applb 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 790eeaf3f1533e9cc837cf7fdd54bc13bed473c1
+  data.tar.gz: d4d9a8d487ccda353d5aee0f049a6ba514dfe0e2
+SHA512:
+  metadata.gz: 5793611e0570b1986e5170db44eaf3eb1a5c5ca6244ada4ab48c97463bb8e03ec0b5d789930cf548fc7a32a9b2e0f10356e9d3086105574a3cdb4cfba6be832c
+  data.tar.gz: 11952dc988389246326dd7ee2aceda31a07633258fcc952c1d06a9a14a1f2791351e460702fb6bd72ebf31a3d6f08fc9f8085c11ad0652f2beb795fc0f0c4c31

data/.gitignore

@@ -0,0 +1,12 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+spec/aws_config.yml
+ALBfile
+*~

data/.rspec

@@ -0,0 +1,2 @@
+--format documentation
+--color

data/.travis.yml

@@ -0,0 +1,17 @@
+language: ruby
+sudo: false
+rvm:
+- 2.3.3
+before_install:
+- openssl aes-256-cbc -K $encrypted_be43a4149bae_key -iv $encrypted_be43a4149bae_iv
+  -in aws_config.yml.enc -out spec/aws_config.yml -d
+- gem install bundler
+matrix:
+  allow_failures:
+  - rvm: ruby-head
+env:
+  global:
+  - AWS_REGION=ap-northeast-1
+  - TEST_INTERVAL=3
+  - secure: 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
+  - secure: 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

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in applb.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2017 shinya-watanabe
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,255 @@
+# Applb
+
+[![Build Status](https://travis-ci.org/wata-gh/applb.svg)](https://travis-ci.org/wata-gh/applb)
+
+Applb is a tool to manage ELB v2(ALB).
+It defines the state of ELB v2(ALB) using DSL, and updates ELB v2(ALB) according to DSL.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'applb'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install applb
+
+## Usage
+
+```
+export AWS_ACCESS_KEY_ID='...'
+export AWS_SECRET_ACCESS_KEY='...'
+export AWS_REGION='ap-northeast-1'
+applb -e -o ALBfile  # export ELB v2(ALB)
+vi ALBFile
+applb -a --dry-run
+applb -a             # apply `ALBfile` to ELB
+```
+
+## Help
+
+```
+Usage: applb [options]
+    -h, --help                       Show help
+    -v, --debug                      Show debug log
+    -a, --apply                      apply DSL
+    -e, --export                     export to DSL
+    -n, --dry-run                    dry run
+    -f, --file FILE                  use selected DSL file
+    -s, --split                      split export DSL file to 1 per VPC
+        --split-more
+                                     split export DSL file to 1 per load balancer
+        --no-color
+                                     no color
+    -i, --include-names NAMES        include ELB v2(ALB) names
+    -x, --exclude-names NAMES        exclude ELB v2(ALB) names by regex
+```
+
+## ALBfile
+
+```ruby
+require 'other/albfile'
+
+ec2 "vpc-XXXXXXXX" do
+  elb_v2 "my-app-load-balancer" do
+    subnets(
+      "subnet-XXXXXXXX",
+      "subnet-YYYYYYYY",
+    )
+
+    security_groups(
+      "sg-XXXXXXXX",
+      "sg-YYYYYYYY",
+    )
+
+    scheme("internet-facing") # internal or internet-facing
+
+    ip_address_type("ipv4") # ipv4 or dualstack
+
+    attributes do
+      # currently applb does not create bucket and set bucket policy.
+      # you must create and set bucket policy by yourself.
+      access_logs({
+        s3_enabled: false,
+        s3_bucket: nil,
+        s3_prefix: nil,
+      })
+      idle_timeout timeout_seconds: 60
+      deletion_protection enabled: false
+    end
+
+    target_groups do
+      target_group "my-target-group" do
+        protocol "HTTP" # HTTP or HTTPS
+        port 80
+        vpc_id "vpc-XXXXXXXX"
+        health_check_interval_seconds 30
+        health_check_path "/healthcheck"
+        health_check_port "traffic-port" # specify port number or use traffic-port which indicates the port on which each target receives traffic from the load balancer.
+        health_check_protocol "HTTP" # HTTP or HTTPS
+        health_check_timeout_seconds 5
+        healthy_threshold_count 5
+        unhealthy_threshold_count 2
+        matcher http_code: "200"
+      end
+
+      target_group "my-target-group2" do
+        protocol "HTTP"
+        port 80
+        vpc_id "vpc-XXXXXXXX"
+        health_check_interval_seconds 30
+        health_check_path "/healthcheck"
+        health_check_port "traffic-port"
+        health_check_protocol "HTTP"
+        health_check_timeout_seconds 5
+        healthy_threshold_count 5
+        unhealthy_threshold_count 2
+        matcher http_code: "200" # if needs multiple values set like 200,302 or 200-299
+      end
+    end
+
+    listeners do
+      # https sample
+      listener do
+        # if multiple certificates is needed, call certificates method multiple times.
+        # eg.
+        # certificates certificate_arn: "[certificate arn1]"
+        # certificates certificate_arn: "[certificate arn2]"
+        certificates certificate_arn: "arn:aws:acm:ap-northeast-1:XXXXXXXXXXXX:certificate/XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX"
+        ssl_policy "ELBSecurityPolicy-2015-05"
+        port 443
+        protocol "HTTPS" # HTTP or HTTPS
+
+        default_actions(
+          target_group_name: "my-target-group", # set target_group_name defined above
+          # [optional]
+          # needs this to avoid unnecessary call of create_target_group.
+          target_group_arn: "arn:aws:elasticloadbalancing:ap-northeast-1:XXXXXXXXXXXX:targetgroup/my-target-group/XXXXXXXXXXXXXXXX",
+          type: "forward",
+        )
+
+        rules do
+          # no rules
+        end
+      end
+
+      # http sample
+      listener do
+        port 80
+        protocol "HTTP"
+
+        default_actions(
+          target_group_name: "my-target-group",
+          # [optional]
+          # needs this to avoid unnecessary call of create_target_group.
+          target_group_arn: "arn:aws:elasticloadbalancing:ap-northeast-1:XXXXXXXXXXXX:targetgroup/my-target-group/XXXXXXXXXXXXXXXX",
+          type: "forward",
+        )
+
+        rules do
+          rule do
+            # caution!
+            # rule_arn is needed to update rule_arn.
+            # after created rule_arn you are strongly recommended to write rule_arn.
+            rule_arn "arn:aws:elasticloadbalancing:ap-northeast-1:XXXXXXXXXXXX:listener-rule/app/my-app-load-balancer/XXXXXXXXXXXXXXXX/XXXXXXXXXXXXXXXX/XXXXXXXXXXXXXXXX"
+            # caution!
+            # currently priority is used by set_rule_priorities one by one.
+            # this means if priority is conflicted each other, applb fails to modify rule.
+            # so it is recommended to modify priority number that is not used yet.
+            priority "3"
+
+            actions(
+              target_group_name: "my-target-group2",
+              # [optional]
+              # needs this to avoid unnecessary call of create_target_group.
+              target_group_arn: "arn:aws:elasticloadbalancing:ap-northeast-1:XXXXXXXXXXXX:targetgroup/my-target-group2/XXXXXXXXXXXXXXXX",
+              type: "forward",
+            )
+
+            conditions(
+              field: "path-pattern",
+              values: ["/admin/*"], # * for 0 or more characters and ? for exactly 1 character
+            )
+          end
+
+          rule do
+            rule_arn "arn:aws:elasticloadbalancing:ap-northeast-1:XXXXXXXXXXXX:listener-rule/app/my-app-load-balancer/XXXXXXXXXXXXXXXX/XXXXXXXXXXXXXXXX/XXXXXXXXXXXXXXXX""
+            priority "4"
+
+            actions(
+              target_group_name: "my-target-group2",
+              # [optional]
+              # needs this to avoid unnecessary call of create_target_group.
+              target_group_arn: "arn:aws:elasticloadbalancing:ap-northeast-1:XXXXXXXXXXXX:targetgroup/my-target-group2/XXXXXXXXXXXXXXXX",
+              type: "forward",
+            )
+
+            conditions(
+              field: "path-pattern",
+              values: ["/user/*"],
+            )
+          end
+        end
+      end
+    end
+  end
+end
+```
+
+## Use template
+
+```
+template "target_groups" do
+  target_groups do
+    target_group "my-target-group" do
+      protocol "HTTP"
+      port context.port || 80 # use default 80 or override context value
+      vpc_id "vpc-XXXXXXXX"
+      health_check_interval_seconds 30
+      health_check_path "/healthcheck"
+      health_check_port "traffic-port"
+      health_check_protocol "HTTP"
+      health_check_timeout_seconds 5
+      healthy_threshold_count 5
+      unhealthy_threshold_count 2
+      matcher http_code: "200"
+    end
+end
+
+ec2 "vpc-XXXXXXXXX" do
+  elb_v2 "my-app-load-balancer" do
+    subnets(
+      "subnet-XXXXXXXX",
+      "subnet-YYYYYYYY",
+      )
+    end
+
+    include_template "target_groups", port: 80
+  end
+end
+```
+
+## Test
+
+set your AWS arn for [spec/aws_config.yml.sample](https://github.com/wata-gh/applb/blob/master/spec/aws_config.yml.sample) and rename to spec/aws_config.yml.
+
+## Similar tools
+
+* [Codenize.tools](http://codenize.tools/)
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/wata-gh/applb.
+
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
+

data/Rakefile

@@ -0,0 +1,6 @@
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+task :default => :spec

data/applb.gemspec

@@ -0,0 +1,33 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'applb/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'applb'
+  spec.version       = Applb::VERSION
+  spec.authors       = ['wata']
+  spec.email         = ['wata.gm@gmail.com']
+
+  spec.summary       = %q{Codenize ELB v2 (ALB)}
+  spec.description   = %q{Manage ALB by DSL}
+  spec.homepage      = 'http://github.com/wata-gh/applb'
+  spec.license       = 'MIT'
+
+  spec.files         = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/})
+  end
+  spec.bindir        = 'exe'
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ['lib']
+
+  spec.add_dependency 'aws-sdk', '~> 2'
+  spec.add_dependency 'hashie'
+  spec.add_dependency 'diffy'
+  spec.add_dependency 'term-ansicolor'
+
+  spec.add_development_dependency 'bundler'
+  spec.add_development_dependency 'rake'
+  spec.add_development_dependency 'rspec'
+  spec.add_development_dependency 'pry-byebug'
+end

data/aws_config.yml.enc

@@ -0,0 +1,2 @@
+x����e} �[쬣
+�߯���@�Q'�T(S(����쮈S(�:��v�)�~.1x6B?%�2���W�4�mUX�o��;��l;_$([�˻���D�H<
{�`����[����4n0��g��,r�z����+����h,�$
������#D��*#����m���0�g{­6[~|�4ƀ��1�%�x�g�h�Y���Ύ�9sn��ij|�Ek�g�<�&b:6���w���a?���~;kht��W���*]ÌhI7��VQ){w�?aik��a�I�A�C�^�Z_�挍

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "applb"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/exe/applb

@@ -0,0 +1,5 @@
+#!/usr/bin/env ruby
+# -*- mode: ruby -*-
+require 'applb/cli'
+
+Applb::CLI.start(ARGV)

data/lib/applb.rb

@@ -0,0 +1,14 @@
+require 'logger'
+require 'applb/version'
+
+module Applb
+  def self.logger
+    @logger ||=
+      begin
+        $stdout.sync = true
+        Logger.new($stdout).tap do |l|
+          l.level = Logger::INFO
+        end
+      end
+  end
+end

data/lib/applb/cli.rb

@@ -0,0 +1,80 @@
+require 'applb'
+require 'optparse'
+require 'pathname'
+
+module Applb
+  class CLI
+    def self.start(argv)
+      new(argv).run
+    end
+
+    def initialize(argv)
+      @argv = argv.dup
+      @help = argv.empty?
+      @filepath = 'ALBfile'
+      @options = {
+        color: true,
+        includes: [],
+        excludes: [],
+      }
+      parser.order!(@argv)
+    end
+
+    def run
+      if @help
+        puts parser.help
+      elsif @apply
+        Apply.new(@filepath, @options).run
+      elsif @export
+        Export.new(@filepath, @options).run
+      end
+    end
+
+    private
+
+    def parser
+      @parser ||= OptionParser.new do |opts|
+        opts.version = VERSION
+        opts.on('-h', '--help', 'Show help') { @help = true }
+        opts.on('-v', '--debug', 'Show debug log') { Applb.logger.level = Logger::DEBUG }
+        opts.on('-a', '--apply', 'apply DSL') { @apply = true }
+        opts.on('-e', '--export', 'export to DSL') { @export = true }
+        opts.on('-n', '--dry-run', 'dry run') { @options[:dry_run] = true }
+        opts.on('-f', '--file FILE', 'use selected DSL file') { |v| @filepath = v }
+        opts.on('-s', '--split', 'split export DSL file to 1 per VPC') { @options[:split] = true }
+        opts.on('',   '--split-more', 'split export DSL file to 1 per load balancer') { @options[:split_more] = true }
+        opts.on('',   '--no-color', 'no color') { @options[:color] = false }
+        opts.on('-i', '--include-names NAMES', 'include ELB v2(ALB) names', Array) { |v| @options[:includes] = v }
+        opts.on('-x', '--exclude-names NAMES', 'exclude ELB v2(ALB) names by regex', Array) do |v|
+          @options[:excludes] = v.map! do |name|
+            name =~ /\A\/(.*)\/\z/ ? Regexp.new($1) : Regexp.new("\A#{Regexp.escape(name)}\z")
+          end
+        end
+      end
+    end
+
+    class Apply
+      def initialize(filepath, options)
+        @filepath = filepath
+        @options = options
+      end
+
+      def run
+        require 'applb/client'
+        result = Client.new(@filepath, @options).apply
+      end
+    end
+
+    class Export
+      def initialize(filepath, options)
+        @filepath = filepath
+        @options = options
+      end
+
+      def run
+        require 'applb/client'
+        result = Client.new(@filepath, @options).export
+      end
+    end
+  end
+end