diff --git a/delete_datasets.py b/delete_datasets.py new file mode 100644 index 0000000..60a5432 --- /dev/null +++ b/delete_datasets.py @@ -0,0 +1,65 @@ +import json +import argparse +import logging +import os +import time +import sys +from datetime import datetime + +import shanoir_util +from pathlib import Path +Path.ls = lambda x: sorted(list(x.iterdir())) + +def create_arg_parser(description="""Shanoir deletion"""): + parser = argparse.ArgumentParser(prog=__file__, description=description, formatter_class=argparse.ArgumentDefaultsHelpFormatter) + return parser + +def add_username_argument(parser): + parser.add_argument('-u', '--username', required=True, help='Your shanoir username.') + +def add_domain_argument(parser): + parser.add_argument('-d', '--domain', default='shanoir.irisa.fr', help='The shanoir domain to query.') + +def add_common_arguments(parser): + add_username_argument(parser) + add_domain_argument(parser) + +def add_configuration_arguments(parser): + parser.add_argument('-c', '--configuration_folder', required=False, help='Path to the configuration folder containing proxy.properties (Tries to use ~/.su_vX.X.X/ by default). You can also use --proxy_url to configure the proxy (in which case the proxy.properties file will be ignored).') + parser.add_argument('-pu', '--proxy_url', required=False, help='The proxy url in the format "user@host:port". The proxy password will be asked in the terminal. See --configuration_folder.') + parser.add_argument('-ca', '--certificate', default='', required=False, help='Path to the CA bundle to use.') + parser.add_argument('-v', '--verbose', default=False, action='store_true', help='Print log messages.') + parser.add_argument('-t', '--timeout', type=float, default=60*4, help='The request timeout.') + parser.add_argument('-lf', '--log_file', type=str, help="Path to the log file. Default is output_folder/downloads.log", default=None) + return parser + +def add_deletion_arguments(parser): + parser.add_argument('-dids', '--dataset_ids', default='', help='Path to a file containing the dataset ids to delete (a .txt file containing one dataset id per line).') + return parser + +if __name__ == '__main__': + parser = create_arg_parser() + add_common_arguments(parser) + add_deletion_arguments(parser) + add_configuration_arguments(parser) + args = parser.parse_args() + config = shanoir_util.initialize(args) + + # Get dataset Ids file + dataset_ids = Path(args.dataset_ids) if args.dataset_ids else None + if args.dataset_ids and not dataset_ids.exists(): + sys.exit('Error: given file does not exist: ' + str(dataset_ids)) + + if dataset_ids: + with open(dataset_ids) as file: + dataset_id_list = [dataset_id.strip() for dataset_id in file] + + for dataset_id in dataset_id_list: + result = shanoir_util.deleteDataset(config, dataset_id) + if result == 204: + logging.error("Dataset " + dataset_id + " deleted with success.") + else: + logging.error("Dataset " + dataset_id + ": Error during deletion " + str(result)) + time.sleep(1) + +#python3 ./delete_datasets.py -lf /tmp/test.log -u XXXX -d shanoir-ng-nginx -dids ./datasets.txt diff --git a/shanoir_util.py b/shanoir_util.py new file mode 100644 index 0000000..eaa513d --- /dev/null +++ b/shanoir_util.py @@ -0,0 +1,235 @@ +import os +import datetime + +import requests +import json +import getpass +import sys +import logging +import http.client as http_client +from pathlib import Path + +def init_logging(args): + + verbose = args.verbose + + logfile = Path(args.log_file) + logfile.parent.mkdir(exist_ok=True, parents=True) + + logging.basicConfig( + level=logging.INFO, # if verbose else logging.ERROR, + format="%(asctime)s [%(levelname)s] %(message)s", + datefmt='%Y-%m-%d %H:%M:%S', + handlers=[ + logging.FileHandler(str(logfile)), + logging.StreamHandler(sys.stdout) + ] + ) + + if verbose: + http_client.HTTPConnection.debuglevel = 1 + + requests_log = logging.getLogger("requests.packages.urllib3") + requests_log.setLevel(logging.DEBUG) + requests_log.propagate = True + + +def initialize(args): + + server_domain = args.domain + username = args.username + + init_logging(args) + + verify = args.certificate if hasattr(args, 'certificate') and args.certificate != '' else True + + proxy_url = None # 'user:pass@host:port' + + if hasattr(args, 'proxy_url') and args.proxy_url is not None: + proxy_a = args.proxy_url.split('@') + proxy_user = proxy_a[0] + proxy_host = proxy_a[1] + proxy_password = getpass.getpass(prompt='Proxy password for user ' + proxy_user + ' and host ' + proxy_host + ': ', stream=None) + proxy_url = proxy_user + ':' + proxy_password + '@' + proxy_host + + else: + + configuration_folder = None + + if hasattr(args, 'configuration_folder') and args.configuration_folder: + configuration_folder = Path(args.configuration_folder) + else: + cfs = sorted(list(Path.home().glob('.su_v*'))) + configuration_folder = cfs[-1] if len(cfs) > 0 else Path().home() + + proxy_settings = configuration_folder / 'proxy.properties' + + proxy_config = {} + + if proxy_settings.exists(): + with open(proxy_settings) as file: + for line in file: + if line.startswith('proxy.'): + line_s = line.split('=') + proxy_key = line_s[0] + proxy_value = line_s[1].strip() + proxy_key = proxy_key.split('.')[-1] + proxy_config[proxy_key] = proxy_value + + if 'enabled' not in proxy_config or proxy_config['enabled'] == 'true': + if 'user' in proxy_config and len(proxy_config['user']) > 0 and 'password' in proxy_config and len(proxy_config['password']) > 0: + proxy_url = proxy_config['user'] + ':' + proxy_config['password'] + proxy_url += '@' + proxy_config['host'] + ':' + proxy_config['port'] + else: + print("Proxy configuration file not found. Proxy will be ignored.") + + proxies = None + + if proxy_url: + + proxies = { + 'http': 'http://' + proxy_url, + # 'https': 'https://' + proxy_url, + } + + return { 'domain': server_domain, + 'username': username, + 'verify': verify, + 'proxies': proxies, + 'timeout': args.timeout, + } + +access_token = None +refresh_token = None + +# using user's password, get the first access token and the refresh token +def ask_access_token(config): + try: + password = os.environ['shanoir_password'] if 'shanoir_password' in os.environ else getpass.getpass(prompt='Password for Shanoir user ' + config['username'] + ': ', stream=None) + except: + sys.exit(0) + url = 'https://' + config['domain'] + '/auth/realms/shanoir-ng/protocol/openid-connect/token' + payload = { + 'client_id' : 'shanoir-uploader', + 'grant_type' : 'password', + 'username' : config['username'], + 'password' : password, + 'scope' : 'offline_access' + } + # curl -d '{"client_id":"shanoir-uploader", "grant_type":"password", "username": "amasson", "password": "", "scope": "offline_access" }' -H "Content-Type: application/json" -X POST + + headers = {'content-type': 'application/x-www-form-urlencoded'} + print('get keycloak token...') + response = requests.post(url, data=payload, headers=headers, proxies=config['proxies'], verify=config['verify'], timeout=config['timeout']) + if not hasattr(response, 'status_code') or response.status_code != 200: + print('Failed to connect, make sur you have a certified IP or are connected on a valid VPN.') + raise ConnectionError(response.status_code) + + response_json = json.loads(response.text) + if 'error_description' in response_json and response_json['error_description'] == 'Invalid user credentials': + print('bad username or password') + sys.exit(1) + global refresh_token + refresh_token = response_json['refresh_token'] + return response_json['access_token'] + +# get a new acess token using the refresh token +def refresh_access_token(config): + url = 'https://' + config['domain'] + '/auth/realms/shanoir-ng/protocol/openid-connect/token' + payload = { + 'grant_type' : 'refresh_token', + 'refresh_token' : refresh_token, + 'client_id' : 'shanoir-uploader' + } + headers = {'content-type': 'application/x-www-form-urlencoded'} + logging.info('refresh keycloak token...') + response = requests.post(url, data=payload, headers=headers, proxies=config['proxies'], verify=config['verify'], timeout=config['timeout']) + if response.status_code != 200: + logging.error('response status : {response.status_code}, {responses[response.status_code]}') + response_json = response.json() + return response_json['access_token'] + +def perform_rest_request(config, rtype, url, **kwargs): + response = None + if rtype == 'get': + response = requests.get(url, proxies=config['proxies'], verify=config['verify'], timeout=config['timeout'], **kwargs) + elif rtype == 'post': + response = requests.post(url, proxies=config['proxies'], verify=config['verify'], timeout=config['timeout'], **kwargs) + elif rtype == 'delete': + response = requests.delete(url, proxies=config['proxies'], verify=config['verify'], timeout=config['timeout'], **kwargs) + elif rtype == 'put': + response = requests.put(url, proxies=config['proxies'], verify=config['verify'], timeout=config['timeout'], **kwargs) + else: + print('Error: unimplemented request type') + + return response + + +# perform a request on the given url, asks for a new access token if the current one is outdated +def rest_request(config, rtype, url, raise_for_status=True, **kwargs): + global access_token + if access_token is None: + access_token = ask_access_token(config) + headers = { + 'Authorization' : 'Bearer ' + access_token, + 'content-type' : 'application/json', + 'charset' : 'utf-8' + } + response = perform_rest_request(config, rtype, url, headers=headers, **kwargs) + logging.error(response) + # if token is outdated, refresh it and try again + if response.status_code == 401: + access_token = refresh_access_token(config) + headers['Authorization'] = 'Bearer ' + access_token + response = perform_rest_request(config, rtype, url, headers=headers, **kwargs) + if raise_for_status: + response.raise_for_status() + return response + +def log_response(e): + logging.error('Response status code: {e.response.status_code}') + logging.error(' reason: {e.response.reason}') + logging.error(' text: {e.response.text}') + logging.error(' headers: {e.response.headers}') + logging.error(str(e)) + return + +# perform a GET request on the given url, asks for a new access token if the current one is outdated +def rest_get(config, url, params=None, stream=None): + return rest_request(config, 'get', url, params=params, stream=stream) + +# perform a POST request on the given url, asks for a new access token if the current one is outdated +def rest_post(config, url, params=None, files=None, stream=None, json=None, data=None, raise_for_status=True): + return rest_request(config, 'post', url, raise_for_status, params=params, files=files, stream=stream, json=json, data=data) + +# perform a DELETE request on the given url, asks for a new access token if the current one is outdated +def rest_delete(config, url, params=None, stream=None, raise_for_status=True): + return rest_request(config, 'delete', url, raise_for_status, params=params, stream=stream) + +def createExecution(config, execution, silent=False): + global refresh_token + global access_token + if access_token is None: + access_token = ask_access_token(config) + execution["identifier"]="" + execution["name"] += "_" + datetime.datetime.now().strftime("%m%d%Y%H%M%S") + execution["refreshToken"] = refresh_token + execution["exportFormat"] = "dcm" + execution["studyIdentifier"] = 17 + execution["client"]="shanoir-uploader" + url = 'https://' + config['domain'] + '/shanoir-ng/datasets/carmin-data/createExecution' + response = rest_post(config, url, {}, data=json.dumps(execution), raise_for_status=False) + if response.status_code == 401: + return "401" + return response.json() + +def getExecutionStatus(config, identifier): + url = 'https://' + config['domain'] + '/shanoir-ng/datasets/carmin-data/execution/' + identifier + response = rest_get(config, url) + return response.content + +def deleteDataset(config, datasetId): + url = 'https://' + config['domain'] + '/shanoir-ng/datasets/datasets/' + datasetId + response = rest_delete(config, url, raise_for_status=False) + return response.status_code +