certstash-cli 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: b6835f9bda029dd7202350e8e9b5553b3f49b02d
+  data.tar.gz: 4ca68328ee19f8b59bd8fff3cf5f2b4b4a8672fd
+SHA512:
+  metadata.gz: c0d6c6880e2c94a33cc18bfc6ae0332617033c9092243073a259779e9f0d557533c2dcd9ef6bb7dd861a62e7ab3d67d6b9a77a65c0ddfc88ccdef5258627693d
+  data.tar.gz: 004b00ff825863c39462ee1d50cd0cdbfff77bb50d0a00d7d8586650ca5595d068ba0917be9afe1113758150d93329e2eae99641c909e48aa9c676d89fe0e559

data/README.rdoc

@@ -0,0 +1,38 @@
+= certstash-cli
+
+certstash-cli manages the creation, storage, and retrieval of SSL keys and CRTs.
+
+
+= Running Tests
+
+#### CLI commands
+
+##### Help
+```bash
+ $ bundle exec bin/certstash-cli gen_csr help
+ $ bundle exec bin/certstash-cli gen_pkey help
+ ```
+
+ ##### Examples
+ ```bash
+  $ bundle exec certstash-cli gen_pkey --vault_name=rwu1ee01-certificates --item_name=rewards-ui-ee.cdc.gci.com --admins=admin1,admin2,admin3 --query=name:rwu1ee01ngxlb*
+  $ bundle exec bin/certstash-cli gen_csr --vault_name=rwu1ee01-certificates --item_name=rewards-ui-ee.cdc.gci.com
+  ```
+
+#### Integration tests
+```bash
+ $ bundle exec cucumber
+ ```
+:include:certstash-cli.rdoc
+
+#### Debugging
+
+To see backtraces for CLI errors, you need only set an environment variable.
+```bash
+$ env GLI_DEBUG=true bin/gli foo
+```
+
+The same method works for other system test.
+```bash
+$ env GLI_DEBUG=true bundle exec cucumber
+```

data/bin/certstash-cli

@@ -0,0 +1,194 @@
+#!/usr/bin/env ruby
+require 'gli'
+require 'awesome_print'
+require 'cert_stash'
+require 'certstash-cli/certstash_cli_helper'
+begin # XXX: Remove this begin/rescue before distributing your app
+  require 'certstash-cli'
+rescue LoadError
+  STDERR.puts 'In development, you need to use \
+              `bundle exec bin/certstash-cli` to run your app'
+  STDERR.puts 'At install-time, RubyGems will make sure lib, etc. \
+              are in the load path'
+  STDERR.puts 'Feel free to remove this message from bin/certstash-cli now'
+  exit 64
+end
+
+include GLI::App
+
+program_desc 'certstash-cli manages the creation, storage, and '\
+    'retrieval of SSL keys and CRTs.'
+
+version CertstashCli::VERSION
+
+subcommand_option_handling :normal
+arguments :strict
+
+desc 'Be verbose'
+switch [:v, :verbose]
+
+# accepts are global
+
+# accept arrays as parameters
+accept Array do |value|
+  value.split(/,/).map(&:strip)
+end
+
+# accept hashes as parameters
+accept(Hash) do |value|
+  result = {}
+  value.split(/,/).each do |pair|
+    k, v = pair.split(/:/)
+    result[k] = v
+  end
+  result
+end
+
+# GLOBAL CHEF CONFIG PARAM
+# flag [:C, :chef_config, 'chef-config'],
+#      arg:           'chef-config',
+#      required:      true,
+#      default_value: File.join(ENV['HOME'], '.chef/knife.rb'),
+#      arg_name:      'chef-config',
+#      type:          String,
+#      desc:          'Path to your Chef knife.rb.  Defaults to ~/.chef/knife.rb
+
+# 1. Validate that the following options are present:
+#     a. --vault
+#     b. --item
+#     c. --admins
+#     d. --query
+desc 'Generate a Private Key for a chef vault and item.'
+
+command :gen_pkey do |c|
+  c.desc 'Generate Private Key'
+
+  # flags are defined in certstash_cli_helper
+  c = fetch_pkey_flags(c)
+
+  # c.switch [:d,:dry]
+  c.action do |_global_options, options, _args|
+    ######## REMOVE ME.  For debugging purposes only ############
+    # output_command_args(global_options, options, args)
+
+    help_now!('vault name is required.') if options[:vault_name].nil?
+    help_now!('item name is required.') if options[:item_name].nil?
+    help_now!('admins is required.') if options[:admins].nil?
+    help_now!('query is required.') if options[:query].nil?
+
+    # Create an instance of CertStash::ChefVaultFile and populate the vault_name
+    # and item_name attributes in that instance
+
+    vault_file =  CertStash::ChefVaultFile.new(
+      vault_name: options[:vault_name],
+      item_name: options[:item_name]
+    )
+
+    # Create an instance of CertStash::Command::StashRsaPrivateKey and populate
+    # the chef_vault_file attribute with the instance of ChefVaultFile
+
+    cmd = CertStash::Command::StashRsaPrivateKey.new(
+      file_name: options[:item_name],
+      bit_length: 2048,
+      chef_vault_file: vault_file
+    )
+
+    # Show the user what happened
+    $stderr.puts "Creating key for #{options[:item_name]} to vault "\
+      "#{options[:vault_name]}/#{options[:item_name]}"
+
+    # split the admins option string in to an array
+    # on the instance of StashRsaPrivateKey call execute,
+    # passing the 'admins' array and the 'query' option from the user
+    admins = options[:admins].split(',')
+    cmd.execute(query, admins)
+  end
+end
+
+desc 'Generate a secure certificate'
+long_desc %(
+  Genrate a new secure certificate
+)
+command :gen_csr do |c|
+  # flags are defined in certstash_cli_helper
+  c = fetch_csr_flags(c)
+
+  c.action do |_global_options, options, _args|
+    puts 'gen_csr command ran'
+
+    ######## REMOVE ME.  For debugging purposes only ############
+    # output_command_args(global_options, options, args)
+
+    help_now!('Vault name is required.') if options[:vault_name].nil?
+    help_now!('Item name is required.') if options[:item_name].nil?
+    help_now!('Common name is required.') if options[:common_name].empty?
+
+    # Create an instance of CertStash::ChefVaultFile and populate
+    # the vault_name and item_name attributes in that instance
+
+    vault_file =  CertStash::ChefVaultFile.new(
+      vault_name: options[:vault_name],
+      item_name: options[:item_name]
+    )
+
+    # Create an instance of R509::Subject, passing the values of
+    # options.common_name, options.country, options.state, options.locale,
+    # options.organization, options.organizational_unit to the constructor as
+    # hash values to the corresponding symbolic keys: :CN, :C, :ST, :L, :O, :OU
+
+    subject = R509::Subject.new(
+      CN: options[:common_name],
+      C: options[:country],
+      ST: options[:state],
+      L: options[:locale],
+      O: options[:organization],
+      OU: options[:organizational_unit]
+    )
+
+    # Create an instance of CertStash::Command::GenerateCsr, and populate
+    # the following attributes:
+    #   a. chef_vault_file with the CertStash::ChefVaultFile
+    #   b. subject with the R509::Subject instance
+    #   c. san_names with the value of the --san option from the user, if any
+
+    cmd = CertStash::Command::GenerateCsr.new(
+      chef_vault_file: vault_file,
+      subject: subject
+    )
+    cmd.san_names = options[:san].split(',') || []
+
+    # Call execute on the csr instance and send the output to std output (puts)
+    begin
+      csr = md.execute
+
+      puts "Creating CSR for #{options[:common_name]} \
+           at ./csrs/#{options[:common_name]}.csr"
+
+      File.open("./csrs/#{options[:common_name]}.csr", 'w+') do |f|
+        f.puts csr
+      end
+    rescue Exception => e
+      puts "Faild to create CSR for #{options[:common_name]}  \
+           at ./csrs/#{options[:common_name]}.csr"
+      puts e.message
+    end
+  end
+end
+
+# pre do |global,command,options,args|
+#   puts 'Executing PRE hook....'
+#   # Pre logic here
+#   # Return true to proceed; false to abort and not call the
+#   # chosen command
+#   # Use skips_pre before a command to skip this block
+#   # on that command only
+#   true
+# end
+#
+# on_error do |exception|
+#   # Error logic here
+#   # return false to skip default error handling
+#   true
+# end
+
+exit run(ARGV)

data/certstash-cli.rdoc

@@ -0,0 +1,5 @@
+= certstash-cli
+
+Generate this with
+    certstash-cli rdoc
+After you have described your command line interface

data/lib/certstash-cli.rb

@@ -0,0 +1,4 @@
+require 'certstash-cli/version.rb'
+
+# Add requires for other files you add to your project here, so
+# you just need to require this one file in your bin file

data/lib/certstash-cli/certstash_cli_helper.rb

@@ -0,0 +1,77 @@
+def output_command_args(global_options, options, args)
+  puts '*****************'
+  puts 'gen_pkey command ran'
+  puts 'args: '
+  ap args
+  puts 'options: '
+  ap options
+  puts 'global_options: '
+  ap global_options
+  puts '*****************'
+end
+
+
+# env GLI_DEBUG=true certstash-cli gen_csr :t rwu1ee01-certificates, --item_name=rewards-ui-ee.cdc.gci.com, --common_name=rewards-ui-st.cdc.gci.com, --country=US, --state=OR, --locale=en-US, --organization=GCI, --organizational_unit=CD
+def fetch_csr_flags(command) # rubocop:disable Metrics/MethodLength, Metrics/AbcSize
+  command.desc 'Vault Name'
+  command.default_value nil
+  command.flag [:t, :vault_name]
+
+  command.desc 'Item Name'
+  command.default_value nil
+  command.flag [:i, :item_name]
+
+  command.desc 'Common Name'
+  command.default_value ''
+  command.flag [:cn, :common_name]
+
+  command.desc 'Country'
+  command.default_value 'US'
+  command.flag [:c, :country]
+
+  command.desc 'State'
+  command.default_value ''
+  command.flag [:s, :state]
+
+  command.desc 'Locale'
+  command.default_value 'en-US'
+  command.flag [:l, :locale]
+
+  command.desc 'Organization'
+  command.default_value ''
+  command.flag [:o, :organization]
+
+  command.desc 'Organizational Unit'
+  command.default_value ''
+  command.flag [:ou, :organizational_unit]
+
+  command.desc 'San Names'
+  command.default_value []
+  command.flag [:sn, :san], type: Array
+
+  command
+end
+
+def fetch_pkey_flags(command) # rubocop:disable Metrics/MethodLength, Metrics/AbcSize
+  command.desc 'Vault Name'
+  command.default_value nil
+  command.arg_name 'vault'
+  command.flag [:t, :vault_name]
+
+  command.desc 'Item Name'
+  command.default_value nil
+  command.arg_name 'item'
+  command.flag [:i, :item_name]
+
+  command.desc 'Admins'
+  command.default_value ''
+  command.arg_name 'admins'
+  command.flag [:a, :admins], type: Array
+
+  command.desc 'Query'
+  command.default_value nil
+  command.arg_name 'query'
+  command.flag [:q, :query]
+
+  command
+end

data/lib/certstash-cli/version.rb

@@ -0,0 +1,3 @@
+module CertstashCli
+  VERSION = '0.0.1'
+end

metadata

@@ -0,0 +1,184 @@
+--- !ruby/object:Gem::Specification
+name: certstash-cli
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Danny McAlerney
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-08-15 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: cert_stash
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.1.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.1.0
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rdoc
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: cucumber
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: yard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: aruba
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: gli
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.14.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.14.0
+description: 
+email: dmcalerney@gci.com
+executables:
+- certstash-cli
+extensions: []
+extra_rdoc_files:
+- README.rdoc
+- certstash-cli.rdoc
+files:
+- README.rdoc
+- bin/certstash-cli
+- certstash-cli.rdoc
+- lib/certstash-cli.rb
+- lib/certstash-cli/certstash_cli_helper.rb
+- lib/certstash-cli/version.rb
+homepage: http://source.gci.com/projects/CD/repos/cd-certstash-cli
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options:
+- "--title"
+- certstash-cli
+- "--main"
+- README.rdoc
+- "-ri"
+require_paths:
+- lib
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5
+signing_key: 
+specification_version: 4
+summary: certstash-cli manages the creation, storage, and retrieval of SSL keys and
+  CRTs.
+test_files: []