choria-mcorpc-support 2.24.3 → 2.25.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: cda09be3dbdb88b142247d02b8ee0f03d8198a1b4138b3b4d77b1143f692400a
-  data.tar.gz: c86ce219df50736213dd3da1915869c2971316f454f1377564c3147a48670c55
+  metadata.gz: 2e44c83c6fb1dada2924b3ea6690f719cee605ad28b2522493732e3dfaababd8
+  data.tar.gz: 1beebfd97274d3065303abd3d29312bf7c018a8f8e9451dbddec0a2d438d969c
 SHA512:
-  metadata.gz: a799daf56ba217197c4e3b66ae81e583eb4f5e88229b3f9e0b3e99ae4b666eb29388f7fa21c7cc8f9dbd5731c78016277978d1ed084c02593ae120694877a40d
-  data.tar.gz: 1bd34b265c722b9170d8a530caab0581809dbd812fae49bfa1337ee5e06eda441b22a0dcc67dd8b4341963ec85890d2442a5432bb34278cd0813f3ab5642b5e9
+  metadata.gz: 18863672cd7fbc44a5f07e1b7580d034972da6b318e7bfdd967adaee5671f2700fc8248e9031d65facb8c339f755138c0010d1a2e3da33171692f9fa5e4a63a2
+  data.tar.gz: 29ca2987783e86d7b65d55189b0bc6fffdb433b96eb4bbf28a8a2d5fe427b491dc2abb87374884966bbf4d3379cc15374ad33312181280cf6c29b38389c141b1

data/lib/mcollective/agent/aaa_signer.ddl

@@ -0,0 +1,41 @@
+metadata :name        => "aaa_signer",
+         :description => "Request Signer for Choria AAA Service",
+         :author      => "R.I.Pienaar <rip@devco.net>",
+         :license     => "Apache-2.0",
+         :version     => "0.24.0",
+         :url         => "https://github.com/choria-io/aaasvc",
+         :provider    => "golang",
+         :service     => true,
+         :timeout     => 10
+
+
+action "sign", :description => "Signs a RPC Request on behalf of a user" do
+  display :always
+
+  input :request,
+        :prompt      => "RPC Request",
+        :description => "The request to sign",
+        :type        => :string,
+        :validation  => :shellsafe,
+        :maxlength   => 100240,
+        :optional    => false
+
+
+  input :token,
+        :prompt      => "JWT Token",
+        :description => "The JWT token authenticating the user",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 10024,
+        :optional    => false
+
+
+
+
+  output :secure_request,
+         :description => "The signed Secure Request",
+         :type        => "string",
+         :display_as  => "Secure Request"
+
+end
+

data/lib/mcollective/agent/aaa_signer.json

@@ -0,0 +1,46 @@
+{
+  "$schema": "https://choria.io/schemas/mcorpc/ddl/v1/agent.json",
+  "metadata": {
+    "license": "Apache-2.0",
+    "author": "R.I.Pienaar \u003crip@devco.net\u003e",
+    "timeout": 10,
+    "name": "aaa_signer",
+    "version": "0.24.0",
+    "url": "https://github.com/choria-io/aaasvc",
+    "description": "Request Signer for Choria AAA Service",
+    "provider": "golang",
+    "service": true
+  },
+  "actions": [
+    {
+      "action": "sign",
+      "input": {
+        "request": {
+          "prompt": "RPC Request",
+          "description": "The request to sign",
+          "type": "string",
+          "optional": false,
+          "validation": "shellsafe",
+          "maxlength": 100240
+        },
+        "token": {
+          "prompt": "JWT Token",
+          "description": "The JWT token authenticating the user",
+          "type": "string",
+          "optional": false,
+          "validation": ".",
+          "maxlength": 10024
+        }
+      },
+      "output": {
+        "secure_request": {
+          "description": "The signed Secure Request",
+          "display_as": "Secure Request",
+          "type": "string"
+        }
+      },
+      "display": "always",
+      "description": "Signs a RPC Request on behalf of a user"
+    }
+  ]
+}

data/lib/mcollective/agent/choria_provision.ddl

@@ -0,0 +1,297 @@
+metadata :name        => "choria_provision",
+         :description => "Choria Provisioner",
+         :author      => "R.I.Pienaar <rip@devco.net>",
+         :license     => "Apache-2.0",
+         :version     => "0.24.0",
+         :url         => "https://choria.io",
+         :timeout     => 20
+
+
+action "configure", :description => "Configure the Choria Server" do
+  display :failed
+
+  input :action_policies,
+        :prompt      => "Action Policy Documents",
+        :description => "Map of Action Policy documents indexed by file name",
+        :type        => :hash,
+        :optional    => true
+
+
+  input :ca,
+        :prompt      => "CA Bundle",
+        :description => "PEM text block for the CA",
+        :type        => :string,
+        :validation  => '^-----BEGIN CERTIFICATE-----',
+        :maxlength   => 20480,
+        :optional    => true
+
+
+  input :certificate,
+        :prompt      => "Certificate",
+        :description => "PEM text block for the certificate",
+        :type        => :string,
+        :validation  => '^-----BEGIN CERTIFICATE-----',
+        :maxlength   => 10240,
+        :optional    => true
+
+
+  input :config,
+        :prompt      => "Configuration",
+        :description => "The configuration to apply to this node",
+        :type        => :string,
+        :validation  => '^{.+}$',
+        :maxlength   => 2048,
+        :optional    => false
+
+
+  input :ecdh_public,
+        :prompt      => "ECDH Public Key",
+        :description => "Required when sending a private key",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 64,
+        :optional    => true
+
+
+  input :key,
+        :prompt      => "PEM text block for the private key",
+        :description => "",
+        :type        => :string,
+        :validation  => '-----BEGIN RSA PRIVATE KEY-----',
+        :maxlength   => 10240,
+        :optional    => true
+
+
+  input :opa_policies,
+        :prompt      => "Open Policy Agent Policy Documents",
+        :description => "Map of Open Policy Agent Policy documents indexed by file name",
+        :type        => :hash,
+        :optional    => true
+
+
+  input :ssldir,
+        :prompt      => "SSL Dir",
+        :description => "Directory for storing the certificate in",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 500,
+        :optional    => true
+
+
+  input :token,
+        :prompt      => "Token",
+        :description => "Authentication token to pass to the server",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 128,
+        :optional    => true
+
+
+
+
+  output :message,
+         :description => "Status message from the Provisioner",
+         :type        => "string",
+         :display_as  => "Message"
+
+end
+
+action "gencsr", :description => "Request a CSR from the Choria Server" do
+  display :always
+
+  input :C,
+        :prompt      => "Country",
+        :description => "Country Code",
+        :type        => :string,
+        :validation  => '^[A-Z]{2}$',
+        :maxlength   => 2,
+        :optional    => true
+
+
+  input :L,
+        :prompt      => "Locality",
+        :description => "Locality or municipality (such as city or town name)",
+        :type        => :string,
+        :validation  => '^[\w\s-]+$',
+        :maxlength   => 50,
+        :optional    => true
+
+
+  input :O,
+        :prompt      => "Organization",
+        :description => "Organization",
+        :type        => :string,
+        :validation  => '^[\w\s-]+$',
+        :maxlength   => 50,
+        :optional    => true
+
+
+  input :OU,
+        :prompt      => "Organizational Unit",
+        :description => "Organizational Unit",
+        :type        => :string,
+        :validation  => '^[\w\s-]+$',
+        :maxlength   => 50,
+        :optional    => true
+
+
+  input :ST,
+        :prompt      => "State",
+        :description => "State",
+        :type        => :string,
+        :validation  => '^[\w\s-]+$',
+        :maxlength   => 50,
+        :optional    => true
+
+
+  input :cn,
+        :prompt      => "Common Name",
+        :description => "The certificate Common Name to place in the CSR",
+        :type        => :string,
+        :validation  => '^(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]).)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9-]*[A-Za-z0-9])$',
+        :maxlength   => 80,
+        :optional    => true
+
+
+  input :token,
+        :prompt      => "Token",
+        :description => "Authentication token to pass to the server",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 128,
+        :optional    => true
+
+
+
+
+  output :csr,
+         :description => "PEM text block for the CSR",
+         :type        => "string",
+         :display_as  => "CSR"
+
+  output :public_key,
+         :description => "PEM text block of the public key that made the CSR",
+         :type        => "string",
+         :display_as  => "Public Key"
+
+  output :ssldir,
+         :description => "SSL directory as determined by the server",
+         :type        => "string",
+         :display_as  => "SSL Dir"
+
+end
+
+action "release_update", :description => "Performs an in-place binary update and restarts Choria" do
+  display :always
+
+  input :repository,
+        :prompt      => "Repository URL",
+        :description => "HTTP(S) server hosting the update repository",
+        :type        => :string,
+        :validation  => '^http(s*)://',
+        :maxlength   => 512,
+        :optional    => false
+
+
+  input :token,
+        :prompt      => "Token",
+        :description => "Authentication token to pass to the server",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 128,
+        :optional    => true
+
+
+  input :version,
+        :prompt      => "Version to update to",
+        :description => "Package version to update to",
+        :type        => :string,
+        :validation  => '.+',
+        :maxlength   => 32,
+        :optional    => false
+
+
+
+
+  output :message,
+         :description => "Status message from the Provisioner",
+         :type        => "string",
+         :display_as  => "Message"
+
+end
+
+action "jwt", :description => "Re-enable provision mode in a running Choria Server" do
+  display :always
+
+  input :token,
+        :prompt      => "Token",
+        :description => "Authentication token to pass to the server",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 128,
+        :optional    => true
+
+
+
+
+  output :ecdh_public,
+         :description => "The ECDH public key for calculating shared secrets",
+         :type        => "string",
+         :display_as  => "ECDH Public Key"
+
+  output :jwt,
+         :description => "The contents of the JWT token",
+         :type        => "string",
+         :display_as  => "JWT Token"
+
+end
+
+action "reprovision", :description => "Reenable provision mode in a running Choria Server" do
+  display :always
+
+  input :token,
+        :prompt      => "Token",
+        :description => "Authentication token to pass to the server",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 128,
+        :optional    => true
+
+
+
+
+  output :message,
+         :description => "Status message from the Provisioner",
+         :type        => "string",
+         :display_as  => "Message"
+
+end
+
+action "restart", :description => "Restart the Choria Server" do
+  display :failed
+
+  input :splay,
+        :prompt      => "Splay time",
+        :description => "The configuration to apply to this node",
+        :type        => :number,
+        :optional    => true
+
+
+  input :token,
+        :prompt      => "Token",
+        :description => "Authentication token to pass to the server",
+        :type        => :string,
+        :validation  => '.',
+        :maxlength   => 128,
+        :optional    => true
+
+
+
+
+  output :message,
+         :description => "Status message from the Provisioner",
+         :type        => "string",
+         :display_as  => "Message"
+
+end
+