bukelatta 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 1e84a56a80a6728268e54b8444aa8347704eb09e
+  data.tar.gz: bf37f6b46f7625cdaaf3ef9d9fff91772bbeef48
+SHA512:
+  metadata.gz: 531351c5b30f532e73a84349efc0df6e9d5eba85c2aeefaba5d91c9d995207e20eaf57676255ea64200c7a645a11ab6a215f8299aeb9c38ff43fc0204da5686f
+  data.tar.gz: e1cbfbfb8dedd711b25308c1bc61cc79ce88496d288353b892032a72a9a8cc71b501e5dc3046ebcd892e3a68ef3a2af20964d4251ac7097709315b0e31d206c6

data/.gitignore

@@ -0,0 +1,11 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+test.rb
+PolicyFile

data/.rspec

@@ -0,0 +1,2 @@
+--color
+--require spec_helper

data/.travis.yml

@@ -0,0 +1,4 @@
+language: ruby
+rvm:
+  - 2.2.4
+before_install: gem install bundler -v 1.11.2

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in bukelatta.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2016 winebarrel
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,80 @@
+# Bukelatta
+
+Bukelatta is a tool to manage S3 Bucket Policy.
+
+It defines the state of S3 Bucket Policy using DSL, and updates S3 Bucket Policy according to DSL.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'bukelatta'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install bukelatta
+
+## Usage
+
+```sh
+export AWS_ACCESS_KEY_ID='...'
+export AWS_SECRET_ACCESS_KEY='...'
+bukelatta -e -o PolicyFile  # export Bucket Policy
+vi PolicyFile
+bukelatta -a --dry-run
+bukelatta -a                # apply `PolicyFile`
+```
+
+## Help
+
+```
+Usage: bukelatta [options]
+    -k, --access-key ACCESS_KEY
+    -s, --secret-key SECRET_KEY
+    -r, --region REGION
+        --profile PROFILE
+        --credentials-path PATH
+    -a, --apply
+    -f, --file FILE
+        --dry-run
+    -e, --export
+    -o, --output FILE
+        --target REGEXP
+        --no-color
+        --debug
+        --request-concurrency N
+```
+
+## PolicyFile example
+
+```ruby
+require 'other/policyfile'
+
+bucket "foo-bucket" do
+  {"Version"=>"2012-10-17",
+   "Id"=>"AWSConsole-AccessLogs-Policy-XXX",
+   "Statement"=>
+    [{"Sid"=>"AWSConsoleStmt-XXX",
+      "Effect"=>"Allow",
+      "Principal"=>{"AWS"=>"arn:aws:iam::XXX:root"},
+      "Action"=>"s3:PutObject",
+      "Resource"=>
+       "arn:aws:s3:::foo-bucket/AWSLogs/XXX/*"}]}
+end
+
+bucket "bar-bucket" do
+  {"Version"=>"2012-10-17",
+   "Statement"=>
+    [{"Sid"=>"AddPerm",
+      "Effect"=>"Allow",
+      "Principal"=>"*",
+      "Action"=>"s3:GetObject",
+      "Resource"=>"arn:aws:s3:::bar-bucket/*"}]}
+end
+```

data/Rakefile

@@ -0,0 +1,6 @@
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
+
+RSpec::Core::RakeTask.new(:spec)
+
+task :default => :spec

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "bukelatta"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/bukelatta.gemspec

@@ -0,0 +1,32 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'bukelatta/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'bukelatta'
+  spec.version       = Bukelatta::VERSION
+  spec.authors       = ['winebarrel']
+  spec.email         = ['sgwr_dts@yahoo.co.jp']
+
+  spec.summary       = %q{Bukelatta is a tool to manage S3 Bucket Policy.}
+  spec.description   = %q{Bukelatta is a tool to manage S3 Bucket Policy.}
+  spec.homepage      = 'https://github.com/winebarrel/bukelatta'
+  spec.license       = 'MIT'
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.bindir        = 'exe'
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ['lib']
+
+  spec.add_dependency 'aws-sdk', '~> 2.3.0'
+  spec.add_dependency 'diffy'
+  spec.add_dependency 'hashie'
+  spec.add_dependency 'multi_xml'
+  spec.add_dependency 'parallel'
+  spec.add_dependency 'term-ansicolor'
+
+  spec.add_development_dependency 'bundler'
+  spec.add_development_dependency 'rake'
+  spec.add_development_dependency 'rspec', '~> 3.0'
+end

data/exe/bukelatta

@@ -0,0 +1,129 @@
+#!/usr/bin/env ruby
+$: << File.expand_path('../../lib', __FILE__)
+
+require 'bukelatta'
+require 'optparse'
+
+Version = Bukelatta::VERSION
+
+DEFAULT_FILENAME = 'PolicyFile'
+
+MAGIC_COMMENT = <<-EOS
+# -*- mode: ruby -*-
+# vi: set ft=ruby :
+EOS
+
+def parse_options(argv)
+  options = {
+    file: DEFAULT_FILENAME,
+    output: '-',
+    dry_run: false,
+    color: true,
+    request_concurrency: 8,
+    aws: {},
+  }
+
+  opt = OptionParser.new
+  opt.on('-k', '--access-key ACCESS_KEY') {|v| options[:aws][:access_key_id]     = v }
+  opt.on('-s', '--secret-key SECRET_KEY') {|v| options[:aws][:secret_access_key] = v }
+  opt.on('-r', '--region REGION')         {|v| options[:aws][:region]            = v }
+
+  opt.on('', '--profile PROFILE') do |v|
+    options[:aws][:credentials] ||= {}
+    options[:aws][:credentials][:profile_name] = v
+  end
+
+  opt.on('', '--credentials-path PATH') do |v|
+    options[:aws][:credentials] ||= {}
+    options[:aws][:credentials][:path] = v
+  end
+
+  opt.on('-a', '--apply')         {    options[:mode]    = :apply        }
+  opt.on('-f', '--file FILE')     {|v| options[:file]    = v             }
+  opt.on(''  , '--dry-run')       {    options[:dry_run] = true          }
+  opt.on('-e', '--export')        {    options[:mode]    = :export       }
+  opt.on('-o', '--output FILE')   {|v| options[:output]  = v             }
+  opt.on(''  , '--target REGEXP') {|v| options[:target]  = Regexp.new(v) }
+  opt.on(''  , '--no-color')      {    options[:color]   = false         }
+  opt.on(''  , '--debug')         {    options[:debug]   = true          }
+
+  opt.on(''  , '--request-concurrency N', Integer) do |v|
+    options[:request_concurrency] = v
+  end
+
+  opt.parse!(argv)
+
+  unless options[:mode]
+    puts opt.help
+    exit 1
+  end
+
+  if options[:aws][:credentials]
+    credentials = Aws::SharedCredentials.new(options[:aws][:credentials])
+    options[:aws][:credentials] = credentials
+  end
+
+  String.colorize = options[:color]
+
+  if options[:debug]
+    Bukelatta::Logger.instance.set_debug(options[:debug])
+
+    Aws.config.update(
+      :http_wire_trace => true,
+      :logger => Bukelatta::Logger.instance
+    )
+  end
+
+  options
+rescue => e
+  $stderr.puts("[ERROR] #{e.message}")
+  exit 1
+end
+
+def main(argv)
+  options = parse_options(argv)
+  client = Bukelatta::Client.new(options)
+  logger = Bukelatta::Logger.instance
+
+  case options[:mode]
+  when :export
+    exported = client.export
+    output = options[:output]
+
+    if output == '-'
+      logger.info('# Export Bucket Policy')
+      puts exported
+    else
+      logger.info("Export Bucket Policy to `#{output}`")
+      open(output, 'wb') do |f|
+        f.puts MAGIC_COMMENT
+        f.puts exported
+      end
+    end
+  when :apply
+    file = options[:file]
+
+    unless File.exist?(file)
+      raise "No PolicyFile found (looking for: #{file})"
+    end
+
+    message = "Apply `#{file}` to Bucket Policy"
+    message << ' (dry-run)' if options[:dry_run]
+    logger.info(message)
+
+    updated = client.apply(file)
+
+    logger.info('No change'.intense_blue) unless updated
+  else
+    raise "Unknown mode: #{options[:mode]}"
+  end
+rescue => e
+  if options[:debug]
+    raise e
+  else
+    $stderr.puts("[ERROR] #{e.message}".red)
+    exit 1
+  end
+end
+
+main(ARGV)

data/lib/bukelatta/client.rb

@@ -0,0 +1,82 @@
+class Bukelatta::Client
+  include Bukelatta::Utils::Helper
+  include Bukelatta::Logger::Helper
+
+  def initialize(options = {})
+    @options = options
+    @client = @options[:client] || Aws::S3::Client.new
+    @resource = Aws::S3::Resource.new(client: @client)
+    @driver = Bukelatta::Driver.new(@client, options)
+  end
+
+  def export
+    exported = Bukelatta::Exporter.export(@client, @options)
+    Bukelatta::DSL.convert(exported, @options)
+  end
+
+  def apply(file)
+    walk(file)
+  end
+
+  private
+
+  def walk(file)
+    expected = load_file(file)
+    actual = Bukelatta::Exporter.export(@client, @options)
+
+    updated = walk_buckets(expected, actual)
+
+    if @options[:dry_run]
+      false
+    else
+      updated
+    end
+  end
+
+  def walk_buckets(expected, actual)
+    updated = false
+
+    expected.each do |bucket_name,  expected_policy|
+      next unless matched?(bucket_name)
+
+      actual_policy = actual[bucket_name]
+
+      if actual_policy
+        updated = walk_policy(bucket_name, expected_policy, actual_policy) || updated
+      elsif actual.has_key?(bucket_name)
+        actual.delete(bucket_name)
+
+        if expected_policy
+          @driver.create_policy(bucket_name, expected_policy)
+          updated = true
+        end
+      else
+        log(:warn, "No such bucket: #{bucket_name}")
+      end
+    end
+  end
+
+  def walk_policy(bucket_name, expected_policy, actual_policy)
+    if expected_policy
+      if expected_policy != actual_policy
+        @driver.update_policy(bucket_name, expected_policy, actual_policy)
+        updated = true
+      end
+    else
+      @driver.delete_policy(bucket_name)
+      updated = true
+    end
+  end
+
+  def load_file(file)
+    if file.kind_of?(String)
+      open(file) do |f|
+        Bukelatta::DSL.parse(f.read, file)
+      end
+    elsif file.respond_to?(:read)
+      Bukelatta::DSL.parse(file.read, file.path)
+    else
+      raise TypeError, "can't convert #{file} into File"
+    end
+  end
+end

data/lib/bukelatta/driver.rb

@@ -0,0 +1,38 @@
+class Bukelatta::Driver
+  include Bukelatta::Utils::Helper
+  include Bukelatta::Logger::Helper
+
+  def initialize(client, options = {})
+    @client = client
+    @resource = Aws::S3::Resource.new(client: @client)
+    @options = options
+  end
+
+  def create_policy(bucket_name, policy)
+    log(:info, "Create Bucket `#{bucket_name}` Policy", color: :cyan)
+
+    unless @options[:dry_run]
+      bucket = @resource.region_bucket(bucket_name)
+      bucket.policy.put(policy: JSON.dump(policy))
+    end
+  end
+
+  def delete_policy(bucket_name)
+    log(:info, "Delete Bucket `#{bucket_name}` Policy", color: :red)
+
+    unless @options[:dry_run]
+      bucket = @resource.region_bucket(bucket_name)
+      bucket.policy.delete
+    end
+  end
+
+  def update_policy(bucket_name, policy, old_policy)
+    log(:info, "Update Bucket `#{bucket_name}` Policy", color: :green)
+    log(:info, diff(old_policy, policy, color: @options[:color]), color: false)
+
+    unless @options[:dry_run]
+      bucket = @resource.region_bucket(bucket_name)
+      bucket.policy.put(policy: JSON.dump(policy))
+    end
+  end
+end

data/lib/bukelatta/dsl/context.rb

@@ -0,0 +1,53 @@
+class Bukelatta::DSL::Context
+  include Bukelatta::DSL::TemplateHelper
+
+  def self.eval(dsl, path, options = {})
+    self.new(path, options) {
+      eval(dsl, binding, path)
+    }
+  end
+
+  attr_reader :result
+
+  def initialize(path, options = {}, &block)
+    @path = path
+    @options = options
+    @result = {}
+
+    @context = Hashie::Mash.new(
+      :path => path,
+      :options => options,
+      :templates => {}
+    )
+
+    instance_eval(&block)
+  end
+
+  def template(name, &block)
+    @context.templates[name.to_s] = block
+  end
+
+  private
+
+  def require(file)
+    policyfile = (file =~ %r|\A/|) ? file : File.expand_path(File.join(File.dirname(@path), file))
+
+    if File.exist?(policyfile)
+      instance_eval(File.read(policyfile), policyfile)
+    elsif File.exist?(policyfile + '.rb')
+      instance_eval(File.read(policyfile + '.rb'), policyfile + '.rb')
+    else
+      Kernel.require(file)
+    end
+  end
+
+  def bucket(name)
+    name = name.to_s
+
+    if @result[name]
+      raise "Bucket `#{name}` is already defined"
+    end
+
+    @result[name] = yield
+  end
+end

data/lib/bukelatta/dsl/converter.rb

@@ -0,0 +1,41 @@
+class Bukelatta::DSL::Converter
+  include Bukelatta::Utils::Helper
+
+  def self.convert(exported, options = {})
+    self.new(exported, options).convert
+  end
+
+  def initialize(exported, options = {})
+    @exported = exported
+    @options = options
+  end
+
+  def convert
+    output_buckets(@exported)
+  end
+
+  private
+
+  def output_buckets(policy_by_bucket)
+    buckets = []
+
+    policy_by_bucket.sort_by(&:first).each do |bucket_name, policy|
+      if not policy or not matched?(buckets)
+        next
+      end
+
+      buckets << output_bucket(bucket_name, policy)
+    end
+
+    buckets.join("\n")
+  end
+
+  def output_bucket(bucket_name, policy)
+    policy = policy.pretty_inspect.gsub(/^/, '  ').strip
+    <<-EOS
+bucket #{bucket_name.inspect} do
+  #{policy}
+end
+    EOS
+  end
+end

data/lib/bukelatta/dsl/template_helper.rb

@@ -0,0 +1,18 @@
+module Bukelatta::DSL::TemplateHelper
+  def include_template(template_name, context = {})
+    tmplt = @context.templates[template_name.to_s]
+
+    unless tmplt
+      raise "Template `#{template_name}` is not defined"
+    end
+
+    context_orig = @context
+    @context = @context.merge(context)
+    instance_eval(&tmplt)
+    @context = context_orig
+  end
+
+  def context
+    @context
+  end
+end

data/lib/bukelatta/dsl.rb

@@ -0,0 +1,11 @@
+class Bukelatta::DSL
+  class << self
+    def convert(exported, options = {})
+      Bukelatta::DSL::Converter.convert(exported, options)
+    end
+
+    def parse(dsl, path, options = {})
+      Bukelatta::DSL::Context.eval(dsl, path, options).result
+    end
+  end # of class methods
+end

data/lib/bukelatta/exporter.rb

@@ -0,0 +1,35 @@
+class Bukelatta::Exporter
+  def self.export(client, options = {})
+    self.new(client, options).export
+  end
+
+  def initialize(client, options = {})
+    @client = client
+    @options = options
+    @resource = Aws::S3::Resource.new(client: @client)
+  end
+
+  def export
+    export_buckets
+  end
+
+  def export_buckets
+    result = {}
+    concurrency = @options[:request_concurrency]
+
+    buckets = @resource.buckets(concurrency: concurrency)
+
+    Parallel.each(buckets, in_threads: concurrency) do |bucket|
+      policy = export_bucket_policy(bucket)
+      result[bucket.name] = policy
+    end
+
+    result.sort_array!
+  end
+
+  def export_bucket_policy(bucket)
+    policy = JSON.parse(bucket.policy.policy.string)
+  rescue Aws::S3::Errors::NoSuchBucketPolicy
+    nil
+  end
+end

data/lib/bukelatta/ext/aws_s3_resource_ext.rb

@@ -0,0 +1,36 @@
+module Bukelatta::Ext
+  module AwsS3ResourceExt
+    DEFULT_CONCURRENCY = 8
+
+    def buckets(options = {})
+      concurrency = options[:concurrency] || DEFULT_CONCURRENCY
+
+      Parallel.map(super(), in_threads: concurrency) do |b|
+        region_bucket0(b)
+      end
+    end
+
+    def region_bucket(name)
+      b = self.bucket(name)
+      region_bucket0(b)
+    end
+
+    private
+
+    def region_bucket0(b)
+      begin
+        b.objects.limit(1).first
+        b
+      rescue Aws::S3::Errors::PermanentRedirect => e
+        responce_body = e.context.http_response.body.read
+        responce_body = MultiXml.parse(responce_body)
+        endpoint = responce_body['Error']['Endpoint']
+        client = Aws::S3::Client.new(endpoint: "https://#{endpoint}")
+        resource = Aws::S3::Resource.new(client: client)
+        resource.bucket(b.name)
+      end
+    end
+  end
+end
+
+Aws::S3::Resource.prepend(Bukelatta::Ext::AwsS3ResourceExt)

data/lib/bukelatta/ext/hash_ext.rb

@@ -0,0 +1,33 @@
+module Bukelatta::Ext
+  module HashExt
+    def sort_array!
+      keys.each do |key|
+        value = self[key]
+        self[key] = sort_array0(value)
+      end
+
+      self
+    end
+
+    private
+
+    def sort_array0(value)
+      case value
+      when Hash
+        new_value = {}
+
+        value.each do |k, v|
+          new_value[k] = sort_array0(v)
+        end
+
+        new_value
+      when Array
+        value.map {|v| sort_array0(v) }.sort_by(&:to_s)
+      else
+        value
+      end
+    end
+  end
+end
+
+Hash.include(Bukelatta::Ext::HashExt)

data/lib/bukelatta/ext/string_ext.rb

@@ -0,0 +1,28 @@
+module Bukelatta::Ext
+  module StringExt
+    module ClassMethods
+      def colorize=(value)
+        @colorize = value
+      end
+
+      def colorize
+        @colorize
+      end
+    end # ClassMethods
+
+    Term::ANSIColor::Attribute.named_attributes.each do |attribute|
+      class_eval(<<-EOS, __FILE__, __LINE__ + 1)
+        def #{attribute.name}
+          if String.colorize
+            Term::ANSIColor.send(#{attribute.name.inspect}, self)
+          else
+            self
+          end
+        end
+      EOS
+    end
+  end
+end
+
+String.include(Bukelatta::Ext::StringExt)
+String.extend(Bukelatta::Ext::StringExt::ClassMethods)

data/lib/bukelatta/logger.rb

@@ -0,0 +1,28 @@
+class Bukelatta::Logger < ::Logger
+  include Singleton
+
+  def initialize
+    super($stdout)
+
+    self.formatter = proc do |severity, datetime, progname, msg|
+      "#{msg}\n"
+    end
+
+    self.level = Logger::INFO
+  end
+
+  def set_debug(value)
+    self.level = value ? Logger::DEBUG : Logger::INFO
+  end
+
+  module Helper
+    def log(level, message, log_options = {})
+      global_option = @options || {}
+      message = "[#{level.to_s.upcase}] #{message}" unless level == :info
+      message << ' (dry-run)' if global_option[:dry_run]
+      message = message.send(log_options[:color]) if log_options[:color]
+      logger = global_option[:logger] || Bukelatta::Logger.instance
+      logger.send(level, message)
+    end
+  end
+end

data/lib/bukelatta/utils.rb

@@ -0,0 +1,23 @@
+class Bukelatta::Utils
+  module Helper
+    def matched?(name)
+      if @options[:target]
+        @options[:target] =~ name
+      else
+        true
+      end
+    end
+
+    def diff(obj1, obj2, options = {})
+      diffy = Diffy::Diff.new(
+        obj1.pretty_inspect,
+        obj2.pretty_inspect,
+        :diff => '-u'
+      )
+
+      out = diffy.to_s(options[:color] ? :color : :text).gsub(/\s+\z/m, '')
+      out.gsub!(/^/, options[:indent]) if options[:indent]
+      out
+    end
+  end
+end

data/lib/bukelatta/version.rb

@@ -0,0 +1,3 @@
+module Bukelatta
+  VERSION = '0.1.0'
+end

data/lib/bukelatta.rb

@@ -0,0 +1,25 @@
+require 'aws-sdk'
+require 'diffy'
+require 'hashie'
+require 'json'
+require 'logger'
+require 'multi_xml'
+require 'parallel'
+require 'pp'
+require 'singleton'
+require 'term/ansicolor'
+
+require 'bukelatta/version'
+require 'bukelatta/ext/aws_s3_resource_ext'
+require 'bukelatta/ext/hash_ext'
+require 'bukelatta/ext/string_ext'
+require 'bukelatta/logger'
+require 'bukelatta/utils'
+
+require 'bukelatta/client'
+require 'bukelatta/driver'
+require 'bukelatta/dsl'
+require 'bukelatta/dsl/template_helper'
+require 'bukelatta/dsl/context'
+require 'bukelatta/dsl/converter'
+require 'bukelatta/exporter'

metadata

@@ -0,0 +1,196 @@
+--- !ruby/object:Gem::Specification
+name: bukelatta
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- winebarrel
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2016-05-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: aws-sdk
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.3.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.3.0
+- !ruby/object:Gem::Dependency
+  name: diffy
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: hashie
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: multi_xml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: parallel
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: term-ansicolor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+description: Bukelatta is a tool to manage S3 Bucket Policy.
+email:
+- sgwr_dts@yahoo.co.jp
+executables:
+- bukelatta
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- bukelatta.gemspec
+- exe/bukelatta
+- lib/bukelatta.rb
+- lib/bukelatta/client.rb
+- lib/bukelatta/driver.rb
+- lib/bukelatta/dsl.rb
+- lib/bukelatta/dsl/context.rb
+- lib/bukelatta/dsl/converter.rb
+- lib/bukelatta/dsl/template_helper.rb
+- lib/bukelatta/exporter.rb
+- lib/bukelatta/ext/aws_s3_resource_ext.rb
+- lib/bukelatta/ext/hash_ext.rb
+- lib/bukelatta/ext/string_ext.rb
+- lib/bukelatta/logger.rb
+- lib/bukelatta/utils.rb
+- lib/bukelatta/version.rb
+homepage: https://github.com/winebarrel/bukelatta
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5.1
+signing_key: 
+specification_version: 4
+summary: Bukelatta is a tool to manage S3 Bucket Policy.
+test_files: []