deployments.py 21.1 KB
Newer Older
Lukas Burgey's avatar
Lukas Burgey committed
1
2
3
4
5
6

from json import dumps
from logging import getLogger

from django.conf import settings
from django.db import models
7
from django.db.models import Q
Lukas Burgey's avatar
Lukas Burgey committed
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
from django_mysql.models import JSONField
from polymorphic.models import PolymorphicModel

from feudal.backend.auth.v1.models.vo import VO

from . import Site, Service
from .users import User, SSHPublicKey
from .brokers import RabbitMQInstance


LOGGER = getLogger(__name__)


DEPLOYMENT_PENDING = 'deployment_pending'
REMOVAL_PENDING = 'removal_pending'
NOT_DEPLOYED = 'not_deployed'
DEPLOYED = 'deployed'
QUESTIONNAIRE = 'questionnaire'
FAILED = 'failed'
REJECTED = 'rejected'

TARGET_CHOICES = (
    (DEPLOYED, 'Deployed'),
    (NOT_DEPLOYED, 'Not Deployed'),
)
STATE_CHOICES = (
    (DEPLOYMENT_PENDING, 'VODeployment Pending'),
    (REMOVAL_PENDING, 'Removal Pending'),
    (DEPLOYED, 'Deployed'),
    (NOT_DEPLOYED, 'Not Deployed'),
    (QUESTIONNAIRE, 'Questionnaire'),
    (FAILED, 'Failed'),
    (REJECTED, 'Rejected'),
)


def questionnaire_default():
    return {}


def credential_default():
    return {}


52
53
54
55
56
57
58
59
60
61
62
63
64
def get_deployment(user, vo=None, service=None):
    if vo is not None and service is not None:
        raise ValueError('Cannot create deployment for both vo and service')

    if vo is not None:
        return VODeployment.get_deployment(user, vo)

    if service is not None:
        return ServiceDeployment.get_deployment(user, service)

    raise ValueError('Need vo or service to create deployment')


Lukas Burgey's avatar
Lukas Burgey committed
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
class Deployment(PolymorphicModel):
    user = models.ForeignKey(
        User,
        related_name='deployments',
        on_delete=models.CASCADE,
    )

    # which state do we currently want to reach?
    state_target = models.CharField(
        max_length=50,
        choices=TARGET_CHOICES,
        default=NOT_DEPLOYED,
    )

    is_active = models.BooleanField(
        default=True,
    )

    # credentials provided by the backend to the clients
    @property
    def credentials(self):
        return self.user.credentials

    @property
    def state(self):
90
        if self.states.exists():
Lukas Burgey's avatar
Lukas Burgey committed
91
            _state = ''
92
            for state in self.states.all():
Lukas Burgey's avatar
Lukas Burgey committed
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
                if _state == '':
                    _state = state.state
                elif _state != state.state:
                    return 'mixed'

            return _state

        # if we have no states we have nothing to do
        return self.state_target

    @property
    def target_reached(self):
        return self.state_target == self.state

    def _set_target(self, target):
108
109
        if str(self.state_target) == str(target):
            return
110

111
        LOGGER.debug(self.msg('Target: {} -> {} '.format(self.state_target, target)))
Lukas Burgey's avatar
Lukas Burgey committed
112

113
        self.state_target = target
Lukas Burgey's avatar
Lukas Burgey committed
114
115
        self.save()

116
117
118
119
120
121
122
123
124
125
126
        # FIXME this is breaking things when one wants deploy and another gets a user_remove
        # # set the target to all credentials
        # for state in self.states.all():
        #     state.assure_credential_states_exist()

        # for credential_state in CredentialState.objects.filter(
        #         target__deployments=self,
        # ):
        #     credential_state.set_target(target)

    # Deployment.user_deploy
Lukas Burgey's avatar
Lukas Burgey committed
127
    def user_deploy(self):
128
129
130
131
132
        LOGGER.debug(self.msg('user_deploy'))
        self._set_target(DEPLOYED)

        # states which are not DEPLOYED
        for item in self.states.filter(~Q(state=DEPLOYED)):
Lukas Burgey's avatar
Lukas Burgey committed
133
134
            item.user_deploy()

135
136
137
        self.publish()

    # Deployment.user_remove
Lukas Burgey's avatar
Lukas Burgey committed
138
    def user_remove(self):
139
140
        LOGGER.debug(self.msg('user_remove'))
        can_publish = False
Lukas Burgey's avatar
Lukas Burgey committed
141
        self._set_target(NOT_DEPLOYED)
142
143
144
145
146
147
148
149
150
151
152
153
154

        # states which are not NOT_DEPLOYED
        for item in self.states.filter(~Q(state=NOT_DEPLOYED)):
            if item.user_remove():
                can_publish = True

        # we only publish to the clients if allowed
        # we are not allowed to publish a removal if another deployment for our
        # DeploymentStates exists and has the target DEPLOYED
        if can_publish:
            self.publish()
        else:
            self.publish_to_user()
Lukas Burgey's avatar
Lukas Burgey committed
155
156

    def user_credential_added(self, key):
157
        for item in self.states.all():
Lukas Burgey's avatar
Lukas Burgey committed
158
159
160
161
162
            item.user_credential_added(key)

        self.publish()

    def user_credential_removed(self, key):
163
        for item in self.states.all():
Lukas Burgey's avatar
Lukas Burgey committed
164
165
166
167
168
            item.user_credential_removed(key)

        self.publish()

    def publish_to_client(self):
169
170
        LOGGER.debug(self.msg('publish_to_client'))

171
172
173
        from .serializers import clients
        data = clients.DeploymentSerializer(self).data
        msg = dumps(data)
Lukas Burgey's avatar
Lukas Burgey committed
174

175
176
177
178
        RabbitMQInstance.load().publish(
            self,
            msg,
        )
Lukas Burgey's avatar
Lukas Burgey committed
179
180
181
182
183
184

    # sends a state update via RabbitMQ / STOMP to the users webpage instance
    def publish_to_user(self):
        if self.user is None:
            return

185
186
        LOGGER.debug(self.msg('publish_to_user'))

187
        from . import serializers
Lukas Burgey's avatar
Lukas Burgey committed
188
        msg = dumps({
189
            'deployment': serializers.DeploymentSerializer(self).data,
Lukas Burgey's avatar
Lukas Burgey committed
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
        })
        RabbitMQInstance.load().publish_to_user(
            self.user,
            msg,
        )

    def publish(self):
        self.publish_to_user()
        self.publish_to_client()

    def msg(self, msg):
        return '{} - {}'.format(self, msg)

    def __str__(self):
        return 'Abstr. Deployment:({})#{}'.format(
            self.user,
            self.id,
        )


class VODeployment(Deployment):
    vo = models.ForeignKey(
        VO,
        related_name='vo_deployments',
        on_delete=models.CASCADE,
    )

    @property
    def services(self):
        return self.vo.services.all()

221
222
223
224
225
226
227
228
    @property
    def broker_exchange(self):
        return self.vo.broker_exchange

    @property
    def routing_key(self):
        return self.vo.name

229
    def create_states(self):
Lukas Burgey's avatar
Lukas Burgey committed
230
231
        for service in self.services:
            DeploymentState.get_state_item(
232
233
234
                self.user,
                service.site,
                service,
235
                deployments=[self],
Lukas Burgey's avatar
Lukas Burgey committed
236
237
238
239
240
241
242
243
244
            )

    @classmethod
    def get_deployment(cls, user, vo):
        try:
            deployment = cls.objects.get(
                user=user,
                vo=vo,
            )
245
            deployment.create_states()
Lukas Burgey's avatar
Lukas Burgey committed
246
247
248
249
250
251
252
253
254
255

            return deployment

        except cls.DoesNotExist:
            deployment = cls(
                user=user,
                vo=vo,
            )

            deployment.save()
256
            deployment.create_states()
Lukas Burgey's avatar
Lukas Burgey committed
257

258
            LOGGER.debug(deployment.msg('Created'))
Lukas Burgey's avatar
Lukas Burgey committed
259
260
261
262
263
            return deployment

    def service_added(self, service):
        LOGGER.debug(self.msg('Adding service {}'.format(service)))
        item = DeploymentState.get_state_item(
264
265
266
            self.user,
            service.site,
            service,
267
            deployments=[self],
Lukas Burgey's avatar
Lukas Burgey committed
268
        )
269
        if str(self.state_target) == 'deployed':
Lukas Burgey's avatar
Lukas Burgey committed
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
            item.user_deploy()

    def service_removed(self, service):
        LOGGER.debug(self.msg('Removing service {}'.format(service)))
        LOGGER.debug('TODO implement service removal')

    def msg(self, msg):
        return '{} - {}'.format(self, msg)

    def __str__(self):
        return 'VO-Dep: ({}:{})#{}'.format(
            self.vo,
            self.user,
            self.id,
        )


class ServiceDeployment(Deployment):
    service = models.ForeignKey(
        Service,
        related_name='service_deployments',
        on_delete=models.CASCADE,
    )

294
295
296
297
298
299
300
301
    @property
    def broker_exchange(self):
        return 'services'

    @property
    def routing_key(self):
        return self.service.name

Lukas Burgey's avatar
Lukas Burgey committed
302
303
    def create_state_item(self):
        DeploymentState.get_state_item(
304
305
306
            self.user,
            self.service.site,
            self.service,
307
            deployments=[self],
Lukas Burgey's avatar
Lukas Burgey committed
308
309
310
311
312
313
314
315
316
        )

    @classmethod
    def get_deployment(cls, user, service):
        try:
            deployment = cls.objects.get(
                user=user,
                service=service,
            )
317
            deployment.create_state_item()
Lukas Burgey's avatar
Lukas Burgey committed
318
319
320
321
322
323
324
325
326
327
328
329

            return deployment

        except cls.DoesNotExist:
            deployment = cls(
                user=user,
                service=service
            )

            deployment.save()
            deployment.create_state_item()

330
            LOGGER.debug(deployment.msg('Created'))
Lukas Burgey's avatar
Lukas Burgey committed
331
332
333
334
335
336
337
338
339
340
341
342
343
344
            return deployment

    def msg(self, msg):
        return '{} - {}'.format(self, msg)

    def __str__(self):
        return 'Service-Dep: ({}:{})#{}'.format(
            self.service,
            self.user,
            self.id,
        )


class DeploymentState(models.Model):
345
    deployments = models.ManyToManyField(
Lukas Burgey's avatar
Lukas Burgey committed
346
        Deployment,
347
        related_name='states',
Lukas Burgey's avatar
Lukas Burgey committed
348
349
350
351
    )

    user = models.ForeignKey(
        User,
352
        related_name='states',
Lukas Burgey's avatar
Lukas Burgey committed
353
354
355
356
357
358
359
        on_delete=models.SET_NULL,
        blank=True,
        null=True,
    )

    site = models.ForeignKey(
        Site,
360
        related_name='states',
Lukas Burgey's avatar
Lukas Burgey committed
361
362
363
364
365
        on_delete=models.CASCADE,
    )

    service = models.ForeignKey(
        Service,
366
        related_name='states',
Lukas Burgey's avatar
Lukas Burgey committed
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
        on_delete=models.CASCADE,
    )

    state = models.CharField(
        max_length=50,
        choices=STATE_CHOICES,
        default=NOT_DEPLOYED,
    )

    # message for the user
    message = models.TextField(
        max_length=300,
        default='',
    )

    # questions for the user (needed for deployment
    questionnaire = JSONField(
        default=questionnaire_default,
        null=True,
        blank=True,
    )

    # credentials for the service
    # only valid when state == deployed
    credentials = JSONField(
        default=credential_default,
        null=True,
        blank=True,
    )

397
398
399
400
401
402
403
404
    @property
    def state_target(self):
        for deployment in self.deployments.all():
            if deployment.state_target == DEPLOYED:
                return DEPLOYED

        return NOT_DEPLOYED

Lukas Burgey's avatar
Lukas Burgey committed
405
406
407
408
    @property
    def is_pending(self):
        # TODO
        # pending because we are orphaned -> pending until removed everywhere
409
        if not self.deployments.exists():
Lukas Burgey's avatar
Lukas Burgey committed
410
411
412
            return True

        # pending because the state target is not reached
413
        if self.state_target != self.state:
Lukas Burgey's avatar
Lukas Burgey committed
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
            return True

        return False

    @property
    def is_credential_pending(self):
        for credential_state in self.credential_states.all():
            if credential_state.is_pending:
                return True
        return False

    @property
    def user_credentials(self):
        return self.user.credentials

    @classmethod
430
    def get_state_item(cls, user, site, service, deployments=[]):
Lukas Burgey's avatar
Lukas Burgey committed
431
432
433
434
435
436
        try:
            item = cls.objects.get(
                user=user,
                site=site,
                service=service,
            )
437
438
439
440
441
442

            for deployment in deployments:
                if not item.deployments.filter(id=deployment.id).exists():
                    LOGGER.debug(item.msg('Binding to deployment {}'.format(deployment)))
                    item.deployments.add(deployment)

Lukas Burgey's avatar
Lukas Burgey committed
443
444
445
446
447
448
449
450
451
            return item

        except cls.DoesNotExist:
            item = cls(
                user=user,
                site=site,
                service=service,
            )
            item.save()
452
453
            for deployment in deployments:
                item.deployments.add(deployment)
Lukas Burgey's avatar
Lukas Burgey committed
454

455
            LOGGER.debug(item.msg('Created'))
Lukas Burgey's avatar
Lukas Burgey committed
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
            return item

    # starts tracking this the credential for this item
    def user_credential_added(self, credential):
        if settings.DEBUG_CREDENTIALS:
            LOGGER.debug('user_credential_added: %s %s', self, credential)

        CredentialState.get_credential_state(
            credential,
            self,
        )

    def user_credential_removed(self, credential):
        if settings.DEBUG_CREDENTIALS:
            LOGGER.debug('user_credential_removed: %s %s', self, credential)

        try:
            credential_state = self.credential_states.get(credential=credential)
            credential_state.credential_deleted()

        except CredentialState.DoesNotExist:
            LOGGER.error(self.msg('Credential {} has no CredentialState'.format(credential)))

    # STATE TRANSITIONS

481
    # DeploymentState.user_deploy
Lukas Burgey's avatar
Lukas Burgey committed
482
    def user_deploy(self):
483
484
485
486
487
488
489
        LOGGER.debug(self.msg('user_deploy'))

        self._assure_credential_states_exist()
        for cred_state in self.credential_states.all():
            cred_state.set_target(DEPLOYED)

        if str(self.state) == REMOVAL_PENDING:
Lukas Burgey's avatar
Lukas Burgey committed
490
491
492
            self._set_state(DEPLOYED)
            return

493
494
        if str(self.state) == DEPLOYED:
            LOGGER.debug(self.msg('State: already deployed'))
Lukas Burgey's avatar
Lukas Burgey committed
495
496
497
498
499
500
501
            return

        self._set_state(
            DEPLOYMENT_PENDING,
            publish=False,  # the post response already contains the update
        )

502
503
    # DeploymentState.user_remove
    # returns True if no other deployment needs this state_item to be deployed
Lukas Burgey's avatar
Lukas Burgey committed
504
    def user_remove(self):
505
506
507
508
509
        if str(self.state_target) == DEPLOYED:
            LOGGER.debug(self.msg('user_remove: Not removing: another deployment has target deployed'))

            # False: signal the callee that a publish_to_client is *not* permitted
            return False
Lukas Burgey's avatar
Lukas Burgey committed
510

511
512
513
514
515
516
517
518
519
520
521
522
        LOGGER.debug(self.msg('user_remove'))

        for cred_state in self.credential_states.all():
            cred_state.set_target(NOT_DEPLOYED)

        if str(self.state) == NOT_DEPLOYED:
            LOGGER.debug(self.msg('State: already not_deployed'))

        elif (
                self.state_target == DEPLOYED
                and (self.state == FAILED
                     or self.state == REJECTED)
Lukas Burgey's avatar
Lukas Burgey committed
523
524
525
526
        ):
            self._reset()
            self._set_state(NOT_DEPLOYED, publish=False)

527
        elif (
Lukas Burgey's avatar
Lukas Burgey committed
528
529
530
531
532
                self.state == DEPLOYMENT_PENDING
                or self.state == QUESTIONNAIRE
        ):
            self._set_state(NOT_DEPLOYED)

533
534
535
536
537
538
539
540
541
        else:
            # default: start the removal process
            self._set_state(
                REMOVAL_PENDING,
                publish=False,  # the post response already contains the update
            )

        # True: signal the callee that a publish_to_client is permitted
        return True
Lukas Burgey's avatar
Lukas Burgey committed
542
543
544

    # user: questionnaire answered
    def user_answers(self, answers=None):
545
546
        if not self.deployments.exists():
            LOGGER.error('user_remove: no deployments')
Lukas Burgey's avatar
Lukas Burgey committed
547
548
549
550
            return

        self.questionnaire = answers
        self._set_state(DEPLOYMENT_PENDING, publish=False)
551
        self.publish_to_client()
Lukas Burgey's avatar
Lukas Burgey committed
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567

    def client_credential_states(self, credential_states):
        # maps ssh key names to their state
        ssh_key_states = credential_states.get('ssh_key', None)

        # ASSUMPTION:
        # if we hear nothing about a credential we assume it got deprovisioned!
        for credential_state in self.credential_states.all():
            if (
                    ssh_key_states is not None
                    and credential_state.credential.name in ssh_key_states
            ):
                credential_state.set(ssh_key_states[credential_state.credential.name])
            else:
                credential_state.set(NOT_DEPLOYED)

568
    # client_response returns None on success, or a string describing an error
Lukas Burgey's avatar
Lukas Burgey committed
569
    def client_response(self, output):
570
571
572
573
574
575
576
577

        if 'state' not in output:
            return 'field "state" is missing in output'

        state = output.get('state', '')
        LOGGER.debug(self.msg('Client response: {}'.format(state)))

        self._set_state(state)
Lukas Burgey's avatar
Lukas Burgey committed
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603

        credential_states = output.get('user_credential_states', None)
        if credential_states is not None:
            self.client_credential_states(credential_states)

        self.message = output.get('message', '')
        self.save()

        # update values
        if state == DEPLOYED:
            self.credentials = output.get('credentials', {})
            self.save()

        elif state == NOT_DEPLOYED:
            # reset credentials and questionnaire
            self._reset()
            self.save()

        elif state == QUESTIONNAIRE:
            self.questionnaire = output.get('questionnaire', {})
            self.save()
        elif state == REJECTED:
            pass
        elif state == FAILED:
            pass
        else:
604
605
606
607
608
609
610
611
612
            return 'unknown state "{}"'.format(state)

        # FIXME this apparently causes deployment loops
        # is the target reached now?
        if self.state_target != self.state:
            LOGGER.debug(self.msg('Target {} still not reached. Publishing again'.format(
                self.state_target,
            )))
            self.publish_to_client()
Lukas Burgey's avatar
Lukas Burgey committed
613
614
615
616
617
618
619
620
621

        return None

    # resets all client sent values
    def _reset(self):
        self.credentials = credential_default()
        self.questionnaire = questionnaire_default()
        self.message = ''

622
    def _assure_credential_states_exist(self):
Lukas Burgey's avatar
Lukas Burgey committed
623
624
625
626
627
628
629
630
631
632
633
        # assure all user credentials have a state
        if self.user is not None:
            for key in self.user.ssh_keys.all():
                try:
                    CredentialState.get_credential_state(
                        credential=key,
                        target=self,
                    )
                except CredentialState.DoesNotExist:
                    LOGGER.error('CredentialState.DoesNotExist in _set_state')

634
635
636
637
638
639
640
    def _set_state(self, state, publish=True):
        self._assure_credential_states_exist()

        if str(self.state) == str(state):
            return

        LOGGER.debug(self.msg('State: {} -> {} - Target: {}'.format(self.state, state, self.state_target)))
Lukas Burgey's avatar
Lukas Burgey committed
641
642
643

        self.state = state
        self.save()
644
645
646
647
648
649
650
651
652
653
654
655

        # publish to user
        if publish and self.deployments.exists():
            self.publish_to_user()

    def publish_to_user(self):
        for deployment in self.deployments.all():
            deployment.publish_to_user()

    def publish_to_client(self):
        for deployment in self.deployments.all():
            deployment.publish_to_client()
Lukas Burgey's avatar
Lukas Burgey committed
656
657
658
659
660

    def msg(self, msg):
        return '{} - {}'.format(self, msg)

    def __str__(self):
661
662
663
        if self.deployments.exists():
            deployment_names = [str(deployment.id) for deployment in self.deployments.all()]

Lukas Burgey's avatar
Lukas Burgey committed
664
            return 'DState: ({}:{}:{})#{}'.format(
665
                ','.join(deployment_names),
Lukas Burgey's avatar
Lukas Burgey committed
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
                self.service,
                self.site,
                self.id,
            )

        return 'DState: (ORPHANED:{}:{})#{}'.format(
            self.service,
            self.site,
            self.id,
        )


class CredentialState(models.Model):
    state_target = models.CharField(
        max_length=50,
        choices=TARGET_CHOICES,
        default=NOT_DEPLOYED
    )

    state = models.CharField(
        max_length=50,
        choices=STATE_CHOICES,
        default=NOT_DEPLOYED
    )

    credential = models.ForeignKey(
        SSHPublicKey,
        related_name='credential_states',
        on_delete=models.CASCADE,
    )

    _credential_deleted = models.BooleanField(
        default=False,
    )

701
    # TODO target is a stupid field name. Change it
Lukas Burgey's avatar
Lukas Burgey committed
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
    target = models.ForeignKey(
        DeploymentState,
        related_name='credential_states',
        on_delete=models.CASCADE,
    )

    @property
    def is_pending(self):
        return self.state != self.state_target

    @classmethod
    def get_credential_state(cls, credential, target):
        try:
            return cls.objects.get(
                credential=credential,
                target=target,
            )
        except cls.DoesNotExist:

            new_state = cls(
                credential=credential,
                target=target,
                state=NOT_DEPLOYED,
725
                state_target=target.state_target,
Lukas Burgey's avatar
Lukas Burgey committed
726
727
728
729
730
731
732
733
734
            )
            new_state.save()

            if settings.DEBUG_CREDENTIALS:
                LOGGER.debug(new_state.msg('Created'))

            return new_state

    def set_target(self, target):
735
736
737
        if str(self.state_target) == str(target):
            return

Lukas Burgey's avatar
Lukas Burgey committed
738
739
740
741
        # state_target is locked, since we are marked for deletion
        if self._credential_deleted:
            return

742
743
        LOGGER.debug(self.msg('Target: {} -> {}'.format(self.state_target, target)))

Lukas Burgey's avatar
Lukas Burgey committed
744
745
746
747
        self.state_target = target
        self.save()

    def set(self, state):
748
749
750
        if str(self.state) == str(state):
            return

Lukas Burgey's avatar
Lukas Burgey committed
751
752
753
754
755
756
757
        if state == NOT_DEPLOYED and self._credential_deleted:
            self._delete_state()
            return

        if state == self.state:
            return

758
759
760
        if settings.DEBUG_CREDENTIALS:
            LOGGER.debug(self.msg('State: {} -> {}'.format(self.state, state)))

Lukas Burgey's avatar
Lukas Burgey committed
761
762
        self.state = state
        self.save()
763
764

        self.target.publish_to_user()
Lukas Burgey's avatar
Lukas Burgey committed
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793

    def credential_deleted(self):
        if self.state == NOT_DEPLOYED:
            self._delete_state()

        LOGGER.debug('related credential: %s', self.credential)
        self.state_target = NOT_DEPLOYED
        self._credential_deleted = True
        self.save()

        if settings.DEBUG_CREDENTIALS:
            LOGGER.debug(self.msg('Marked as deleted'))

    def _delete_state(self):
        LOGGER.debug(self.msg('Deleted'))
        credential = self.credential
        self.delete()

        credential.try_delete_key()

    def msg(self, message):
        return '{} - {}'.format(self, message)

    def __str__(self):
        return 'CState: ({}:{})#{}'.format(
            self.target.id,
            self.credential,
            self.id,
        )