conjur-cli 6.2.2 → 6.2.6
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.github/CODEOWNERS +10 -0
- data/CHANGELOG.md +33 -1
- data/CONTRIBUTING.md +1 -1
- data/Gemfile +1 -1
- data/Jenkinsfile +35 -18
- data/NOTICES.txt +421 -0
- data/README.md +299 -2
- data/SECURITY.md +42 -0
- data/VERSION +1 -1
- data/build-standalone +12 -11
- data/conjur-cli.gemspec +7 -7
- data/jenkins.sh +1 -1
- data/lib/conjur/command/hosts.rb +1 -1
- data/lib/conjur/command/rspec/describe_command.rb +26 -7
- data/lib/conjur/command/rspec/mock_services.rb +7 -1
- data/lib/conjur/command/users.rb +5 -1
- data/lib/conjur/version.rb +1 -1
- data/push-image +14 -6
- data/spec/command/hosts_spec.rb +26 -3
- data/spec/command/init_spec.rb +28 -41
- data/spec/command/users_spec.rb +18 -2
- data/test.sh +5 -1
- metadata +18 -25
- data/.github/ISSUE_TEMPLATE/bug.md +0 -27
- data/.github/ISSUE_TEMPLATE/feature_request.md +0 -27
data/spec/command/init_spec.rb
CHANGED
|
@@ -1,49 +1,36 @@
|
|
|
1
1
|
require 'spec_helper'
|
|
2
2
|
require 'highline'
|
|
3
3
|
|
|
4
|
-
GITHUB_FP = "SHA1 Fingerprint=
|
|
4
|
+
GITHUB_FP = "SHA1 Fingerprint=84:63:B3:A9:29:12:CC:FD:1D:31:47:05:98:9B:EC:13:99:37:D0:D7"
|
|
5
5
|
GITHUB_CERT = <<EOF
|
|
6
6
|
-----BEGIN CERTIFICATE-----
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
|
|
32
|
-
|
|
33
|
-
|
|
34
|
-
Wnsu/m4BEC2+dIcvSykZYgIgCP5gGv6yzaazxBK2NwGdmmyuEFNSg2pARbMJlUFg
|
|
35
|
-
U5UAdgBWFAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAWNBYm0tAAAE
|
|
36
|
-
AwBHMEUCIQCi7omUvYLm0b2LobtEeRAYnlIo7n6JxbYdrtYdmPUWJQIgVgw1AZ51
|
|
37
|
-
vK9ENinBg22FPxb82TvNDO05T17hxXRC2IYAdgC72d+8H4pxtZOUI5eqkntHOFeV
|
|
38
|
-
CqtS6BqQlmQ2jh7RhQAAAWNBYm3fAAAEAwBHMEUCIQChzdTKUU2N+XcqcK0OJYrN
|
|
39
|
-
8EYynloVxho4yPk6Dq3EPgIgdNH5u8rC3UcslQV4B9o0a0w204omDREGKTVuEpxG
|
|
40
|
-
eOQwDQYJKoZIhvcNAQELBQADggEBAHAPWpanWOW/ip2oJ5grAH8mqQfaunuCVE+v
|
|
41
|
-
ac+88lkDK/LVdFgl2B6kIHZiYClzKtfczG93hWvKbST4NRNHP9LiaQqdNC17e5vN
|
|
42
|
-
HnXVUGw+yxyjMLGqkgepOnZ2Rb14kcTOGp4i5AuJuuaMwXmCo7jUwPwfLe1NUlVB
|
|
43
|
-
Kqg6LK0Hcq4K0sZnxE8HFxiZ92WpV2AVWjRMEc/2z2shNoDvxvFUYyY1Oe67xINk
|
|
44
|
-
myQKc+ygSBZzyLnXSFVWmHr3u5dcaaQGGAR42v6Ydr4iL38Hd4dOiBma+FXsXBIq
|
|
45
|
-
WUjbST4VXmdaol7uzFMojA4zkxQDZAvF5XgJlAFadfySna/teik=
|
|
46
|
-
-----END CERTIFICATE-----
|
|
7
|
+
MIIFBjCCBK2gAwIBAgIQDovzdw2S0Zbwu2H5PEFmvjAKBggqhkjOPQQDAjBnMQsw
|
|
8
|
+
CQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xPzA9BgNVBAMTNkRp
|
|
9
|
+
Z2lDZXJ0IEhpZ2ggQXNzdXJhbmNlIFRMUyBIeWJyaWQgRUNDIFNIQTI1NiAyMDIw
|
|
10
|
+
IENBMTAeFw0yMTAzMjUwMDAwMDBaFw0yMjAzMzAyMzU5NTlaMGYxCzAJBgNVBAYT
|
|
11
|
+
AlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1TYW4gRnJhbmNpc2Nv
|
|
12
|
+
MRUwEwYDVQQKEwxHaXRIdWIsIEluYy4xEzARBgNVBAMTCmdpdGh1Yi5jb20wWTAT
|
|
13
|
+
BgcqhkjOPQIBBggqhkjOPQMBBwNCAASt9vd1sdNJVApdEHG93CUGSyIcoiNOn6H+
|
|
14
|
+
udCMvTm8DCPHz5GmkFrYRasDE77BI3q5xMidR/aW4Ll2a1A2ZvcNo4IDOjCCAzYw
|
|
15
|
+
HwYDVR0jBBgwFoAUUGGmoNI1xBEqII0fD6xC8M0pz0swHQYDVR0OBBYEFCexfp+7
|
|
16
|
+
JplQ2PPDU1v+MRawux5yMCUGA1UdEQQeMByCCmdpdGh1Yi5jb22CDnd3dy5naXRo
|
|
17
|
+
dWIuY29tMA4GA1UdDwEB/wQEAwIHgDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB
|
|
18
|
+
BQUHAwIwgbEGA1UdHwSBqTCBpjBRoE+gTYZLaHR0cDovL2NybDMuZGlnaWNlcnQu
|
|
19
|
+
Y29tL0RpZ2lDZXJ0SGlnaEFzc3VyYW5jZVRMU0h5YnJpZEVDQ1NIQTI1NjIwMjBD
|
|
20
|
+
QTEuY3JsMFGgT6BNhktodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNlcnRI
|
|
21
|
+
aWdoQXNzdXJhbmNlVExTSHlicmlkRUNDU0hBMjU2MjAyMENBMS5jcmwwPgYDVR0g
|
|
22
|
+
BDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2Vy
|
|
23
|
+
dC5jb20vQ1BTMIGSBggrBgEFBQcBAQSBhTCBgjAkBggrBgEFBQcwAYYYaHR0cDov
|
|
24
|
+
L29jc3AuZGlnaWNlcnQuY29tMFoGCCsGAQUFBzAChk5odHRwOi8vY2FjZXJ0cy5k
|
|
25
|
+
aWdpY2VydC5jb20vRGlnaUNlcnRIaWdoQXNzdXJhbmNlVExTSHlicmlkRUNDU0hB
|
|
26
|
+
MjU2MjAyMENBMS5jcnQwDAYDVR0TAQH/BAIwADCCAQUGCisGAQQB1nkCBAIEgfYE
|
|
27
|
+
gfMA8QB2ACl5vvCeOTkh8FZzn2Old+W+V32cYAr4+U1dJlwlXceEAAABeGq/vRoA
|
|
28
|
+
AAQDAEcwRQIhAJ7miER//DRFnDJNn6uUhgau3WMt4vVfY5dGigulOdjXAiBIVCfR
|
|
29
|
+
xjK1v4F31+sVaKzyyO7JAa0fzDQM7skQckSYWQB3ACJFRQdZVSRWlj+hL/H3bYbg
|
|
30
|
+
IyZjrcBLf13Gg1xu4g8CAAABeGq/vTkAAAQDAEgwRgIhAJgAEkoJQRivBlwo7x67
|
|
31
|
+
3oVsf1ip096WshZqmRCuL/JpAiEA3cX4rb3waLDLq4C48NSoUmcw56PwO/m2uwnQ
|
|
32
|
+
prb+yh0wCgYIKoZIzj0EAwIDRwAwRAIgK+Kv7G+/KkWkNZg3PcQFp866Z7G6soxo
|
|
33
|
+
a4etSZ+SRlYCIBSiXS20Wc+yjD111nPzvQUCfsP4+DKZ3K+2GKsERD6d
|
|
47
34
|
EOF
|
|
48
35
|
|
|
49
36
|
describe Conjur::Command::Init do
|
data/spec/command/users_spec.rb
CHANGED
|
@@ -12,7 +12,8 @@ describe Conjur::Command::Users, logged_in: true do
|
|
|
12
12
|
user: username,
|
|
13
13
|
password: api_key,
|
|
14
14
|
headers: { },
|
|
15
|
-
payload: "new-password"
|
|
15
|
+
payload: "new-password",
|
|
16
|
+
ssl_cert_store: cert_store
|
|
16
17
|
})
|
|
17
18
|
end
|
|
18
19
|
|
|
@@ -40,7 +41,8 @@ describe Conjur::Command::Users, logged_in: true do
|
|
|
40
41
|
user: username,
|
|
41
42
|
password: api_key,
|
|
42
43
|
headers: {},
|
|
43
|
-
payload: ''
|
|
44
|
+
payload: '',
|
|
45
|
+
ssl_cert_store: cert_store
|
|
44
46
|
}).and_return double(:response, body: 'new api key')
|
|
45
47
|
expect(Conjur::Authn).to receive(:save_credentials).with({
|
|
46
48
|
username: username,
|
|
@@ -52,5 +54,19 @@ describe Conjur::Command::Users, logged_in: true do
|
|
|
52
54
|
invoke
|
|
53
55
|
end
|
|
54
56
|
end
|
|
57
|
+
describe_command 'user rotate_api_key --user non-existing' do
|
|
58
|
+
before do
|
|
59
|
+
expect(RestClient::Request).to receive(:execute).with({
|
|
60
|
+
method: :head,
|
|
61
|
+
url: "https://core.example.com/api/resources/#{account}/user/non-existing",
|
|
62
|
+
headers: {authorization: "fakeauth"},
|
|
63
|
+
username: username,
|
|
64
|
+
ssl_cert_store: cert_store
|
|
65
|
+
}).and_raise RestClient::ResourceNotFound
|
|
66
|
+
end
|
|
67
|
+
it 'rotate_api_key with non-existing --user option' do
|
|
68
|
+
expect { invoke }.to raise_error(GLI::CustomExit, /User 'non-existing' not found/i)
|
|
69
|
+
end
|
|
70
|
+
end
|
|
55
71
|
end
|
|
56
72
|
end
|
data/test.sh
CHANGED
|
@@ -1,11 +1,15 @@
|
|
|
1
1
|
#!/bin/bash -ex
|
|
2
2
|
|
|
3
|
-
: ${RUBY_VERSION=
|
|
3
|
+
: ${RUBY_VERSION=3.0}
|
|
4
4
|
|
|
5
5
|
# My local RUBY_VERSION is set to ruby-#.#.# so this allows running locally.
|
|
6
6
|
RUBY_VERSION=$(cut -d '-' -f 2 <<< $RUBY_VERSION)
|
|
7
7
|
|
|
8
8
|
main() {
|
|
9
|
+
if ! docker info >/dev/null 2>&1; then
|
|
10
|
+
echo "Docker does not seem to be running, run it first and retry"
|
|
11
|
+
exit 1
|
|
12
|
+
fi
|
|
9
13
|
|
|
10
14
|
# set up the containers to run in their own namespace
|
|
11
15
|
COMPOSE_PROJECT_NAME="$(basename "$PWD")_$(openssl rand -hex 3)"
|
metadata
CHANGED
|
@@ -1,36 +1,29 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: conjur-cli
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 6.2.
|
|
4
|
+
version: 6.2.6
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
|
-
-
|
|
8
|
-
- Kevin Gilpin
|
|
7
|
+
- Conjur Maintainers
|
|
9
8
|
autorequire:
|
|
10
9
|
bindir: bin
|
|
11
10
|
cert_chain: []
|
|
12
|
-
date:
|
|
11
|
+
date: 2022-02-01 00:00:00.000000000 Z
|
|
13
12
|
dependencies:
|
|
14
13
|
- !ruby/object:Gem::Dependency
|
|
15
14
|
name: activesupport
|
|
16
15
|
requirement: !ruby/object:Gem::Requirement
|
|
17
16
|
requirements:
|
|
18
|
-
- - "
|
|
19
|
-
- !ruby/object:Gem::Version
|
|
20
|
-
version: '4.2'
|
|
21
|
-
- - "<"
|
|
17
|
+
- - "~>"
|
|
22
18
|
- !ruby/object:Gem::Version
|
|
23
|
-
version: '6'
|
|
19
|
+
version: '6.0'
|
|
24
20
|
type: :runtime
|
|
25
21
|
prerelease: false
|
|
26
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
27
23
|
requirements:
|
|
28
|
-
- - "
|
|
29
|
-
- !ruby/object:Gem::Version
|
|
30
|
-
version: '4.2'
|
|
31
|
-
- - "<"
|
|
24
|
+
- - "~>"
|
|
32
25
|
- !ruby/object:Gem::Version
|
|
33
|
-
version: '6'
|
|
26
|
+
version: '6.0'
|
|
34
27
|
- !ruby/object:Gem::Dependency
|
|
35
28
|
name: conjur-api
|
|
36
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -79,14 +72,14 @@ dependencies:
|
|
|
79
72
|
requirements:
|
|
80
73
|
- - "~>"
|
|
81
74
|
- !ruby/object:Gem::Version
|
|
82
|
-
version: '
|
|
75
|
+
version: '2.0'
|
|
83
76
|
type: :runtime
|
|
84
77
|
prerelease: false
|
|
85
78
|
version_requirements: !ruby/object:Gem::Requirement
|
|
86
79
|
requirements:
|
|
87
80
|
- - "~>"
|
|
88
81
|
- !ruby/object:Gem::Version
|
|
89
|
-
version: '
|
|
82
|
+
version: '2.0'
|
|
90
83
|
- !ruby/object:Gem::Dependency
|
|
91
84
|
name: netrc
|
|
92
85
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -233,14 +226,14 @@ dependencies:
|
|
|
233
226
|
requirements:
|
|
234
227
|
- - "~>"
|
|
235
228
|
- !ruby/object:Gem::Version
|
|
236
|
-
version:
|
|
229
|
+
version: '13.0'
|
|
237
230
|
type: :development
|
|
238
231
|
prerelease: false
|
|
239
232
|
version_requirements: !ruby/object:Gem::Requirement
|
|
240
233
|
requirements:
|
|
241
234
|
- - "~>"
|
|
242
235
|
- !ruby/object:Gem::Version
|
|
243
|
-
version:
|
|
236
|
+
version: '13.0'
|
|
244
237
|
- !ruby/object:Gem::Dependency
|
|
245
238
|
name: rspec
|
|
246
239
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -277,8 +270,7 @@ dependencies:
|
|
|
277
270
|
version: '0.18'
|
|
278
271
|
description:
|
|
279
272
|
email:
|
|
280
|
-
-
|
|
281
|
-
- kgilpin@conjur.net
|
|
273
|
+
- conj_maintainers@cyberark.com
|
|
282
274
|
executables:
|
|
283
275
|
- _conjur
|
|
284
276
|
- conjur
|
|
@@ -286,8 +278,7 @@ extensions: []
|
|
|
286
278
|
extra_rdoc_files: []
|
|
287
279
|
files:
|
|
288
280
|
- ".dockerignore"
|
|
289
|
-
- ".github/
|
|
290
|
-
- ".github/ISSUE_TEMPLATE/feature_request.md"
|
|
281
|
+
- ".github/CODEOWNERS"
|
|
291
282
|
- ".gitignore"
|
|
292
283
|
- ".gitleaks.toml"
|
|
293
284
|
- ".kateproject"
|
|
@@ -301,9 +292,11 @@ files:
|
|
|
301
292
|
- Humanfile.md
|
|
302
293
|
- Jenkinsfile
|
|
303
294
|
- LICENSE
|
|
295
|
+
- NOTICES.txt
|
|
304
296
|
- PUBLISH.md
|
|
305
297
|
- README.md
|
|
306
298
|
- Rakefile
|
|
299
|
+
- SECURITY.md
|
|
307
300
|
- VERSION
|
|
308
301
|
- bin/_conjur
|
|
309
302
|
- bin/conjur
|
|
@@ -410,9 +403,9 @@ files:
|
|
|
410
403
|
- spec/spec_helper.rb
|
|
411
404
|
- standalone.entrypoint
|
|
412
405
|
- test.sh
|
|
413
|
-
homepage: https://github.com/
|
|
406
|
+
homepage: https://github.com/cyberark/conjur-cli
|
|
414
407
|
licenses:
|
|
415
|
-
-
|
|
408
|
+
- Apache 2.0
|
|
416
409
|
metadata: {}
|
|
417
410
|
post_install_message:
|
|
418
411
|
rdoc_options: []
|
|
@@ -429,7 +422,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
429
422
|
- !ruby/object:Gem::Version
|
|
430
423
|
version: '0'
|
|
431
424
|
requirements: []
|
|
432
|
-
rubygems_version: 3.
|
|
425
|
+
rubygems_version: 3.1.6
|
|
433
426
|
signing_key:
|
|
434
427
|
specification_version: 4
|
|
435
428
|
summary: Conjur command line interface
|
|
@@ -1,27 +0,0 @@
|
|
|
1
|
-
---
|
|
2
|
-
name: Bug
|
|
3
|
-
about: Create a bug report to help us improve
|
|
4
|
-
title: ''
|
|
5
|
-
labels: component/cli, kind/bug
|
|
6
|
-
assignees: ''
|
|
7
|
-
|
|
8
|
-
---
|
|
9
|
-
|
|
10
|
-
## Summary
|
|
11
|
-
A clear and concise description of what the bug is.
|
|
12
|
-
|
|
13
|
-
## Steps to Reproduce
|
|
14
|
-
Steps to reproduce the behavior:
|
|
15
|
-
1. Go to '...'
|
|
16
|
-
2. Click on '....'
|
|
17
|
-
3. Scroll down to '....'
|
|
18
|
-
4. See error
|
|
19
|
-
|
|
20
|
-
## Expected Results
|
|
21
|
-
A clear and concise description of what you expected to happen.
|
|
22
|
-
|
|
23
|
-
## Actual Results (including error logs, if applicable)
|
|
24
|
-
A clear and concise description of what actually did happen.
|
|
25
|
-
|
|
26
|
-
## Additional Information
|
|
27
|
-
Add any other context about the problem here.
|
|
@@ -1,27 +0,0 @@
|
|
|
1
|
-
---
|
|
2
|
-
name: Feature request
|
|
3
|
-
about: Suggest an idea for this project
|
|
4
|
-
title: ''
|
|
5
|
-
labels: kind/enhancement, component/cli
|
|
6
|
-
assignees: ''
|
|
7
|
-
|
|
8
|
-
---
|
|
9
|
-
|
|
10
|
-
## Is your feature request related to a problem? Please describe.
|
|
11
|
-
|
|
12
|
-
A clear and concise description of what the problem is. Ex. `I would like to see [...] because [...]`.
|
|
13
|
-
Please include the intended use case and what the feature would improve on so that we can prioritize
|
|
14
|
-
the feature accordingly.
|
|
15
|
-
|
|
16
|
-
## Describe the solution you would like
|
|
17
|
-
|
|
18
|
-
A clear and concise description of what the desired end result(s) would be.
|
|
19
|
-
|
|
20
|
-
## Describe alternatives you have considered
|
|
21
|
-
|
|
22
|
-
A clear and concise description of any alternative solutions or features that may be related to this that
|
|
23
|
-
you have considered.
|
|
24
|
-
|
|
25
|
-
## Additional context
|
|
26
|
-
|
|
27
|
-
Add any other context information about the feature request here.
|