bitwarden-sdk-secrets 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: a4a8efa2366ad5c6568ce9ec284857674c1b1730263bd538096a2861031ae833
+  data.tar.gz: 7e15ebee50e29c57357f958f1273fdda182035a490b555510cd95de0f49e14b0
+SHA512:
+  metadata.gz: ac31e0a25f1ee16b2db1e2949cca718cd268a4ad0b2f18c28ffee48b1cf3ab5d3855bb771869037f00161255529f8d0715f628197e5309391162bca94e799c79
+  data.tar.gz: 52e926afe59c3d545d0d5441dc2cb356491291a7ffffa6af2ef7a61006dbf6ab3eef8d6662faf87eb1811d4c5eaf17a5a8756627252304868fb3b589ab0070ea

data/Rakefile

@@ -0,0 +1,11 @@
+# frozen_string_literal: true
+
+require "bundler/gem_tasks"
+require "rubocop/rake_task"
+require 'rspec/core/rake_task'
+
+RSpec::Core::RakeTask.new
+
+RuboCop::RakeTask.new
+
+task default: :rubocop

data/bitwarden-sdk-secrets.gemspec

@@ -0,0 +1,47 @@
+# frozen_string_literal: true
+
+require_relative 'lib/version'
+
+Gem::Specification.new do |spec|
+  spec.name = 'bitwarden-sdk-secrets'
+  spec.version = BitwardenSDKSecrets::VERSION
+  spec.authors = ['Bitwarden Inc.']
+  spec.email = ['hello@bitwarden_sdk.com']
+
+  spec.summary = 'Bitwarden Secrets Manager SDK.'
+  spec.description = 'Ruby wrapper for Bitwarden secrets manager SDK.'
+  spec.homepage = 'https://bitwarden.com/products/secrets-manager/'
+  spec.required_ruby_version = '>= 3.0.0'
+
+  spec.metadata['homepage_uri'] = spec.homepage
+  spec.metadata['source_code_uri'] = 'https://github.com/bitwarden/sdk'
+  spec.metadata['changelog_uri'] = 'https://github.com/bitwarden/sdk/blob/main/languages/ruby/CHANGELOG.md'
+
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
+  spec.files = Dir.chdir(__dir__) do
+    `git ls-files -z`.split("\x0").reject do |f|
+      (File.expand_path(f) == __FILE__) || f.start_with?(*%w[bin/ test/ spec/ features/ .git Gemfile])
+    end
+  end
+
+  spec.files += Dir.glob('lib/linux-x64/**/*')
+  spec.files += Dir.glob('lib/macos-x64/**/*')
+  spec.files += Dir.glob('lib/windows-x64/**/*')
+  spec.files += Dir.glob('lib/macos-arm64/**/*')
+  spec.files += Dir.glob('lib/schemas.rb')
+
+  spec.bindir = 'exe'
+  spec.executables = spec.files.grep(%r{\Aexe/}) { |f| File.basename(f) }
+  spec.require_paths = ['lib']
+
+  # Uncomment to register a new dependency of your gem
+  # spec.add_dependency "example-gem", "~> 1.0"
+  spec.add_dependency 'dry-struct', '~> 1.6'
+  spec.add_dependency 'dry-types', '~> 1.7'
+  spec.add_dependency 'ffi', '~> 1.15'
+  spec.add_dependency 'json', '~> 2.6'
+  spec.add_dependency 'rake', '~> 13.0'
+  spec.add_dependency 'rubocop', '~> 1.21'
+
+end

data/lib/bitwarden-sdk-secrets.rb

@@ -0,0 +1,56 @@
+# frozen_string_literal: true
+
+require 'json'
+require 'dry-types'
+
+require_relative 'schemas'
+require_relative 'extended_schemas/schemas'
+require_relative 'command_runner'
+require_relative 'bitwarden_lib'
+require_relative 'bitwarden_error'
+require_relative 'projects'
+require_relative 'secrets'
+
+module BitwardenSDKSecrets
+  class BitwardenSettings
+    attr_accessor :api_url, :identity_url
+
+    def initialize(api_url, identity_url)
+      # if api_url.nil? || identity_url.nil?
+      #   raise ArgumentError, "api_url and identity_url cannot be nil"
+      # end
+
+      @api_url = api_url
+      @identity_url = identity_url
+    end
+  end
+
+  class BitwardenClient
+    attr_reader :bitwarden, :project_client, :secrets_client
+
+    def initialize(bitwarden_settings)
+      client_settings = ClientSettings.new(
+        api_url: bitwarden_settings.api_url,
+        identity_url: bitwarden_settings.identity_url,
+        user_agent: 'Bitwarden RUBY-SDK',
+        device_type: nil
+      )
+
+      @bitwarden = BitwardenLib
+      @handle = @bitwarden.init(client_settings.to_dynamic.compact.to_json)
+      @command_runner = CommandRunner.new(@bitwarden, @handle)
+      @project_client = ProjectsClient.new(@command_runner)
+      @secrets_client = SecretsClient.new(@command_runner)
+    end
+
+    def access_token_login(access_token, state_file = nil)
+      access_token_request = AccessTokenLoginRequest.new(access_token: access_token, state_file: state_file)
+      @command_runner.run(SelectiveCommand.new(access_token_login: access_token_request))
+      nil
+    end
+
+    def free_mem
+      @bitwarden.free_mem(@handle)
+    end
+  end
+end

data/lib/bitwarden_error.rb

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+module BitwardenSDKSecrets
+  class BitwardenError < StandardError
+    def initialize(message = 'Error getting response')
+      super(message)
+    end
+  end
+end

data/lib/bitwarden_lib.rb

@@ -0,0 +1,35 @@
+# frozen_string_literal: true
+
+require 'ffi'
+
+module BitwardenSDKSecrets
+  module BitwardenLib
+    extend FFI::Library
+
+    def self.mac_with_intel?
+      `uname -m`.strip == 'x86_64'
+    end
+
+    ffi_lib case RUBY_PLATFORM
+            when /darwin/
+              local_file = if mac_with_intel?
+                             File.expand_path('macos-x64/libbitwarden_c.dylib', __dir__)
+                           else
+                             File.expand_path('macos-arm64/libbitwarden_c.dylib', __dir__)
+                           end
+              File.exist?(local_file) ? local_file : File.expand_path('../../../../target/debug/libbitwarden_c.dylib', __dir__)
+            when /linux/
+              local_file = File.expand_path('linux-x64/libbitwarden_c.so', __dir__)
+              File.exist?(local_file) ? local_file : File.expand_path('../../../../target/debug/libbitwarden_c.so', __dir__)
+            when /mswin|mingw/
+              local_file = File.expand_path('windows-x64/bitwarden_c.dll', __dir__)
+              File.exist?(local_file) ? local_file : File.expand_path('../../../../target/debug/bitwarden_c.dll', __dir__)
+            else
+              raise "Unsupported platform: #{RUBY_PLATFORM}"
+            end
+
+    attach_function :init, [:string], :pointer
+    attach_function :run_command, %i[string pointer], :string
+    attach_function :free_mem, [:pointer], :void
+  end
+end

data/lib/command_runner.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+module BitwardenSDKSecrets
+  class CommandRunner
+    def initialize(bitwarden_sdk, handle)
+      @bitwarden_sdk = bitwarden_sdk
+      @handle = handle
+    end
+
+    # @param [Dry-Struct] cmd
+    def run(cmd)
+      @bitwarden_sdk.run_command(cmd.to_json, @handle)
+    end
+  end
+end

data/lib/extended_schemas/schemas.rb

@@ -0,0 +1,64 @@
+
+module BitwardenSDKSecrets
+    class SelectiveCommand < Command
+      attribute :password_login,     PasswordLoginRequest.optional.default(nil)
+      attribute :api_key_login,      APIKeyLoginRequest.optional.default(nil)
+      attribute :access_token_login, AccessTokenLoginRequest.optional.default(nil)
+      attribute :get_user_api_key,   SecretVerificationRequest.optional.default(nil)
+      attribute :fingerprint,        FingerprintRequest.optional.default(nil)
+      attribute :sync,               SyncRequest.optional.default(nil)
+      attribute :secrets,            SecretsCommand.optional.default(nil)
+      attribute :projects,           ProjectsCommand.optional.default(nil)
+
+      def to_dynamic
+        {
+          "passwordLogin"    => password_login&.to_dynamic,
+          "apiKeyLogin"      => api_key_login&.to_dynamic,
+          "accessTokenLogin" => access_token_login&.to_dynamic,
+          "getUserApiKey"    => get_user_api_key&.to_dynamic,
+          "fingerprint"      => fingerprint&.to_dynamic,
+          "sync"             => sync&.to_dynamic,
+          "secrets"          => secrets&.to_dynamic,
+          "projects"         => projects&.to_dynamic,
+        }.compact
+      end
+    end
+
+    class SelectiveProjectsCommand < ProjectsCommand
+      attribute :get,    ProjectGetRequest.optional.default(nil)
+      attribute :create, ProjectCreateRequest.optional.default(nil)
+      attribute :list,   ProjectsListRequest.optional.default(nil)
+      attribute :update, ProjectPutRequest.optional.default(nil)
+      attribute :delete, ProjectsDeleteRequest.optional.default(nil)
+
+      def to_dynamic
+        {
+          "get"    => get&.to_dynamic,
+          "create" => create&.to_dynamic,
+          "list"   => list&.to_dynamic,
+          "update" => update&.to_dynamic,
+          "delete" => delete&.to_dynamic,
+        }.compact
+      end
+    end
+
+    class SelectiveSecretsCommand < SecretsCommand
+      attribute :get,        SecretGetRequest.optional.default(nil)
+      attribute :get_by_ids, SecretsGetRequest.optional.default(nil)
+      attribute :create,     SecretCreateRequest.optional.default(nil)
+      attribute :list,       SecretIdentifiersRequest.optional.default(nil)
+      attribute :update,     SecretPutRequest.optional.default(nil)
+      attribute :delete,     SecretsDeleteRequest.optional.default(nil)
+
+      def to_dynamic
+        {
+          "get"      => get&.to_dynamic,
+          "getByIds" => get_by_ids&.to_dynamic,
+          "create"   => create&.to_dynamic,
+          "list"     => list&.to_dynamic,
+          "update"   => update&.to_dynamic,
+          "delete"   => delete&.to_dynamic,
+        }.compact
+      end
+    end
+end

data/lib/projects.rb

@@ -0,0 +1,116 @@
+# frozen_string_literal: true
+
+require_relative 'bitwarden_error'
+
+module BitwardenSDKSecrets
+  class ProjectsClient
+    def initialize(command_runner)
+      @command_runner = command_runner
+    end
+
+    def create_project(project_name, organization_id)
+      project_create_request = ProjectCreateRequest.new(
+        project_create_request_name: project_name,
+        organization_id: organization_id
+      )
+      command = create_command(
+        create: project_create_request
+      )
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+        projects_response.key?('data')
+        return projects_response['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    def get(project_id)
+      project_get_request = ProjectGetRequest.new(id: project_id)
+      command = create_command(get: project_get_request)
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+        projects_response.key?('data')
+        return projects_response['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    def list_projects(organization_id)
+      project_list_request = ProjectsListRequest.new(organization_id: organization_id)
+      command = create_command(list: project_list_request)
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectsResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+         projects_response.key?('data') && projects_response['data'].key?('data')
+        return projects_response['data']['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    def update_project(id, project_put_request_name, organization_id)
+      project_put_request = ProjectPutRequest.new(
+        id: id,
+        project_put_request_name: project_put_request_name,
+        organization_id: organization_id
+      )
+      command = create_command(
+        update: project_put_request
+      )
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+         projects_response.key?('data')
+        return projects_response['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    def delete_projects(ids)
+      project_delete_request = ProjectsDeleteRequest.new(ids: ids)
+      command = create_command(delete: project_delete_request)
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectsDeleteResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+         projects_response.key?('data') && projects_response['data'].key?('data')
+        return projects_response['data']['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    private
+
+    def error_response(response)
+      raise BitwardenError, response['errorMessage'] if response.key?('errorMessage')
+
+      raise BitwardenError, 'Error while getting response'
+    end
+
+    def create_command(commands)
+      SelectiveCommand.new(projects: SelectiveProjectsCommand.new(commands))
+    end
+
+    def parse_response(command)
+      response = @command_runner.run(command)
+      raise BitwardenError, 'Error getting response' if response.nil?
+
+      response
+    end
+  end
+end