cloudpassage 0.0.2

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: e500a02a5462773eaffdaef67734c2bfcd931825
+  data.tar.gz: 63f39ab6e7e8b2a0ffc231d42b8ba7c4eeae2d2a
+SHA512:
+  metadata.gz: e490cee25a8326b0f3d3770f1f63e07993d97c29b807dc5d41eb6b9c2ac45e84d1185a09a0d9cd91f5e1643ede42dcaaf1f76d61f7e7f2b79d615b200769f2d6
+  data.tar.gz: 4747e12dadf7c7969650e8bab6cb59f386386e9aa774fb1d67f1649e679f8bf41e5c8b26493d169c540613a515b519ea1b6b438267872b88d4528d979e8fb406

data/.gitignore

@@ -0,0 +1,19 @@
+.idea
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp
+env/

data/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+
+gemspec

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2013 mshea
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,91 @@
+# Cloudpassage
+
+Rubygem for interacting with cloudpassage API.
+
+To date, most list/get functions are implemented. Most write-oriented functions are not.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'cloudpassage'
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install cloudpassage
+
+## Usage
+  * Objects are all wrappers around RestClient. Data is retrieved when the .data method is invoked.
+  * This method returns a hash, parsed from the JSON data.
+  * Data will not be retrieved until data is invoked.
+  * Objects cache data until their reload method is invoked.
+
+## Examples
+
+### General Usage
+```ruby
+  require 'cloudpassage'
+  
+  # Setup API client
+  api = Cloudpassage.api(ENV['CLIENT_ID'], ENV['CLIENT_SECRET'])
+
+  # List all the things.
+  puts api.events.all
+  puts api.file_integrity_policies.all
+  puts api.firewall_interfaces.all
+  puts api.firewall_policies.all
+  puts api.firewall_services.all
+  puts api.firewall_zones.all
+  puts api.server_groups.all
+  puts api.users.all
+  puts api.servers.all
+  
+  # List things that are related to other things.
+  puts api.firewall_policies.all[0].rules
+  puts api.servers.all[0].accounts.all
+  puts api.servers.all[0].issues.all
+  puts api.server_groups.all[0].groups.all
+      
+  # Get specific things.
+  puts api.file_integrity_policies.get('file_integrity_policy_id').data.to_json
+  ...
+
+  # Reload an object:
+  users = api.users
+
+  # First load occurs here.
+  users.all
+
+  # Second load occurs here.
+  users.reload
+
+  # You can also reload single objects:
+  user = users.all[0]
+  user.reload
+```
+
+### Allocating a user to login with on a server:
+```ruby
+  server = find_server_you_want_use_here
+  command_id = server.accounts.create('user', 'group')['command']['id']
+
+  begin
+    command = server.command(command_id)
+  end while not(command['id'] == 'completed')
+
+  # You can use this password to login as the user.
+  password = command['password']
+```
+
+  
+## Contributing
+
+1. Fork it
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create new Pull Request

data/Rakefile

@@ -0,0 +1,4 @@
+require 'rspec/core/rake_task'
+require 'bundler/gem_tasks'
+
+RSpec::Core::RakeTask.new('spec')

data/cloudpassage.gemspec

@@ -0,0 +1,26 @@
+# -*- encoding: utf-8 -*-
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'cloudpassage/version'
+
+Gem::Specification.new do |gem|
+  gem.name          = 'cloudpassage'
+  gem.version       = Cloudpassage::VERSION
+  gem.authors       = %w'mshea'
+  gem.email         = %w'mike.shea@gmail.com'
+  gem.description   = %q{API client for cloudpassage}
+  gem.summary       = %q{Cloudpassage}
+  gem.homepage      = 'https://github.com/sheax0r/ruby-cloudpassage'
+
+  gem.files         = `git ls-files`.split($/)
+  gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = %w'lib'
+
+  gem.add_development_dependency 'rake'
+  gem.add_development_dependency 'rspec'
+
+  gem.add_dependency 'oauth2'
+  gem.add_dependency 'rest-client'
+  gem.add_dependency 'json'
+end

data/lib/cloudpassage/api.rb

@@ -0,0 +1,57 @@
+module Cloudpassage
+
+  BASE_URL='https://api.cloudpassage.com/v1/'
+
+  def self.api(id, secret)
+    Api.new(self.token(id, secret))
+  end
+
+  class Api
+    attr_reader :token, :base_resource
+
+    def initialize(token)
+      @token = token
+      @base_resource = RestClient::Resource.new(BASE_URL)
+    end
+
+    def configuration_policies
+      Policies.new(token, base_resource['policies'])
+    end
+
+    def events
+      Events.new(token, base_resource['events'])
+    end
+
+    def file_integrity_policies
+      FimPolicies.new(token, base_resource['fim_policies'])
+    end
+
+    def firewall_interfaces
+      FirewallInterfaces.new(token, base_resource['firewall_interfaces'])
+    end
+
+    def firewall_policies
+      FirewallPolicies.new(token, base_resource['firewall_policies'])
+    end
+
+    def firewall_services
+      FirewallServices.new(token, base_resource['firewall_services'])
+    end
+
+    def firewall_zones
+      FirewallZones.new(token, base_resource['firewall_zones'])
+    end
+
+    def servers
+      Servers.new(token, base_resource['servers'])
+    end
+
+    def server_groups
+      Groups.new(token, base_resource['groups'])
+    end
+
+    def users
+      Users.new(token, base_resource['users'])
+    end
+  end
+end

data/lib/cloudpassage/base.rb

@@ -0,0 +1,42 @@
+module Cloudpassage
+  class Base
+    def initialize(token, base_resource, data=nil)
+      @token = token
+      @base_resource = base_resource
+      @data = data
+    end
+
+    def data
+      if @data.nil?
+        @data = JSON.parse(@base_resource.get(headers), :symbolize_names=>true)[object_symbol]
+      end
+      @data
+    end
+
+    def reload
+      @data = JSON.parse(@base_resource.get(headers), :symbolize_names=>true)[object_symbol]
+      self
+    end
+
+    def headers
+      {'Authorization'=>"Bearer #{@token}"}
+    end
+
+    def method_missing(sym, *args, &block)
+      if (@data[sym])
+        @data[sym]
+      else
+        super(sym, *args, &block)
+      end
+    end
+
+    # Convert class name to symbol.
+    # eg: CloudPassage::Users --> :users
+    def object_symbol
+      class_name = self.class.name
+      index = class_name.rindex(/::/)
+      class_name[index+2..-1].underscore.to_sym
+    end
+
+  end
+end

data/lib/cloudpassage/cloudpassage.rb

@@ -0,0 +1,26 @@
+require 'oauth2'
+require 'rest-client'
+require 'json'
+
+module Cloudpassage
+  RestClient.proxy = ENV['HTTPS_PROXY'] if ENV['HTTPS_PROXY'].to_s.length > 0
+
+  def self.token(client_id, client_secret)
+    client = OAuth2::Client.new(client_id, client_secret,
+                                :connection_opts => { :proxy => ENV['HTTPS_PROXY'] },
+                                :site => 'https://api.cloudpassage.com',
+                                :token_url => '/oauth/access_token')
+    client.client_credentials.get_token.token
+  end
+end
+
+# Add camel-to-snake-case conversion
+class String
+  def underscore
+    self.gsub(/::/, '/').
+        gsub(/([A-Z]+)([A-Z][a-z])/,'\1_\2').
+        gsub(/([a-z\d])([A-Z])/,'\1_\2').
+        tr("-", "_").
+        downcase
+  end
+end

data/lib/cloudpassage/collection.rb

@@ -0,0 +1,17 @@
+module Cloudpassage
+  module Collection
+    def all
+      data.map{|i|
+        get(i[:id], i)
+      }
+    end
+
+    def get(id, data=nil)
+      singleton_class.new(@token, @base_resource, id, data)
+    end
+
+    def [](id)
+      get(id)
+    end
+  end
+end

data/lib/cloudpassage/events.rb

@@ -0,0 +1,12 @@
+module Cloudpassage
+  class Events < Base
+    include Collection
+
+    def singleton_class
+      Event
+    end
+  end
+
+  class Event < Single
+  end
+end

data/lib/cloudpassage/file_integrity_baselines.rb

@@ -0,0 +1,12 @@
+module Cloudpassage
+  class FileIntegrityBaselines < Base
+    include Collection
+
+    def singleton_class
+      FileIntegrityBaseline
+    end
+  end
+
+  class FileIntegrityBaseline < Single
+  end
+end

data/lib/cloudpassage/fim_policies.rb

@@ -0,0 +1,15 @@
+module Cloudpassage
+  class FimPolicies < Base
+    include Collection
+
+    def singleton_class
+      FimPolicy
+    end
+  end
+
+  class FimPolicy < Single
+    def baselines
+      FileIntegrityBaselines.new(token, base_resource['baselines'])
+    end
+  end
+end

data/lib/cloudpassage/firewall_interfaces.rb

@@ -0,0 +1,11 @@
+module Cloudpassage
+  class FirewallInterfaces < Base
+    include Collection
+    def singleton_class
+      FirewallInterface
+    end
+  end
+
+  class FirewallInterface < Single
+  end
+end

data/lib/cloudpassage/firewall_policies.rb

@@ -0,0 +1,15 @@
+module Cloudpassage
+  class FirewallPolicies < Base
+    include Collection
+
+    def singleton_class
+      FirewallPolicy
+    end
+  end
+
+  class FirewallPolicy < Single
+    def rules
+      FirewallRules.new(token, base_resource['firewall_rules'])
+    end
+  end
+end

data/lib/cloudpassage/firewall_rules.rb

@@ -0,0 +1,12 @@
+module Cloudpassage
+  class FirewallRules < Base
+    include Collection
+
+    def singleton_class
+      FirewallRule
+    end
+  end
+
+  class FirewallRule < Single
+  end
+end

data/lib/cloudpassage/firewall_services.rb

@@ -0,0 +1,12 @@
+module Cloudpassage
+  class FirewallServices < Base
+    include Collection
+
+    def singleton_class
+      FirewallService
+    end
+  end
+
+  class FirewallService < Single
+  end
+end

data/lib/cloudpassage/firewall_zones.rb

@@ -0,0 +1,12 @@
+module Cloudpassage
+  class FirewallZones < Base
+    include Collection
+
+    def singleton_class
+      FirewallZone
+    end
+  end
+
+  class FirewallZone < Single
+  end
+end

data/lib/cloudpassage/groups.rb

@@ -0,0 +1,14 @@
+module Cloudpassage
+  class Groups < Base
+    include Collection
+    def singleton_class
+      Group
+    end
+  end
+
+  class Group < Single
+    def servers
+      Servers.new(@token, @base_resource['servers'])
+    end
+  end
+end

data/lib/cloudpassage/policies.rb

@@ -0,0 +1,12 @@
+module Cloudpassage
+  class Policies < Base
+    include Collection
+
+    def singleton_class
+      Policy
+    end
+  end
+
+  class Policy < Single
+  end
+end

data/lib/cloudpassage/servers.rb

@@ -0,0 +1,91 @@
+module Cloudpassage
+  class Servers < Base
+    include Collection
+
+    def singleton_class
+      Server
+    end
+  end
+
+  class Server < Single
+    def initialize(token, base_resource, id, data=nil)
+      @id = id
+      super(token, RestClient::Resource.new("#{BASE_URL}/servers/"), @id, data)
+    end
+
+    def issues
+      Issues.new(@token, @base_resource['issues'])
+    end
+
+    def accounts
+      Accounts.new(@token, @base_resource['accounts'])
+    end
+
+    def command(id)
+      Command.new(@token, @base_resource['commands'], id)
+    end
+  end
+
+  class Accounts < Base
+    include Collection
+
+    def singleton_class
+      Account
+    end
+
+    def all
+      data.map{|i| get(i[:username], i)}
+    end
+
+    def create(username, groups = '', opts = {})
+      payload = {'account' => {
+        :username => username,
+        :comment  => '',
+        :groups   => groups,
+        :password => password_opts.merge(opts.fetch(:password, {})),
+      }}
+      JSON.parse(@base_resource.post payload.to_json, headers)
+    end
+
+    def reset(username, opts = {})
+      payload = {'password' => password_opts.merge(opts)}
+      JSON.parse @base_resource[username]['password'].put(payload.to_json, headers)
+    end
+
+    def remove(username)
+      JSON.parse @base_resource[username].delete(headers)
+    end
+
+    def headers
+      super.merge({'Content-Type'=>'application/json'})
+    end
+
+    private
+    def password_opts
+      {
+        :length             => 25,
+        :include_special    => true,
+        :include_numbers    => true,
+        :include_uppercase  => true
+      }
+    end
+  end
+
+  class Issues < Base
+    include Collection
+
+    def singleton_class
+      Issue
+    end
+  end
+
+  class Command < Single
+    def done?
+      self.reload
+      %w'completed failed'.include? self.status
+    end
+  end
+
+  class Issue < Single;end
+  class Account < Single;end
+end

data/lib/cloudpassage/single.rb

@@ -0,0 +1,15 @@
+module Cloudpassage
+  class Single < Base
+
+    attr_reader :id
+
+    def initialize(token, base_resource, id, data=nil)
+      @id = id
+      super(token, base_resource[@id], data)
+    end
+
+    def get
+      @base_resource.get(headers)
+    end
+  end
+end

data/lib/cloudpassage/users.rb

@@ -0,0 +1,12 @@
+module Cloudpassage
+  class Users < Base
+    include Collection
+
+    def singleton_class
+      User
+    end
+  end
+
+  class User < Single
+  end
+end

data/lib/cloudpassage/version.rb

@@ -0,0 +1,3 @@
+module Cloudpassage
+  VERSION = "0.0.2"
+end

data/lib/cloudpassage.rb

@@ -0,0 +1,19 @@
+require 'cloudpassage/cloudpassage'
+require 'cloudpassage/version'
+require 'cloudpassage/base'
+require 'cloudpassage/collection'
+require 'cloudpassage/single'
+require 'cloudpassage/policies'
+require 'cloudpassage/events'
+require 'cloudpassage/file_integrity_baselines'
+require 'cloudpassage/fim_policies'
+require 'cloudpassage/firewall_interfaces'
+require 'cloudpassage/firewall_policies'
+require 'cloudpassage/firewall_rules'
+require 'cloudpassage/firewall_services'
+require 'cloudpassage/firewall_zones'
+require 'cloudpassage/groups'
+require 'cloudpassage/servers'
+require 'cloudpassage/users'
+require 'cloudpassage/api'
+

data/spec/api_spec.rb

@@ -0,0 +1,41 @@
+require File.join(File.dirname(__FILE__), '..', 'lib', 'cloudpassage')
+require 'rspec'
+
+module Cloudpassage
+  describe Cloudpassage do
+    attr_reader :api
+
+    before :each do
+      token = Cloudpassage.token(ENV.fetch('CLOUDPASSAGE_ID'), ENV.fetch('CLOUDPASSAGE_SECRET'))
+      @api =  Cloudpassage::Api.new(token)
+    end
+
+    def self.collections
+      [
+          :configuration_policies,
+          :events,
+          :file_integrity_policies,
+          :firewall_interfaces,
+          :firewall_policies,
+          :firewall_services,
+          :firewall_zones,
+          :server_groups,
+          :users
+      ]
+    end
+
+    collections.each do |type|
+      it "should retrieve data for #{type}" do
+        api.send(type).data
+      end
+
+      it "should parse data for #{type} as json" do
+        # Get the collection
+        collection = api.send(type)
+
+        # Reload a single instance of each object type.
+        collection.all[0].reload.data
+      end
+    end
+  end
+end

metadata

@@ -0,0 +1,140 @@
+--- !ruby/object:Gem::Specification
+name: cloudpassage
+version: !ruby/object:Gem::Version
+  version: 0.0.2
+platform: ruby
+authors:
+- mshea
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-10-09 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: oauth2
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rest-client
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: API client for cloudpassage
+email:
+- mike.shea@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- cloudpassage.gemspec
+- lib/cloudpassage.rb
+- lib/cloudpassage/api.rb
+- lib/cloudpassage/base.rb
+- lib/cloudpassage/cloudpassage.rb
+- lib/cloudpassage/collection.rb
+- lib/cloudpassage/events.rb
+- lib/cloudpassage/file_integrity_baselines.rb
+- lib/cloudpassage/fim_policies.rb
+- lib/cloudpassage/firewall_interfaces.rb
+- lib/cloudpassage/firewall_policies.rb
+- lib/cloudpassage/firewall_rules.rb
+- lib/cloudpassage/firewall_services.rb
+- lib/cloudpassage/firewall_zones.rb
+- lib/cloudpassage/groups.rb
+- lib/cloudpassage/policies.rb
+- lib/cloudpassage/servers.rb
+- lib/cloudpassage/single.rb
+- lib/cloudpassage/users.rb
+- lib/cloudpassage/version.rb
+- spec/api_spec.rb
+homepage: https://github.com/sheax0r/ruby-cloudpassage
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.0.3
+signing_key: 
+specification_version: 4
+summary: Cloudpassage
+test_files:
+- spec/api_spec.rb