awsec 0.0.1

data/bin/awsec

@@ -0,0 +1,116 @@
+#!/usr/bin/env ruby
+require 'rubygems'
+require File.expand_path(File.join(File.dirname(__FILE__), '..', 'lib', 'aw_sec'))
+require 'json'
+require 'highline/import'
+require 'optparse'
+
+config_path = File.join(Dir.home, '.awsec', 'awsec.json')
+
+defaults = {}
+defaults[:whitelist] = []
+
+if File.exists? config_path
+  defaults = JSON.load(File.read(config_path))
+else
+  FileUtils.mkdir_p File.join(Dir.home, '.awsec')
+
+  defaults[:aws_key] = ask('AWS Key?')
+  defaults[:aws_secret] = ask('AWS Secret?') { |q| q.echo = "*" }
+  defaults[:aws_region] = ask('Default AWS Region?') { |q| q.default = 'us-east-1' }
+  defaults[:group_names] = ask('Default Security Groups? []')
+  defaults[:port] = ask('Default port?', Integer) { |q| q.default = 22 }
+  
+  choose do |menu|
+    menu.prompt = "Please choose your public IP provider?"
+
+    AwSec::Providers::Register.list.each do |provider|
+      menu.choice(provider[:name]) do
+        defaults[:ip_provider] = provider[:class].class.name
+        provider[:class].configure
+      end
+    end
+  end
+  
+  defaults[:whilelist] = ask('Default comma separated IP whitelist? []')
+  
+  File.write(config_path, JSON.dump(defaults))
+  say('Configuration saved')
+end
+
+defaults = defaults.inject({}){|memo,(k,v)| memo[k.to_sym] = v; memo}
+options = defaults
+optparse = OptionParser.new do |opts|
+	opts.banner = "Usage: awsec [options]"
+
+  opts.on('--clear', 'Clears the configuration') do
+    File.delete(config_path) if File.exists? config_path
+    say('Configuration deleted')
+    exit
+  end
+
+	opts.on('-w', '--whitelist WHITELIST', 'Whitelist IP address (comma separated). You can use subnet masks like /32' ) do |lst|
+		options[:whitelist] = lst.split(',')
+	end
+
+	options[:revoke_all] = true
+	opts.on( '-r', '--[no-]revoke', 'Revoke all access before adding new ones (except the whitelist)' ) do |v|
+    options[:revoke_all] = v
+	end
+  
+  opts.on('--groups GROUPS', 'AWS Security Group names to action (comma separated)') do |v|
+    options[:group_names] = v.split(',')
+  end
+  
+	opts.on( '--aws-region REGION', 'AWS Region.' ) do |v|
+    options[:aws_region] = v
+	end
+
+	opts.on( '-p', '--port PORT', 'Port to open.' ) do |v|
+    say "I'm here with #{v}"
+    options[:port] = v
+	end
+  
+	opts.on( '--ip IP', 'IP to open to. You can use subnet masks like /32' ) do |v|
+    options[:ip] = v
+	end
+
+	opts.on( '--provider PROVIDER', 'Public IP provider' ) do |v|
+    options[:ip_provider] = v
+	end
+  
+  opts.on('-v', '--version', 'AwSec version') do
+    say("AwSec v#{VERSION}")
+    exit
+  end
+
+  opts.on( '-h', '--help', 'Display this screen' ) do
+    puts opts
+    exit
+  end
+  
+  opts.on('--show', 'Shows the configuration') do
+    puts options
+    exit
+  end
+  
+end
+
+optparse.parse(ARGV)
+
+# validate
+if !options.has_key?(:group_names) || options[:group_names] == ''
+  say('No Security Group names found')
+  exit
+end
+
+if !options.has_key?(:ip) || options[:ip] == nil || options[:ip] == ''
+  provider = eval("#{options[:ip_provider]}.new")
+  public_ip = provider.get_public_ip(options)
+  say "Your IP address is #{public_ip}"
+else
+  public_ip = options[:ip]
+end
+
+AwSec::Core.secure(options[:group_names], public_ip, options)
+

data/lib/aw_sec.rb

@@ -0,0 +1,5 @@
+require File.join(File.dirname(__FILE__), 'aw_sec', 'core')
+require File.join(File.dirname(__FILE__), 'aw_sec', 'providers')
+
+module AwSec
+end

data/lib/providers/ip_echo.rb

@@ -0,0 +1,18 @@
+require 'net/http'
+
+module AwSec
+  module Providers
+    class EchoIp
+      
+      Register.register('Echo IP', AwSec::Providers::EchoIp.new())
+      
+      def get_public_ip(options)
+        Net::HTTP.get(URI "http://ipecho.net/plain")
+      end
+      
+       def configure
+       end
+       
+    end
+  end
+end

data/lib/providers/my_ip.rb

@@ -0,0 +1,24 @@
+require 'net/http'
+require 'highline/import'
+
+module AwSec
+  module Providers
+    class MyIp
+      
+      Register.register('My IP', AwSec::Providers::MyIp.new())
+      
+      def get_public_ip(options)
+      	Net::HTTP.get(URI "http://auto.whatismyip.com/ip.php?user=#{options[:my_ip_username]}&password=#{options[:my_ip_password]}")
+      end
+      
+      def configure
+        result = {}
+        result[:my_ip_username] = ask('My IP username')
+        result[:my_ip_password] = ask('My IP password') { |q| q.echo = "*" }
+        
+        result
+      end
+
+    end
+  end
+end

data/lib/version.rb

@@ -0,0 +1,52 @@
+# encoding: utf-8
+
+module AwSec
+	class Version
+
+		##
+		# Change the MAJOR, MINOR and PATCH constants below
+		# to adjust the version of the Cloud66 Agent gem
+		#
+		# MAJOR:
+		#  Defines the major version
+		# MINOR:
+		#  Defines the minor version
+		# PATCH:
+		#  Defines the patch version
+		MAJOR, MINOR, PATCH  = 0, 0, 1
+
+		#ie. PRERELEASE_MODIFIER = 'beta1'
+		PRERELEASE_MODIFIER = nil
+
+		##
+		# Returns the major version ( big release based off of multiple minor releases )
+		def self.major
+			MAJOR
+		end
+
+		##
+		# Returns the minor version ( small release based off of multiple patches )
+		def self.minor
+			MINOR
+		end
+
+		##
+		# Returns the patch version ( updates, features and (crucial) bug fixes )
+		def self.patch
+			PATCH
+		end
+
+		##
+		# Returns the prerelease modifier ( not quite ready for public consumption )
+		def self.prerelease_modifier
+			PRERELEASE_MODIFIER
+		end
+
+		##
+		# Returns the current version of the Backup gem ( qualified for the gemspec )
+		def self.current
+			prerelease_modifier.nil? ? "#{major}.#{minor}.#{patch}" : "#{major}.#{minor}.#{patch}.#{prerelease_modifier}"
+		end
+
+	end
+end

metadata

@@ -0,0 +1,83 @@
+--- !ruby/object:Gem::Specification
+name: awsec
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+  prerelease: 
+platform: ruby
+authors:
+- Cloud 66
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-02-25 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: json
+  requirement: &70315292689740 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 1.6.3
+  type: :runtime
+  prerelease: false
+  version_requirements: *70315292689740
+- !ruby/object:Gem::Dependency
+  name: fog
+  requirement: &70315292688100 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.4.0
+  type: :runtime
+  prerelease: false
+  version_requirements: *70315292688100
+- !ruby/object:Gem::Dependency
+  name: highline
+  requirement: &70315292686980 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.6.11
+  type: :runtime
+  prerelease: false
+  version_requirements: *70315292686980
+description: Open and close AWS Security Group from the terminal for more secure operations
+email: khash@cloud66.com
+executables:
+- awsec
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/version.rb
+- lib/aw_sec.rb
+- lib/providers/ip_echo.rb
+- lib/providers/my_ip.rb
+- bin/awsec
+homepage: https://github.com/cloud66/awsec
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.15
+signing_key: 
+specification_version: 3
+summary: AWS Security Toolbelt
+test_files: []