RubyGems - configuration_service-provider-vault - Versions diffs - 2.0.8 → 2.0.9 - Mend

configuration_service-provider-vault 2.0.8 → 2.0.9

Files changed (12) hide show

checksums.yaml +4 -4
data/.gemspec +1 -1
data/README.rdoc +2 -2
data/Rakefile +4 -0
data/contrib/README.md +15 -0
data/contrib/authorize.rb +24 -0
data/contrib/data.yml +32 -0
data/contrib/publish.rb +30 -0
data/contrib/request.rb +30 -0
data/lib/configuration_service/provider/vault/version.rb +1 -1
data/lib/configuration_service/test/vault_admin_client.rb +3 -0
metadata +9 -4

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: d2f0ab6b73d12c90dfccb6ccc6d684c257fb2505
-  data.tar.gz: 426fb81d4660b54b72e7104581da0d616bb58a0e
+  metadata.gz: 1c340b4e069e913711ae00d9e920c117e0a49fbd
+  data.tar.gz: cc0560aee72c925e2ac209253496c5dce5178eee
 SHA512:
-  metadata.gz: 4ce5b9b6ee824303e107dc649b79a7db1b5c2c0da3ed8288929344c58e7f475ffaecb2d3ec61f2d07403ba40e14b0c4de41a688000d5eff07b6da2f67f6e1db6
-  data.tar.gz: 21334651a501424eaac3ad1dd905fad8dccba6322d7bf9ea47797c32e95942ba8bc8803d9535b4164372f90667c47aac9fdbc08ff1a33e651b4b183f5880cee7
+  metadata.gz: f095fedea346ed12e2ba041a1d10edf1426ce9a0dff5d0d0233ab6298eaf9a995fe1e3b291003b047e0056e6518f4fa3465babb8e46b0d035577bbd5ce334e9f
+  data.tar.gz: ed9fdcc1bcc8516b6e7ef4354b3adc49ed7d0a38a25df7dc2c927b3f79333857a2d2dd25111e6dfd55f801a5872235cccdf60fab7f80c3b2c723dd86be6145e8

data/.gemspec CHANGED Viewed

@@ -18,7 +18,7 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
-  spec.add_dependency "vault", "~> 0.1.5"
+  spec.add_dependency "vault", "~> 0.2"
   spec.add_dependency "configuration_service", "~> 2.0.5"
   spec.add_development_dependency "bundler", "~> 1.7"
   spec.add_development_dependency "rake", "~> 10.0"

data/README.rdoc CHANGED Viewed

@@ -23,8 +23,8 @@ Our +main.rb+ (or +config.ru+ or whatever) is simple:
   config_service = ConfigurationService::Factory::EnvironmentContext.create
   config = config_service.request_configuration
-  $stderr.puts "Using configuration #{configuration.identifier} #{configuration.metadata}..."
-  acme_config = AcmeConfig.new(configuration.data)
+  $stderr.puts "Using configuration #{config.identifier} #{config.metadata}..."
+  acme_config = AcmeConfig.new(config.data)
   acme_config.validate!
   AcmeApplication.new(acme_config).run

data/Rakefile CHANGED Viewed

@@ -4,6 +4,9 @@ task :default => :test
 desc "Test the Vault provider for Configuration Service against a Vault development server"
 task :test do
+  if File.exists?("#{ENV["HOME"]}/.vault-token")
+    raise "cannot test with ~/.vault-token present"
+  end
   with_devserver do
     Rake::Task["just_test"].invoke
   end
@@ -20,6 +23,7 @@ end
 def with_devserver
   assert_no_vault_server
   devserver_start
+  File.unlink("#{ENV["HOME"]}/.vault-token")
   begin
     yield
   ensure

data/contrib/README.md ADDED Viewed

@@ -0,0 +1,15 @@
+# Tools
+These are just some tools we're using to manage configs for developers until
+these workflows are specified and implemented.
+* `publish.rb` - Publish configuration data
+* `authorize.rb` - Get a token for consuming configuration data
+* `request.rb` - Request configuration data (when we need to modify existing config)
+These utilities all require the `VAULT_TOKEN` and `VAULT_ADDR` environment variables.
+If you issue new tokens, please add them to the interim
+[token expiry spreadsheet](https://docs.google.com/spreadsheets/d/1DLYPsbc4c427iJw0ZDA7T6-cd4dObSCBu6z4Ae53uYc/edit)
+so that we will get [Configuration service token expiry alerts](https://github.com/hetznerZA/configuration_service-token-expiry)
+for it.

data/contrib/authorize.rb ADDED Viewed

@@ -0,0 +1,24 @@
+#!/usr/bin/env ruby
+PROGNAME = File.basename(__FILE__)
+require "configuration_service/test/vault_admin_client"
+require "yaml"
+if ARGV.size != 1
+  $stderr.puts "usage: #{PROGNAME} identifier"
+  exit(1)
+end
+%w[VAULT_TOKEN VAULT_ADDR].each do |e|
+  unless ENV[e]
+    $stderr.puts "#{PROGNAME}: error: missing environment variable #{e}"
+    exit(1)
+  end
+end
+identifier = ARGV[0]
+admin = ConfigurationService::Test::VaultAdminClient.new
+token = admin.consumer_token(identifier)
+puts token

data/contrib/data.yml ADDED Viewed

@@ -0,0 +1,32 @@
+---
+cache-freshness: 86400
+policy-store-uri: 1ZqPW6_t9-Vfq5uQAaaQRshaDxuoQEx0B1soT8C166L0
+policy-store-email: 352849810700-1e8hicj0vpodr0jtfj5uas9igfu0l6cf@developer.gserviceaccount.com
+policy-store-credentials: |
+  -----BEGIN RSA PRIVATE KEY-----
+  MIIEowIBAAKCAQEA6ERtikIXmRvN3FKS9nAOpj+jP+1xilcGo0QmSeelxZFcVZQj
+  MgIMZ/5kkAsTgGM1qXqsfhyNB8o34CePVQNbwz8hHfI/J64ys6gpNze3HIz/nTJJ
+  oRGOFw5qDr3jzwKuee113PC5BiwT45pnwOg5wBDOm1397ags2NmPuQK4JvsPQV2d
+  ltuQHiFSEkCeXn7HAujSL098IpNjhAbkTZP+K/+7Li62mZGvtBF/tDSIppijcTlm
+  qB+mcBffg68uwMGF97+FCkCVukAZwnwU8ki3fN/LdtPuzBQt38z7VI4nQYYJzL6x
+  zsDhyTYVdQM2uORSCXpQZ1+22gPPuX2kLFQQuwIDAQABAoIBAHyl9G9lZsqpTEI4
+  IlyU6Je5wT+Wiv9mEs7dzPqOkb1EdFwNAxJcXRIWSRuwhge5tlu81QNdCSasFG58
+  bISAJ+fRYlFy5wfBib42ud/DS8bLuIZBLZh+FlYzSyGcMLywwLf4gu9OVM2GLCpS
+  e+nf9tYnbumceKDpRyAdKe9tES0BO3Wv3FCMYQiEPsMlNr9aEXAlILZX2wlUyCxE
+  ZwM+pPwLUGGFeqDAjZZemTdUBW2TCjIG4xHNVto49xZbudIHVAXFzFfOokvRIH8X
+  DPGgW3mKOnLwQMDXmvXR5Mny1qwlNtDherObmEpB56zokza+kJl5M6fwOPATyGeE
+  JzCFPNkCgYEA+TMkmEp11HKcE8diI+hle36AGB7O67YMYKnbM2XoPQM7oqzwZvOr
+  uyI0fdPxkQ22zggpteyjdMg1qE0o5h3DsQ0VrhOAvRbpuFNXuwOt0r48NrxjqSVs
+  z8KKYSHDwT/EeOC3Jb3EV3YNwozpsHB2DiTz7KG9T0t7JI7JVCWrbk0CgYEA7pr/
+  imTqE/CZz5v9mH8am0/0WSyHR5d3RVfP0wBGhxPJWurJMgPBjyuh3Qn3ih7wNBlM
+  6TevsYY6aONO6cZdc7GqQPWiy81nxkPFeQ7n5PiYJ0i/P5vkqcfjmnCTPFutpP77
+  K0fQoOeOAhPolN3+3KEPVoYR92dtZEjP93QezycCgYEAuMV7/9NN9L0aDuxKT1eU
+  T3HnZnsJb+pm2RF4b27DOOH5yM+z3JIWJkXhZ97LgYMKpU+WJccVF5UPe//iMGWn
+  YNLT3WOmlA22NC7PoOHEc7sMCIW824DdYlrbodOYQuSWOA5engRL3ZGx+CvlZias
+  0iYCGtV9+Zp87wlULClWKA0CgYBxTBoRDe/0PefbI9fb5Gau3t1IxpMJ1Ism2xZs
+  u5HBrAyNZjTY0d3D7NT0DzqCVER8iJLznqSHaBQuH9klujI/sFoGdFyz5znic+W9
+  oO1N1RjydmGRg6WlVKvndpMDMwkV8pkzKOuQq8LLi8aBgZP2EWgmDo1Ta8IOv2A4
+  wOOsOwKBgFtm8fjMDNPlvex/ipajeGN7Vl4pKxsCOt2exazjdJ7jwE8QumlP1SiG
+  aod9Bw4cCtQE93nLkSikHgyHc2Rt5BhnjwgA8SpelAnCjAMJpM1I5frBoxQ9De4s
+  boYDtWRsqmIxz4lPhXVBwaTfPEchvHqkzi90hi6azRkyXcG6GV2L
+  -----END RSA PRIVATE KEY-----

data/contrib/publish.rb ADDED Viewed

@@ -0,0 +1,30 @@
+#!/usr/bin/env ruby
+PROGNAME = File.basename(__FILE__)
+require "configuration_service/provider/vault"
+require "yaml"
+if ARGV.size != 2
+  $stderr.puts "usage: #{PROGNAME} identifier yaml_file"
+  exit(1)
+end
+%w[VAULT_TOKEN VAULT_ADDR].each do |e|
+  unless ENV[e]
+    $stderr.puts "#{PROGNAME}: error: missing environment variable #{e}"
+    exit(1)
+  end
+end
+identifier = ARGV[0]
+data = YAML.load_file(ARGV[1])
+service = ConfigurationService::Base.new(
+  identifier,
+  ENV["VAULT_TOKEN"],
+  ConfigurationService::Provider::Vault.new(
+    address: ENV["VAULT_ADDR"]
+  )
+)
+puts service.publish_configuration(data).metadata

data/contrib/request.rb ADDED Viewed

@@ -0,0 +1,30 @@
+#!/usr/bin/env ruby
+PROGNAME = File.basename(__FILE__)
+require "configuration_service/provider/vault"
+require "yaml"
+if ARGV.size != 1
+  $stderr.puts "usage: #{PROGNAME} identifier"
+  exit(1)
+end
+%w[VAULT_TOKEN VAULT_ADDR].each do |e|
+  unless ENV[e]
+    $stderr.puts "#{PROGNAME}: error: missing environment variable #{e}"
+    exit(1)
+  end
+end
+identifier = ARGV[0]
+service = ConfigurationService::Base.new(
+  identifier,
+  ENV["VAULT_TOKEN"],
+  ConfigurationService::Provider::Vault.new(
+    address: ENV["VAULT_ADDR"]
+  )
+)
+configuration = service.request_configuration
+puts configuration.data.to_yaml

data/lib/configuration_service/provider/vault/version.rb CHANGED Viewed

@@ -4,7 +4,7 @@ module ConfigurationService
     class Vault
-      VERSION = "2.0.8"
+      VERSION = "2.0.9"
     end

data/lib/configuration_service/test/vault_admin_client.rb CHANGED Viewed

@@ -21,6 +21,9 @@ module ConfigurationService
       # instance in the +VAULT_TOKEN+ envinronment variable.
       #
       def initialize
+        if ENV["VAULT_TOKEN"] and File.exists?("#{ENV["HOME"]}/.vault-token")
+          $stderr.puts "warning: ~/.vault-token overrides VAULT_TOKEN environment variable"
+        end
         @vault = ::Vault::Client.new
       end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: configuration_service-provider-vault
 version: !ruby/object:Gem::Version
-  version: 2.0.8
+  version: 2.0.9
 platform: ruby
 authors:
 - Sheldon Hearn
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2015-09-07 00:00:00.000000000 Z
+date: 2015-12-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: vault
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.1.5
+        version: '0.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.1.5
+        version: '0.2'
 - !ruby/object:Gem::Dependency
   name: configuration_service
   requirement: !ruby/object:Gem::Requirement
@@ -111,6 +111,11 @@ files:
 - Rakefile
 - bin/console
 - bin/setup
+- contrib/README.md
+- contrib/authorize.rb
+- contrib/data.yml
+- contrib/publish.rb
+- contrib/request.rb
 - lib/configuration_service/provider/vault.rb
 - lib/configuration_service/provider/vault/path_helper.rb
 - lib/configuration_service/provider/vault/version.rb