draw_cloud 0.0.1

data/lib/draw_cloud/join_func.rb

@@ -0,0 +1,31 @@
+# encoding: utf-8
+#
+# Copyright:: Copyright (c) 2012, SweetSpot Diabetes Care, Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License"); you
+# may not use this work except in compliance with the License. You may
+# obtain a copy of the License in the LICENSE file, or at:
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+# implied. See the License for the specific language governing
+# permissions and limitations under the License.
+
+#
+
+module DrawCloud
+  class JoinFunc
+    attr_accessor :delimiter, :args
+    def initialize(delimiter, args=nil)
+      @delimiter = delimiter
+      @args = args
+    end
+
+    def ref
+      {"Fn::Join" => [delimiter, args.collect {|a| DrawCloud.ref(a)} ]}
+    end
+  end
+end

data/lib/draw_cloud/join_func.rb~

@@ -0,0 +1,24 @@
+# encoding: utf-8
+#
+# Copyright:: Copyright (c) 2012, SweetSpot Diabetes Care, Inc.
+# License::   All rights reserved
+#
+
+module DrawCloud
+  class JoinFunc
+    attr_accessor :fnname, :args
+    def initialize(fnname, args=nil)
+      @fnname = fnname
+      @args = args
+    end
+
+    def ref
+      case args
+      when Array
+        {fnname => args.collect {|a| DrawCloud.ref(a) }}
+      else
+        {fnname => DrawCloud.ref(args)}
+      end
+    end
+  end
+end

data/lib/draw_cloud/locations.rb

@@ -0,0 +1,25 @@
+# encoding: utf-8
+#
+# Copyright:: Copyright (c) 2012, SweetSpot Diabetes Care, Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License"); you
+# may not use this work except in compliance with the License. You may
+# obtain a copy of the License in the LICENSE file, or at:
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+# implied. See the License for the specific language governing
+# permissions and limitations under the License.
+
+#
+
+module DrawCloud
+  module Locations
+    def arn_s3(bucket_name, path)
+      fnjoin("", "arn:aws:s3:::", bucket_name, path)
+    end
+  end
+end

data/lib/draw_cloud/locations.rb~

@@ -0,0 +1,53 @@
+# encoding: utf-8
+#
+# Copyright:: Copyright (c) 2012, SweetSpot Diabetes Care, Inc.
+# License::   All rights reserved
+#
+
+module DrawCloud
+  module Utilities
+    def region
+      SimpleRef.new("AWS::Region")
+    end
+
+    def stack_name
+      SimpleRef.new("AWS::StackName")
+    end
+
+    def fngetatt(resource, attribute_name)
+      GetAttFunc.new(resource, attribute_name)
+    end
+
+    def fnbase64(arg)
+      Base64Func.new(arg)
+    end
+
+    def fnjoin(delimiter, *args)
+      JoinFunc.new(delimiter, args)
+    end
+
+    def resource_style(str)
+      DrawCloud.resource_style(str)
+    end
+
+    def desplice(string)
+      fnjoin("", *string.split('|CHOPHERE|').collect {|s| if s.start_with? 'YYYY' then YAML::load(s[4,s.length-4]) else s end })
+    end
+
+    def splice(string)
+      out = '|CHOPHERE|'
+      outref = DrawCloud.ref(string)
+      case outref
+      when String
+        out += outref
+      else
+        out += 'YYYY' + YAML::dump(outref)
+      end
+      out += '|CHOPHERE|'
+    end
+
+    def hash_to_tag_array(hash)
+      hash.collect {|(k,v)| {"Key" => k, "Value" => v} }
+    end
+  end
+end

data/lib/draw_cloud/map.rb

@@ -0,0 +1,65 @@
+# encoding: utf-8
+#
+# Copyright:: Copyright (c) 2012, SweetSpot Diabetes Care, Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License"); you
+# may not use this work except in compliance with the License. You may
+# obtain a copy of the License in the LICENSE file, or at:
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+# implied. See the License for the specific language governing
+# permissions and limitations under the License.
+
+#
+
+module DrawCloud
+  class Map < Base
+    class MapLookup
+      attr_accessor :map, :key
+      def initialize(map, key)
+        @map = map
+        @key = key
+      end
+
+      def ref
+        {"Fn::FindInMap" => [map.resource_name, map.function_resource, key]}
+      end
+    end
+
+    attr_accessor :name, :map_by_function, :values
+    def initialize(name, map_by_function, options, values={})
+      @name = name
+      @map_by_function = map_by_function
+      @values = values
+      super(options)
+    end
+
+    def [](key)
+      MapLookup.new(self, key)
+    end
+
+    def function_resource
+      case map_by_function
+      when :map_by_region
+        {"Ref" => "AWS::Region"}
+      when Parameter
+        map_by_function.ref
+      else
+        raise ArgumentError, "Unknown map function #{map_by_function}"
+      end
+    end
+
+    def load_into_config(config)
+      config.cf_add_mapping resource_name, self
+      super(config)
+    end
+
+    def to_h
+      values
+    end
+  end
+end

data/lib/draw_cloud/network_acl.rb

@@ -0,0 +1,91 @@
+# encoding: utf-8
+#
+# Copyright:: Copyright (c) 2012, SweetSpot Diabetes Care, Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License"); you
+# may not use this work except in compliance with the License. You may
+# obtain a copy of the License in the LICENSE file, or at:
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+# implied. See the License for the specific language governing
+# permissions and limitations under the License.
+
+#
+
+module DrawCloud
+  class NetworkAcl < Base
+    attr_accessor :name, :entries
+    def initialize(name, options={}, &block)
+      @name = name
+      @entries = []
+      super(options, &block)
+    end
+
+    def network_acl
+      self
+    end
+
+    def allow_in(protocol, cidr=:any, ports_or_types=[])
+      add_entry :allow, protocol, :ingress, cidr, ports_or_types
+    end
+
+    def allow_out(protocol, cidr=:any, ports_or_types=[])
+      add_entry :allow, protocol, :egress, cidr, ports_or_types
+    end
+
+    def deny_in(protocol, cidr=:any, ports_or_types=[])
+      add_entry :deny, protocol, :ingress, cidr, ports_or_types
+    end
+
+    def deny_out(protocol, cidr=:any, ports_or_types=[])
+      add_entry :deny, protocol, :egress, cidr, ports_or_types
+    end
+
+    def provides(service)
+    end
+
+    def consumes(service)
+    end
+
+    def add_entry(action, protocol, direction, cidr, ports_or_types)
+      entries.concat NetworkAclEntry.entries_from_spec(action, protocol, direction,
+                                                       cidr, ports_or_types, :parent => self)
+    end
+    private :add_entry
+
+    def load_into_config(config)
+      config.cf_add_resource resource_name, self
+      ingress_index = 1
+      egress_index = 1
+      entries.each do |e|
+        if e.outgoing?
+          e.index = egress_index * 10
+          egress_index += 1
+        else
+          e.index = ingress_index * 10
+          ingress_index += 1
+        end
+
+        e.load_into_config(config)
+      end
+      super(config)
+    end
+
+    def resource_name
+      resource_style(name) + "NetworkACL"
+    end
+
+    def to_h
+      h = {
+        "Type" => "AWS::EC2::NetworkAcl",
+        "Properties" => {}
+      }
+      h["Properties"]["VpcId"] = DrawCloud.ref(vpc) if vpc
+      add_standard_properties(h)
+    end
+  end
+end

data/lib/draw_cloud/network_acl.rb~

@@ -0,0 +1,36 @@
+module DrawCloud
+  class NetworkAcl
+    include Base
+
+    attr_accessor :vpc, :name, :entries
+    def initialize(name, options={}, &block)
+      @name = name
+      @vpc = options.fetch(:vpc, nil)
+      @routes = []
+      self.instance_exec(self, &block) if block
+    end
+
+    def to(name, to_cidr, options={})
+      raise(Exeception, "No :via specified") unless options[:via]
+      @routes << RouteTableEntry.new(name, to_cidr, options[:via], :route_table => self)
+    end
+
+    def load_into_config(config)
+      config.cf_add_resource resource_name, self
+      @routes.each {|r| config.cf_add_resource(r.resource_name, r)}
+    end
+
+    def resource_name
+      resource_style(name) + "Table"
+    end
+
+    def to_h
+      h = {
+        "Type" => "AWS::EC2::RouteTable",
+        "Properties" => {}
+      }
+      h["Properties"]["VpcId"] = vpc.ref if vpc
+      h
+    end
+  end
+end

data/lib/draw_cloud/network_acl_entry.rb

@@ -0,0 +1,110 @@
+module DrawCloud
+  class NetworkAclEntry < Base
+    def self.entries_from_spec(action, protocol_spec, direction, cidr, ports_or_types_spec, options={}, &block)
+      protocol = case protocol_spec
+                 when :everything, :any, :all
+                   -1
+                 when :icmp
+                   1
+                 when :tcp
+                   6
+                 when :udp
+                   17
+                 when Numeric
+                   protocol_spec
+                 else
+                   raise ArgumentError, "Unknown protocol description #{protocol_spec.inspect}"
+                 end
+      
+      raise ArgumentError, "Unknown ACL direction #{direction.inspect}" unless direction == :ingress || direction == :egress
+
+      cidr = "0.0.0.0/0" if :any == cidr
+
+      pts = if -1 == protocol
+              [nil]
+            elsif 1 == protocol
+              if :any == ports_or_types_spec
+                [[-1, -1]]
+              elsif :echo == ports_or_types_spec
+                [[8, 0], [0, 0]]
+              else
+                raise ArgumentError, "Can't understand ICMP specification #{ports_or_types_spec.inspect} - maybe you need to add this code"
+              end
+            elsif 6 == protocol || 17 == protocol
+              case ports_or_types_spec
+              when Numeric
+                [ports_or_types_spec]
+              when Range
+                [[ports_or_types_spec.min, ports_or_types_spec.max]]
+              when Array
+                ports_or_types_spec.collect {|p| if p.is_a?(Range) then [p.min, p.max] else [p, p] end }
+              else
+                raise ArgumentError, "Can't understand TCP/UDP port specification #{ports_or_types_spec.inspect} - maybe you need to add this code"
+              end
+            end
+
+      pts.collect do |s|
+        NetworkAclEntry.new(action, protocol, direction, cidr, ports_or_types_spec, options)
+      end
+    end
+
+    attr_accessor :index, :action, :protocol, :direction, :cidr, :ports
+    def initialize(action, protocol, direction, cidr, ports_or_types, options={}, &block)
+      @action = action
+      @protocol = protocol
+      @direction = direction
+      @cidr = cidr
+      @ports_or_types = ports_or_types
+      super(options, &block)
+    end
+
+    def outgoing?
+      :egress == direction
+    end
+
+    def icmp?
+      1 == protocol
+    end
+
+    def tcp_or_udp?
+      6 == protocol || 17 == protocol
+    end
+
+    def load_into_config(config)
+      config.cf_add_resource resource_name, self
+      super(config)
+    end
+
+    def resource_name
+      DrawCloud.resource_name(network_acl) + direction.to_s.capitalize + "Rule" + index.to_s
+    end
+
+    def to_h
+      h = {
+        "Type" => "AWS::EC2::NetworkAclEntry",
+        "Properties" => {
+          "RuleNumber" => index,
+          "Protocol" => protocol,
+          "RuleAction" => case action
+                          when :allow
+                            "allow"
+                          when :deny
+                            "deny"
+                          else
+                            raise ArgumentError, "Unknown NetworkAclEntry action #{action.inspect}"
+                          end,
+          "Egress" => outgoing?,
+          "CidrBlock" => cidr
+        }
+      }
+      h["Properties"]["NetworkAclId"] = DrawCloud.ref(network_acl) if network_acl
+      if icmp?
+        h["Properties"]["Icmp"] = {"Type" => ports_or_types[0], "Code" => ports_or_types[1] }
+      end
+      if tcp_or_udp?
+        h["Properties"]["PortRange"] = {"From" => ports_or_types[0], "To" => ports_or_types[1] }
+      end
+      add_standard_properties(h)
+    end
+  end
+end

data/lib/draw_cloud/network_acl_entry.rb~

@@ -0,0 +1,36 @@
+module DrawCloud
+  class NetworkAclEntry
+    include Base
+
+    attr_accessor :acl, :index, :action, :protocol, :cidr, :ports
+    def initialize(name, options={}, &block)
+      @name = name
+      @vpc = options.fetch(:vpc, nil)
+      @routes = []
+      self.instance_exec(self, &block) if block
+    end
+
+    def to(name, to_cidr, options={})
+      raise(Exeception, "No :via specified") unless options[:via]
+      @routes << RouteTableEntry.new(name, to_cidr, options[:via], :route_table => self)
+    end
+
+    def load_into_config(config)
+      config.cf_add_resource resource_name, self
+      @routes.each {|r| config.cf_add_resource(r.resource_name, r)}
+    end
+
+    def resource_name
+      resource_style(name) + "Table"
+    end
+
+    def to_h
+      h = {
+        "Type" => "AWS::EC2::RouteTable",
+        "Properties" => {}
+      }
+      h["Properties"]["VpcId"] = vpc.ref if vpc
+      h
+    end
+  end
+end