awskeyring 0.9.0 → 1.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 9871d5b6d30539c178819acbd9142004c85443b7
-  data.tar.gz: fb497258e4204746dae39bdd4d5af529de0d354b
+SHA256:
+  metadata.gz: b87abef9f85c6701db2bd73209be0d385ac426b5421aeff5c0f81b1d67b695d9
+  data.tar.gz: 63e772094af9ad179f44b254ccf607418bc33577e67d6fd35c304708bdcf7a43
 SHA512:
-  metadata.gz: b04ba2c7c9f369aba46e44f8621f447e79235ff4a42a5e225e80e2353d3cc22a8d32b11017639a415e7bc1824b082c09917e994cca9798ac93b4688c945e3112
-  data.tar.gz: a0fcdbfbce47d4e6e876f0e26766b3dd2f8f1a6d79fc913ceb11f8b63ae2099de82a070ecb7bcb373a715830e6f3fc9daaa20a8831b0493dd01d9d95ee80e819
+  metadata.gz: b78466f81f87df9e9dd48ac5755ed58b9ea35a84d2f87b4c1fc3e9501cf4545cdc5a4730b412967ef8e2ccae2cf641d4fa05decff75d966b7b47d3e1955c30a5
+  data.tar.gz: 550148fee86d1dcb7bdf3c52b14400ab9d8bdf1e84361b5f77ad0a05c9d43e86cd539a3a0d6617eff288f9a70925f99cf775f4d150596f308e4f16361325dc1d

data/CHANGELOG.md

@@ -1,195 +1,43 @@
-# Change Log
+# Changelog
 
-## [v0.9.0](https://github.com/vibrato/awskeyring/tree/v0.9.0) (2019-04-09)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.8.1...v0.9.0)
+## [v1.1.0](https://github.com/servian/awskeyring/tree/v1.1.0) (2019-11-06)
 
-**Implemented enhancements:**
-
-- Strip whitespace from user input [\#43](https://github.com/vibrato/awskeyring/pull/43) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.8.1](https://github.com/vibrato/awskeyring/tree/v0.8.1) (2019-02-06)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.8.0...v0.8.1)
-
-**Fixed bugs:**
-
-- Fix usage behind PROXIES [\#42](https://github.com/vibrato/awskeyring/pull/42) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.8.0](https://github.com/vibrato/awskeyring/tree/v0.8.0) (2018-12-19)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.7.2...v0.8.0)
-
-**Implemented enhancements:**
-
-- Provide input feedback for secret fields. [\#41](https://github.com/vibrato/awskeyring/pull/41) ([tristanmorgan](https://github.com/tristanmorgan))
-
-**Fixed bugs:**
-
-- Cannot enter secret access key when adding new accounts in 0.7.0   [\#36](https://github.com/vibrato/awskeyring/issues/36)
-
-## [v0.7.2](https://github.com/vibrato/awskeyring/tree/v0.7.2) (2018-12-17)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.7.1...v0.7.2)
-
-**Fixed bugs:**
-
-- Validate that account doesn't already exists. [\#40](https://github.com/vibrato/awskeyring/pull/40) ([tristanmorgan](https://github.com/tristanmorgan))
-- Check for COMMAND param to exec. [\#38](https://github.com/vibrato/awskeyring/pull/38) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.7.1](https://github.com/vibrato/awskeyring/tree/v0.7.1) (2018-12-03)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.7.0...v0.7.1)
-
-**Fixed bugs:**
-
-- Trailing LF was being passed to validator [\#37](https://github.com/vibrato/awskeyring/pull/37) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.7.0](https://github.com/vibrato/awskeyring/tree/v0.7.0) (2018-11-26)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.6.0...v0.7.0)
-
-**Implemented enhancements:**
-
-- Validate existing account. [\#35](https://github.com/vibrato/awskeyring/pull/35) ([tristanmorgan](https://github.com/tristanmorgan))
-- Swap Highline for Thor::LineEditor [\#34](https://github.com/vibrato/awskeyring/pull/34) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.6.0](https://github.com/vibrato/awskeyring/tree/v0.6.0) (2018-10-18)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.5.3...v0.6.0)
-
-**Fixed bugs:**
-
-- Use a default Region for Rotate. [\#33](https://github.com/vibrato/awskeyring/pull/33) ([tristanmorgan](https://github.com/tristanmorgan))
-- Fix JSON time format to use ISO8601. [\#32](https://github.com/vibrato/awskeyring/pull/32) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.5.3](https://github.com/vibrato/awskeyring/tree/v0.5.3) (2018-10-03)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.5.2...v0.5.3)
-
-**Implemented enhancements:**
-
-- Console favourites [\#31](https://github.com/vibrato/awskeyring/pull/31) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.5.2](https://github.com/vibrato/awskeyring/tree/v0.5.2) (2018-09-18)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.5.1...v0.5.2)
-
-**Implemented enhancements:**
-
-- More robust autocomplete. [\#30](https://github.com/vibrato/awskeyring/pull/30) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.5.1](https://github.com/vibrato/awskeyring/tree/v0.5.1) (2018-09-12)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.5.0...v0.5.1)
-
-**Implemented enhancements:**
-
-- Autocomplete flags too. [\#29](https://github.com/vibrato/awskeyring/pull/29) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.5.0](https://github.com/vibrato/awskeyring/tree/v0.5.0) (2018-09-10)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.4.0...v0.5.0)
+[Full Changelog](https://github.com/servian/awskeyring/compare/v1.0.2...v1.1.0)
 
 **Implemented enhancements:**
 
-- Separate update account from add account. [\#28](https://github.com/vibrato/awskeyring/pull/28) ([tristanmorgan](https://github.com/tristanmorgan))
+- Add completion to input prompts [\#53](https://github.com/servian/awskeyring/pull/53) ([tristanmorgan](https://github.com/tristanmorgan))
+- Check for existing \(or not\) role names [\#52](https://github.com/servian/awskeyring/pull/52) ([tristanmorgan](https://github.com/tristanmorgan))
 
-**Merged pull requests:**
+## [v1.0.2](https://github.com/servian/awskeyring/tree/v1.0.2) (2019-10-18)
 
-- Refactor [\#27](https://github.com/vibrato/awskeyring/pull/27) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.4.0](https://github.com/vibrato/awskeyring/tree/v0.4.0) (2018-08-21)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.3.1...v0.4.0)
+[Full Changelog](https://github.com/servian/awskeyring/compare/v1.0.1...v1.0.2)
 
 **Implemented enhancements:**
 
-- I18n - Internationalisation [\#26](https://github.com/vibrato/awskeyring/pull/26) ([tristanmorgan](https://github.com/tristanmorgan))
-- Adds no token flag to skip saved token [\#25](https://github.com/vibrato/awskeyring/pull/25) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.3.1](https://github.com/vibrato/awskeyring/tree/v0.3.1) (2018-07-25)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.3.0...v0.3.1)
+- Move to a new home, Servian. [\#51](https://github.com/servian/awskeyring/pull/51) ([tristanmorgan](https://github.com/tristanmorgan))
+- Use RuboCop-RSpec too and expect\(\) more. [\#48](https://github.com/servian/awskeyring/pull/48) ([tristanmorgan](https://github.com/tristanmorgan))
 
-**Implemented enhancements:**
+## [v1.0.1](https://github.com/servian/awskeyring/tree/v1.0.1) (2019-05-23)
 
-- Warn about key-age [\#24](https://github.com/vibrato/awskeyring/pull/24) ([tristanmorgan](https://github.com/tristanmorgan))
-
-**Fixed bugs:**
-
-- Error adding account when region is not specified [\#21](https://github.com/vibrato/awskeyring/issues/21)
-- Check more locations for current region. [\#23](https://github.com/vibrato/awskeyring/pull/23) ([tristanmorgan](https://github.com/tristanmorgan))
-
-**Merged pull requests:**
-
-- Set a default region on cred verify. [\#22](https://github.com/vibrato/awskeyring/pull/22) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.3.0](https://github.com/vibrato/awskeyring/tree/v0.3.0) (2018-04-12)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.2.0...v0.3.0)
+[Full Changelog](https://github.com/servian/awskeyring/compare/v1.0.0...v1.0.1)
 
 **Implemented enhancements:**
 
-- Validate tokens upon adding them to the keychain [\#18](https://github.com/vibrato/awskeyring/issues/18)
-- Generate a token from IAM User credentials using the GetFederationToken API [\#17](https://github.com/vibrato/awskeyring/issues/17)
-- Test creds against AWS API \(optionally\). [\#20](https://github.com/vibrato/awskeyring/pull/20) ([tristanmorgan](https://github.com/tristanmorgan))
-- Allow STS get\_session\_token without role [\#19](https://github.com/vibrato/awskeyring/pull/19) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.2.0](https://github.com/vibrato/awskeyring/tree/v0.2.0) (2018-04-05)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.1.1...v0.2.0)
-
-**Implemented enhancements:**
-
-- Add AWS CLI credential\_process compatible JSON output [\#16](https://github.com/vibrato/awskeyring/pull/16) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.1.1](https://github.com/vibrato/awskeyring/tree/v0.1.1) (2018-03-25)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.1.0...v0.1.1)
-
-**Merged pull requests:**
-
-- More coverage with tests. [\#15](https://github.com/vibrato/awskeyring/pull/15) ([tristanmorgan](https://github.com/tristanmorgan))
-- Validate MFA code and tweak Autocomplete [\#14](https://github.com/vibrato/awskeyring/pull/14) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.1.0](https://github.com/vibrato/awskeyring/tree/v0.1.0) (2018-03-14)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.0.6...v0.1.0)
-
-**Implemented enhancements:**
-
-- Item refactor [\#13](https://github.com/vibrato/awskeyring/pull/13) ([tristanmorgan](https://github.com/tristanmorgan))
-- Aws refactor [\#12](https://github.com/vibrato/awskeyring/pull/12) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.0.6](https://github.com/vibrato/awskeyring/tree/v0.0.6) (2018-03-01)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.0.5...v0.0.6)
-
-**Implemented enhancements:**
-
-- Credential Rotation Feature [\#4](https://github.com/vibrato/awskeyring/issues/4)
-- Rotate credentials feature. [\#11](https://github.com/vibrato/awskeyring/pull/11) ([tristanmorgan](https://github.com/tristanmorgan))
-
-**Merged pull requests:**
-
-- Input validation [\#10](https://github.com/vibrato/awskeyring/pull/10) ([tristanmorgan](https://github.com/tristanmorgan))
-- Adding a check for incorrect file modes. [\#9](https://github.com/vibrato/awskeyring/pull/9) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.0.5](https://github.com/vibrato/awskeyring/tree/v0.0.5) (2018-02-15)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.0.4...v0.0.5)
+- auto-complete the --version [\#47](https://github.com/servian/awskeyring/pull/47) ([tristanmorgan](https://github.com/tristanmorgan))
 
 **Fixed bugs:**
 
-- Issue on add [\#7](https://github.com/vibrato/awskeyring/issues/7)
-
-**Merged pull requests:**
+- Unfreeze secret strings. [\#46](https://github.com/servian/awskeyring/pull/46) ([tristanmorgan](https://github.com/tristanmorgan))
 
-- fix issue \#7 and add a path to open console. [\#8](https://github.com/vibrato/awskeyring/pull/8) ([tristanmorgan](https://github.com/tristanmorgan))
+## [v1.0.0](https://github.com/servian/awskeyring/tree/v1.0.0) (2019-05-19)
 
-## [v0.0.4](https://github.com/vibrato/awskeyring/tree/v0.0.4) (2018-01-29)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.0.3...v0.0.4)
-
-## [v0.0.3](https://github.com/vibrato/awskeyring/tree/v0.0.3) (2018-01-28)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.0.2...v0.0.3)
+[Full Changelog](https://github.com/servian/awskeyring/compare/v0.10.0...v1.0.0)
 
 **Implemented enhancements:**
 
-- Remove Token feature [\#5](https://github.com/vibrato/awskeyring/issues/5)
-- Implement exec command [\#2](https://github.com/vibrato/awskeyring/issues/2)
-- Add Remove token feature [\#6](https://github.com/vibrato/awskeyring/pull/6) ([tristanmorgan](https://github.com/tristanmorgan))
-- Implement exec feature. [\#3](https://github.com/vibrato/awskeyring/pull/3) ([tristanmorgan](https://github.com/tristanmorgan))
-
-## [v0.0.2](https://github.com/vibrato/awskeyring/tree/v0.0.2) (2018-01-18)
-[Full Changelog](https://github.com/vibrato/awskeyring/compare/v0.0.1...v0.0.2)
-
-**Merged pull requests:**
-
-- Sledgehammer disable of rubocop metrics. [\#1](https://github.com/vibrato/awskeyring/pull/1) ([tristanmorgan](https://github.com/tristanmorgan))
+- More RuboCop changes and tweaked version string. [\#45](https://github.com/servian/awskeyring/pull/45) ([tristanmorgan](https://github.com/tristanmorgan))
 
-## [v0.0.1](https://github.com/vibrato/awskeyring/tree/v0.0.1) (2017-12-25)
 
 
-\* *This Change Log was automatically generated by [github_changelog_generator](https://github.com/skywinder/Github-Changelog-Generator)*
+\* *This Changelog was automatically generated by [github_changelog_generator](https://github.com/github-changelog-generator/github-changelog-generator)*

data/CONTRIBUTING.md

@@ -0,0 +1,48 @@
+# How to contribute
+
+Bug reports and pull requests from users are what keep this project working.
+
+## Basics
+
+1. Create an issue and describe your idea
+2. [Fork it](https://github.com/servian/awskeyring/fork)
+3. Create your feature branch (`git checkout -b my-new-feature`)
+4. Commit your changes (`git commit -am 'Add some feature'`)
+5. Publish the branch (`git push origin my-new-feature`)
+6. Create a new Pull Request
+
+## Checking your work
+
+You can run the test suite.
+
+You can run [RuboCop] to check code style.
+
+You can run [RSpec] to see if anything broke.
+
+You can run [YARD] to see of your code is documented.
+
+The default Rake task, runnable using `rake`.
+
+## Write documentation
+
+This project has documentation in a few places:
+
+### Introduction and usage
+
+A friendly `README.md` written for many audiences.
+
+### Examples and advanced usage
+
+The [wiki].
+
+###  API documentation 
+
+API documentation is written as [YARD] docblocks in the Ruby code.
+
+This is rendered as Web pages on [Rubydoc.info][awskeyring on Rubydoc.info].
+
+[wiki]: https://github.com/servian/awskeyring/wiki
+[YARD]: https://yardoc.org/
+[awskeyring on Rubydoc.info]: https://www.rubydoc.info/gems/awskeyring
+[RuboCop]: https://rubocop.readthedocs.io/en/latest/
+[Rspec]: https://rspec.info

data/Gemfile

@@ -1,13 +1,16 @@
+# frozen_string_literal: true
+
 source 'https://rubygems.org'
 
 # Specify your gem's dependencies in awskeyring.gemspec
 gemspec
 
 group :development do
-  gem 'bundler'
   gem 'github_changelog_generator'
   gem 'rake'
   gem 'rspec'
   gem 'rubocop'
+  gem 'rubocop-performance'
+  gem 'rubocop-rspec'
   gem 'yard'
 end

data/README.md

@@ -1,11 +1,13 @@
 # Awskeyring
 
-* [![Build Status](https://travis-ci.org/vibrato/awskeyring.svg?branch=master)](https://travis-ci.org/vibrato/awskeyring)
+![Awskeyring](https://raw.githubusercontent.com/servian/awskeyring/master/awskeyring-144.png)
+
+* [![Build Status](https://travis-ci.org/servian/awskeyring.svg?branch=master)](https://travis-ci.org/servian/awskeyring)
 * [![Gem Version](https://badge.fury.io/rb/awskeyring.svg)](https://badge.fury.io/rb/awskeyring)
-* [![license MIT](http://img.shields.io/badge/license-MIT-brightgreen.svg)](https://opensource.org/licenses/MIT)
-* [![All Downloads](http://ruby-gem-downloads-badge.herokuapp.com/awskeyring?type=total)](https://rubygems.org/gems/awskeyring)
-* [![Version Downloads](http://ruby-gem-downloads-badge.herokuapp.com/awskeyring?label=downloads-current-version)](https://rubygems.org/gems/awskeyring)
-* [![Documentation](http://img.shields.io/badge/yard-docs-brightgreen.svg)](http://www.rubydoc.info/gems/awskeyring)
+* [![license MIT](https://img.shields.io/badge/license-MIT-brightgreen.svg)](https://opensource.org/licenses/MIT)
+* [![All Downloads](https://ruby-gem-downloads-badge.herokuapp.com/awskeyring?type=total)](https://rubygems.org/gems/awskeyring)
+* [![Version Downloads](https://ruby-gem-downloads-badge.herokuapp.com/awskeyring?label=downloads-current-version)](https://rubygems.org/gems/awskeyring)
+* [![Documentation](https://img.shields.io/badge/yard-docs-brightgreen.svg)](https://www.rubydoc.info/gems/awskeyring)
 
 Awskeyring is a small tool to manage AWS account keys in the macOS Keychain.
 
@@ -24,6 +26,10 @@ Install it with:
 
     $ gem install awskeyring --user-install
 
+## Wiki
+
+Please see the [Wiki](https://github.com/servian/awskeyring/wiki) for full usage instructions and tips.
+
 ## Quick start
 
 First you need to initialise your keychain to hold your AWS credentials.
@@ -38,14 +44,12 @@ Now your keys are stored safely in the macOS keychain. To print environment vari
 
     awskeyring env personal-aws
 
-Alternatively you can create a profile using the credential_process config variable. See the [AWS CLI Config docs](http://docs.aws.amazon.com/cli/latest/topic/config-vars.html#cli-aws-help-config-vars) for more details on this config option.
+Alternatively you can create a profile using the credential_process config variable. See the [AWS CLI Config docs](https://docs.aws.amazon.com/cli/latest/topic/config-vars.html#cli-aws-help-config-vars) for more details on this config option.
 
     [profile personal]
     region = us-west-1
     credential_process = /usr/local/bin/awskeyring json personal-aws
 
-See below and in the [wiki](https://github.com/vibrato/awskeyring/wiki) for more details on usage.
-
 ## Usage
 
 The CLI is using [Thor](http://whatisthor.com) with help provided interactively.
@@ -83,7 +87,7 @@ To set your environment easily the following bash function helps:
 
 ## Development
 
-After checking out the repo, run `bundle update` to install dependencies. Then, run `rake` to run the tests. Run `bundle exec awskeyring` to use the gem in this directory, ignoring other installed copies of this gem.
+After checking out the repo, run `bundle update` to install dependencies. Then, run `rake` to run the tests. Run `bundle exec awskeyring` to use the gem in this directory, ignoring other installed copies of this gem. Awskeyring is tested against the last two versions of Ruby shipped with macOS.
 
 To install this gem onto your local machine, run `bundle exec rake install`.
 
@@ -93,9 +97,9 @@ If you believe you have found a security issue in Awskeyring, please responsibly
 
 ## Contributing
 
-Bug reports and pull requests are welcome on GitHub at https://github.com/vibrato/awskeyring. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
+Bug reports and pull requests are welcome on GitHub at https://github.com/servian/awskeyring. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](https://contributor-covenant.org) code of conduct.
 
 ## License
 
-The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).
 

data/Rakefile

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 require 'bundler/gem_tasks'
 require 'rspec/core/rake_task'
 require 'rubocop/rake_task'
@@ -5,7 +7,10 @@ require 'github_changelog_generator/task'
 require 'yard'
 
 GitHubChangelogGenerator::RakeTask.new :changelog do |config|
+  config.user = 'servian'
+  config.project = 'awskeyring'
   config.future_release = "v#{Awskeyring::VERSION}"
+  config.since_tag = 'v0.10.0'
 end
 
 RuboCop::RakeTask.new do |rubocop|

data/awskeyring.gemspec

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 lib = File.expand_path('lib', __dir__)
 $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 require 'awskeyring/version'
@@ -10,10 +12,10 @@ Gem::Specification.new do |spec|
 
   spec.summary       = 'Manages AWS credentials in the macOS keychain'
   spec.description   = 'Manages AWS credentials in the macOS keychain'
-  spec.homepage      = 'https://github.com/vibrato/awskeyring'
+  spec.homepage      = Awskeyring::HOMEPAGE
   spec.license       = 'MIT'
 
-  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^spec/|^\..*}) }
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^spec/|^\..*|^.*\.png}) }
   spec.bindir        = 'exe'
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']

data/exe/awskeyring

@@ -1,4 +1,5 @@
 #!/usr/bin/env ruby
+# frozen_string_literal: true
 
 require_relative '../lib/awskeyring_command'
 

data/i18n/en.yml

@@ -47,6 +47,7 @@ en:
     path: 'The service PATH to open.'
     role: 'The ROLE to assume.'
     secret: 'AWS account secret.'
+    unset: 'Unset environment variables.'
   message:
     keychain: 'Name for new keychain (default: awskeyring)'
     account: 'account name'

data/lib/awskeyring.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 require 'json'
 require 'keychain'
 require 'awskeyring/validate'
@@ -8,13 +10,13 @@ module Awskeyring # rubocop:disable Metrics/ModuleLength
   # Default rpeferences fole path
   PREFS_FILE = (File.expand_path '~/.awskeyring').freeze
   # Prefix for Roles
-  ROLE_PREFIX = 'role '.freeze
+  ROLE_PREFIX = 'role '
   # Prefix for Accounts
-  ACCOUNT_PREFIX = 'account '.freeze
+  ACCOUNT_PREFIX = 'account '
   # Prefix for Session Keys
-  SESSION_KEY_PREFIX = 'session-key '.freeze
+  SESSION_KEY_PREFIX = 'session-key '
   # Prefix for Session Tokens
-  SESSION_TOKEN_PREFIX = 'session-token '.freeze
+  SESSION_TOKEN_PREFIX = 'session-token '
   # Default keychain Lock period
   FIVE_MINUTES = 300
   # Default warning of key age in days.
@@ -300,4 +302,24 @@ module Awskeyring # rubocop:disable Metrics/ModuleLength
 
     account_name
   end
+
+  # Validate role exists
+  #
+  # @param [String] role_name the associated role name.
+  def self.role_exists(role_name)
+    Awskeyring::Validate.role_name(role_name)
+    raise 'Role does not exist' unless list_role_names.include?(role_name)
+
+    role_name
+  end
+
+  # Validate role does not exists
+  #
+  # @param [String] role_name the associated role name.
+  def self.role_not_exists(role_name)
+    Awskeyring::Validate.role_name(role_name)
+    raise 'Role already exists' if list_role_names.include?(role_name)
+
+    role_name
+  end
 end

data/lib/awskeyring/awsapi.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 require 'aws-sdk-iam'
 require 'cgi'
 require 'json'
@@ -18,7 +20,17 @@ module Awskeyring
     }.to_json.freeze
 
     # AWS Signin url
-    AWS_SIGNIN_URL = 'https://signin.aws.amazon.com/federation'.freeze
+    AWS_SIGNIN_URL = 'https://signin.aws.amazon.com/federation'
+
+    # AWS Env vars
+    AWS_ENV_VARS = %w[
+      AWS_ACCESS_KEY_ID
+      AWS_ACCESS_KEY
+      AWS_SECRET_ACCESS_KEY
+      AWS_SECRET_KEY
+      AWS_SECURITY_TOKEN
+      AWS_SESSION_TOKEN
+    ].freeze
 
     # Twelve hours in seconds
     TWELVE_HOUR = (60 * 60 * 12)
@@ -101,6 +113,35 @@ module Awskeyring
       )
     end
 
+    # Generates Environment Variables for the AWS CLI
+    #
+    # @param [Hash] params including
+    #    [String] account The aws_access_key_id
+    #    [String] secret The aws_secret_access_key
+    #    [String] token The aws_session_token
+    # @return [Hash] env_var hash
+    def self.get_env_array(params = {})
+      env_var = {}
+      env_var['AWS_DEFAULT_REGION'] = 'us-east-1' unless region
+      env_var['AWS_ACCOUNT_NAME'] = params[:account] if params[:account]
+
+      if params[:key]
+        env_var['AWS_ACCESS_KEY_ID'] = params[:key]
+        env_var['AWS_ACCESS_KEY'] = params[:key]
+      end
+
+      if params[:secret]
+        env_var['AWS_SECRET_ACCESS_KEY'] = params[:secret]
+        env_var['AWS_SECRET_KEY'] = params[:secret]
+      end
+
+      if params[:token]
+        env_var['AWS_SECURITY_TOKEN'] = params[:token]
+        env_var['AWS_SESSION_TOKEN'] = params[:token]
+      end
+      env_var
+    end
+
     # Verify Credentials are active and valid
     #
     # @param [String] key The aws_access_key_id
@@ -110,8 +151,8 @@ module Awskeyring
         ENV['AWS_DEFAULT_REGION'] = 'us-east-1' unless region
         sts = Aws::STS::Client.new(access_key_id: key, secret_access_key: secret)
         sts.get_caller_identity
-      rescue Aws::Errors::ServiceError => err
-        warn err.to_s
+      rescue Aws::Errors::ServiceError => e
+        warn e.to_s
         exit 1
       end
       true
@@ -218,13 +259,13 @@ module Awskeyring
       retries ||= 1
       begin
         yield block
-      rescue Aws::IAM::Errors::InvalidClientTokenId => err
+      rescue Aws::IAM::Errors::InvalidClientTokenId => e
         if retries < 4
           sleep 2**retries
           retries += 1
           retry
         end
-        warn err.message
+        warn e.message
         exit 1
       end
     end

data/lib/awskeyring/input.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 require 'io/console'
 
 # Awskeyring Module,
@@ -13,7 +15,7 @@ module Awskeyring
     end
 
     private_class_method def self.hide_input # rubocop:disable Metrics/MethodLength
-      password = ''
+      password = +''
       loop do
         character = $stdin.getch
         break unless character

data/lib/awskeyring/validate.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # Awskeyring Module,
 # gives you an interface to access keychains and items.
 module Awskeyring

data/lib/awskeyring/version.rb

@@ -1,4 +1,8 @@
+# frozen_string_literal: true
+
 module Awskeyring
-  # The Gems version number
-  VERSION = '0.9.0'.freeze
+  # The Gem's version number
+  VERSION = '1.1.0'
+  # The Gem's homepage
+  HOMEPAGE = 'https://github.com/servian/awskeyring'
 end

data/lib/awskeyring_command.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 require 'i18n'
 require 'thor'
 
@@ -13,7 +15,9 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   I18n.backend.load_translations
 
   map %w[--version -v] => :__version
+  map %w[--help -h] => :help
   map ['init'] => :initialise
+  map ['adr'] => :add_role
   map ['con'] => :console
   map ['ls'] => :list
   map ['lsr'] => :list_role
@@ -27,7 +31,8 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   desc '--version, -v', I18n.t('__version.desc')
   # print the version number
   def __version
-    puts Awskeyring::VERSION
+    puts "Awskeyring v#{Awskeyring::VERSION}"
+    puts "Homepage #{Awskeyring::HOMEPAGE}"
   end
 
   desc 'initialise', I18n.t('initialise.desc')
@@ -39,7 +44,12 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
       exit 1
     end
 
-    keychain = ask_missing(existing: options[:keychain], message: I18n.t('message.keychain'))
+    keychain = ask_check(
+      existing: options[:keychain],
+      flags: 'optional',
+      message: I18n.t('message.keychain'),
+      validator: Awskeyring::Validate.method(:account_name)
+    )
     keychain = 'awskeyring' if keychain.empty?
 
     puts I18n.t('message.newkeychain')
@@ -65,19 +75,26 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
 
   desc 'env ACCOUNT', I18n.t('env.desc')
   method_option 'no-token', type: :boolean, aliases: '-n', desc: I18n.t('method_option.notoken'), default: false
+  method_option 'unset', type: :boolean, aliases: '-u', desc: I18n.t('method_option.unset'), default: false
   # Print Env vars
   def env(account = nil)
-    account = ask_check(
-      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists)
-    )
-    cred = age_check_and_get(account: account, no_token: options['no-token'])
-    put_env_string(cred)
+    if options['unset']
+      put_env_string(account: nil, key: nil, secret: nil, token: nil)
+    else
+      account = ask_check(
+        existing: account, message: I18n.t('message.account'),
+        validator: Awskeyring.method(:account_exists),
+        limited_to: Awskeyring.list_account_names
+      )
+      cred = age_check_and_get(account: account, no_token: options['no-token'])
+      put_env_string(cred)
+    end
   end
 
   desc 'json ACCOUNT', I18n.t('json.desc')
   method_option 'no-token', type: :boolean, aliases: '-n', desc: I18n.t('method_option.notoken'), default: false
   # Print JSON for use with credential_process
-  def json(account = nil)
+  def json(account)
     account = ask_check(
       existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists)
     )
@@ -100,7 +117,7 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
       exit 1
     end
     cred = age_check_and_get(account: account, no_token: options['no-token'])
-    env_vars = env_vars(cred)
+    env_vars = Awskeyring::Awsapi.get_env_array(cred)
     begin
       pid = Process.spawn(env_vars, command.join(' '))
       Process.wait pid
@@ -126,11 +143,11 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
     )
     secret = ask_check(
       existing: options[:secret], message: I18n.t('message.secret'),
-      secure: true, validator: Awskeyring::Validate.method(:secret_access_key)
+      flags: 'secure', validator: Awskeyring::Validate.method(:secret_access_key)
     )
     mfa = ask_check(
       existing: options[:mfa], message: I18n.t('message.mfa'),
-      optional: true, validator: Awskeyring::Validate.method(:mfa_arn)
+      flags: 'optional', validator: Awskeyring::Validate.method(:mfa_arn)
     )
     Awskeyring::Awsapi.verify_cred(key: key, secret: secret) unless options['no-remote']
     Awskeyring.add_account(
@@ -147,16 +164,18 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   method_option :secret, type: :string, aliases: '-s', desc: I18n.t('method_option.secret')
   method_option 'no-remote', type: :boolean, aliases: '-r', desc: I18n.t('method_option.noremote'), default: false
   # Update an Account
-  def update(account = nil) # rubocop:disable Metrics/MethodLength
+  def update(account = nil) # rubocop:disable Metrics/MethodLength, Metrics/AbcSize
     account = ask_check(
-      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists)
+      existing: account, message: I18n.t('message.account'),
+      validator: Awskeyring.method(:account_exists),
+      limited_to: Awskeyring.list_account_names
     )
     key = ask_check(
       existing: options[:key], message: I18n.t('message.key'), validator: Awskeyring::Validate.method(:access_key)
     )
     secret = ask_check(
       existing: options[:secret], message: I18n.t('message.secret'),
-      secure: true, validator: Awskeyring::Validate.method(:secret_access_key)
+      flags: 'secure', validator: Awskeyring::Validate.method(:secret_access_key)
     )
     Awskeyring::Awsapi.verify_cred(key: key, secret: secret) unless options['no-remote']
     Awskeyring.update_account(
@@ -174,7 +193,7 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   def add_role(role = nil)
     role = ask_check(
       existing: role, message: I18n.t('message.role'),
-      validator: Awskeyring::Validate.method(:role_name)
+      validator: Awskeyring.method(:role_not_exists)
     )
     arn = ask_check(
       existing: options[:arn], message: I18n.t('message.arn'),
@@ -192,7 +211,8 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   # Remove an account
   def remove(account = nil)
     account = ask_check(
-      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists)
+      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists),
+      limited_to: Awskeyring.list_account_names
     )
     Awskeyring.delete_account(account: account, message: I18n.t('message.delaccount', account: account))
   end
@@ -201,7 +221,8 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   # remove a session token
   def remove_token(account = nil)
     account = ask_check(
-      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists)
+      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists),
+      limited_to: Awskeyring.list_account_names
     )
     Awskeyring.delete_token(account: account, message: I18n.t('message.deltoken', account: account))
   end
@@ -211,7 +232,8 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   # remove a role
   def remove_role(role = nil)
     role = ask_check(
-      existing: role, message: I18n.t('message.role'), validator: Awskeyring::Validate.method(:role_name)
+      existing: role, message: I18n.t('message.role'), validator: Awskeyring.method(:role_exists),
+      limited_to: Awskeyring.list_role_names
     )
     Awskeyring.delete_role(role_name: role, message: I18n.t('message.delrole', role: role))
   end
@@ -220,7 +242,10 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   # rotate Account keys
   def rotate(account = nil) # rubocop:disable Metrics/MethodLength
     account = ask_check(
-      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists)
+      existing: account,
+      message: I18n.t('message.account'),
+      validator: Awskeyring.method(:account_exists),
+      limited_to: Awskeyring.list_account_names
     )
     cred = Awskeyring.get_valid_creds(account: account, no_token: true)
 
@@ -231,8 +256,8 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
         secret: cred[:secret],
         key_message: I18n.t('message.rotate', account: account)
       )
-    rescue Aws::Errors::ServiceError => err
-      warn err.to_s
+    rescue Aws::Errors::ServiceError => e
+      warn e.to_s
       exit 1
     end
 
@@ -252,12 +277,16 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   # generate a sessiopn token
   def token(account = nil, role = nil, code = nil) # rubocop:disable all
     account = ask_check(
-      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists)
+      existing: account,
+      message: I18n.t('message.account'),
+      validator: Awskeyring.method(:account_exists),
+      limited_to: Awskeyring.list_account_names
     )
     role ||= options[:role]
     if role
       role = ask_check(
-        existing: role, message: I18n.t('message.role'), validator: Awskeyring::Validate.method(:role_name)
+        existing: role, message: I18n.t('message.role'), validator: Awskeyring.method(:role_exists),
+        limited_to: Awskeyring.list_role_names
       )
     end
     code ||= options[:code]
@@ -285,8 +314,8 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
         user: ENV['USER']
       )
       Awskeyring.delete_token(account: account, message: '# Removing STS credentials')
-    rescue Aws::Errors::ServiceError => err
-      warn err.to_s
+    rescue Aws::Errors::ServiceError => e
+      warn e.to_s
       exit 1
     end
 
@@ -309,7 +338,10 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
   # Open the AWS Console
   def console(account = nil) # rubocop:disable Metrics/AbcSize, Metrics/MethodLength
     account = ask_check(
-      existing: account, message: I18n.t('message.account'), validator: Awskeyring.method(:account_exists)
+      existing: account,
+      message: I18n.t('message.account'),
+      validator: Awskeyring.method(:account_exists),
+      limited_to: Awskeyring.list_account_names
     )
     cred = age_check_and_get(account: account, no_token: options['no-token'])
 
@@ -323,8 +355,8 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
         path: path,
         user: ENV['USER']
       )
-    rescue Aws::Errors::ServiceError => err
-      warn err.to_s
+    rescue Aws::Errors::ServiceError => e
+      warn e.to_s
       exit 1
     end
 
@@ -369,7 +401,7 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
     comp_len = 3 if curr.start_with?('-')
 
     case prev
-    when 'help'
+    when 'help', File.basename($PROGRAM_NAME)
       comp_len = 0
     when 'remove-role', '-r', 'rmr'
       comp_len = 2
@@ -419,36 +451,25 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
       self.class.all_commands[command].options.values.map(&:switch_name)
   end
 
-  def env_vars(cred)
-    env_var = {}
-    env_var['AWS_DEFAULT_REGION'] = 'us-east-1' unless Awskeyring::Awsapi.region
-    env_var['AWS_ACCOUNT_NAME'] = cred[:account]
-    env_var['AWS_ACCESS_KEY_ID'] = cred[:key]
-    env_var['AWS_ACCESS_KEY'] = cred[:key]
-    env_var['AWS_SECRET_ACCESS_KEY'] = cred[:secret]
-    env_var['AWS_SECRET_KEY'] = cred[:secret]
-    if cred[:token]
-      env_var['AWS_SECURITY_TOKEN'] = cred[:token]
-      env_var['AWS_SESSION_TOKEN'] = cred[:token]
-    end
-    env_var
-  end
-
   def put_env_string(cred)
-    env_var = env_vars(cred)
+    env_var = Awskeyring::Awsapi.get_env_array(cred)
     env_var.each { |var, value| puts "export #{var}=\"#{value}\"" }
-
-    puts 'unset AWS_SECURITY_TOKEN' unless cred[:token]
-    puts 'unset AWS_SESSION_TOKEN' unless cred[:token]
+    Awskeyring::Awsapi::AWS_ENV_VARS.each { |key| puts "unset #{key}" unless env_var.key?(key) }
   end
 
-  def ask_check(existing:, message:, secure: false, optional: false, validator: nil)
+  def ask_check(existing:, message:, flags: nil, validator: nil, limited_to: nil) # rubocop:disable Metrics/MethodLength
     retries ||= 3
     begin
-      value = ask_missing(existing: existing, message: message, secure: secure, optional: optional)
-      value = validator.call(value) unless value.empty? && optional
-    rescue RuntimeError => err
-      warn err.message
+      value = ask_missing(
+        existing: existing,
+        message: message,
+        secure: 'secure'.eql?(flags),
+        optional: 'optional'.eql?(flags),
+        limited_to: limited_to
+      )
+      value = validator.call(value) unless value.empty? && 'optional'.eql?(flags)
+    rescue RuntimeError => e
+      warn e.message
       existing = nil
       retry unless (retries -= 1).zero?
       exit 1
@@ -456,15 +477,17 @@ class AwskeyringCommand < Thor # rubocop:disable Metrics/ClassLength
     value
   end
 
-  def ask_missing(existing:, message:, secure: false, optional: false)
-    existing || ask(message: message, secure: secure, optional: optional).strip
+  def ask_missing(existing:, message:, secure: false, optional: false, limited_to: nil)
+    existing || ask(message: message, secure: secure, optional: optional, limited_to: limited_to).strip
   end
 
-  def ask(message:, secure: false, optional: false)
+  def ask(message:, secure: false, optional: false, limited_to: nil)
     if secure
       Awskeyring::Input.read_secret(message.rjust(20) + ': ')
     elsif optional
       Thor::LineEditor.readline((message + ' (optional)').rjust(20) + ': ')
+    elsif limited_to
+      Thor::LineEditor.readline(message.rjust(20) + ': ', limited_to: limited_to)
     else
       Thor::LineEditor.readline(message.rjust(20) + ': ')
     end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: awskeyring
 version: !ruby/object:Gem::Version
-  version: 0.9.0
+  version: 1.1.0
 platform: ruby
 authors:
 - Tristan Morgan
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2019-04-09 00:00:00.000000000 Z
+date: 2019-11-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-iam
@@ -76,6 +76,7 @@ extra_rdoc_files: []
 files:
 - CHANGELOG.md
 - CODE_OF_CONDUCT.md
+- CONTRIBUTING.md
 - Gemfile
 - LICENSE.txt
 - README.md
@@ -89,7 +90,7 @@ files:
 - lib/awskeyring/validate.rb
 - lib/awskeyring/version.rb
 - lib/awskeyring_command.rb
-homepage: https://github.com/vibrato/awskeyring
+homepage: https://github.com/servian/awskeyring
 licenses:
 - MIT
 metadata: {}
@@ -108,8 +109,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.5.2.3
+rubygems_version: 3.0.3
 signing_key: 
 specification_version: 4
 summary: Manages AWS credentials in the macOS keychain