How to use the python swift client.

Using Python-SwiftClient

# Create a new user with permissions


1. Get the `super_admin_key` from `/etc/swift/proxy-server.conf`

2. Make sure your admin is working:
    
        :::bash
        swift -A https://<url>:8080/auth/v1.0 -U ADMIN_ACCOUNT:ADMIN_USER -K ADMIN_PASSWORD stat -v --insecure

3. Create user

        :::bash
        swauth-add-user -A https://<url>:8080/auth/ -K SUPERADMINKEY ACCOUNT USER PASSWORD
    
    (ACCOUNT should probably match the ADMIN_ACCOUNT.  As the USER is in the ADMIN_ACOUNT just with different permissions)

4. Check the user was created: Do #2 with the new ACCOUNT USER & PASSWORD
    
    *Note: Be sure not to accidently do `-a`.  This gives admin privledges.*

5. Create a container using the [python-swiftclient](https://pypi.python.org/pypi/python-swiftclient)

6. Update the container's permissionsm (Add ACLs)

        :::bash
        swift -A https://<url>:8080/auth/v1.0 -U ADMIN_ACCOUNT:ADMIN_USER -K ADMIN_PASSWORD -v --insecure post -r 'ACCOUNT:USER' CONTAINER_NAME
    
    `-w` for write, `-r` for read

7. Verify Permissions (ACLs)

        :::bash
        $ swift -A https://<url>:8080/auth/v1.0 -U ADMIN_ACCOUNT:ADMIN_USER -K ADMIN_PASSWORD -v --insecure stat CONTAINER_NAME
        ... [other output here] ...
        Read ACL: ACCOUNT:USER
        ...

# Deleting stuff

```bash
$ swift -A https://<url>:8080/auth/v1.0 -U ADMIN_ACCOUNT:ADMIN_USER -K ADMIN_PASSWORD -v --insecure delete [CONTAINER_NAME, OBJECT_NAME, ETC]
$ swauth-delete-user -A https://<url>:8080/auth/ -U ADMIN_ACCOUNT:ADMIN_USER -K ADMIN_PASSWORD ACCOUNT USER
```

# Adding permissions via python-swiftclient:

```python
CONNECTION_OBJECT.put_container('CONTAINERNAME', headers={'X-Container-Read':'ACCOUNT:USER'})
```

Or `X-Container-Write`