conjur-api 2.4.0 → 2.5.1

data/spec/lib/role_grant_spec.rb

@@ -0,0 +1,12 @@
+require 'spec_helper'
+
+describe Conjur::RoleGrant, api: :dummy do
+  describe '::parse_from_json' do
+    it "creates member and grantor roles" do
+      rg = Conjur::RoleGrant::parse_from_json({member: 'acc:k:r', grantor: 'acc:k:g', admin_option: true}.stringify_keys, {})
+      rg.member.url.should == "#{authz_host}/acc/roles/k/r"
+      rg.grantor.url.should == "#{authz_host}/acc/roles/k/g"
+      rg.admin_option.should == true
+    end
+  end
+end

data/spec/lib/role_spec.rb

@@ -1,15 +1,16 @@
 require 'spec_helper'
 
-describe Conjur::Role do
+describe Conjur::Role, api: :dummy do
   let(:account) { "the-account" }
   let(:kind) { "test" }
-  let(:role) { Conjur::API.new_from_token({ 'data' => 'the-login' }).role([ account, kind, id ].join(":")) }
+  let(:url) { "#{authz_host}/#{account}/roles/#{kind}/#{id}" }
+  let(:role) { Conjur::Role.new url }
   subject { role }
 
   describe ".new" do
     context "with plain id" do
       let(:id) { "foo" }
-      its(:options) { should == {:headers=>{:authorization=>"Token token=\"eyJkYXRhIjoidGhlLWxvZ2luIn0=\""}, :username=>'the-login'} }
+      its(:options) {}
       its(:kind) { should == kind }
       its(:id) { should == id }
     end
@@ -54,4 +55,83 @@ describe Conjur::Role do
       end
     end
   end
+
+  describe '#create' do
+    it 'simply puts' do
+      RestClient::Request.should_receive(:execute).with(
+        method: :put,
+        url: url,
+        payload: {},
+        headers: {}
+      )
+      role.create
+    end
+  end
+
+  describe '#all' do
+    it 'returns roles for ids got from ?all' do
+      roles = [{'account' => 'foo', 'id' => 'k:bar'}, {'account' => 'baz', 'id' => 'k:xyzzy'}]
+      RestClient::Request.should_receive(:execute).with(
+        method: :get,
+        url: role.url + "/?all",
+        headers: {}
+      ).and_return roles.to_json
+      all = role.all
+      all[0].account.should == 'foo'
+      all[0].id.should == 'bar'
+      all[1].account.should == 'baz'
+      all[1].id.should == 'xyzzy'
+    end
+  end
+
+  describe '#revoke_from' do
+    it 'deletes member' do
+      RestClient::Request.should_receive(:execute).with(
+        method: :delete,
+        url: role.url + "/?members&member=the-member",
+        headers: {}
+      )
+      role.revoke_from 'the-member'
+    end
+  end
+
+  describe '#permitted?' do
+    before do
+      RestClient::Request.stub(:execute).with(
+        method: :get,
+        url: role.url + "/?check&resource_kind=chunky&resource_id=bacon&privilege=fry",
+        headers: {}
+      ) { result }
+    end
+
+    context "when get ?check is successful" do
+      let(:result) { :ok }
+      it "returns true" do
+        role.permitted?('chunky', 'bacon', 'fry').should be_true
+      end
+    end
+
+    context "when get ?check not found" do
+      let(:result) { raise RestClient::ResourceNotFound, 'foo' }
+      it "returns false" do
+        role.permitted?('chunky', 'bacon', 'fry').should be_false
+      end
+    end
+  end
+
+  describe '#members' do
+    it "gets ?members and turns each into RoleGrant" do
+      grants = %w(foo bar)
+      RestClient::Request.should_receive(:execute).with(
+        method: :get,
+        url: role.url + "/?members",
+        headers: {}
+      ).and_return grants.to_json
+      grants.each do |g|
+        Conjur::RoleGrant.should_receive(:parse_from_json).with(g, {}).and_return g
+      end
+
+      subject.members.should == grants
+    end
+  end
 end

data/spec/lib/standard_methods_spec.rb

@@ -0,0 +1,66 @@
+require 'spec_helper'
+
+describe Conjur::StandardMethods do
+  let(:credentials) { "whatever" }
+  subject { double("class", credentials: credentials, log: nil) }
+  let(:host) { 'http://example.com' }
+  let(:type) { :widget }
+
+  let(:rest_resource) { double "rest base resource" }
+  let(:subresource) { double "rest subresource" }
+
+  let(:widget_class) { double "widget class" }
+
+  before do
+    subject.extend Conjur::StandardMethods
+    subject.stub(:fully_escape){|x|x}
+    RestClient::Resource.stub(:new).with(host, credentials).and_return rest_resource
+    rest_resource.stub(:[]).with('widgets').and_return subresource
+    stub_const 'Conjur::Widget', widget_class
+  end
+
+  describe '#standard_create' do
+    let(:id) { "some-id" }
+    let(:options) {{ foo: 'bar', baz: 'xyzzy' }}
+
+    let(:response) { double "response" }
+    let(:widget) { double "widget" }
+
+    before do
+      subresource.stub(:post).with(options.merge(id: id)).and_return response
+      widget_class.stub(:build_from_response).with(response, credentials).and_return widget
+    end
+
+    it "uses restclient to post data and creates an object of the response" do
+      subject.send(:standard_create, host, type, id, options).should == widget
+    end
+  end
+
+  describe '#standard_list' do
+    let(:attrs) {[{id: 'one', foo: 'bar'}, {id: 'two', foo: 'pub'}]}
+    let(:options) {{ foo: 'bar', baz: 'xyzzy' }}
+    let(:json) { attrs.to_json }
+
+    before do
+      subresource.stub(:get).with(options).and_return json
+    end
+
+    it "gets the list, then builds objects from json response" do
+      subject.should_receive(:widget).with('one').and_return(one = double)
+      one.should_receive(:attributes=).with(attrs[0].stringify_keys)
+      subject.should_receive(:widget).with('two').and_return(two = double)
+      two.should_receive(:attributes=).with(attrs[1].stringify_keys)
+
+      subject.send(:standard_list, host, type, options).should == [one, two]
+    end
+  end
+
+  describe "#standard_show" do
+    let(:id) { "some-id" }
+    it "builds a path and returns indexed object" do
+      widget_class.stub(:new).with(host, credentials).and_return(bound = double)
+      bound.stub(:[]) { |x| "path: #{x}" }
+      subject.send(:standard_show, host, type, id).should == "path: widgets/some-id"
+    end
+  end
+end

data/spec/lib/user_spec.rb

@@ -3,9 +3,10 @@ require 'spec_helper'
 describe Conjur::User do
   context "#new" do
     let(:login) { 'the-login' }
+    let(:url) { "https://example.com/users/#{login}" }
     let(:api_key) { 'the-api-key' }
     let(:credentials) { { user: login, password: api_key } }
-    let(:user) { Conjur::User.new(login, credentials)}
+    let(:user) { Conjur::User.new(url, credentials)}
     describe "attributes" do
       subject { user }
       its(:id) { should == login }

data/spec/spec_helper.rb

@@ -1,3 +1,8 @@
+require 'simplecov'
+SimpleCov.start do
+  add_filter "/spec/"
+end
+
 require 'rubygems'
 $:.unshift File.join(File.dirname(__FILE__), "..", "lib")
 $:.unshift File.join(File.dirname(__FILE__), "lib")
@@ -76,3 +81,25 @@ shared_examples_for "http response" do
 end
 
 require 'conjur/api'
+
+shared_context api: :dummy do
+  let(:username) { "user" }
+  let(:api){ Conjur::API.new_from_key username, 'key' }
+  let(:authz_host) { 'http://authz.example.com' }
+  let(:credentials) { double "fake credentials" }
+  let(:core_host) { 'http://core.example.com' }
+  let(:account) { 'the-account' }
+
+  before do
+    Conjur::Authz::API.stub host: authz_host
+    Conjur::Core::API.stub host: core_host
+    Conjur::Core::API.stub conjur_account: account
+    api.stub credentials: credentials
+  end
+end
+
+shared_context logging: :temp do
+  let(:logfile) { Tempfile.new("log") }
+  before { Conjur.log = logfile.path }
+  let(:log) { logfile.read }
+end

data/spec/standard_methods_helper.rb

@@ -0,0 +1,30 @@
+shared_context api: :dummy do
+  subject { api }
+end
+
+shared_examples_for 'standard_create with' do |type, id, options|
+  it "calls through to standard_create" do
+    subject.should_receive(:standard_create).with(
+      core_host, type, id, options
+    ).and_return :response
+    invoke.should == :response
+  end
+end
+
+shared_examples_for 'standard_list with' do |type, options|
+  it "calls through to standard_list" do
+    subject.should_receive(:standard_list).with(
+      core_host, type, options
+    ).and_return :response
+    invoke.should == :response
+  end
+end
+
+shared_examples_for 'standard_show with' do |type, id|
+  it "calls through to standard_show" do
+    subject.should_receive(:standard_show).with(
+      core_host, type, id
+    ).and_return :response
+    invoke.should == :response
+  end
+end

data/spec/variable_spec.rb

@@ -0,0 +1,41 @@
+require 'spec_helper'
+
+describe Conjur::Variable do
+  let(:url) { "http://example.com/variable" }
+  subject { Conjur::Variable.new url }
+
+  before { subject.attributes = {'versions' => 42} }
+  its(:version_count) { should == 42}
+
+  describe '#add_value' do
+    it "posts the new value" do
+      RestClient::Request.should_receive(:execute).with(
+        method: :post,
+        url: "#{url}/values",
+        payload: { value: 'new-value' },
+        headers: {}
+      )
+      subject.add_value 'new-value'
+    end
+  end
+
+  describe '#value' do
+    it "gets the value" do
+      RestClient::Request.stub(:execute).with(
+        method: :get,
+        url: "#{url}/value",
+        headers: {}
+      ).and_return(double "response", body: "the-value")
+      subject.value.should == "the-value"
+    end
+
+    it "parametrizes the request with a version" do
+      RestClient::Request.stub(:execute).with(
+        method: :get,
+        url: "#{url}/value?version=42",
+        headers: {}
+      ).and_return(double "response", body: "the-value")
+      subject.value(42).should == "the-value"
+    end
+  end
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: conjur-api
 version: !ruby/object:Gem::Version
-  version: 2.4.0
+  version: 2.5.1
   prerelease: 
 platform: ruby
 authors:
@@ -10,7 +10,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-06-05 00:00:00.000000000 Z
+date: 2013-07-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rest-client
@@ -124,10 +124,26 @@ dependencies:
     - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 description: Conjur API
 email:
 - divided.mind@gmail.com
-- kevin.gilpin@inscitiv.com
+- kgilpin@conjur.net
 executables: []
 extensions: []
 extra_rdoc_files: []
@@ -136,7 +152,6 @@ files:
 - .kateproject
 - .project
 - .rspec
-- .rvmrc
 - Gemfile
 - LICENSE
 - README.md
@@ -184,18 +199,50 @@ files:
 - lib/conjur/standard_methods.rb
 - lib/conjur/user.rb
 - lib/conjur/variable.rb
+- manual/asset/about.markdown
+- manual/asset/members.add.markdown
+- manual/asset/show.markdown
+- manual/group/about.markdown
+- manual/group/create.markdown
+- manual/host/about.markdown
+- manual/host/create.markdown
+- manual/host/enroll.markdown
+- manual/resource/about.markdown
+- manual/resource/create.markdown
+- manual/resource/deny.markdown
+- manual/resource/permit.markdown
+- manual/role/about.markdown
+- manual/role/members.markdown
+- manual/role/memberships.markdown
+- spec/api/authn_spec.rb
+- spec/api/groups_spec.rb
+- spec/api/hosts_spec.rb
+- spec/api/resources_spec.rb
+- spec/api/secrets_spec.rb
+- spec/api/users_spec.rb
+- spec/api/variables_spec.rb
+- spec/cas_rest_client.rb
+- spec/io_helper.rb
 - spec/lib/api_spec.rb
+- spec/lib/build_from_response_spec.rb
 - spec/lib/exists_spec.rb
 - spec/lib/host_spec.rb
+- spec/lib/log_source_spec.rb
+- spec/lib/log_spec.rb
 - spec/lib/resource_spec.rb
+- spec/lib/role_grant_spec.rb
 - spec/lib/role_spec.rb
+- spec/lib/standard_methods_spec.rb
 - spec/lib/user_spec.rb
 - spec/spec_helper.rb
+- spec/standard_methods_helper.rb
+- spec/variable_spec.rb
 - spec/vcr_cassettes/Conjur_Resource/_create/with_path-like_identifier.yml
 - spec/vcr_cassettes/Conjur_Resource/_create/with_un-encoded_path-like_identifier.yml
 - spec/vcr_cassettes/Conjur_Resource/_create/with_uuid_identifier.yml
 homepage: ''
-licenses: []
+licenses:
+- MIT
 post_install_message: 
 rdoc_options: []
 require_paths:
@@ -208,7 +255,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: 143762494061224916
+      hash: -863653852387038484
 required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
   requirements:
@@ -217,10 +264,10 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: 143762494061224916
+      hash: -863653852387038484
 requirements: []
 rubyforge_project: 
-rubygems_version: 1.8.24
+rubygems_version: 1.8.25
 signing_key: 
 specification_version: 3
 summary: Conjur API
@@ -229,13 +276,29 @@ test_files:
 - features/login.feature
 - features/ping_as_server.feature
 - features/ping_as_user.feature
+- spec/api/authn_spec.rb
+- spec/api/groups_spec.rb
+- spec/api/hosts_spec.rb
+- spec/api/resources_spec.rb
+- spec/api/secrets_spec.rb
+- spec/api/users_spec.rb
+- spec/api/variables_spec.rb
+- spec/cas_rest_client.rb
+- spec/io_helper.rb
 - spec/lib/api_spec.rb
+- spec/lib/build_from_response_spec.rb
 - spec/lib/exists_spec.rb
 - spec/lib/host_spec.rb
+- spec/lib/log_source_spec.rb
+- spec/lib/log_spec.rb
 - spec/lib/resource_spec.rb
+- spec/lib/role_grant_spec.rb
 - spec/lib/role_spec.rb
+- spec/lib/standard_methods_spec.rb
 - spec/lib/user_spec.rb
 - spec/spec_helper.rb
+- spec/standard_methods_helper.rb
+- spec/variable_spec.rb
 - spec/vcr_cassettes/Conjur_Resource/_create/with_path-like_identifier.yml
 - spec/vcr_cassettes/Conjur_Resource/_create/with_un-encoded_path-like_identifier.yml
 - spec/vcr_cassettes/Conjur_Resource/_create/with_uuid_identifier.yml