edurange 0.0.1 → 0.0.2

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 31fe342dd428b3b905e59bfb4fd109900ea5f822
+  data.tar.gz: 67be712ee7e9f5b7c4ae186503a29e6c00b2cb8c
+SHA512:
+  metadata.gz: d73633e20619c1f6069951b35b100595d69221e12507f6fc0fb2913b03b6a260807d75983537b982bf58686b02f315803f1eaf8c68cd8033e98a5527571e718d
+  data.tar.gz: 6a31424c4bfaee52237575d266bb8938a1cb464cf9caeb89e45add8ef8bf438d197f3541d5d38b487a601efb04cabc587e6f2d11b10b824ccf1708dcbb4590cb

data/bin/edurange-setup

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+puts "===Edurange setup script==="
+puts "Where is your ec2 private key?"
+priv_key_loc = gets
+
+File.open('config.yml', "w") do |file|
+  file.puts "ec2_key: #{priv_key_loc}"
+end
+
+
+
+
+

data/final.yml

@@ -16,9 +16,10 @@ Nodes:
 
 Groups:
   Team_1:
-    - { login: sboesen, pass: password }
+    - { login: sboesen, pass_file: 'ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDZOg/RVwsrNvDuCETa1wTaQynNOBFVQIVbzZ4PnMUh+5XlYA40Z4AJ5Yzd6VhuH6vCqnsil2saPsedJK1Me7dl5P08Drqhhf2RbBUW9ZYE2VvtpneZXSGneL70NRJgnoCV55IMY4Btf+3vCV0Ddog5uXkH/Zkgxl3fI5E/6wF82JizMF1BQlg0N7vdWnPbqkn82/VYsIXK0jo8pXFrxjli1jfLN9y/UWL8b5AGpfr5punMWVqh+FsAThPd7sbbu//HRguocZRBSaaDJ8H7qVWJNPPWKecR12AViPjnmFkUMZMPObQWrIOTRyTOcSr5vU1fAxPVWSwFhELtLmxsy7hh stefanboesen@Derp' }
+
   Instructor:
-    - { login: weissr, pass: pass2 }
+    - { login: weissr, pass_file: 'ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDZOg/RVwsrNvDuCETa1wTaQynNOBFVQIVbzZ4PnMUh+5XlYA40Z4AJ5Yzd6VhuH6vCqnsil2saPsedJK1Me7dl5P08Drqhhf2RbBUW9ZYE2VvtpneZXSGneL70NRJgnoCV55IMY4Btf+3vCV0Ddog5uXkH/Zkgxl3fI5E/6wF82JizMF1BQlg0N7vdWnPbqkn82/VYsIXK0jo8pXFrxjli1jfLN9y/UWL8b5AGpfr5punMWVqh+FsAThPd7sbbu//HRguocZRBSaaDJ8H7qVWJNPPWKecR12AViPjnmFkUMZMPObQWrIOTRyTOcSr5vU1fAxPVWSwFhELtLmxsy7hh stefanboesen@Derp' }
 
 Software:
   Victim_CTF:
@@ -37,5 +38,5 @@ Software:
 
     Packages: # References to puppet modules so we can support different OS options. Otherwise we need to know what OS we're on...
       - iptables
-      - apache
+      - apache2
 

data/lib/edurange/edu_machine.rb

@@ -1,6 +1,6 @@
 module Edurange
   class EduMachine
-    attr_reader :uuid, :ami_id, :key_name, :vm_size, :ip_address
+    attr_reader :uuid, :ami_id, :key_name, :vm_size, :ip_address, :users
 
     EC2_UTILS_PATH = "/home/ubuntu/.ec2/bin/"
 
@@ -12,6 +12,9 @@ module Edurange
       @vm_size = vm_size
       @ami_id = ami_id
     end
+    def initial_users(users)
+      @users = users
+    end
     def run(command)
       # runs an ec2 command with full path.
       command = EC2_UTILS_PATH + command

data/lib/edurange/parser.rb

@@ -1,9 +1,30 @@
 module Edurange
   class Parser
-    def self.facter_facts(uuid)
+    def self.puppet_firewall_rules(uuid, rules)
+      puppet_rules = "if $uuid == '#{uuid}' {"
+      rules.each do |rule|
+        protocol = rule[0]
+        port = rule[1]
+        dest = (rule[2] == 'All') ? '0.0.0.0/24' : rule[2]
+
+        puppet_rule = "iptables { '#{uuid} iptables: #{protocol}://#{dest}:#{port}':
+        proto => '#{protocol}',
+        dport => '#{port}',
+        destination => '#{dest}
+        }"
+
+        p puppet_rule
+        puppet_rules += puppet_rule
+      end
+      puppet_rules += "\n}"
+      puppet_rules
+
+    end
+    def self.facter_facts(uuid, services)
+      services = services.join(',')
       facter_conf = <<conf
 uuid=#{uuid}
-services=apache2,vsftpd,iptables
+services=#{services}
 conf
     end
     def self.parse_yaml(filename)
@@ -58,16 +79,14 @@ conf
           end
         end
         nodes.push [
+          node_name,
           ami_id,
           users,
           iptables_rules,
           packages
         ]
-        p ami_id
-        p users
-        p iptables_rules
-        p packages
       end
+      return nodes
     end
   end
 end

data/lib/edurange/puppet_master.rb

@@ -22,6 +22,17 @@ module Edurange
       private_key = `sudo cat /var/lib/puppet/ssl/private_keys/#{uuid}.pem`.chomp
       return [uuid, ssl_cert, ca_cert, private_key]
     end
+    def self.append_to_config(conf)
+      File.open("my-user-script.sh", 'a+') do |file|
+        file.write(conf)
+      end
+    end
+    def self.write_puppet_conf(instance_id, conf)
+      File.open("/home/ubuntu/edurange/derp.pp", "w") do |file|
+        file.write(conf)
+      end
+      `sudo mv /home/ubuntu/edurange/derp.pp /etc/puppet/manifests/#{instance_id}#{Time.now.to_s.gsub(' ','')}.pp`
+    end
     def self.write_shell_config_file(ssh_key, puppetmaster_ip, certs, puppet_conf, facter_facts)
       File.open("my-user-script.sh", 'w') do |file|
         file_contents = <<contents

data/lib/edurange/version.rb

@@ -1,3 +1,3 @@
 module Edurange
-  VERSION = "0.0.1"
+  VERSION = "0.0.2"
 end

data/lib/edurange.rb

@@ -5,9 +5,64 @@ require "edurange/edu_machine"
 
 module Edurange
   class Init
-    def self.init(filename)
-      Edurange::Parser.parse_yaml(filename)
+    def self.init(config_filename)
+      keyname = "newkey"
+      our_ssh_key = Edurange::PuppetMaster.get_our_ssh_key()
+      puppetmaster_ip = Edurange::PuppetMaster.puppetmaster_ip()
 
+      nodes = Edurange::Parser.parse_yaml(config_filename) # format: nodes[node_name, ami_id, users, firewall_rules, packages]
+
+      nodes.each do |node|
+        node_name = node[0]
+        ami_id = node[1]
+        users = node[2]
+        firewall_rules = node[3]
+        packages = node[4]
+        puts "Preparing #{node_name} - Packages: #{packages} ami_id: #{ami_id}"
+        puts "Got users: #{users} and fw rules: #{firewall_rules}"
+        certs = Edurange::PuppetMaster.gen_client_ssl_cert() 
+        conf = Edurange::PuppetMaster.generate_puppet_conf(certs[0])
+        facts = Edurange::Parser.facter_facts(certs[0], packages)
+        Edurange::PuppetMaster.write_shell_config_file(our_ssh_key,puppetmaster_ip, certs, conf, facts)
+
+        users_script = self.users_to_bash(users)
+        p users_script
+        puts 'user_script above...'
+        Edurange::PuppetMaster.append_to_config(users_script)
+
+        
+
+        machine = Edurange::EduMachine.new(certs[0], keyname, ami_id)
+        #machine.users(users)
+        
+        machine_details = machine.spin_up()
+
+        uuid = machine_details.uuid
+
+        puppet_rules = Edurange::Parser.puppet_firewall_rules(uuid, firewall_rules)
+        
+        Edurange::PuppetMaster.write_puppet_conf(uuid, puppet_rules)
+        p machine_details
+      end
+    end
+    
+    def self.users_to_bash(users)
+      shell = ""
+      users.each do |user|
+        p user
+        if user['password']
+          #shell += "\n"
+          #shell += "sudo useradd -m #{user[:login]}"
+          #shell += ''
+        elsif user['pass_file']
+          #TODO implement pass files
+          shell += "\n"
+          shell += "sudo useradd -m #{user['login']} -s /bin/bash\n"
+          shell += "sudo mkdir -p /home/#{user['login']}/.ssh\n"
+          shell += "echo '#{user['pass_file']}' >> /home/#{user['login']}/.ssh/authorized_keys\n"
+        end
+      end
+      shell
     end
   end
 end

metadata

@@ -1,21 +1,21 @@
 --- !ruby/object:Gem::Specification
 name: edurange
 version: !ruby/object:Gem::Version
-  version: 0.0.1
-  prerelease: 
+  version: 0.0.2
 platform: ruby
 authors:
 - Stefan Boesen
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-02-15 00:00:00.000000000 Z
+date: 2013-03-04 00:00:00.000000000 Z
 dependencies: []
 description: EDURange Project
 email:
 - stefan.boesen@gmail.com
 executables:
 - edurange
+- edurange-setup
 extensions: []
 extra_rdoc_files: []
 files:
@@ -25,6 +25,7 @@ files:
 - README.md
 - Rakefile
 - bin/edurange
+- bin/edurange-setup
 - edurange.gemspec
 - final.yml
 - lib/edurange.rb
@@ -32,30 +33,28 @@ files:
 - lib/edurange/parser.rb
 - lib/edurange/puppet_master.rb
 - lib/edurange/version.rb
-- parser.rb
 - site.pp
 homepage: ''
 licenses: []
+metadata: {}
 post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 1.8.24
+rubygems_version: 2.0.0
 signing_key: 
-specification_version: 3
+specification_version: 4
 summary: Automatic warspace simulations
 test_files: []

data/parser.rb

@@ -1,57 +0,0 @@
-require 'yaml'
-
-file = YAML.load_file('final.yml')
-
-softwares = {}
-file["Software"].each do |software|
-  softwares[software[0]] = software[1]
-end
-
-groups = {}
-file["Groups"].each do |group|
-  groups[group[0]] = group[1]
-end
-
-file["Nodes"].each do |node|
-  node_name = node[0]
-  ami_id = node[1]["AMI_ID"]
-
-  users = []
-  users_groups = node[1]["Users"]
-  users_groups.each do |user_group|
-    users.push groups[user_group]
-  end
-  users.flatten!
-
-  software = []
-  software_groups = node[1]["Software"]
-  software_groups.each do |software_group|
-    software.push softwares[software_group]
-  end
-  software.flatten!
-
-  iptables_rules = []
-  packages = []
-  software.each do |sw|
-    if !sw["IPTables"].nil?
-      sw["IPTables"].each do |iptable_rule|
-        port = iptable_rule[0]
-        protocol = iptable_rule[1]["Protocol"]
-        hosts = iptable_rule[1]["Hosts"]
-        hosts.each do |host|
-          iptables_rules.push [protocol, port, host]
-        end
-      end
-    end
-    if !sw["Packages"].nil?
-      sw["Packages"].each do |package|
-        packages.push package
-      end
-    end
-  end
-  p ami_id
-  p users
-  p iptables_rules
-  p packages
-end
-