RubyGems - firewall_generator - Versions diffs - 0.0.1 - Mend

firewall_generator 0.0.1

Files changed (16) hide show

checksums.yaml +7 -0
data/.gitignore +17 -0
data/Gemfile +4 -0
data/LICENSE.txt +22 -0
data/README.md +50 -0
data/Rakefile +1 -0
data/bin/firewall_generator +5 -0
data/firewall_generator.gemspec +19 -0
data/lib/firewall_generator.rb +7 -0
data/lib/firewall_generator/command.rb +47 -0
data/lib/firewall_generator/input.rb +10 -0
data/lib/firewall_generator/input/aws.rb +38 -0
data/lib/firewall_generator/output.rb +10 -0
data/lib/firewall_generator/output/template.rb +31 -0
data/lib/firewall_generator/version.rb +3 -0
metadata +73 -0

checksums.yaml ADDED

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 6c21b3fe27863c8bbf411f177920b93b613654e7
+  data.tar.gz: 79bfd5dacde923cff09bff88c1cca9ac79176e41
+SHA512:
+  metadata.gz: 5b4349744f2bdda06a7f866236253d3cffea15f8911aac0fa2abcd546bc6f4c4b687c51aeaf5d2364b7d09e7aa9a2a20946bd106a8513bcd41213f89dd7371db
+  data.tar.gz: 17482bd4013cc7358062ae0629f4a14df7f11620ae49d6d34e8ba97d883a9da097d8faebaa55765f970f9b508f28bb0edc0b4a726f17060be3cda88ba91dcb93

data/.gitignore ADDED

@@ -0,0 +1,17 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp

data/Gemfile ADDED

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+# Specify your gem's dependencies in firewall_generator.gemspec
+gemspec

data/LICENSE.txt ADDED

@@ -0,0 +1,22 @@
+Copyright (c) 2014 TODO: Write your name
+MIT License
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md ADDED

@@ -0,0 +1,50 @@
+# Firewall Generator
+Simple plugin based firewall generation
+## Installation
+Install using:
+    $ gem install firewall_generator
+## Config
+myconfig.yml
+    ---
+      :input:
+        - :type: aws
+          :options:
+            :access_key_id: AKIAFOOBARFOOBAR
+            :secret_access_key: aTasgWEGA/gwEGwageawseAGaGawegasEGAewgas
+        - :type: aws
+          :options:
+            :access_key_id: AKIAFOOBARFOOBAR
+            :secret_access_key: hWEgherhERHedrhdesrhAERG/.argaeagagswawe
+      :output:
+        - :type: template
+          :options:
+            :template: mytemplate.erb
+            :output: output.rules
+mytemplate.erb
+    <% list.each do |item| %>
+    -A INPUT -p tcp --dport 1234 -s <%= item %>/32 -j ACCEPT
+    <% end %>
+## Usage
+    $ firewall_generator myconfig.yml
+    $ cat output.rules
+    -A INPUT -p tcp --dport 1234 -s 1.2.3.4/32 -j ACCEPT
+    -A INPUT -p tcp --dport 1234 -s 2.3.4.5/32 -j ACCEPT
+## Contributing
+1. Fork it
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create new Pull Request

data/Rakefile ADDED

	@@ -0,0 +1 @@
1	+ require "bundler/gem_tasks"

data/bin/firewall_generator ADDED

@@ -0,0 +1,5 @@
+#!/usr/bin/env ruby
+require 'firewall_generator'
+command = FirewallGenerator::Command.new(ARGV)
+command.run

data/firewall_generator.gemspec ADDED

@@ -0,0 +1,19 @@
+# -*- encoding: utf-8 -*-
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'firewall_generator/version'
+Gem::Specification.new do |gem|
+  gem.name          = "firewall_generator"
+  gem.version       = FirewallGenerator::VERSION
+  gem.authors       = ["Joshua B. Bussdieker"]
+  gem.email         = ["jbussdieker@gmail.com"]
+  gem.summary       = %q{Simple firewall generation tool}
+  gem.homepage      = ""
+  gem.files         = `git ls-files`.split($/)
+  gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = ["lib"]
+  gem.add_runtime_dependency 'aws-sdk'
+end

data/lib/firewall_generator.rb ADDED

@@ -0,0 +1,7 @@
+require "firewall_generator/version"
+require "firewall_generator/command"
+require "firewall_generator/input"
+require "firewall_generator/output"
+module FirewallGenerator
+end

data/lib/firewall_generator/command.rb ADDED

@@ -0,0 +1,47 @@
+require 'yaml'
+module FirewallGenerator
+  class Command
+    def initialize(args)
+      @args = args
+    end
+    def config_file
+      @args[0] || "config/application.yml"
+    end
+    def config
+      YAML.load(config_data)
+    end
+    def inputs
+      config[:input].collect do |input|
+        Input.new(input)
+      end
+    end
+    def outputs
+      config[:output].collect do |output|
+        Output.new(output)
+      end
+    end
+    def run
+      list = []
+      inputs.each do |input|
+        list += input.result
+      end
+      outputs.each do |output|
+        output.list = list
+        output.result
+      end
+    end
+    private
+    def config_data
+      File.read(config_file)
+    end
+  end
+end

data/lib/firewall_generator/input.rb ADDED

@@ -0,0 +1,10 @@
+require 'firewall_generator/input/aws'
+module FirewallGenerator
+  module Input
+    def self.new(input)
+      klass = const_get(input[:type].capitalize)
+      klass.new(input[:options])
+    end
+  end
+end

data/lib/firewall_generator/input/aws.rb ADDED

@@ -0,0 +1,38 @@
+require 'aws-sdk'
+module FirewallGenerator
+  module Input
+    class Aws
+      attr_accessor :options
+      def initialize(options)
+        @options = options
+      end
+      def ec2
+        AWS::EC2.new(options)
+      end
+      def result
+        all_public_ips.tap do |list|
+          list.compact!
+          list.uniq!
+        end
+      end
+      private
+      def all_public_ips
+        [].tap do |list|
+          AWS.memoize do
+            ec2.regions.each do |region|
+              region.instances.each do |instance|
+                list << instance.public_ip_address
+              end
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/firewall_generator/output.rb ADDED

@@ -0,0 +1,10 @@
+require 'firewall_generator/output/template'
+module FirewallGenerator
+  module Output
+    def self.new(output)
+      klass = const_get(output[:type].capitalize)
+      klass.new(output[:options])
+    end
+  end
+end

data/lib/firewall_generator/output/template.rb ADDED

@@ -0,0 +1,31 @@
+require 'erb'
+module FirewallGenerator
+  module Output
+    class Template
+      attr_accessor :options, :list
+      def initialize(options)
+        @options = options
+      end
+      def template
+        ERB.new(template_data, nil, "<>")
+      end
+      def result
+        template.result(binding).tap do |result|
+          File.open(options[:output], "w") do |f|
+            f.write(result)
+          end
+        end
+      end
+      private
+      def template_data
+        File.read(options[:template])
+      end
+    end
+  end
+end

data/lib/firewall_generator/version.rb ADDED

@@ -0,0 +1,3 @@
+module FirewallGenerator
+  VERSION = "0.0.1"
+end

metadata ADDED

@@ -0,0 +1,73 @@
+--- !ruby/object:Gem::Specification
+name: firewall_generator
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Joshua B. Bussdieker
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2014-04-29 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: aws-sdk
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description:
+email:
+- jbussdieker@gmail.com
+executables:
+- firewall_generator
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/firewall_generator
+- firewall_generator.gemspec
+- lib/firewall_generator.rb
+- lib/firewall_generator/command.rb
+- lib/firewall_generator/input.rb
+- lib/firewall_generator/input/aws.rb
+- lib/firewall_generator/output.rb
+- lib/firewall_generator/output/template.rb
+- lib/firewall_generator/version.rb
+homepage: ''
+licenses: []
+metadata: {}
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project:
+rubygems_version: 2.2.2
+signing_key:
+specification_version: 4
+summary: Simple firewall generation tool
+test_files: []
+has_rdoc: