RubyGems - conjur-api - Versions diffs - 2.4.0 → 2.5.1 - Mend

conjur-api 2.4.0 → 2.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (46) hide show

data/.gitignore +2 -0
data/LICENSE +1 -1
data/Rakefile +3 -1
data/conjur-api.gemspec +3 -1
data/lib/conjur-api/version.rb +1 -1
data/lib/conjur/has_id.rb +1 -1
data/lib/conjur/log.rb +6 -26
data/lib/conjur/resource.rb +10 -1
data/manual/asset/about.markdown +12 -0
data/manual/asset/members.add.markdown +52 -0
data/manual/asset/show.markdown +50 -0
data/manual/group/about.markdown +6 -0
data/manual/group/create.markdown +20 -0
data/manual/host/about.markdown +23 -0
data/manual/host/create.markdown +34 -0
data/manual/host/enroll.markdown +21 -0
data/manual/resource/about.markdown +11 -0
data/manual/resource/create.markdown +29 -0
data/manual/resource/deny.markdown +23 -0
data/manual/resource/permit.markdown +35 -0
data/manual/role/about.markdown +10 -0
data/manual/role/members.markdown +40 -0
data/manual/role/memberships.markdown +26 -0
data/spec/api/authn_spec.rb +49 -0
data/spec/api/groups_spec.rb +24 -0
data/spec/api/hosts_spec.rb +29 -0
data/spec/api/resources_spec.rb +19 -0
data/spec/api/secrets_spec.rb +16 -0
data/spec/api/users_spec.rb +16 -0
data/spec/api/variables_spec.rb +14 -0
data/spec/cas_rest_client.rb +17 -0
data/spec/io_helper.rb +18 -0
data/spec/lib/build_from_response_spec.rb +49 -0
data/spec/lib/host_spec.rb +12 -8
data/spec/lib/log_source_spec.rb +13 -0
data/spec/lib/log_spec.rb +42 -0
data/spec/lib/resource_spec.rb +98 -5
data/spec/lib/role_grant_spec.rb +12 -0
data/spec/lib/role_spec.rb +83 -3
data/spec/lib/standard_methods_spec.rb +66 -0
data/spec/lib/user_spec.rb +2 -1
data/spec/spec_helper.rb +27 -0
data/spec/standard_methods_helper.rb +30 -0
data/spec/variable_spec.rb +41 -0
metadata +71 -8
data/.rvmrc +0 -1

data/spec/lib/role_grant_spec.rb ADDED Viewed

@@ -0,0 +1,12 @@
+require 'spec_helper'
+describe Conjur::RoleGrant, api: :dummy do
+  describe '::parse_from_json' do
+    it "creates member and grantor roles" do
+      rg = Conjur::RoleGrant::parse_from_json({member: 'acc:k:r', grantor: 'acc:k:g', admin_option: true}.stringify_keys, {})
+      rg.member.url.should == "#{authz_host}/acc/roles/k/r"
+      rg.grantor.url.should == "#{authz_host}/acc/roles/k/g"
+      rg.admin_option.should == true
+    end
+  end
+end

data/spec/lib/role_spec.rb CHANGED Viewed

@@ -1,15 +1,16 @@
 require 'spec_helper'
-describe Conjur::Role do
+describe Conjur::Role, api: :dummy do
   let(:account) { "the-account" }
   let(:kind) { "test" }
-  let(:role) { Conjur::API.new_from_token({ 'data' => 'the-login' }).role([ account, kind, id ].join(":")) }
+  let(:url) { "#{authz_host}/#{account}/roles/#{kind}/#{id}" }
+  let(:role) { Conjur::Role.new url }
   subject { role }
   describe ".new" do
     context "with plain id" do
       let(:id) { "foo" }
-      its(:options) { should == {:headers=>{:authorization=>"Token token=\"eyJkYXRhIjoidGhlLWxvZ2luIn0=\""}, :username=>'the-login'} }
+      its(:options) {}
       its(:kind) { should == kind }
       its(:id) { should == id }
     end
@@ -54,4 +55,83 @@ describe Conjur::Role do
       end
     end
   end
+  describe '#create' do
+    it 'simply puts' do
+      RestClient::Request.should_receive(:execute).with(
+        method: :put,
+        url: url,
+        payload: {},
+        headers: {}
+      )
+      role.create
+    end
+  end
+  describe '#all' do
+    it 'returns roles for ids got from ?all' do
+      roles = [{'account' => 'foo', 'id' => 'k:bar'}, {'account' => 'baz', 'id' => 'k:xyzzy'}]
+      RestClient::Request.should_receive(:execute).with(
+        method: :get,
+        url: role.url + "/?all",
+        headers: {}
+      ).and_return roles.to_json
+      all = role.all
+      all[0].account.should == 'foo'
+      all[0].id.should == 'bar'
+      all[1].account.should == 'baz'
+      all[1].id.should == 'xyzzy'
+    end
+  end
+  describe '#revoke_from' do
+    it 'deletes member' do
+      RestClient::Request.should_receive(:execute).with(
+        method: :delete,
+        url: role.url + "/?members&member=the-member",
+        headers: {}
+      )
+      role.revoke_from 'the-member'
+    end
+  end
+  describe '#permitted?' do
+    before do
+      RestClient::Request.stub(:execute).with(
+        method: :get,
+        url: role.url + "/?check&resource_kind=chunky&resource_id=bacon&privilege=fry",
+        headers: {}
+      ) { result }
+    end
+    context "when get ?check is successful" do
+      let(:result) { :ok }
+      it "returns true" do
+        role.permitted?('chunky', 'bacon', 'fry').should be_true
+      end
+    end
+    context "when get ?check not found" do
+      let(:result) { raise RestClient::ResourceNotFound, 'foo' }
+      it "returns false" do
+        role.permitted?('chunky', 'bacon', 'fry').should be_false
+      end
+    end
+  end
+  describe '#members' do
+    it "gets ?members and turns each into RoleGrant" do
+      grants = %w(foo bar)
+      RestClient::Request.should_receive(:execute).with(
+        method: :get,
+        url: role.url + "/?members",
+        headers: {}
+      ).and_return grants.to_json
+      grants.each do |g|
+        Conjur::RoleGrant.should_receive(:parse_from_json).with(g, {}).and_return g
+      end
+      subject.members.should == grants
+    end
+  end
 end

data/spec/lib/standard_methods_spec.rb ADDED Viewed

@@ -0,0 +1,66 @@
+require 'spec_helper'
+describe Conjur::StandardMethods do
+  let(:credentials) { "whatever" }
+  subject { double("class", credentials: credentials, log: nil) }
+  let(:host) { 'http://example.com' }
+  let(:type) { :widget }
+  let(:rest_resource) { double "rest base resource" }
+  let(:subresource) { double "rest subresource" }
+  let(:widget_class) { double "widget class" }
+  before do
+    subject.extend Conjur::StandardMethods
+    subject.stub(:fully_escape){|x|x}
+    RestClient::Resource.stub(:new).with(host, credentials).and_return rest_resource
+    rest_resource.stub(:[]).with('widgets').and_return subresource
+    stub_const 'Conjur::Widget', widget_class
+  end
+  describe '#standard_create' do
+    let(:id) { "some-id" }
+    let(:options) {{ foo: 'bar', baz: 'xyzzy' }}
+    let(:response) { double "response" }
+    let(:widget) { double "widget" }
+    before do
+      subresource.stub(:post).with(options.merge(id: id)).and_return response
+      widget_class.stub(:build_from_response).with(response, credentials).and_return widget
+    end
+    it "uses restclient to post data and creates an object of the response" do
+      subject.send(:standard_create, host, type, id, options).should == widget
+    end
+  end
+  describe '#standard_list' do
+    let(:attrs) {[{id: 'one', foo: 'bar'}, {id: 'two', foo: 'pub'}]}
+    let(:options) {{ foo: 'bar', baz: 'xyzzy' }}
+    let(:json) { attrs.to_json }
+    before do
+      subresource.stub(:get).with(options).and_return json
+    end
+    it "gets the list, then builds objects from json response" do
+      subject.should_receive(:widget).with('one').and_return(one = double)
+      one.should_receive(:attributes=).with(attrs[0].stringify_keys)
+      subject.should_receive(:widget).with('two').and_return(two = double)
+      two.should_receive(:attributes=).with(attrs[1].stringify_keys)
+      subject.send(:standard_list, host, type, options).should == [one, two]
+    end
+  end
+  describe "#standard_show" do
+    let(:id) { "some-id" }
+    it "builds a path and returns indexed object" do
+      widget_class.stub(:new).with(host, credentials).and_return(bound = double)
+      bound.stub(:[]) { |x| "path: #{x}" }
+      subject.send(:standard_show, host, type, id).should == "path: widgets/some-id"
+    end
+  end
+end

data/spec/lib/user_spec.rb CHANGED Viewed

@@ -3,9 +3,10 @@ require 'spec_helper'
 describe Conjur::User do
   context "#new" do
     let(:login) { 'the-login' }
+    let(:url) { "https://example.com/users/#{login}" }
     let(:api_key) { 'the-api-key' }
     let(:credentials) { { user: login, password: api_key } }
-    let(:user) { Conjur::User.new(login, credentials)}
+    let(:user) { Conjur::User.new(url, credentials)}
     describe "attributes" do
       subject { user }
       its(:id) { should == login }

data/spec/spec_helper.rb CHANGED Viewed

@@ -1,3 +1,8 @@
+require 'simplecov'
+SimpleCov.start do
+  add_filter "/spec/"
+end
 require 'rubygems'
 $:.unshift File.join(File.dirname(__FILE__), "..", "lib")
 $:.unshift File.join(File.dirname(__FILE__), "lib")
@@ -76,3 +81,25 @@ shared_examples_for "http response" do
 end
 require 'conjur/api'
+shared_context api: :dummy do
+  let(:username) { "user" }
+  let(:api){ Conjur::API.new_from_key username, 'key' }
+  let(:authz_host) { 'http://authz.example.com' }
+  let(:credentials) { double "fake credentials" }
+  let(:core_host) { 'http://core.example.com' }
+  let(:account) { 'the-account' }
+  before do
+    Conjur::Authz::API.stub host: authz_host
+    Conjur::Core::API.stub host: core_host
+    Conjur::Core::API.stub conjur_account: account
+    api.stub credentials: credentials
+  end
+end
+shared_context logging: :temp do
+  let(:logfile) { Tempfile.new("log") }
+  before { Conjur.log = logfile.path }
+  let(:log) { logfile.read }
+end

data/spec/standard_methods_helper.rb ADDED Viewed

@@ -0,0 +1,30 @@
+shared_context api: :dummy do
+  subject { api }
+end
+shared_examples_for 'standard_create with' do |type, id, options|
+  it "calls through to standard_create" do
+    subject.should_receive(:standard_create).with(
+      core_host, type, id, options
+    ).and_return :response
+    invoke.should == :response
+  end
+end
+shared_examples_for 'standard_list with' do |type, options|
+  it "calls through to standard_list" do
+    subject.should_receive(:standard_list).with(
+      core_host, type, options
+    ).and_return :response
+    invoke.should == :response
+  end
+end
+shared_examples_for 'standard_show with' do |type, id|
+  it "calls through to standard_show" do
+    subject.should_receive(:standard_show).with(
+      core_host, type, id
+    ).and_return :response
+    invoke.should == :response
+  end
+end

data/spec/variable_spec.rb ADDED Viewed

@@ -0,0 +1,41 @@
+require 'spec_helper'
+describe Conjur::Variable do
+  let(:url) { "http://example.com/variable" }
+  subject { Conjur::Variable.new url }
+  before { subject.attributes = {'versions' => 42} }
+  its(:version_count) { should == 42}
+  describe '#add_value' do
+    it "posts the new value" do
+      RestClient::Request.should_receive(:execute).with(
+        method: :post,
+        url: "#{url}/values",
+        payload: { value: 'new-value' },
+        headers: {}
+      )
+      subject.add_value 'new-value'
+    end
+  end
+  describe '#value' do
+    it "gets the value" do
+      RestClient::Request.stub(:execute).with(
+        method: :get,
+        url: "#{url}/value",
+        headers: {}
+      ).and_return(double "response", body: "the-value")
+      subject.value.should == "the-value"
+    end
+    it "parametrizes the request with a version" do
+      RestClient::Request.stub(:execute).with(
+        method: :get,
+        url: "#{url}/value?version=42",
+        headers: {}
+      ).and_return(double "response", body: "the-value")
+      subject.value(42).should == "the-value"
+    end
+  end
+end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: conjur-api
 version: !ruby/object:Gem::Version
-  version: 2.4.0
+  version: 2.5.1
   prerelease:
 platform: ruby
 authors:
@@ -10,7 +10,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2013-06-05 00:00:00.000000000 Z
+date: 2013-07-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rest-client
@@ -124,10 +124,26 @@ dependencies:
     - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 description: Conjur API
 email:
 - divided.mind@gmail.com
-- kevin.gilpin@inscitiv.com
+- kgilpin@conjur.net
 executables: []
 extensions: []
 extra_rdoc_files: []
@@ -136,7 +152,6 @@ files:
 - .kateproject
 - .project
 - .rspec
-- .rvmrc
 - Gemfile
 - LICENSE
 - README.md
@@ -184,18 +199,50 @@ files:
 - lib/conjur/standard_methods.rb
 - lib/conjur/user.rb
 - lib/conjur/variable.rb
+- manual/asset/about.markdown
+- manual/asset/members.add.markdown
+- manual/asset/show.markdown
+- manual/group/about.markdown
+- manual/group/create.markdown
+- manual/host/about.markdown
+- manual/host/create.markdown
+- manual/host/enroll.markdown
+- manual/resource/about.markdown
+- manual/resource/create.markdown
+- manual/resource/deny.markdown
+- manual/resource/permit.markdown
+- manual/role/about.markdown
+- manual/role/members.markdown
+- manual/role/memberships.markdown
+- spec/api/authn_spec.rb
+- spec/api/groups_spec.rb
+- spec/api/hosts_spec.rb
+- spec/api/resources_spec.rb
+- spec/api/secrets_spec.rb
+- spec/api/users_spec.rb
+- spec/api/variables_spec.rb
+- spec/cas_rest_client.rb
+- spec/io_helper.rb
 - spec/lib/api_spec.rb
+- spec/lib/build_from_response_spec.rb
 - spec/lib/exists_spec.rb
 - spec/lib/host_spec.rb
+- spec/lib/log_source_spec.rb
+- spec/lib/log_spec.rb
 - spec/lib/resource_spec.rb
+- spec/lib/role_grant_spec.rb
 - spec/lib/role_spec.rb
+- spec/lib/standard_methods_spec.rb
 - spec/lib/user_spec.rb
 - spec/spec_helper.rb
+- spec/standard_methods_helper.rb
+- spec/variable_spec.rb
 - spec/vcr_cassettes/Conjur_Resource/_create/with_path-like_identifier.yml
 - spec/vcr_cassettes/Conjur_Resource/_create/with_un-encoded_path-like_identifier.yml
 - spec/vcr_cassettes/Conjur_Resource/_create/with_uuid_identifier.yml
 homepage: ''
-licenses: []
+licenses:
+- MIT
 post_install_message:
 rdoc_options: []
 require_paths:
@@ -208,7 +255,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: 143762494061224916
+      hash: -863653852387038484
 required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
   requirements:
@@ -217,10 +264,10 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: 143762494061224916
+      hash: -863653852387038484
 requirements: []
 rubyforge_project:
-rubygems_version: 1.8.24
+rubygems_version: 1.8.25
 signing_key:
 specification_version: 3
 summary: Conjur API
@@ -229,13 +276,29 @@ test_files:
 - features/login.feature
 - features/ping_as_server.feature
 - features/ping_as_user.feature
+- spec/api/authn_spec.rb
+- spec/api/groups_spec.rb
+- spec/api/hosts_spec.rb
+- spec/api/resources_spec.rb
+- spec/api/secrets_spec.rb
+- spec/api/users_spec.rb
+- spec/api/variables_spec.rb
+- spec/cas_rest_client.rb
+- spec/io_helper.rb
 - spec/lib/api_spec.rb
+- spec/lib/build_from_response_spec.rb
 - spec/lib/exists_spec.rb
 - spec/lib/host_spec.rb
+- spec/lib/log_source_spec.rb
+- spec/lib/log_spec.rb
 - spec/lib/resource_spec.rb
+- spec/lib/role_grant_spec.rb
 - spec/lib/role_spec.rb
+- spec/lib/standard_methods_spec.rb
 - spec/lib/user_spec.rb
 - spec/spec_helper.rb
+- spec/standard_methods_helper.rb
+- spec/variable_spec.rb
 - spec/vcr_cassettes/Conjur_Resource/_create/with_path-like_identifier.yml
 - spec/vcr_cassettes/Conjur_Resource/_create/with_un-encoded_path-like_identifier.yml
 - spec/vcr_cassettes/Conjur_Resource/_create/with_uuid_identifier.yml