conjur-cli 2.1.1

data/.gitignore

@@ -0,0 +1,17 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp

data/.project

@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<projectDescription>
+	<name>conjur-cli</name>
+	<comment></comment>
+	<projects>
+	</projects>
+	<buildSpec>
+		<buildCommand>
+			<name>com.aptana.ide.core.unifiedBuilder</name>
+			<arguments>
+			</arguments>
+		</buildCommand>
+	</buildSpec>
+	<natures>
+		<nature>com.aptana.ruby.core.rubynature</nature>
+		<nature>com.aptana.projects.webnature</nature>
+	</natures>
+</projectDescription>

data/.rvmrc

@@ -0,0 +1 @@
+rvm use 1.9.3@conjur-cli --create

data/Gemfile

@@ -0,0 +1,10 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in conjur.gemspec
+gemspec
+
+gem 'slosilo', git: 'https://github.com/inscitiv/slosilo.git'
+gem 'conjur-api', git: 'https://github.com/inscitiv/api-ruby.git', branch: 'master'
+gem 'conjur-asset-environment', git: 'https://inscitiv-ops-dev:Me5aswes@github.com/inscitiv/conjur-asset-environment', branch: 'master'
+gem 'conjur-asset-deployment',  git: 'https://inscitiv-ops-dev:Me5aswes@github.com/inscitiv/conjur-asset-deployment',  branch: 'master'
+gem 'conjur-asset-cmi-study',   git: 'https://inscitiv-ops-dev:Me5aswes@github.com/inscitiv/conjur-asset-cmi-study',   branch: 'master'

data/LICENSE

@@ -0,0 +1,22 @@
+Copyright (c) 2012 Rafał Rzepecki
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,29 @@
+# Conjur
+
+TODO: Write a gem description
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'conjur'
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install conjur
+
+## Usage
+
+TODO: Write usage instructions here
+
+## Contributing
+
+1. Fork it
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Added some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create new Pull Request

data/Rakefile

@@ -0,0 +1,18 @@
+#!/usr/bin/env rake
+require "bundler/gem_tasks"
+
+begin
+  require 'rspec/core/rake_task'
+  RSpec::Core::RakeTask.new(:spec)
+rescue LoadError
+  $stderr.puts "RSpec Rake tasks not available in environment #{ENV['RACK_ENV']}"
+end
+
+task :jenkins do
+  if ENV['BUILD_NUMBER']
+    File.write('build_number', ENV['BUILD_NUMBER'])
+  end
+  require 'ci/reporter/rake/rspec'
+  Rake::Task["ci:setup:rspec"].invoke
+  Rake::Task["spec"].invoke
+end

data/bin/conjur

@@ -0,0 +1,5 @@
+#!/usr/bin/env ruby
+
+require 'conjur/cli'
+
+exit Conjur::CLI.run(ARGV)

data/conjur.gemspec

@@ -0,0 +1,26 @@
+# -*- encoding: utf-8 -*-
+require File.expand_path('../lib/conjur/version', __FILE__)
+
+Gem::Specification.new do |gem|
+  gem.authors       = ["Rafa\305\202 Rzepecki", "Kevin Gilpin"]
+  gem.email         = ["divided.mind@gmail.com", "kevin.gilpin@inscitiv.com",]
+  gem.summary       = %q{Conjur command line interface}
+  gem.homepage      = ""
+
+  gem.files         = `git ls-files`.split($\) + Dir['build_number']
+  gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.name          = "conjur-cli"
+  gem.require_paths = ["lib"]
+  gem.version       = Conjur::VERSION
+  
+  gem.add_dependency 'conjur-api'
+  gem.add_dependency 'gli'
+  gem.add_dependency 'highline'
+  gem.add_dependency 'netrc'
+  
+  gem.add_runtime_dependency 'cas_rest_client'
+  
+  gem.add_development_dependency 'rspec'
+  gem.add_development_dependency 'simplecov'
+end

data/lib/conjur.rb

@@ -0,0 +1,2 @@
+require "conjur/version"
+

data/lib/conjur/authn.rb

@@ -0,0 +1,62 @@
+require 'highline'
+require 'conjur/api'
+require 'netrc'
+
+module Conjur::Authn
+  class << self
+    def login(options = {})
+      delete_credentials
+      get_credentials(options)
+    end
+    
+    def delete_credentials
+      netrc.delete host
+      netrc.save
+    end
+    
+    def host
+      Conjur::Authn::API.host
+    end
+    
+    def netrc
+      @netrc ||= Netrc.read
+    end
+    
+    def get_credentials(options = {})
+      @credentials ||= (read_credentials || fetch_credentials(options))
+    end
+    
+    def read_credentials
+      netrc[host]
+    end
+    
+    def fetch_credentials(options = {})
+      ask_for_credentials(options)
+      write_credentials
+    end
+    
+    def write_credentials
+      netrc[host] = @credentials
+      netrc.save
+      @credentials
+    end
+    
+    def ask_for_credentials(options = {})
+      raise "No credentials provided or found" if options[:noask]
+      
+      hl = HighLine.new
+      user = options[:username] || hl.ask("Enter your username to log into Conjur: ")
+      pass = options[:password] || hl.ask("Please enter your password (it will not be echoed): "){ |q| q.echo = false }
+      api_key = if cas_server = options[:"cas-server"]
+        Conjur::API.login_cas(user, pass, cas_server)
+      else
+        Conjur::API.login(user, pass)
+      end
+      @credentials = [user, api_key]
+    end
+    
+    def connect(cls = Conjur::API, options = {})
+      cls.new_from_key(*get_credentials(options))
+    end
+  end
+end

data/lib/conjur/cli.rb

@@ -0,0 +1,66 @@
+require 'gli'
+require 'conjur/config'
+
+module Conjur
+  class CLI
+    extend GLI::App
+
+    class << self
+      def load_config
+        [ File.join("/etc", "conjur.conf"), ( ENV['CONJURRC'] || File.join(ENV['HOME'], ".conjurrc") ) ].each do |f|
+          if File.exists?(f)
+            $stderr.puts "Loading #{f}"
+            Conjur::Config.merge YAML.load(IO.read(f))
+          end
+        end
+      end
+    end
+            
+    load_config
+            
+    ENV['CONJUR_ENV'] = Config[:env] if Config[:env]
+    ENV['CONJUR_STACK'] = Config[:stack] if Config[:stack]
+    
+    Conjur::Config.plugins.each do |plugin|
+      require "conjur-asset-#{plugin}"
+    end
+    
+    commands_from 'conjur/command'
+
+    $stderr.puts "Using host #{Conjur::Authn::API.host}"
+    
+    pre do |global,command,options,args|
+      require 'active_support/core_ext'
+      options.delete_if{|k,v| v.blank?}
+      options.symbolize_keys!
+      
+      if as_group = options.delete(:"as-group")
+        group = Conjur::Command.api.group(as_group)
+        role = Conjur::Command.api.role(group.roleid)
+        exit_now!("Group '#{as_group}' doesn't exist, or you don't have permission to use it") unless role.exists?
+        options[:"ownerid"] = group.roleid
+      end
+      if as_role = options.delete(:"as-role")
+        role = Conjur::Command.api.role(as_role)
+        exit_now!("Role '#{as_role}' does not exist, or you don't have permission to use it") unless role.exists?
+        options[:"ownerid"] = role.id
+      end
+      
+      true
+    end
+    
+    on_error do |exception|
+      if exception.is_a?(GLI::StandardException)
+        # pass
+      elsif exception.is_a?(RestClient::Exception)
+        begin
+          body = JSON.parse(exception.response.body)
+          $stderr.puts body['error']
+        rescue
+          $stderr.puts exception.response.body if exception.response
+        end
+      end
+      true
+    end
+  end
+end

data/lib/conjur/command.rb

@@ -0,0 +1,42 @@
+module Conjur
+  class Command
+    class << self
+      attr_accessor :prefix
+      
+      def method_missing *a
+        Conjur::CLI.send *a
+      end
+      
+      def command name, *a, &block
+        Conjur::CLI.command "#{prefix}:#{name}", *a, &block
+      end
+      
+      def require_arg(args, name)
+        args.shift or raise "Missing parameter: #{name}"
+      end
+
+      def api
+        Conjur::Authn.connect
+      end
+      
+      def acting_as_option(command)
+        command.arg_name 'Perform all actions as the specified Group'
+        command.flag [:"as-group"]
+
+        command.arg_name 'Perform all actions as the specified Role'
+        command.flag [:"as-role"]
+      end
+
+      def display(obj, options = {})
+        str = if obj.respond_to?(:attributes)
+          JSON.pretty_generate obj.attributes
+        elsif obj.respond_to?(:id)
+          obj.id
+        else
+          JSON.pretty_generate obj
+        end
+        puts str
+      end
+    end
+  end
+end

data/lib/conjur/command/assets.rb

@@ -0,0 +1,60 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Assets < Conjur::Command
+  self.prefix = :asset
+
+  desc "Create an asset"
+  arg_name "kind id"
+  command :create do |c|
+    acting_as_option(c)
+    
+    c.action do |global_options, options, args|
+      kind = require_arg(args, 'kind')
+      
+      m = "create_#{kind}"
+      record = if api.method(m).arity == 1
+        id = args.shift
+        if id
+          options[:id] = id
+        end
+        api.send(m, options)
+      else
+        id = require_arg(args, 'id')
+        api.send(m, id, options)
+      end
+      display(record, options)
+    end
+  end
+  
+  desc "Show an asset"
+  arg_name "kind id"
+  command :show do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "resource-id")
+      display api.send(kind, id).attributes
+    end
+  end
+
+  desc "Checks for the existance of an asset"
+  arg_name "kind id"
+  command :exists do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "id")
+      puts api.send(kind, id).exists?
+    end
+  end
+
+  desc "List an asset"
+  arg_name "kind"
+  command :list do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      api.send(kind.pluralize).each do |e|
+        display(e, options)
+      end
+    end
+  end
+end

data/lib/conjur/command/authn.rb

@@ -0,0 +1,38 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Authn < Conjur::Command
+  self.prefix = :authn
+  
+  desc "Logs in and caches credentials to netrc"
+  long_desc <<-DESC
+After successful login, subsequent commands automatically use the cached credentials. To switch users, login again using the new user credentials.
+To erase credentials, use the authn:logout command.
+
+If specified, the CAS server URL should be in the form https://<hostname>/v1.
+It should be running the CAS RESTful services at the /v1 path
+(or other path as specified by this argument).
+DESC
+  command :login do |c|
+    c.arg_name 'username'
+    c.flag [:u,:username]
+
+    c.arg_name 'password'
+    c.flag [:p,:password]
+
+    c.arg_name 'CAS server'
+    c.desc 'Specifies a CAS server URL to use for login'
+    c.flag [:"cas-server"]
+    
+    c.action do |global_options,options,args|
+      Conjur::Authn.login(options)
+    end
+  end
+  
+  desc "Logs out"
+  command :logout do |c|
+    c.action do
+      Conjur::Authn.delete_credentials
+    end
+  end
+end

data/lib/conjur/command/groups.rb

@@ -0,0 +1,35 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Groups < Conjur::Command
+  self.prefix = :group
+  
+  desc "Create a new group"
+  arg_name "id"
+  command :create do |c|
+    acting_as_option(c)
+    
+    c.action do |global_options,options,args|
+      id = require_arg(args, 'id')
+      
+      group = api.create_group(id, options)
+      puts "Created #{group}"
+    end
+  end
+
+  desc "Add a new group member"
+  arg_name "group"
+  arg_name "member"
+  command :"members:add" do |c|
+    c.desc "Grant with admin option"
+    c.switch [:a, :admin]
+    
+    c.action do |global_options,options,args|
+      group = require_arg(args, 'group')
+      member = require_arg(args, 'member')
+      
+      group = api.group(group)
+      api.role(group.roleid).grant_to member, !!options[:admin]
+    end
+  end
+end

data/lib/conjur/command/hosts.rb

@@ -0,0 +1,33 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Hosts < Conjur::Command
+  self.prefix = :host
+
+  desc "Create a new host"
+  arg_name "host"
+  command :create do |c|
+    c.arg_name "password"
+    c.flag [:p,:password]
+    
+    acting_as_option(c)
+
+    c.action do |global_options,options,args|
+      id = args.shift
+      options[:id] = id if id
+      display api.create_host(options), options
+    end
+  end
+  
+  desc "Enroll a new host into conjur"
+  arg_name "host"
+  command :enroll do |c|
+    c.action do |global_options, options, args|
+      id = require_arg(args, 'host')
+      enrollment_url = api.host(id).enrollment_url
+      puts enrollment_url
+      $stderr.puts "On the target host, please execute the following command:"
+      $stderr.puts "sudo true && curl -L #{enrollment_url} | sudo bash"
+    end
+  end
+end

data/lib/conjur/command/permissions.rb

@@ -0,0 +1,48 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Resources < Conjur::Command
+  self.prefix = :permission
+  
+  desc "Grants permission on a resource to a role"
+  arg_name "resource-kind"
+  arg_name "resource-id"
+  arg_name "role"
+  arg_name "privilege"
+  command :grant do |c|
+    c.desc "Whether to give the grant option"
+    c.switch :grant
+    
+    c.action do |global_options,options,args|
+      kind = args.shift or raise "Missing parameter: resource-kind"
+      resource_id = args.shift or raise "Missing parameter: resource-id"
+      role = args.shift or raise "Missing parameter: role"
+      privilege = args.shift or raise "Missing parameter: privilege"
+      resource = api.resource(kind, resource_id)
+      options = {}
+      options[:grant_option] = true if options[:grant]
+      resource.permit privilege, role, options
+    end
+  end
+  
+  desc "Check whether a role has a privilege on a resource"
+  arg_name "resource-kind"
+  arg_name "resource-id"
+  arg_name "role"
+  arg_name "privilege"
+  command :check do |c|
+    c.action do |global_options,options,args|
+      kind = args.shift or raise "Missing parameter: resource-kind"
+      resource_id = args.shift or raise "Missing parameter: resource-id"
+      role = args.shift or raise "Missing parameter: role"
+      privilege = args.shift or raise "Missing parameter: privilege"
+      role = api.role(role)
+      begin
+        role.permitted? kind, resource_id, privilege
+        puts "true"
+      rescue RestClient::ResourceNotFound
+        puts "false"
+      end
+    end
+  end
+end

data/lib/conjur/command/resources.rb

@@ -0,0 +1,86 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Resources < Conjur::Command
+  self.prefix = :resource
+  
+  desc "Create a new resource"
+  arg_name "kind resource-id"
+  command :create do |c|
+    acting_as_option(c)
+    
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "resource-id")
+      resource = api.resource(kind, id)
+      resource.create(options)
+    end
+  end
+  
+  desc "Show a resource"
+  arg_name "kind resource-id"
+  command :show do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "resource-id")
+      display api.resource(kind, id).attributes
+    end
+  end
+  
+  desc "Determines whether a resource exists"
+  arg_name "kind resource-id"
+  command :exists do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "resource-id")
+      resource = api.resource(kind, id)
+      puts resource.exists?
+    end
+  end
+
+  desc "Grant a privilege on a resource"
+  arg_name "kind resource-id role privilege"
+  command :permit do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "resource-id")
+      role = require_arg(args, "role")
+      privilege = require_arg(args, "privilege")
+      api.resource(kind, id).permit privilege, role
+    end
+  end
+
+  desc "Revoke a privilege on a resource"
+  arg_name "kind resource-id role privilege"
+  command :deny do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "resource-id")
+      role = require_arg(args, "role")
+      privilege = require_arg(args, "privilege")
+      api.resource(kind, id).deny privilege, role
+    end
+  end
+
+  desc "Grant ownership on a resource to a new owner"
+  arg_name "kind resource-id owner"
+  command :give do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "resource-id")
+      owner = require_arg(args, "owner")
+      api.resource(kind, id).give_to owner
+    end
+  end
+
+  desc "List roles with a specified permission on the resource"
+  arg_name "kind resource-id permission"
+  command :permitted_roles do |c|
+    c.action do |global_options,options,args|
+      kind = require_arg(args, "kind")
+      id = require_arg(args, "resource-id")
+      permission = require_arg(args, "permission")
+      display api.resource(kind, id).permitted_roles(permission)
+    end
+  end
+end

data/lib/conjur/command/roles.rb

@@ -0,0 +1,64 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Roles < Conjur::Command
+  self.prefix = :role
+  
+  desc "Create a new role"
+  arg_name "role"
+  command :create do |c|
+    acting_as_option(c)
+
+    c.action do |global_options,options,args|
+      id = require_arg(args, 'role')
+      role = api.role(id)
+      role.create(options)
+    end
+  end
+  
+  desc "Determines whether a role exists"
+  arg_name "role"
+  command :exists do |c|
+    c.action do |global_options,options,args|
+      id = require_arg(args, 'role')
+      role = api.role(id)
+      puts role.exists?
+    end
+  end
+
+  desc "Lists role memberships"
+  arg_name "role"
+  command :memberships do |c|
+    c.action do |global_options,options,args|
+      role = args.shift || api.username
+      display api.role(role).all.map(&:id)
+    end
+  end
+
+  desc "Grant a role to another role. You must have admin permission on the granting role."
+  arg_name "role"
+  arg_name "member"
+  command :grant_to do |c|
+    c.desc "Whether to grant with admin option"
+    c.switch :admin
+    
+    c.action do |global_options,options,args|
+      id = require_arg(args, 'role')
+      member = require_arg(args, 'member')
+      role = api.role(id)
+      role.grant_to member, options[:admin]
+    end
+  end
+
+  desc "Revoke a role from another role."
+  arg_name "role"
+  arg_name "member"
+  command :revoke_from do |c|
+    c.action do |global_options,options,args|
+      id = require_arg(args, 'role')
+      member = require_arg(args, 'member')
+      role = api.role(id)
+      role.revoke_from member
+    end
+  end
+end

data/lib/conjur/command/secrets.rb

@@ -0,0 +1,26 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Secrets < Conjur::Command
+  self.prefix = :secret
+  
+  desc "Create and store a secret"
+  arg_name "secret"
+  command :create do |c|
+    acting_as_option(c)
+
+    c.action do |global_options,options,args|
+      secret = args.shift or raise "Missing parameter: secret"
+      display api.create_secret(secret, options), options
+    end
+  end
+
+  desc "Retrieve a secret"
+  arg_name "id"
+  command :value do |c|
+    c.action do |global_options,options,args|
+      id = args.shift or raise "Missing parameter: id"
+      puts api.secret(id).value
+    end
+  end
+end

data/lib/conjur/command/users.rb

@@ -0,0 +1,32 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Users < Conjur::Command
+  self.prefix = :user
+  
+  desc "Create a new user"
+  arg_name "login"
+  command :create do |c|
+    c.desc "Prompt for a password for the user"
+    c.switch [:p,:password]
+    
+    acting_as_option(c)
+    
+    c.action do |global_options,options,args|
+      login = require_arg(args, 'login')
+      
+      opts = options.slice(:ownerid)
+      if options[:p]
+        hl = HighLine.new
+        password = hl.ask("Enter the password (it will not be echoed): "){ |q| q.echo = false }
+        confirmation = hl.ask("Confirm the password: "){ |q| q.echo = false }
+        
+        raise "Password does not match confirmation" unless password == confirmation
+        
+        opts[:password] = password
+      end
+      
+      display api.create_user(login, opts)
+    end
+  end
+end

data/lib/conjur/command/variables.rb

@@ -0,0 +1,54 @@
+require 'conjur/authn'
+require 'conjur/command'
+
+class Conjur::Command::Variables < Conjur::Command
+  self.prefix = :variable
+  
+  desc "Create and store a variable"
+  command :create do |c|
+    c.arg_name "mime_type"
+    c.flag [:m, :"mime-type"]
+    
+    c.arg_name "kind"
+    c.flag [:k, :"kind"]
+    
+    acting_as_option(c)
+    
+    c.action do |global_options,options,args|
+      var = api.create_variable(options[:m], options[:k], options)
+      display(var, options)
+    end
+  end
+
+  desc "Show a variable"
+  arg_name "id"
+  command :show do |c|
+    c.action do |global_options,options,args|
+      id = require_arg(args, 'id')
+      display(api.variable(id), options)
+    end
+  end
+
+  desc "Add a value"
+  arg_name "variable value"
+  command :"values:add" do |c|
+    c.action do |global_options,options,args|
+      id = require_arg(args, 'variable')
+      value = args.shift || STDIN.read
+      
+      api.variable(id).add_value(value)
+    end
+  end
+
+  desc "Get a value"
+  arg_name "variable"
+  command :value do |c|
+    c.desc "Version number"
+    c.flag [:v, :version]
+    
+    c.action do |global_options,options,args|
+      id = require_arg(args, 'variable')
+      puts api.variable(id).value(options[:version])
+    end
+  end
+end

data/lib/conjur/config.rb

@@ -0,0 +1,29 @@
+module Conjur
+  class Config
+    @@attributes = {}
+    
+    class << self
+      def inspect
+        @@attributes.inspect
+      end
+      
+      def plugins
+        plugins = @@attributes['plugins']
+        if plugins
+          plugins.is_a?(Array) ? plugins : plugins.split(',')
+        else
+          []
+        end
+      end
+      
+      def merge(a)
+        a = {} unless a
+        @@attributes.merge!(a)
+      end
+      
+      def [](key)
+        @@attributes[key.to_s]
+      end
+    end
+  end
+end

data/lib/conjur/version.rb

@@ -0,0 +1,3 @@
+module Conjur
+  VERSION = "2.1.1"
+end

data/spec/command/authn_spec.rb

@@ -0,0 +1,15 @@
+require 'spec_helper'
+require 'tempfile'
+
+describe Conjur::Command::Authn do
+  let(:netrcfile) { Tempfile.new 'authtest' }
+  before do
+    Conjur::Auth.stub netrc: Netrc.read(netrcfile.path)
+  end
+  describe_command 'auth:logout' do
+    it "deletes credentials" do
+      Conjur::Auth.should_receive :delete_credentials
+      invoke
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,16 @@
+require "rubygems"
+require "bundler/setup"
+
+require "simplecov"
+SimpleCov.start
+
+module RSpec::Core::DSL
+  def describe_command name, *a, &block
+    describe name, *a do
+      let(:invoke) { Conjur::Cli.run [name] }
+      instance_eval &block
+    end
+  end
+end
+
+require 'conjur/cli'

metadata

@@ -0,0 +1,189 @@
+--- !ruby/object:Gem::Specification
+name: conjur-cli
+version: !ruby/object:Gem::Version
+  version: 2.1.1
+  prerelease: 
+platform: ruby
+authors:
+- Rafał Rzepecki
+- Kevin Gilpin
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-03-29 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: conjur-api
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: gli
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: highline
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: netrc
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: cas_rest_client
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 
+email:
+- divided.mind@gmail.com
+- kevin.gilpin@inscitiv.com
+executables:
+- conjur
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- .project
+- .rvmrc
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- bin/conjur
+- conjur.gemspec
+- lib/conjur.rb
+- lib/conjur/authn.rb
+- lib/conjur/cli.rb
+- lib/conjur/command.rb
+- lib/conjur/command/assets.rb
+- lib/conjur/command/authn.rb
+- lib/conjur/command/groups.rb
+- lib/conjur/command/hosts.rb
+- lib/conjur/command/permissions.rb
+- lib/conjur/command/resources.rb
+- lib/conjur/command/roles.rb
+- lib/conjur/command/secrets.rb
+- lib/conjur/command/users.rb
+- lib/conjur/command/variables.rb
+- lib/conjur/config.rb
+- lib/conjur/version.rb
+- spec/command/authn_spec.rb
+- spec/spec_helper.rb
+homepage: ''
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.24
+signing_key: 
+specification_version: 3
+summary: Conjur command line interface
+test_files:
+- spec/command/authn_spec.rb
+- spec/spec_helper.rb