RubyGems - cloud-config - Versions diffs - 0.2.0 → 0.2.2 - Mend

cloud-config 0.2.0 → 0.2.2

Files changed (18) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +15 -1
data/Gemfile.lock +5 -1
data/README.md +7 -2
data/cloud-config.gemspec +2 -1
data/examples/001_parameter_store.rb +3 -3
data/examples/002_parameter_store_with_cache.rb +9 -4
data/examples/003_parameter_store_with_preload.rb +7 -4
data/examples/004_handling_configuration_changes.rb +2 -0
data/examples/005_parameter_store_encrypted_key.rb +40 -0
data/examples/006_secrets_manager.rb +25 -0
data/lib/cloud-config/providers/aws_parameter_store.rb +18 -5
data/lib/cloud-config/providers/aws_secrets_manager.rb +41 -0
data/lib/cloud-config/providers/in_memory.rb +3 -3
data/lib/cloud-config/providers/yaml_file.rb +6 -5
data/lib/cloud-config/version.rb +1 -1
data/lib/cloud-config.rb +1 -1
metadata +20 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a5d99c6f38f07031a7da456fa285c345a87ed6f124a534d2b5fe004540743e85
-  data.tar.gz: cba8c49a6fcc40d3cfac3f451826a3fddaaf6a0d8a7271033fbc7e833dc47cbb
+  metadata.gz: 14a075dc5489c921dd0cc57ce34900f1b44956430f04b7f65bae877191cb1146
+  data.tar.gz: 93ae7d5b13fa07e10f1e4f32c9e6b26707d42466aab400f6314f0542ad05d254
 SHA512:
-  metadata.gz: b883d58ca786602fe85135a77a31959c00dcd7d3af7534e63889320fb7d1d739285bb048fa6f2c72fb309c8ecf9ed4bc95da513be39a9d073a14ec768c4cb7c7
-  data.tar.gz: 0d61a08ecbba70c9ae743cf8fa84c68772da1a6a3566716fb9f17ed564472150ef5c6dcbc38e0f6b9722437327feef6cac85c6aca02e1bcd2c49ab0812c003fb
+  metadata.gz: 816e3d5ddf6ecc65d7ebbaef7fe5f37df5cc43296fd8bfb7b9e8ff89d6fa9e0fe192df70669b228196940973e1fe8558352388afd65dc8ab2949cba3f9148dde
+  data.tar.gz: 50661d530a79e7407faa3b1d54f9f70aa958af68f07b4fb19092027888da1129fbf689e2d92a079582a16ac7039ff5f096fa4ccc95b5889911f7c75bebc4de49

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,20 @@
 ## [Unreleased]
+## [0.2.2] - 2023-05-21
+Enhancements:
+- Add AWS Secrets Manager provider
+## [Released]
+## [0.2.1] - 2023-05-21
+Enhancements:
+- Allow options to be passed when fetching configuration from the provider
 ## [0.2.0] - 2023-05-20
 Bug fixes:
@@ -11,7 +26,6 @@ Enhancements:
 - Reset cache for single key
 - Lookup providers by configuration key
-## [Released]
 ## [0.1.0] - 2023-05-17

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    cloud-config (0.2.0)
+    cloud-config (0.2.2)
       parallel
 GEM
@@ -15,6 +15,9 @@ GEM
       aws-partitions (~> 1, >= 1.651.0)
       aws-sigv4 (~> 1.5)
       jmespath (~> 1, >= 1.6.1)
+    aws-sdk-secretsmanager (1.75.0)
+      aws-sdk-core (~> 3, >= 3.165.0)
+      aws-sigv4 (~> 1.1)
     aws-sdk-ssm (1.150.0)
       aws-sdk-core (~> 3, >= 3.165.0)
       aws-sigv4 (~> 1.1)
@@ -89,6 +92,7 @@ PLATFORMS
   aarch64-linux
 DEPENDENCIES
+  aws-sdk-secretsmanager
   aws-sdk-ssm
   cloud-config!
   mock_redis

data/README.md CHANGED Viewed

@@ -4,7 +4,7 @@ A library to modernise the way applications fetch configuration. Typically an ap
 A modern approach stores configuration remotely, often using key/value databases. Storing configurations in a single database, separately from the codebase reduces infrastructure dependency. Configuration updates can automatically sync with any application, without requiring redeployments. Security risk is greatly reduced, since configurations can be securely stored. Another goal with this approach is creating an environmentless codebase. The application no longer needs to know which environment it's running in, since all the configuration is handled by the infrastucture.
-Another common problem is password rotation. A typical application will need to be restarted or even redeployed when the configuration settings change, such as rotating passwords. CloudConfig can handle this elegantly, improving the uptime and resilience of the application.
+Another common problem is password rotation. A typical application will need to be restarted or even redeployed when the configuration settings change. CloudConfig can handle this elegantly, improving application uptime and resilience.
 ## Installation
@@ -75,6 +75,11 @@ CloudConfig.configure do
   provider :in_memory do
     setting :key1, cache: 60 # 60 seconds
   end
+  # If the datastore has configurable options
+  provider :aws_parameter_store do
+    setting :key1, with_decryption: true
+  end
 end
 ```
@@ -109,7 +114,7 @@ class CustomProvider
   def initialize(params = {}); end
   # Define `get` for fetching keys from the remote datastore
-  def get(key); end
+  def get(key, opts = {}); end
   # Define `set` for storing keys in the remote datastore
   def set(key, value); end

data/cloud-config.gemspec CHANGED Viewed

@@ -21,7 +21,7 @@ Gem::Specification.new do |spec|
   spec.metadata['homepage_uri'] = spec.homepage
   spec.metadata['source_code_uri'] = spec.homepage
-  spec.metadata['changelog_uri'] = "#{spec.homepage}/CHANGELOG.md"
+  spec.metadata['changelog_uri'] = "#{spec.homepage}/blob/main/CHANGELOG.md"
   # Specify which files should be added to the gem when it is released.
   # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
@@ -37,6 +37,7 @@ Gem::Specification.new do |spec|
   # Uncomment to register a new dependency of your gem
   spec.add_dependency 'parallel'
+  spec.add_development_dependency 'aws-sdk-secretsmanager'
   spec.add_development_dependency 'aws-sdk-ssm'
   spec.add_development_dependency 'mock_redis'
   spec.add_development_dependency 'pry'

data/examples/001_parameter_store.rb CHANGED Viewed

@@ -11,15 +11,15 @@ gemfile do
   gem 'cloud-config', path: '..'
 end
-require 'benchmark'
 require 'cloud-config/providers/aws_parameter_store'
+# @note: Make sure the `parameter_store_example` key is set in the parameter store
 CloudConfig.configure do
   provider :aws_parameter_store do
     setting :parameter_store_example
   end
 end
-puts 'Fetching key parameter_store_example'
+puts 'Fetching key: parameter_store_example'
 value = CloudConfig.get(:parameter_store_example)
-puts "Fetched value #{value}"
+puts "Fetched value: #{value}"

data/examples/002_parameter_store_with_cache.rb CHANGED Viewed

@@ -15,6 +15,7 @@ require 'benchmark'
 require 'cloud-config/cache/in_memory'
 require 'cloud-config/providers/aws_parameter_store'
+# @note: Make sure the `parameter_store_example` key is set in the parameter store
 CloudConfig.configure do
   cache_client CloudConfig::Cache::InMemory.new
@@ -25,16 +26,20 @@ end
 value = nil
-puts 'Fetching key parameter_store_example'
+puts 'Fetching key; parameter_store_example'
 time = Benchmark.measure { value = CloudConfig.get(:parameter_store_example) }
-puts "Fetched value #{value} in #{time.real.round(5)} seconds"
+puts "Fetched value: #{value} in #{time.real.round(5)} seconds"
+puts
-puts 'Fetching key parameter_store_example (cached)'
+puts 'Fetching key: parameter_store_example (cached)'
 time = Benchmark.measure { value = CloudConfig.get(:parameter_store_example) }
-puts "Fetched value #{value} in #{time.real.round(5)} seconds"
+puts "Fetched value: #{value} in #{time.real.round(5)} seconds"
 sleep 5
+puts
 puts 'Fetching key parameter_store_example'
 time = Benchmark.measure { value = CloudConfig.get(:parameter_store_example) }
 puts "Fetched value #{value} in #{time.real.round(5)} seconds"

data/examples/003_parameter_store_with_preload.rb CHANGED Viewed

@@ -15,6 +15,7 @@ require 'benchmark'
 require 'cloud-config/cache/in_memory'
 require 'cloud-config/providers/aws_parameter_store'
+# @note: Make sure the `parameter_store_example` key is set in the parameter store
 CloudConfig.configure do
   cache_client CloudConfig::Cache::InMemory.new
@@ -27,12 +28,14 @@ CloudConfig.preload
 value = nil
-puts 'Fetching key parameter_store_example (cached)'
+puts 'Fetching key: parameter_store_example (cached)'
 time = Benchmark.measure { value = CloudConfig.get(:parameter_store_example) }
-puts "Fetched value #{value} in #{time.real.round(5)} seconds"
+puts "Fetched value: #{value} in #{time.real.round(5)} seconds"
 sleep 5
-puts 'Fetching key parameter_store_example'
+puts
+puts 'Fetching key: parameter_store_example'
 time = Benchmark.measure { value = CloudConfig.get(:parameter_store_example) }
-puts "Fetched value #{value} in #{time.real.round(5)} seconds"
+puts "Fetched value: #{value} in #{time.real.round(5)} seconds"

data/examples/004_handling_configuration_changes.rb CHANGED Viewed

@@ -41,5 +41,7 @@ rescue Faraday::ServerError
   sleep 1
+  puts
   retry
 end

data/examples/005_parameter_store_encrypted_key.rb ADDED Viewed

@@ -0,0 +1,40 @@
+#! /usr/bin/env ruby
+require 'bundler/inline'
+gemfile do
+  source 'https://rubygems.org'
+  gem 'nokogiri'
+  gem 'aws-sdk-ssm'
+  gem 'cloud-config', path: '..'
+end
+require 'benchmark'
+require 'cloud-config/providers/aws_parameter_store'
+# @note: Make sure the `encrypted_key` key is set in the parameter store
+CloudConfig.configure do
+  provider :aws_parameter_store do
+    setting :encrypted_key
+  end
+end
+puts 'Fetching key: encrypted_key'
+value = CloudConfig.get(:encrypted_key)
+puts "Fetched value: #{value}"
+puts
+CloudConfig.reset!
+CloudConfig.configure do
+  provider :aws_parameter_store do
+    setting :encrypted_key, with_decryption: true
+  end
+end
+puts 'Fetching key: encrypted_key (decrypt)'
+value = CloudConfig.get(:encrypted_key)
+puts "Fetched value: #{value}"

data/examples/006_secrets_manager.rb ADDED Viewed

@@ -0,0 +1,25 @@
+#! /usr/bin/env ruby
+require 'bundler/inline'
+gemfile do
+  source 'https://rubygems.org'
+  gem 'nokogiri'
+  gem 'aws-sdk-secretsmanager'
+  gem 'cloud-config', path: '..'
+end
+require 'cloud-config/providers/aws_secrets_manager'
+# @note: Make sure the `secret_example` key is set in AWS Secrets Manager
+CloudConfig.configure do
+  provider :aws_secrets_manager do
+    setting :secret_example
+  end
+end
+puts 'Fetching key: secret_example'
+value = CloudConfig.get(:secret_example)
+puts "Fetched value: #{value}"

data/lib/cloud-config/providers/aws_parameter_store.rb CHANGED Viewed

@@ -2,10 +2,10 @@
 module CloudConfig
   module Providers
-    # A class for fetching configuration from the AWS Parameter Store
+    # A class for fetching configuration from AWS Parameter Store
     #
     # @example
-    #   provider = AwsParameterStore.new # Assuming AWS credentials are already configured
+    #   provider = CloudConfig::Providers::AwsParameterStore.new # Assuming AWS credentials are already configured
     #   provider.set(:example_key, :example_value)
     #   provider.get(:example_key) #=> 'example_value'
     class AwsParameterStore
@@ -13,18 +13,31 @@ module CloudConfig
       #   @return [Aws::SSM::Client]
       attr_reader :client
+      # @!attribute [r] Whether parameters need to be decrypted
+      #   @return [Boolean]
+      attr_reader :with_decryption
       # Create a new instance of {AwsParameterStore}.
-      def initialize(_params = {})
+      #
+      # @param [Hash] opts Parameter store options
+      # @option opts [Boolean] :with_decryption Whether all keys need to be decrypted
+      def initialize(opts = {})
         @client = Aws::SSM::Client.new
+        @with_decryption = opts.fetch(:with_decryption, false)
       end
       # Fetch the value of the key
       #
       # @param key [String,Symbol] Key to fetch
+      # @param [Hash] opts for fetching the key
+      # @option opts [Boolean] :with_decryption Whether the key needs decrypting
       #
       # @return [String] Value of the key
-      def get(key)
-        client.get_parameter(name: key).parameter.value
+      def get(key, opts = {})
+        decrypt = opts.fetch(:with_decryption) { with_decryption }
+        client.get_parameter(name: key, with_decryption: decrypt).parameter.value
       end
       # Set the value of the key

data/lib/cloud-config/providers/aws_secrets_manager.rb ADDED Viewed

@@ -0,0 +1,41 @@
+# frozen_string_literal: true
+module CloudConfig
+  module Providers
+    # A class for fetching configuration from AWS Secrets Manager
+    #
+    # @example
+    #   provider = CloudConfig::Providers::AwsSecretsManager.new # Assuming AWS credentials are already configured
+    #   provider.set(:example_key, :example_value)
+    #   provider.get(:example_key) #=> 'example_value'
+    class AwsSecretsManager
+      # @!attribute [r] An instance of the AWS Secrets Manager client
+      #   @return [Aws::SSM::Client]
+      attr_reader :client
+      # Create a new instance of {AwsSecretsManager}.
+      def initialize(_opts = {})
+        @client = Aws::SecretsManager::Client.new
+      end
+      # Fetch the value of the key
+      #
+      # @param key [String,Symbol] Key to fetch
+      #
+      # @return [String] Value of the key
+      def get(key, _opts = {})
+        secret = client.get_secret_value(secret_id: key)
+        secret.secret_binary || secret.secret_string
+      end
+      # Set the value of the key
+      #
+      # @param key [String,Symbol] Key to set
+      # @param value [Object] Value of the key
+      def set(key, value)
+        client.put_secret_value(secret_id: key, secret_string: value)
+      end
+    end
+  end
+end

data/lib/cloud-config/providers/in_memory.rb CHANGED Viewed

@@ -5,7 +5,7 @@ module CloudConfig
     # A class that acts as a provider for storing configuration in-memory
     #
     # @example
-    #   provider = InMemory.new # Assuming AWS credentials are already configured
+    #   provider = CloudConfig::Providers::InMemory.new # Assuming AWS credentials are already configured
     #   provider.set(:example_key, :example_value)
     #   provider.get(:example_key) #=> 'example_value'
     class InMemory
@@ -14,7 +14,7 @@ module CloudConfig
       attr_reader :settings
       # Create an instance of {InMemory}
-      def initialize(_params = {})
+      def initialize(_opts = {})
         @settings = {}
       end
@@ -23,7 +23,7 @@ module CloudConfig
       # @param key [String,Symbol] Key to fetch
       #
       # @return [Object] Value of the key
-      def get(key)
+      def get(key, _opts = {})
         settings[key]
       end

data/lib/cloud-config/providers/yaml_file.rb CHANGED Viewed

@@ -5,7 +5,7 @@ module CloudConfig
     # A class for fetching configuration from the AWS Parameter Store
     #
     # @example
-    #   provider = YamlFile.new # Assuming AWS credentials are already configured
+    #   provider = CloudConfig::Providers::YamlFile.new # Assuming AWS credentials are already configured
     #   provider.set(:example_key, :example_value)
     #   provider.get(:example_key) #=> 'example_value'
     class YamlFile
@@ -15,9 +15,10 @@ module CloudConfig
       # Create an instance of {YamlFile}
       #
-      # @option params [Hash] :filename Name of the YAML file
-      def initialize(params = {})
-        @contents = YAML.load_file(params[:filename]) || {}
+      # @param [Hash] opts Yaml file options
+      # @option opts [String] :filename Name of the YAML file
+      def initialize(opts = {})
+        @contents = YAML.load_file(opts[:filename]) || {}
       end
       # Fetch the value of the key
@@ -25,7 +26,7 @@ module CloudConfig
       # @param key [String,Symbol] Key to fetch
       #
       # @return [Object] Value of the key
-      def get(key)
+      def get(key, _opts = {})
         contents[key]
       end

data/lib/cloud-config/version.rb CHANGED Viewed

@@ -2,5 +2,5 @@
 module CloudConfig
   # Version of CloudConfig
-  VERSION = '0.2.0'
+  VERSION = '0.2.2'
 end

data/lib/cloud-config.rb CHANGED Viewed

@@ -90,7 +90,7 @@ module CloudConfig
   # @return [Object] Value of the key
   def load_key(provider_config, key, reset_cache: false)
     with_cache(key, reset_cache:, expire_in: provider_config.settings[key][:cache]) do
-      provider_config.provider.get(key)
+      provider_config.provider.get(key, provider_config.settings[key])
     end
   end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: cloud-config
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.2.2
 platform: ruby
 authors:
 - hypernova2002
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2023-05-20 00:00:00.000000000 Z
+date: 2023-05-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: parallel
@@ -24,6 +24,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: aws-sdk-secretsmanager
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: aws-sdk-ssm
   requirement: !ruby/object:Gem::Requirement
@@ -231,6 +245,8 @@ files:
 - examples/002_parameter_store_with_cache.rb
 - examples/003_parameter_store_with_preload.rb
 - examples/004_handling_configuration_changes.rb
+- examples/005_parameter_store_encrypted_key.rb
+- examples/006_secrets_manager.rb
 - lib/cloud-config.rb
 - lib/cloud-config/cache.rb
 - lib/cloud-config/cache/in_memory.rb
@@ -240,6 +256,7 @@ files:
 - lib/cloud-config/provider_options.rb
 - lib/cloud-config/providers.rb
 - lib/cloud-config/providers/aws_parameter_store.rb
+- lib/cloud-config/providers/aws_secrets_manager.rb
 - lib/cloud-config/providers/in_memory.rb
 - lib/cloud-config/providers/yaml_file.rb
 - lib/cloud-config/version.rb
@@ -250,7 +267,7 @@ licenses:
 metadata:
   homepage_uri: http://github.com/hypernova2002/cloud-config
   source_code_uri: http://github.com/hypernova2002/cloud-config
-  changelog_uri: http://github.com/hypernova2002/cloud-config/CHANGELOG.md
+  changelog_uri: http://github.com/hypernova2002/cloud-config/blob/main/CHANGELOG.md
   rubygems_mfa_required: 'true'
 post_install_message:
 rdoc_options: []