bim 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 58edf06fd00d02407176300f51c8a1b4106bb60b
+  data.tar.gz: 7d0e9084f6d50f8be333f53799cb34af28fbccc5
+SHA512:
+  metadata.gz: 8ec3adf9c230316a7061561d7384f0f58728b3be03a49030418e825e52133218d95b25d8d6db5d35caccbe6fdcd8c0620c5e4757a19d9148033d9b79785ee980
+  data.tar.gz: d12d48c429d1b85b160e7a79d1d97ff51c0963ac630e4610261f746766bdf77b18246b93a6a3b92c190b1aed881cbd33536bef7f58573b1cc3456f3b440e0d05

data/.gitignore

@@ -0,0 +1,15 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+/bin/*
+!/bin/bim
+/vendor/
+
+# rspec failure tracking
+.rspec_status

data/.rubocop.yml

@@ -0,0 +1,20 @@
+AllCops:
+  TargetRubyVersion: 2.4
+
+Metrics/AbcSize:
+  Max: 25
+
+Metrics/LineLength:
+  Max: 120
+
+Metrics/ClassLength:
+  Max: 120
+
+Metrics/MethodLength:
+  Max: 15
+
+Metrics/CyclomaticComplexity:
+  Max: 10
+
+Style/FrozenStringLiteralComment:
+  Enabled: false

data/Gemfile

@@ -0,0 +1,6 @@
+source 'https://rubygems.org'
+
+git_source(:github) { |repo_name| "https://github.com/#{repo_name}" }
+
+# Specify your gem's dependencies in bim.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2017 littlekbt
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,133 @@
+# Bim
+
+Bim is cli command to operate BIG-IP.  
+
+※Support ssl certificate operation and sync operation now.
+
+## Requirement
+- Ruby 2.3.0 +
+
+## Installtion
+
+```sh
+$ gem install bim
+```
+
+local install
+```sh
+$ git clone https://github.com/littlekbt/bim.git
+$ cd bim
+$ bundle
+$ gem build bim.gemspec
+$ gem install --local bim-x.x.x.gem
+```
+
+## Setup
+all commands needs three environment vriables.
+
+- `BIGIP_HOST`: set bigip host
+- `BIGIP_USER_ID`: set bigip admin userid
+- `BIGIP_PASSWD`: set bigip admin password
+
+if you want to use `--test` option, set TEST_VS vriable.
+- `TEST_VS`: set test virtual server
+
+## Features
+There are many features for deployment SSL Certificate from CLI to BIGIP.
+
+#### Metadata
+- get active host in the device group  
+- get group name that BIGIP_HOST belongs
+
+#### Virtual Server
+- get virutal server list and detail configuration
+
+#### Sync
+- execute sync action  
+- get sync state
+
+#### SSL
+- upload key and certificate  
+- create ssl client profile  
+- replace old ssl client profile to new ssl client profile
+
+## Usage
+
+```sh
+$ bim [SUB COMMAND] [ARGS]
+```
+### Command-line Usage
+
+#### Metadata
+
+```sh
+# output active devices in the device group that BIGIP_HOST belongs.
+$ bim meta actives
+
+# output device group name.
+$ bim meta device_groups
+```
+
+#### Virtual Server
+
+```sh
+# output virtual server list
+$ bim vs list
+
+# output one of the virtual server list
+$ bim vs detail Virtual_Server_Name
+```
+
+#### Sync
+
+```sh
+# sync BIGIP_HOST configuration to GROUP.
+$ bim sync GROUP
+
+# output sync state.  
+$ bim sync state
+```
+
+#### SSL
+
+```sh
+# output bundles
+$ bim ssl bundles
+
+# output ssl profiles(property: certficate, private key, bundle)
+$ bim ssl profiles
+
+# output specified ssl profile
+$ bim ssl detail SSL Profile Name
+
+# upload and create_ssl_profile and replace.
+$ bim ssl deploy OLD_SSL_PROFILE_NAME NEW_SSL_PROFILE_NAME PRIVATE_KEYFILE CERTIFICATE_FILE CHAIN
+
+# set `--test` option, deploy to only virtual server specified by TEST_VS environment vriable.
+$ TEST_VS=test_virtual_server bim deploy example.com.20160606 example.com.20170606 /path/to/example.com.key.20170606 /path/to/example.com.crt.20170606 chain --test
+
+# upload private key and certificate.
+$ bim ssl upload CERTIFICATE_PROFILE_NAME PRIVATE_KEYFILE(absolute path) CERTIFICATE_FILE(absolute path)
+
+# upload private key.
+$ bim ssl upload_key CERTIFICATE_PROFILE_NAME PRIVATE_KEYFILE(absolute path)
+
+# upload certificate.
+$ bim ssl upload_crt CERTIFICATE_PROFILE_NAME CERTIFICATE_FILE(absolute path)
+
+# create ssl profile.
+$ bim ssl create_profile SSL_PROFILE_NAME CHAIN
+
+# replace virtual server's ssl profile using OLD_SSL_PROFILE_NAME to NEW_SSL_PROFILE_NAME.
+$ bim ssl replace OLD_SSL_PROFILE_NAME NEW_SSL_PROFILE_NAME
+
+# can use `--test` option the same as deploy.
+$ TEST_VS=test_virtual_server bim replace OLD_SSL_PROFILE_NAME NEW_SSL_PROFILE_NAME --test
+```
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
+
+## Author
+Littlekbt

data/Rakefile

@@ -0,0 +1,6 @@
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
+
+RSpec::Core::RakeTask.new(:spec)
+
+task default: :spec

data/bim.gemspec

@@ -0,0 +1,26 @@
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'bim/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'bim'
+  spec.version       = Bim::VERSION
+  spec.authors       = ['littlekbt']
+  spec.email         = ['kr.kubota.11@gmail.com']
+
+  spec.summary       = 'bim is BigIP cli tool'
+  spec.homepage      = 'https://github.com/littlekbt/bim'
+  spec.license       = 'MIT'
+
+  spec.files         = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/})
+  end
+  spec.executables << 'bim'
+  spec.require_paths = ['lib']
+
+  spec.add_dependency 'thor', '~> 0.20.0'
+
+  spec.add_development_dependency 'bundler', '~> 1.15'
+  spec.add_development_dependency 'rake', '~> 10.0'
+  spec.add_development_dependency 'rspec', '~> 3.0'
+end

data/bin/bim

@@ -0,0 +1,15 @@
+#!/usr/bin/env ruby
+require 'bundler/setup'
+require 'bim'
+
+begin
+  Bim::CLI.start
+rescue ::Bim::UnsetHostEnvironmentError
+  puts({ 'error' => 'not exist BIGIP_HOST environment variable' }.to_json)
+rescue ::Bim::UnsetUserIDEnvironmentError
+  puts({ 'error' => 'not exist BIGIP_USER_ID environment variable' }.to_json)
+rescue ::Bim::UnsetPasswordEnvironmentError
+  puts({ 'error' => 'not exist BIGIP_PASSWD environment variable' }.to_json)
+rescue ::Bim::UnauthorizedError
+  puts({ 'error' => 'unauthorized' }.to_json)
+end

data/completions/bim.bash

@@ -0,0 +1,15 @@
+_bim() {
+  COMPREPLY=()
+  local cur prev
+  _get_comp_words_by_ref -n : cur prev
+
+  if [ "$COMP_CWORD" -eq 1 ]; then
+    COMPREPLY=( $(compgen -W "$(bim help | tail -n +2 | awk '{ print $2}')" -- "$cur") )
+  elif [ $COMP_CWORD -eq 2 ]; then
+    if [ $prev = "ssl" ] || [ $prev = "meta" ] || [ $prev = "sync" ]; then
+      COMPREPLY=( $(compgen -W "$(bim $prev help | tail -n +2 | awk '{ print $3}')" -- $cur) )
+    fi
+  fi
+}
+
+complete -F _bim bim

data/lib/bim/action/meta.rb

@@ -0,0 +1,37 @@
+module Bim
+  module Action
+    # Meta class uses by Bim::Subcommands::Meta
+    class Meta
+      extend Bim::Util
+
+      DEVICE_PATH = '/mgmt/tm/cm/device'.freeze
+      DEVICE_GROUP_PATH = '/mgmt/tm/cm/deviceGroup'.freeze
+
+      class << self
+        def actives
+          uri = URI.join(Bim::BASE_URL, Bim::Action::Meta::DEVICE_PATH)
+          JSON
+            .parse(get_body(uri))['items']
+            .select { |item| item['failoverState'] == 'active' }
+            .inject([]) do |infos, item|
+              infos.push(hostname: item['hostname'], ip: item['managementIp'])
+            end.to_json
+        end
+
+        def device_groups
+          uri = URI.join(Bim::BASE_URL, Bim::Action::Meta::DEVICE_GROUP_PATH)
+          JSON
+            .parse(get_body(uri))['items']
+            .select { |item| item['type'] == 'sync-failover' }
+            .inject([]) do |infos, item|
+              m = if item&.dig('devicesReference')&.dig('link')
+                    uri_r = URI.parse(item['devicesReference']['link'].sub('localhost', BIGIP_HOST))
+                    JSON.parse(get_body(uri_r))['items'].map { |item_in| item_in['name'] }
+                  end
+              infos.push(name: item['name'], members: m)
+            end.to_json
+        end
+      end
+    end
+  end
+end

data/lib/bim/action/ssl.rb

@@ -0,0 +1,133 @@
+module Bim
+  module Action
+    # SSL class used by Bim::Subcommands::SSL
+    class SSL
+      extend Bim::Util
+
+      UPLOAD_PATH  = '/mgmt/shared/file-transfer/uploads/'.freeze
+      INSTALL_PATH = {
+        key:  '/mgmt/tm/sys/crypto/key',
+        crt: '/mgmt/tm/sys/crypto/cert'
+      }.freeze
+      CREATE_SSL_PROFILE_PATH = '/mgmt/tm/ltm/profile/clientSsl'.freeze
+      VS_PATH = '/mgmt/tm/ltm/virtual'.freeze
+      CRT_FILES_PATH = '/mgmt/tm/sys/file/sslCert'.freeze
+      CRT_PROFILES_PATH = '/mgmt/tm/ltm/profile/client-ssl'.freeze
+
+      class << self
+        def bundles
+          uri = URI.join(Bim::BASE_URL, Bim::Action::SSL::CRT_FILES_PATH)
+          JSON
+            .parse(get_body(uri))['items']
+            .select { |item| item['isBundle'] == 'true' }
+            .map do |item|
+              { 'name' => item['name'].split('.')[0...-1].join('.') }
+            end.to_json
+        end
+
+        def profiles
+          uri = URI.join(Bim::BASE_URL, Bim::Action::SSL::CRT_PROFILES_PATH)
+          JSON.parse(get_body(uri))['items'].map do |item|
+            { 'name' => item['name'], 'fullPath' => item['fullPath'], 'key' => item['key'], 'chain' => item['chain'] }
+          end.to_json
+        end
+
+        def detail(profile_name)
+          uri = URI.join(Bim::BASE_URL, Bim::Action::SSL::CRT_PROFILES_PATH)
+          JSON
+            .parse(get_body(uri))['items']
+            .select { |item| item['name'] == profile_name || item['fullPath'] == profile_name }
+            .map do |item|
+            { 'name' => item['name'], 'fullPath' => item['fullPath'], 'key' => item['key'], 'chain' => item['chain'] }
+          end.to_json
+        end
+
+        def upload(filepath)
+          f = File.read(filepath)
+          uri = URI.join(Bim::BASE_URL, Bim::Action::SSL::UPLOAD_PATH, File.basename(filepath))
+          req = request(uri, Bim::AUTH, 'application/octet-stream', 'POST', f) do |req_in|
+            req_in['Content-Length'] = f.size
+            req_in['Content-Range']  = "0-#{f.size - 1}/#{f.size}"
+            req_in
+          end
+
+          http(uri).request(req).body
+        end
+
+        def install(type, crt_name, local_file_path)
+          uri = URI.join(Bim::BASE_URL, Bim::Action::SSL::INSTALL_PATH[type.to_sym])
+          req = request(
+            uri,
+            Bim::AUTH,
+            'application/json',
+            'POST',
+            { 'command' => 'install',
+              'name' => crt_name,
+              'from-local-file' => local_file_path }.to_json
+          )
+
+          http(uri).request(req).body
+        end
+
+        def create_ssl_profile(profilename, chain)
+          uri = URI.join(Bim::BASE_URL, Bim::Action::SSL::CREATE_SSL_PROFILE_PATH)
+          j = { 'name' => profilename,
+                'ciphers' => 'DEFAULT:!SSLv3',
+                'certKeyChain' => [
+                  { 'name' => 'default',
+                    'key'   => "#{profilename}.key",
+                    'cert'  => "#{profilename}.crt",
+                    'chain' => "#{chain}.crt" }
+                ] }.to_json
+
+          req = request(uri, Bim::AUTH, 'application/json', 'POST', j)
+
+          http(uri).request(req).body
+        end
+
+        # rubocop:disable Metrics/AbcSize
+        def replace(old_profilename, new_profilename, test = nil)
+          result = { target_vs: [], change_vs: [], fail_vs: [] }
+          JSON.parse(vs_list)['items'].each do |vs|
+            next if test && vs['name'] != Bim::TEST_VS
+
+            names = JSON.parse(profiles(vs['profilesReference']['link']))['items'].map { |p| p['name'] }
+
+            next unless names.include?(old_profilename)
+            # can not update only diff.
+            old_names = names.map { |name| "/Common/#{name}" }
+            names.delete(old_profilename) && names.push(new_profilename)
+            names = names.map { |name| "/Common/#{name}" }
+
+            next unless yes_or_no?(output_msg(vs['name'], old_names, names))
+
+            result[:target_vs] << vs['name']
+            res = update_profiles(vs['selfLink'], names)
+            res.code == '200' ? result[:change_vs] << vs['name'] : result[:fail_vs] << vs['name']
+          end
+          result.to_json
+        end
+
+        private
+
+        def update_profiles(link, names)
+          uri = URI.parse(link.sub('localhost', BIGIP_HOST))
+          req = request(uri, Bim::AUTH, 'application/json', 'PATCH', { profiles: names }.to_json)
+
+          http(uri).request(req)
+        end
+
+        def output_msg(vs_name, old_names, new_names)
+          puts <<~MSG
+            virtual server: #{vs_name}
+            replace #{old_names} to #{new_names}
+            diff:
+              --: #{(old_names - new_names)}
+              ++: #{(new_names - old_names)}
+MSG
+          print 'is it ok? [y|n]: '
+        end
+      end
+    end
+  end
+end

data/lib/bim/action/sync.rb

@@ -0,0 +1,47 @@
+module Bim
+  module Action
+    # Sync class used by Bim::Subcommands::Sync
+    class Sync
+      extend Bim::Util
+
+      SYNC_PATH = '/mgmt/tm/cm'.freeze
+      SYNC_STATE_PATH = '/mgmt/tm/cm/syncStatus'.freeze
+      FAILOVER_STATE_PATH = '/mgmt/tm/cm/failoverStatus'.freeze
+
+      class << self
+        def sync!(dest)
+          msg = "you want to sync #{BIGIP_HOST} configuration to #{dest}? [y|n]"
+          return { 'message' => "cancel sync #{BIGIP_HOST} to #{dest}" } unless yes_or_no?(msg)
+          uri = URI.join(Bim::BASE_URL, Bim::Action::Sync::SYNC_PATH)
+          j = { "command": 'run', "utilCmdArgs": "config-sync to-group #{dest}" }
+          req = request(uri, Bim::AUTH, 'application/json', 'POST', j.to_json)
+          http(uri).request(req).body
+        end
+
+        def state
+          uri = URI.join(Bim::BASE_URL, Bim::Action::Sync::SYNC_STATE_PATH)
+          req = request(uri, Bim::AUTH, 'application/json')
+          res = http(uri).request(req)
+          body = JSON.parse(res.body)
+          body['entries'].each_with_object({}) do |(_key, value), info|
+            entries = value['nestedStats']['entries']
+            info['color']   = entries['color']['description']
+            info['summary'] = entries['summary']['description']
+          end.to_json
+        end
+
+        def failover_state
+          uri = URI.join(Bim::BASE_URL, Bim::Action::Sync::FAILOVER_STATE_PATH)
+          req = request(uri, Bim::AUTH, 'application/json')
+          body = JSON.parse(http(uri).request(req).body)
+          body['entries'].each_with_object({}) do |(_key, value), info|
+            entries = value['nestedStats']['entries']
+            info['color']   = entries['color']['description']
+            info['summary'] = entries['summary']['description']
+            info['status']  = entries['status']['description']
+          end.to_json
+        end
+      end
+    end
+  end
+end

data/lib/bim/action/vs.rb

@@ -0,0 +1,31 @@
+module Bim
+  module Action
+    # VS class used by Bim::Subcommands::VS
+    class VS
+      extend Bim::Util
+
+      VIRTUALS_PATH = '/mgmt/tm/ltm/virtual'.freeze
+
+      class << self
+        def list
+          JSON
+            .parse(vs_list)['items']
+            .map do |vs|
+              profiles = JSON.parse(profiles(vs['profilesReference']['link']))['items'].map { |p| p['fullPath'] }
+              { 'name' => vs['name'], 'profiles' => profiles }
+            end.to_json
+        end
+
+        def detail(name)
+          JSON
+            .parse(vs_list)['items']
+            .select { |vs| vs['name'] == name }
+            .map do |vs|
+              profiles = JSON.parse(profiles(vs['profilesReference']['link']))['items'].map { |p| p['fullPath'] }
+              { 'name' => vs['name'], 'profiles' => profiles }
+            end.first.to_json
+        end
+      end
+    end
+  end
+end

data/lib/bim/action.rb

@@ -0,0 +1,11 @@
+require 'bim/util'
+require 'bim/action/meta'
+require 'bim/action/sync'
+require 'bim/action/ssl'
+require 'bim/action/vs'
+
+module Bim
+  # Action module is namespace
+  module Action
+  end
+end

data/lib/bim/cli.rb

@@ -0,0 +1,19 @@
+require 'thor'
+require 'bim/subcommands'
+
+module Bim
+  # CLI class is import subcommands
+  class CLI < Thor
+    desc 'meta [Subcommand]', "Subcommands: #{Bim::Subcommands::Meta.instance_methods(false).join(',')}"
+    subcommand 'meta', Bim::Subcommands::Meta
+
+    desc 'sync [Subcommand]', "Subcommands: #{Bim::Subcommands::Sync.instance_methods(false).join(',')}"
+    subcommand 'sync', Bim::Subcommands::Sync
+
+    desc 'ssl [Subcommand]', "Subcommands: #{Bim::Subcommands::SSL.instance_methods(false).join(',')}"
+    subcommand 'ssl', Bim::Subcommands::SSL
+
+    desc 'vs [Subcommand]', "Subcommands: #{Bim::Subcommands::VS.instance_methods(false).join(',')}"
+    subcommand 'vs', Bim::Subcommands::VS
+  end
+end

data/lib/bim/subcommands/meta.rb

@@ -0,0 +1,22 @@
+module Bim
+  module Subcommands
+    # Meta class defines subcommands
+    class Meta < Thor
+      desc(
+        'actives',
+        'output active host'
+      )
+      def actives
+        puts Bim::Action::Meta.actives
+      end
+
+      desc(
+        'device_groups',
+        'outpu device group'
+      )
+      def device_groups
+        puts Bim::Action::Meta.device_groups
+      end
+    end
+  end
+end

data/lib/bim/subcommands/ssl.rb

@@ -0,0 +1,116 @@
+module Bim
+  module Subcommands
+    # SSL class defines subcommands
+    class SSL < Thor
+      desc(
+        'bundles',
+        'output bundle certificat files info'
+      )
+      def bundles
+        puts Bim::Action::SSL.bundles
+      end
+
+      desc(
+        'profiles',
+        'output SSL Profiles info'
+      )
+      def profiles
+        puts Bim::Action::SSL.profiles
+      end
+
+      desc(
+        'detail [PROFILE NAME]',
+        'output specified SSL Profile info'
+      )
+      def detail(profile_name)
+        puts Bim::Action::SSL.detail(profile_name)
+      end
+
+      desc(
+        'upload_key [CERTIFICATE_PROFILE_NAME] [PRIVATE_KEYFILE(absolute path)]',
+        'upload private key file to bigip local & install to file management'
+      )
+      def upload_key(crt_name, key_file)
+        r = Bim::Action::SSL.upload(key_file)
+        puts Bim::Action::SSL.install(:key, crt_name, JSON.parse(r)['localFilePath'])
+      end
+
+      desc(
+        'upload_crt [CERTIFICATE_PROFILE_NAME] [CERTIFICATE_FILE(absolute path)]',
+        'upload certificate file to bigip local & install to file management'
+      )
+      def upload_crt(crt_name, crt_file)
+        r = Bim::Action::SSL.upload(crt_file)
+        puts Bim::Action::SSL.install(:crt, crt_name, JSON.parse(r)['localFilePath'])
+      end
+
+      desc(
+        'upload [CERTIFICATE_PROFILE_NAME] [PRIVATE_KEYFILE(absolute path)] [CERTIFICATE_FILE(absolute path)]',
+        'upload certificate file and private key file to bigip local & install to file management'
+      )
+      def upload(crt_name, key_file, crt_file)
+        result = []
+        r = Bim::Action::SSL.upload(key_file)
+        result.push Bim::Action::SSL.install(:key, crt_name, JSON.parse(r)['localFilePath'])
+
+        r = Bim::Action::SSL.upload(crt_file)
+        result.push Bim::Action::SSL.install(:crt, crt_name, JSON.parse(r)['localFilePath'])
+
+        puts result.map { |res| JSON.parse(res) }.to_json
+      end
+
+      desc(
+        'create_ssl_profile [PROFILENAME] [CHAIN]',
+        'create ssl profile using already install private key and certificate file'
+      )
+      def create_ssl_profile(profilename, chain)
+        puts Bim::Action::SSL.create_ssl_profile(profilename, chain)
+      end
+
+      desc(
+        'replace [OLD_SSL_PROFILE_NAME] [NEW_SSL_PROFILE_NAME]',
+        'replace ssl profile OLD_SSL_PROFILE_NAME to NEW_SSL_PROFILE_NAME'
+      )
+      method_option :test, type: :boolean
+      def replace(old_ssl_profilename, new_ssl_profilename)
+        if options[:test] && !ENV['TEST_VS']
+          puts 'You have to set TEST_VS environment variable.'
+          return
+        end
+
+        puts Bim::Action::SSL.replace(old_ssl_profilename, new_ssl_profilename, options[:test])
+      end
+
+      desc(
+        'deploy [OLD_SSL_PROFILE_NAME] [NEW_SSL_PROFILE_NAME PRIVATE_KEYFILE] [CERTIFICATE_FILE] [CHAIN]',
+        'deploy task do all need task, upload, create_ssl_profile, replace'
+      )
+      method_option :test, type: :boolean
+      def deploy(old_ssl_profilename, new_ssl_profilename, key_file, crt_file, chain)
+        if options[:test] && !ENV['TEST_VS']
+          puts 'You have to set TEST_VS environment variable.'
+          return
+        end
+
+        log('start deploy')
+        log('start upload private key and certificate')
+        upload(new_ssl_profilename, key_file, crt_file)
+        log('finish upload private key and certificate')
+        log('start create ssl profile')
+        create_ssl_profile(new_ssl_profilename, chain)
+        log('finish create ssl profile')
+        log('start replace ssl profile')
+        replace(old_ssl_profilename, new_ssl_profilename)
+        log('finish replace ssl profile')
+        log('finish deploy')
+      end
+
+      private
+
+      def log(msg, full_length = 50)
+        l = (full_length - msg.length) / 2
+        puts "#{'=' * l}#{msg}#{'=' * l}"
+      end
+    end
+  end
+end

data/lib/bim/subcommands/sync.rb

@@ -0,0 +1,32 @@
+module Bim
+  module Subcommands
+    # Sync class defines subcommands
+    class Sync < Thor
+      default_command :to_group
+
+      desc(
+        '[GROUP_NAME]',
+        'sync device configuration to group.'
+      )
+      def to_group(group)
+        puts Bim::Action::Sync.sync!(group)
+      end
+
+      desc(
+        'state',
+        'get sync state'
+      )
+      def state
+        puts Bim::Action::Sync.state
+      end
+
+      desc(
+        'failover_state',
+        'get failover state'
+      )
+      def failover_state
+        puts Bim::Action::Sync.failover_state
+      end
+    end
+  end
+end

data/lib/bim/subcommands/vs.rb

@@ -0,0 +1,22 @@
+module Bim
+  module Subcommands
+    # VS class defines subcommands
+    class VS < Thor
+      desc(
+        'list',
+        'output virtual server info list'
+      )
+      def list
+        puts Bim::Action::VS.list
+      end
+
+      desc(
+        'detail [NAME]',
+        'output one of virtual server info'
+      )
+      def detail(name)
+        puts Bim::Action::VS.detail(name)
+      end
+    end
+  end
+end

data/lib/bim/subcommands.rb

@@ -0,0 +1,11 @@
+require 'bim/action'
+require 'bim/subcommands/meta'
+require 'bim/subcommands/sync'
+require 'bim/subcommands/ssl'
+require 'bim/subcommands/vs'
+
+module Bim
+  # Subcommands module is namespace
+  module Subcommands
+  end
+end

data/lib/bim/util.rb

@@ -0,0 +1,63 @@
+require 'base64'
+require 'net/http'
+require 'openssl'
+
+module Bim
+  # Util module defined common methods
+  module Util
+    VS_PATH = '/mgmt/tm/ltm/virtual'.freeze
+
+    private
+
+    def get_body(uri)
+      raise UnsetHostEnvironmentError if BIGIP_HOST.nil?
+      raise UnsetUserIDEnvironmentError if USER_ID.nil?
+      raise UnsetPasswordEnvironmentError if USER_PASSWD.nil?
+
+      res = http(uri).request(request(uri, Bim::AUTH, 'application/json'))
+
+      raise UnauthorizedError if res.code == '401'
+
+      res.body
+    end
+
+    def http(uri)
+      http = Net::HTTP.new(uri.hostname, uri.port)
+      http.use_ssl     = true
+      http.verify_mode = OpenSSL::SSL::VERIFY_NONE
+      http
+    end
+
+    def request(uri, auth, content_type, method = 'GET', body = nil)
+      req = case method
+            when 'GET'
+              Net::HTTP::Get.new(uri)
+            when 'POST'
+              Net::HTTP::Post.new(uri)
+            when 'PATCH'
+              Net::HTTP::Patch.new(uri)
+            end
+
+      req['Content-Type'] = content_type
+      req['Authorization'] = "Basic #{auth}"
+      req.body = body
+
+      block_given? ? yield(req) : req
+    end
+
+    def yes_or_no?(msg)
+      print msg
+      STDIN.gets.chomp.match?(/^[yY]/)
+    end
+
+    def vs_list
+      uri = URI.join(BASE_URL, VS_PATH)
+      get_body(uri)
+    end
+
+    def profiles(link)
+      uri = URI.parse(link.sub('localhost', BIGIP_HOST))
+      get_body(uri)
+    end
+  end
+end

data/lib/bim/version.rb

@@ -0,0 +1,3 @@
+module Bim
+  VERSION = '0.1.0'.freeze
+end

data/lib/bim.rb

@@ -0,0 +1,19 @@
+require 'bim/version'
+require 'bim/cli'
+require 'json'
+require 'base64'
+
+module Bim
+  BIGIP_HOST  = ENV['BIGIP_HOST']
+  BASE_URL    = "https://#{BIGIP_HOST}/".freeze
+  TEST_VS     = ENV['TEST_VS'].to_s
+  USER_ID     = ENV['BIGIP_USER_ID']
+  USER_PASSWD = ENV['BIGIP_PASSWD']
+  AUTH        = ::Base64.encode64("#{USER_ID}:#{USER_PASSWD}").chomp
+
+  class UnsetEnvironmentError < StandardError; end
+  class UnsetHostEnvironmentError     < UnsetEnvironmentError; end
+  class UnsetUserIDEnvironmentError   < UnsetEnvironmentError; end
+  class UnsetPasswordEnvironmentError < UnsetEnvironmentError; end
+  class UnauthorizedError < StandardError; end
+end

metadata

@@ -0,0 +1,124 @@
+--- !ruby/object:Gem::Specification
+name: bim
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- littlekbt
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2017-09-19 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: thor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.20.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.20.0
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.15'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.15'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+description: 
+email:
+- kr.kubota.11@gmail.com
+executables:
+- bim
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rubocop.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bim.gemspec
+- bin/bim
+- completions/bim.bash
+- lib/bim.rb
+- lib/bim/action.rb
+- lib/bim/action/meta.rb
+- lib/bim/action/ssl.rb
+- lib/bim/action/sync.rb
+- lib/bim/action/vs.rb
+- lib/bim/cli.rb
+- lib/bim/subcommands.rb
+- lib/bim/subcommands/meta.rb
+- lib/bim/subcommands/ssl.rb
+- lib/bim/subcommands/sync.rb
+- lib/bim/subcommands/vs.rb
+- lib/bim/util.rb
+- lib/bim/version.rb
+homepage: https://github.com/littlekbt/bim
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.6.11
+signing_key: 
+specification_version: 4
+summary: bim is BigIP cli tool
+test_files: []