fog-aws 0.11.0 → 0.12.0

data/lib/fog/aws/requests/cloud_formation/estimate_template_cost.rb

@@ -0,0 +1,48 @@
+module Fog
+  module AWS
+    class CloudFormation
+      class Real
+        require 'fog/aws/parsers/cloud_formation/estimate_template_cost'
+
+        # Returns the estimated monthly cost of a template.
+        #
+        # * options [Hash]:
+        #   * TemplateBody [String] Structure containing the template body.
+        #   or (one of the two Template parameters is required)
+        #   * TemplateURL [String] URL of file containing the template body.
+        #   * Parameters [Hash] Hash of providers to supply to template
+        #
+        # @return [Excon::Response]:
+        #   * body [Hash:
+        #     * Url [String] - An AWS Simple Monthly Calculator URL with a query string that describes the resources required to run the template.
+        #
+        # @see http://docs.amazonwebservices.com/AWSCloudFormation/latest/APIReference/API_EstimateTemplateCost.html
+
+        def estimate_template_cost(options = {})
+          params = {}
+
+          if options['Parameters']
+            options['Parameters'].keys.each_with_index do |key, index|
+              index += 1 # params are 1-indexed
+              params.merge!({
+                "Parameters.member.#{index}.ParameterKey"   => key,
+                "Parameters.member.#{index}.ParameterValue" => options['Parameters'][key]
+              })
+            end
+          end
+
+          if options['TemplateBody']
+            params['TemplateBody'] = options['TemplateBody']
+          elsif options['TemplateURL']
+            params['TemplateURL'] = options['TemplateURL']
+          end
+
+          request({
+            'Action'    => 'EstimateTemplateCost',
+            :parser     => Fog::Parsers::AWS::CloudFormation::EstimateTemplateCost.new
+          }.merge!(params))
+        end
+      end
+    end
+  end
+end

data/lib/fog/aws/requests/cloud_formation/execute_change_set.rb

@@ -0,0 +1,26 @@
+module Fog
+  module AWS
+    class CloudFormation
+      class Real
+        require 'fog/aws/parsers/cloud_formation/basic'
+
+        # Execute a change set.
+        #
+        # @param ChangeSetName [String] The name of the change set to delete.
+        # @option options StackName [String] The Stack name or ID (ARN) that is associated with change set.
+        #
+        # @return [Excon::Response]
+        #
+        # @see http://docs.amazonwebservices.com/AWSCloudFormation/latest/APIReference/API_ExecuteChangeSet.html
+
+        def execute_change_set(change_set_name, options = {})
+          options['ChangeSetName'] = change_set_name
+          request({
+            'Action'    => 'ExecuteChangeSet',
+            :parser     => Fog::Parsers::AWS::CloudFormation::Basic.new
+          }.merge!(options))
+        end
+      end
+    end
+  end
+end

data/lib/fog/aws/requests/cloud_formation/get_stack_policy.rb

@@ -0,0 +1,27 @@
+module Fog
+  module AWS
+    class CloudFormation
+      class Real
+        require 'fog/aws/parsers/cloud_formation/get_stack_policy'
+
+        # Describe stacks.
+        #
+        # @param stack_name [String] The name or unique stack ID that is associated with the stack whose policy you want to get.
+        #
+        # @return [Excon::Response]
+        #   * body [Hash]:
+        #     * StackPolicyBody [String] - Structure containing the stack policy body.
+        #
+        # @see http://docs.amazonwebservices.com/AWSCloudFormation/latest/APIReference/API_GetStackPolicy.html
+
+        def get_stack_policy(stack_name)
+          request(
+            'Action'    => 'GetStackPolicy',
+            'StackName' => stack_name,
+            :parser     => Fog::Parsers::AWS::CloudFormation::GetStackPolicy.new
+          )
+        end
+      end
+    end
+  end
+end

data/lib/fog/aws/requests/cloud_formation/get_template_summary.rb

@@ -0,0 +1,46 @@
+module Fog
+  module AWS
+    class CloudFormation
+      class Real
+        require 'fog/aws/parsers/cloud_formation/get_template_summary'
+
+        # Returns information about a new or existing template.
+        #
+        # * options [Hash]:
+        #   * stack_name [String] Name of the stack or the stack ID.
+        #   or
+        #   * TemplateBody [String] Structure containing the template body.
+        #   or
+        #   * TemplateURL [String] URL of file containing the template body.
+        #
+        # @return [Excon::Response]:
+        #   * body [Hash:
+        #     * Capabilities [Array] List of capabilties in the template.
+        #     * CapabilitiesReason [String] The list of resources that generated the values in the Capabilities response element.
+        #     * Description [String] Template Description.
+        #     * Metadata [String] Template Metadata.
+        #     * Parameters [Array] A list of parameter declarations that describe various properties for each parameter.
+        #     * ResourceTypes [Array] all the template resource types that are defined in the template
+        #
+        # @see http://docs.amazonwebservices.com/AWSCloudFormation/latest/APIReference/API_GetTemplateSummary.html
+
+        def get_template_summary(options = {})
+          params = {}
+
+          if options['StackName']
+            params['StackName'] = options['StackName']
+          elsif options['TemplateBody']
+            params['TemplateBody'] = options['TemplateBody']
+          elsif options['TemplateURL']
+            params['TemplateURL'] = options['TemplateURL']
+          end
+
+          request({
+            'Action'    => 'GetTemplateSummary',
+            :parser     => Fog::Parsers::AWS::CloudFormation::GetTemplateSummary.new
+          }.merge!(params))
+        end
+      end
+    end
+  end
+end

data/lib/fog/aws/requests/cloud_formation/list_change_sets.rb

@@ -0,0 +1,40 @@
+module Fog
+  module AWS
+    class CloudFormation
+      class Real
+        require 'fog/aws/parsers/cloud_formation/list_change_sets'
+
+        # List change sets.
+        #
+        # @param stack_name String] Name or the ARN of the stack for which you want to list change sets.
+        #
+        # @option options StackName [String] Name of the stack to describe.
+        #
+        # @return [Excon::Response]
+        #   * body [Hash]:
+        #     * Summaries [Array] - Matching change sets
+        #       * stack [Hash]:
+        #         * ChangeSetId [String] -
+        #         * ChangeSetName [String] -
+        #         * Description [String] -
+        #         * CreationTime [Time] -
+        #         * ExecutionStatus [String] -
+        #         * StackId [String] -
+        #         * StackName [String] -
+        #         * Status [String] -
+        #         * StackReason [String] -
+        #
+        #
+        # @see http://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_ListChangeSets.html
+
+        def list_change_sets(stack_name, options = {})
+          request({
+            'Action'    => 'ListChangeSets',
+            'StackName' => stack_name,
+            :parser     => Fog::Parsers::AWS::CloudFormation::ListChangeSets.new
+          }.merge!(options))
+        end
+      end
+    end
+  end
+end

data/lib/fog/aws/requests/cloud_formation/set_stack_policy.rb

@@ -0,0 +1,38 @@
+module Fog
+  module AWS
+    class CloudFormation
+      class Real
+        require 'fog/aws/parsers/cloud_formation/basic'
+
+        # Sets a stack policy for a specified stack.
+        #
+        # @param stack_name [String] Name or unique stack ID that you want to associate a policy with.
+        # * options [Hash]:
+        #   * StackPolicyBody [String] Structure containing the stack policy body.
+        #   or (one of the two StackPolicy parameters is required)
+        #   * StackPolicyURL [String] URL of file containing the stack policy.
+        #   * Parameters [Hash] Hash of providers to supply to StackPolicy
+        #
+        # @return [Excon::Response]:
+        #
+        # @see http://docs.amazonwebservices.com/AWSCloudFormation/latest/APIReference/API_SetStackPolicy.html
+
+        def set_stack_policy(stack_name, options = {})
+          params = {}
+
+          if options['StackPolicyBody']
+            params['StackPolicyBody'] = options['StackPolicyBody']
+          elsif options['StackPolicyURL']
+            params['StackPolicyURL'] = options['StackPolicyURL']
+          end
+
+          request({
+            'Action'    => 'SetStackPolicy',
+            'StackName' => stack_name,
+            :parser     => Fog::Parsers::AWS::CloudFormation::Basic.new
+          }.merge!(params))
+        end
+      end
+    end
+  end
+end

data/lib/fog/aws/requests/cloud_formation/signal_resource.rb

@@ -0,0 +1,32 @@
+module Fog
+  module AWS
+    class CloudFormation
+      class Real
+        require 'fog/aws/parsers/cloud_formation/basic'
+
+        # Sends a signal to the specified resource.
+        #
+        # @param options Hash]:
+        #   * LogicalResourceId [String] The logical ID of the resource that you want to signal.
+        #   * StackName [String] The stack name or unique stack ID that includes the resource that you want to signal.
+        #   * Status [String] The status of the signal, which is either success or failure.
+        #   * UniqueId [String] A unique ID of the signal.
+        #
+        # @return [Excon::Response]
+        #
+        # @see http://docs.amazonwebservices.com/AWSCloudFormation/latest/APIReference/API_SignalResource.html
+
+        def signal_resource(logical_resource_id, stack_name, status, unique_id )
+          request(
+            'Action'    => 'SignalResource',
+            'LogicalResourceId' => logical_resource_id,
+            'StackName' => stack_name,
+            'Status' => status,
+            'UniqueId' => unique_id,
+            :parser     => Fog::Parsers::AWS::CloudFormation::Basic.new
+          )
+        end
+      end
+    end
+  end
+end

data/lib/fog/aws/requests/cloud_formation/update_stack.rb

@@ -13,6 +13,14 @@ module Fog
         #   * TemplateURL [String] URL of file containing the template body.
         #   * Parameters [Hash] Hash of providers to supply to template.
         #   * Capabilities [Array] List of capabilties the stack is granted. Currently CAPABILITY_IAM for allowing the creation of IAM resources.
+        #   * NotificationARNs [Array] List of SNS topics to publish events to.
+        #   * ResourceTypes [Array] The template resource types that you have permissions to work.
+        #   * StackPolicyBody [String] Structure containing the stack policy body.
+        #   * StackPolicyURL [String] URL of file containing the stack policy.
+        #   * StackPolicyDuringUpdateBody [String] Structure containing the stack policy body to use during update.
+        #   * StackPolicyDuringUpdateURL [String] URL of file containing the stack policy to use during update.
+        #   * Tags [Array] Key-value pairs to associate with this stack.
+        #   * UsePreviousTemplate [Boolean] Reuse the existing template that is associated with the stack that you are updating.
         #
         # @return [Excon::Response]
         #   * body [Hash]:
@@ -41,10 +49,51 @@ module Fog
             params['TemplateURL'] = options['TemplateURL']
           end
 
+          if options['StackPolicyBody']
+            params['StackPolicyBody'] = options['StackPolicyBody']
+          elsif options['StackPolicyURL']
+            params['StackPolicyURL'] = options['StackPolicyURL']
+          end
+
+          if options['StackPolicyDuringUpdateBody']
+            params['StackPolicyDuringUpdateBody'] = options['StackPolicyDuringUpdateBody']
+          elsif options['StackPolicyDuringUpdateURL']
+            params['StackPolicyDuringUpdateURL'] = options['StackPolicyDuringUpdateURL']
+          end
+
+          num_tags = 0
+          if options['Tags']
+            options['Tags'].keys.each_with_index do |key, index|
+              index += 1 # tags are 1-indexed
+              num_tags += 1 # 10 tag max
+
+              params.merge!({
+                "Tags.member.#{index}.Key"   => key,
+                "Tags.member.#{index}.Value" => options['Tags'][key]
+              })
+            end
+          end
+
+          if num_tags > 10
+            raise ArgumentError.new("a maximum of 10 tags can be specified <#{num_tags}>")
+          end
+
           if options['Capabilities']
             params.merge!(Fog::AWS.indexed_param("Capabilities.member", [*options['Capabilities']]))
           end
 
+          if options['NotificationARNs']
+            params.merge!(Fog::AWS.indexed_param("NotificationARNs.member", [*options['NotificationARNs']]))
+          end
+
+          if options['ResourceTypes']
+            params.merge!(Fog::AWS.indexed_param("ResourceTypes.member", [*options['ResourceTypes']]))
+          end
+
+          if options['UsePreviousTemplate']
+            params['UsePreviousTemplate'] = options['UsePreviousTemplate']
+          end
+
           request({
             'Action'    => 'UpdateStack',
             :parser     => Fog::Parsers::AWS::CloudFormation::UpdateStack.new

data/lib/fog/aws/requests/compute/authorize_security_group_egress.rb

@@ -0,0 +1,112 @@
+module Fog
+  module Compute
+    class AWS
+      class Real
+        require 'fog/aws/parsers/compute/basic'
+
+        # Add permissions to a security group
+        #
+        # ==== Parameters
+        # * group_name<~String> - Name of group, optional (can also be specifed as GroupName in options)
+        # * options<~Hash>:
+        #   * 'GroupName'<~String> - Name of security group to modify
+        #   * 'GroupId'<~String> - Id of security group to modify
+        #   * 'SourceSecurityGroupName'<~String> - Name of security group to authorize
+        #   * 'SourceSecurityGroupOwnerId'<~String> - Name of owner to authorize
+        #   or
+        #   * 'CidrIp'<~String> - CIDR range
+        #   * 'FromPort'<~Integer> - Start of port range (or -1 for ICMP wildcard)
+        #   * 'IpProtocol'<~String> - Ip protocol, must be in ['tcp', 'udp', 'icmp']
+        #   * 'ToPort'<~Integer> - End of port range (or -1 for ICMP wildcard)
+        #   or
+        #   * 'IpPermissions'<~Array>:
+        #     * permission<~Hash>:
+        #       * 'FromPort'<~Integer> - Start of port range (or -1 for ICMP wildcard)
+        #       * 'Groups'<~Array>:
+        #         * group<~Hash>:
+        #           * 'GroupName'<~String> - Name of security group to authorize
+        #           * 'UserId'<~String> - Name of owner to authorize
+        #       * 'IpProtocol'<~String> - Ip protocol, must be in ['tcp', 'udp', 'icmp']
+        #       * 'IpRanges'<~Array>:
+        #         * ip_range<~Hash>:
+        #           * 'CidrIp'<~String> - CIDR range
+        #       * 'ToPort'<~Integer> - End of port range (or -1 for ICMP wildcard)
+        #
+        # === Returns
+        # * response<~Excon::Response>:
+        #   * body<~Hash>:
+        #     * 'requestId'<~String> - Id of request
+        #     * 'return'<~Boolean> - success?
+        #
+        # {Amazon API Reference}[http://docs.amazonwebservices.com/AWSEC2/latest/APIReference/ApiReference-query-AuthorizeSecurityGroupEgress.html]
+        def authorize_security_group_egress(group_name, options = {})
+          options = Fog::AWS.parse_security_group_options(group_name, options)
+
+          if ip_permissions = options.delete('IpPermissions')
+            options.merge!(indexed_ip_permissions_params(ip_permissions))
+          end
+
+          request({
+            'Action'    => 'AuthorizeSecurityGroupEgress',
+            :idempotent => true,
+            :parser     => Fog::Parsers::Compute::AWS::Basic.new
+          }.merge!(options))
+        end
+      end
+
+      class Mock
+        def authorize_security_group_egress(group_name, options = {})
+          options = Fog::AWS.parse_security_group_options(group_name, options)
+          if options.key?('GroupName')
+            group_name = options['GroupName']
+          else
+            group_name = self.data[:security_groups].reject { |k,v| v['groupId'] != options['GroupId'] } .keys.first
+          end
+
+          response = Excon::Response.new
+          group = self.data[:security_groups][group_name] || raise(Fog::Compute::AWS::NotFound.new("The security group '#{group_name}' does not exist"))
+
+          verify_permission_options(options, group['vpcId'] != nil)
+
+          normalized_permissions = normalize_permissions(options)
+
+          normalized_permissions.each do |permission|
+            if matching_group_permission = find_matching_permission_egress(group, permission)
+              if permission['groups'].any? {|pg| matching_group_permission['groups'].include?(pg) }
+                raise Fog::Compute::AWS::Error, "InvalidPermission.Duplicate => The permission '123' has already been authorized in the specified group"
+              end
+
+              if permission['ipRanges'].any? {|pr| matching_group_permission['ipRanges'].include?(pr) }
+                raise Fog::Compute::AWS::Error, "InvalidPermission.Duplicate => The permission '123' has already been authorized in the specified group"
+              end
+            end
+          end
+
+          normalized_permissions.each do |permission|
+            if matching_group_permission = find_matching_permission_egress(group, permission)
+              matching_group_permission['groups'] += permission['groups']
+              matching_group_permission['ipRanges'] += permission['ipRanges']
+            else
+              group['ipPermissionsEgress'] << permission
+            end
+          end
+
+          response.status = 200
+          response.body = {
+            'requestId' => Fog::AWS::Mock.request_id,
+            'return'    => true
+          }
+          response
+        end
+
+        def find_matching_permission_egress(group, permission)
+          group['ipPermissionsEgress'].find do |group_permission|
+            permission['ipProtocol'] == group_permission['ipProtocol'] &&
+              permission['fromPort'] == group_permission['fromPort'] &&
+              permission['toPort'] == group_permission['toPort']
+          end
+        end
+      end
+    end
+  end
+end

data/lib/fog/aws/requests/compute/revoke_security_group_egress.rb

@@ -0,0 +1,98 @@
+module Fog
+  module Compute
+    class AWS
+      class Real
+        require 'fog/aws/parsers/compute/basic'
+
+        # Remove permissions from a security group
+        #
+        # ==== Parameters
+        # * group_name<~String> - Name of group, optional (can also be specifed as GroupName in options)
+        # * options<~Hash>:
+        #   * 'GroupName'<~String> - Name of security group to modify
+        #   * 'GroupId'<~String> - Id of security group to modify
+        #   * 'SourceSecurityGroupName'<~String> - Name of security group to authorize
+        #   * 'SourceSecurityGroupOwnerId'<~String> - Name of owner to authorize
+        #   or
+        #   * 'CidrIp'<~String> - CIDR range
+        #   * 'FromPort'<~Integer> - Start of port range (or -1 for ICMP wildcard)
+        #   * 'IpProtocol'<~String> - Ip protocol, must be in ['tcp', 'udp', 'icmp']
+        #   * 'ToPort'<~Integer> - End of port range (or -1 for ICMP wildcard)
+        #   or
+        #   * 'IpPermissions'<~Array>:
+        #     * permission<~Hash>:
+        #       * 'FromPort'<~Integer> - Start of port range (or -1 for ICMP wildcard)
+        #       * 'Groups'<~Array>:
+        #         * group<~Hash>:
+        #           * 'GroupName'<~String> - Name of security group to authorize
+        #           * 'UserId'<~String> - Name of owner to authorize
+        #       * 'IpProtocol'<~String> - Ip protocol, must be in ['tcp', 'udp', 'icmp']
+        #       * 'IpRanges'<~Array>:
+        #         * ip_range<~Hash>:
+        #           * 'CidrIp'<~String> - CIDR range
+        #       * 'ToPort'<~Integer> - End of port range (or -1 for ICMP wildcard)
+        #
+        # === Returns
+        # * response<~Excon::Response>:
+        #   * body<~Hash>:
+        #     * 'requestId'<~String> - Id of request
+        #     * 'return'<~Boolean> - success?
+        #
+        # {Amazon API Reference}[http://docs.amazonwebservices.com/AWSEC2/latest/APIReference/ApiReference-query-RevokeSecurityGroupEgress.html]
+        def revoke_security_group_egress(group_name, options = {})
+          options = Fog::AWS.parse_security_group_options(group_name, options)
+
+          if ip_permissions = options.delete('IpPermissions')
+            options.merge!(indexed_ip_permissions_params(ip_permissions))
+          end
+
+          request({
+            'Action'    => 'RevokeSecurityGroupEgress',
+            :idempotent => true,
+            :parser     => Fog::Parsers::Compute::AWS::Basic.new
+          }.merge!(options))
+        end
+      end
+
+      class Mock
+        def revoke_security_group_egress(group_name, options = {})
+          options = Fog::AWS.parse_security_group_options(group_name, options)
+          if options.key?('GroupName')
+            group_name = options['GroupName']
+          else
+            group_name = self.data[:security_groups].reject { |k,v| v['groupId'] != options['GroupId'] } .keys.first
+          end
+
+          response = Excon::Response.new
+          group = self.data[:security_groups][group_name]
+
+          if group
+            verify_permission_options(options, group['vpcId'] != nil)
+
+            normalized_permissions = normalize_permissions(options)
+
+            normalized_permissions.each do |permission|
+              if matching_permission = find_matching_permission_egress(group, permission)
+                matching_permission['ipRanges'] -= permission['ipRanges']
+                matching_permission['groups'] -= permission['groups']
+
+                if matching_permission['ipRanges'].empty? && matching_permission['groups'].empty?
+                  group['ipPermissionsEgress'].delete(matching_permission)
+                end
+              end
+            end
+
+            response.status = 200
+            response.body = {
+              'requestId' => Fog::AWS::Mock.request_id,
+              'return'    => true
+            }
+            response
+          else
+            raise Fog::Compute::AWS::NotFound.new("The security group '#{group_name}' does not exist")
+          end
+        end
+      end
+    end
+  end
+end