t, err)
+	defer ec2credentials.Delete(client, user.ID, ec2credential.Access)
+	tools.PrintResource(t, ec2credential)
+
+	access := ec2credential.Access
+	secret := ec2credential.Secret
+	if access == "" {
+		t.Fatalf("EC2 credential access was not generated")
+	}
+
+	if secret == "" {
+		t.Fatalf("EC2 credential secret was not generated")
+	}
+
+	th.AssertEquals(t, ec2credential.UserID, user.ID)
+	th.AssertEquals(t, ec2credential.TenantID, project.ID)
+
+	// Get an ec2 credential
+	getEC2Credential, err := ec2credentials.Get(client, user.ID, ec2credential.Access).Extract()
+	th.AssertNoErr(t, err)
+	tools.PrintResource(t, getEC2Credential)
+
+	th.AssertEquals(t, getEC2Credential.UserID, user.ID)
+	th.AssertEquals(t, getEC2Credential.TenantID, project.ID)
+	th.AssertEquals(t, getEC2Credential.Access, access)
+	th.AssertEquals(t, getEC2Credential.Secret, secret)
+
+	allPages, err := ec2credentials.List(client, user.ID).AllPages()
+	th.AssertNoErr(t, err)
+	credentials, err := ec2credentials.ExtractCredentials(allPages)
+	th.AssertNoErr(t, err)
+
+	if v := len(credentials); v != 1 {
+		t.Fatalf("expected to list one credential, got %d", v)
+	}
+
+	th.AssertEquals(t, credentials[0].UserID, user.ID)
+	th.AssertEquals(t, credentials[0].TenantID, project.ID)
+	th.AssertEquals(t, credentials[0].Access, access)
+	th.AssertEquals(t, credentials[0].Secret, secret)
+}
@@ -0,0 +1,21 @@
+/*
+Package ec2credentials provides information and interaction with the EC2
+credentials API resource for the OpenStack Identity service.
+
+For more information, see:
+https://docs.openstack.org/api-ref/identity/v2-ext/
+
+Example to Create an EC2 credential
+
+	createOpts := ec2credentials.CreateOpts{
+		// project ID of the EC2 credential scope
+		TenantID: projectID,
+	}
+
+	credential, err := ec2credentials.Create(identityClient, userID, createOpts).Extract()
+	if err != nil {
+		panic(err)
+	}
+
+*/
+package ec2credentials
@@ -0,0 +1,50 @@
+package ec2credentials
+
+import (
+	"github.com/gophercloud/gophercloud"
+	"github.com/gophercloud/gophercloud/pagination"
+)
+
+// List enumerates the Credentials to which the current token has access.
+func List(client *gophercloud.ServiceClient, userID string) pagination.Pager {
+	url := listURL(client, userID)
+	return pagination.NewPager(client, url, func(r pagination.PageResult) pagination.Page {
+		return CredentialPage{pagination.LinkedPageBase{PageResult: r}}
+	})
+}
+
+// Get retrieves details on a single EC2 credential by ID.
+func Get(client *gophercloud.ServiceClient, userID string, id string) (r GetResult) {
+	_, r.Err = client.Get(getURL(client, userID, id), &r.Body, nil)
+	return
+}
+
+// CreateOpts provides options used to create an EC2 credential.
+type CreateOpts struct {
+	// TenantID is the project ID scope of the EC2 credential.
+	TenantID string `json:"tenant_id" required:"true"`
+}
+
+// ToCredentialCreateMap formats a CreateOpts into a create request.
+func (opts CreateOpts) ToCredentialCreateMap() (map[string]interface{}, error) {
+	return gophercloud.BuildRequestBody(opts, "")
+}
+
+// Create creates a new EC2 Credential.
+func Create(client *gophercloud.ServiceClient, userID string, opts CreateOpts) (r CreateResult) {
+	b, err := opts.ToCredentialCreateMap()
+	if err != nil {
+		r.Err = err
+		return
+	}
+	_, r.Err = client.Post(createURL(client, userID), &b, &r.Body, &gophercloud.RequestOpts{
+		OkCodes: []int{201},
+	})
+	return
+}
+
+// Delete deletes an EC2 credential.
+func Delete(client *gophercloud.ServiceClient, userID string, id string) (r DeleteResult) {
+	_, r.Err = client.Delete(deleteURL(client, userID, id), nil)
+	return
+}
@@ -0,0 +1,88 @@
+package ec2credentials
+
+import (
+	"github.com/gophercloud/gophercloud"
+	"github.com/gophercloud/gophercloud/pagination"
+)
+
+// Credential represents the application credential object
+type Credential struct {
+	// UserID contains a User ID of the EC2 credential owner.
+	UserID string `json:"user_id"`
+	// TenantID contains an EC2 credential project scope.
+	TenantID string `json:"tenant_id"`
+	// Access contains an EC2 credential access UUID.
+	Access string `json:"access"`
+	// Secret contains an EC2 credential secret UUID.
+	Secret string `json:"secret"`
+	// TrustID contains an EC2 credential trust ID scope.
+	TrustID string `json:"trust_id"`
+	// Links contains referencing links to the application credential.
+	Links map[string]interface{} `json:"links"`
+}
+
+type credentialResult struct {
+	gophercloud.Result
+}
+
+// GetResult is the response from a Get operation. Call its Extract method
+// to interpret it as an Credential.
+type GetResult struct {
+	credentialResult
+}
+
+// CreateResult is the response from a Create operation. Call its Extract method
+// to interpret it as an Credential.
+type CreateResult struct {
+	credentialResult
+}
+
+// DeleteResult is the response from a Delete operation. Call its ExtractErr to
+// determine if the request succeeded or failed.
+type DeleteResult struct {
+	gophercloud.ErrResult
+}
+
+// an CredentialPage is a single page of an Credential results.
+type CredentialPage struct {
+	pagination.LinkedPageBase
+}
+
+// IsEmpty determines whether or not a an CredentialPage contains any results.
+func (r CredentialPage) IsEmpty() (bool, error) {
+	ec2Credentials, err := ExtractCredentials(r)
+	return len(ec2Credentials) == 0, err
+}
+
+// NextPageURL extracts the "next" link from the links section of the result.
+func (r CredentialPage) NextPageURL() (string, error) {
+	var s struct {
+		Links struct {
+			Next     string `json:"next"`
+			Previous string `json:"previous"`
+		} `json:"links"`
+	}
+	err := r.ExtractInto(&s)
+	if err != nil {
+		return "", err
+	}
+	return s.Links.Next, err
+}
+
+// Extractan Credentials returns a slice of Credentials contained in a single page of results.
+func ExtractCredentials(r pagination.Page) ([]Credential, error) {
+	var s struct {
+		Credentials []Credential `json:"credentials"`
+	}
+	err := (r.(CredentialPage)).ExtractInto(&s)
+	return s.Credentials, err
+}
+
+// Extract interprets any Credential results as a Credential.
+func (r credentialResult) Extract() (*Credential, error) {
+	var s struct {
+		Credential *Credential `json:"credential"`
+	}
+	err := r.ExtractInto(&s)
+	return s.Credential, err
+}