fog-google 1.8.2 → 1.9.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.fog.example +1 -3
- data/CHANGELOG.md +29 -0
- data/CONTRIBUTING.md +0 -1
- data/README.md +14 -0
- data/ci/README.md +6 -7
- data/ci/credentials.yml.template +0 -2
- data/ci/pipeline.yml +0 -9
- data/ci/tasks/run-int.sh +0 -2
- data/ci/tasks/run-int.yml +1 -1
- data/lib/fog/compute/google.rb +0 -1
- data/lib/fog/dns/google.rb +1 -1
- data/lib/fog/google/monitoring.rb +2 -1
- data/lib/fog/google/pubsub.rb +1 -1
- data/lib/fog/google/shared.rb +108 -53
- data/lib/fog/google/sql.rb +1 -1
- data/lib/fog/google/version.rb +1 -1
- data/lib/fog/storage/google_json.rb +1 -1
- data/test/integration/test_authentication.rb +0 -7
- data/test/unit/storage/test_json_requests.rb +0 -1
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 870ce94387132895473e52fcee3adc9cbce052c5
|
|
4
|
+
data.tar.gz: aa4f7954f7c441b6bcb4f4d32c49e8ab8ff78ac5
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 6426e7e238fe7592575516799ea209c4019d2807519efb91830a694fda2ccf733432e9c28b6ae91f3311b28dd80a97015663d1a9fa0552bc67f15095c4f2fd86
|
|
7
|
+
data.tar.gz: f19bbc71aa3bba9bb6e859cb82767e64c501a5638e962a159fa6a6baa3bed9a25bd3ed69de084773dece607021eb139777fcdf30cbe0d2d137c712de888849f3
|
data/.fog.example
CHANGED
|
@@ -15,10 +15,8 @@
|
|
|
15
15
|
# START GOOGLE CONFIG
|
|
16
16
|
my_google_credentials:
|
|
17
17
|
google_project: my-project-id
|
|
18
|
-
google_client_email: xxxxxxxxxxx-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx@developer.gserviceaccount.com
|
|
19
18
|
google_json_key_location: /path/to/my-project-xxxxxxxxxxxx.json
|
|
20
|
-
# You can also provide service account credentials with `google_json_key_string`
|
|
21
|
-
# with `google_key_location` and `google_key_string` for P12 private keys.
|
|
19
|
+
# You can also provide service account credentials with `google_json_key_string`
|
|
22
20
|
# If so, uncomment the two following lines.
|
|
23
21
|
# HMAC credentials follow a similar format:
|
|
24
22
|
#google_storage_access_key_id: GOOGXXXXXXXXXXXXXXXX
|
data/CHANGELOG.md
CHANGED
|
@@ -6,6 +6,35 @@ This project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html
|
|
|
6
6
|
|
|
7
7
|
## Next
|
|
8
8
|
|
|
9
|
+
## 1.9.0
|
|
10
|
+
|
|
11
|
+
### User-facing
|
|
12
|
+
|
|
13
|
+
#### Added
|
|
14
|
+
|
|
15
|
+
- \#442 Add support for Application Default credentials [mavin]
|
|
16
|
+
- This change allows the use of Application Default Credentials so that end
|
|
17
|
+
users can authenticate without a service account for development, testing,
|
|
18
|
+
and one-off interactions by using `:google_application_default`client
|
|
19
|
+
option. See README for more details.
|
|
20
|
+
|
|
21
|
+
### Fixed
|
|
22
|
+
|
|
23
|
+
- \#444 Remove deprecated `google_client_email` option from client parameters
|
|
24
|
+
[temikus]
|
|
25
|
+
- \#446 Updating service parameters to avoid "unrecognised parameter" warnings
|
|
26
|
+
when initializing Fog client with application default auth [temikus]
|
|
27
|
+
|
|
28
|
+
### Development changes
|
|
29
|
+
|
|
30
|
+
#### Fixed
|
|
31
|
+
|
|
32
|
+
- \#441 Update CI pipeline to Concourse V4 [temikus]
|
|
33
|
+
- \#444 Rework client authentication workflow [temikus]
|
|
34
|
+
- Separate different auth streams into private helper methods
|
|
35
|
+
- Add a fallback auth option - Google Application Default credentials
|
|
36
|
+
- Minor fixes and performance optimizations
|
|
37
|
+
|
|
9
38
|
## 1.8.2
|
|
10
39
|
|
|
11
40
|
### User-facing
|
data/CONTRIBUTING.md
CHANGED
|
@@ -94,7 +94,6 @@ make sure you have a `:test` credential in `~/.fog`, something like:
|
|
|
94
94
|
```
|
|
95
95
|
test:
|
|
96
96
|
google_project: my-project
|
|
97
|
-
google_client_email: xxxxxxxxxxxxx-xxxxxxxxxxxxx@developer.gserviceaccount.com
|
|
98
97
|
google_json_key_location: /path/to/my-project-xxxxxxxxxxxxx.json
|
|
99
98
|
```
|
|
100
99
|
|
data/README.md
CHANGED
|
@@ -94,6 +94,20 @@ cat .fog.example >> ~/.fog # appends the sample configuration
|
|
|
94
94
|
vim ~/.fog # edit file with yout config
|
|
95
95
|
```
|
|
96
96
|
|
|
97
|
+
As of `1.9.0` fog-google supports Google [application default credentials (ADC)](https://cloud.google.com/docs/authentication/production)
|
|
98
|
+
The auth method uses [Google::Auth.get_application_default](https://www.rubydoc.info/gems/googleauth/0.6.7/Google%2FAuth.get_application_default)
|
|
99
|
+
under the hood.
|
|
100
|
+
|
|
101
|
+
Example workflow for a GCE instance with [service account scopes](https://cloud.google.com/compute/docs/access/create-enable-service-accounts-for-instances)
|
|
102
|
+
defined:
|
|
103
|
+
|
|
104
|
+
```
|
|
105
|
+
> connection = Fog::Compute::Google.new(:google_project => "my-project", :google_application_default => true)
|
|
106
|
+
=> #<Fog::Compute::Google::Real:32157700...
|
|
107
|
+
> connection.servers
|
|
108
|
+
=> [ <Fog::Compute::Google::Server ... ]
|
|
109
|
+
```
|
|
110
|
+
|
|
97
111
|
#### SSH-ing into instances
|
|
98
112
|
|
|
99
113
|
If you want to be able to bootstrap SSH-able instances, (using `servers.bootstrap`,) be sure you have a key in `~/.ssh/id_rsa` and `~/.ssh/id_rsa.pub`
|
data/ci/README.md
CHANGED
|
@@ -9,8 +9,6 @@ PR when the test completes.
|
|
|
9
9
|
|
|
10
10
|
In order to run the fog-google Concourse Pipeline you must have an existing
|
|
11
11
|
[Concourse](http://concourse.ci) environment.
|
|
12
|
-
See [Deploying Concourse on Google Compute Engine](https://github.com/cloudfoundry-incubator/bosh-google-cpi-release/blob/master/docs/concourse/README.md)
|
|
13
|
-
for instructions.
|
|
14
12
|
|
|
15
13
|
To deploy the pipeline:
|
|
16
14
|
|
|
@@ -28,13 +26,13 @@ file. See [Credentials Requirements](#credentials-requirements) for specific ins
|
|
|
28
26
|
* Set the fog-google pipeline:
|
|
29
27
|
|
|
30
28
|
```
|
|
31
|
-
fly -t fog-ci set-pipeline -p
|
|
29
|
+
fly -t fog-ci set-pipeline -p pr-integration -c pipeline.yml -l credentials.yml
|
|
32
30
|
```
|
|
33
31
|
|
|
34
32
|
* Unpause the fog-google pipeline:
|
|
35
33
|
|
|
36
34
|
```
|
|
37
|
-
fly -t fog-ci unpause-pipeline -p
|
|
35
|
+
fly -t fog-ci unpause-pipeline -p pr-integration
|
|
38
36
|
```
|
|
39
37
|
|
|
40
38
|
## Credentials Requirements
|
|
@@ -42,18 +40,19 @@ fly -t fog-ci unpause-pipeline -p fog-google
|
|
|
42
40
|
Several external pieces of authentication are needed for credentials.yml
|
|
43
41
|
|
|
44
42
|
1. A JSON Service Account File for a service account with at least Editor access to the project.
|
|
45
|
-
* To get a Service Account File, see [here](https://developers.google.com/identity/protocols/OAuth2ServiceAccount#creatinganaccount)
|
|
43
|
+
* To get a Service Account File, see [here](https://developers.google.com/identity/protocols/OAuth2ServiceAccount#creatinganaccount)
|
|
46
44
|
and create using the Project/Editor role.
|
|
47
45
|
|
|
48
46
|
1. A [Github Access Token](https://github.com/blog/1509-personal-api-tokens) with at least
|
|
49
47
|
`repo:status` access and a private key with push access to the `fog/fog-google` repositoy.
|
|
50
48
|
|
|
49
|
+
1. A [Codecov.io](https://codecov.io/) token for tracking test coverage.
|
|
50
|
+
|
|
51
51
|
These items are equivalent to your login credentials for their resources.
|
|
52
52
|
|
|
53
53
|
## Login Gotchas
|
|
54
54
|
|
|
55
|
-
*
|
|
56
|
-
trust the provided certificate.
|
|
55
|
+
* Our concourse pipeline is using GitHub auth, providing access to manipulate the pipeline to the members of the [fog-google team](https://github.com/orgs/fog/teams/fog-google), managed through the OAuth application managed by [fog-google bot](https://github.com/fog-google-bot).
|
|
57
56
|
|
|
58
57
|
* If logging into a specific team, ie `fog-google`, use `--team-name fog-google` to specify that.
|
|
59
58
|
|
data/ci/credentials.yml.template
CHANGED
data/ci/pipeline.yml
CHANGED
|
@@ -16,7 +16,6 @@ jobs:
|
|
|
16
16
|
codecov_token: {{codecov_token}}
|
|
17
17
|
google_project: {{google_project}}
|
|
18
18
|
google_json_key_data: {{google_json_key_data}}
|
|
19
|
-
google_client_email: {{google_client_email}}
|
|
20
19
|
on_failure:
|
|
21
20
|
put: pull-request
|
|
22
21
|
params:
|
|
@@ -40,7 +39,6 @@ jobs:
|
|
|
40
39
|
codecov_token: {{codecov_token}}
|
|
41
40
|
google_project: {{google_project}}
|
|
42
41
|
google_json_key_data: {{google_json_key_data}}
|
|
43
|
-
google_client_email: {{google_client_email}}
|
|
44
42
|
on_failure:
|
|
45
43
|
put: pull-request
|
|
46
44
|
params:
|
|
@@ -64,7 +62,6 @@ jobs:
|
|
|
64
62
|
codecov_token: {{codecov_token}}
|
|
65
63
|
google_project: {{google_project}}
|
|
66
64
|
google_json_key_data: {{google_json_key_data}}
|
|
67
|
-
google_client_email: {{google_client_email}}
|
|
68
65
|
on_failure:
|
|
69
66
|
put: pull-request
|
|
70
67
|
params:
|
|
@@ -88,7 +85,6 @@ jobs:
|
|
|
88
85
|
codecov_token: {{codecov_token}}
|
|
89
86
|
google_project: {{google_project}}
|
|
90
87
|
google_json_key_data: {{google_json_key_data}}
|
|
91
|
-
google_client_email: {{google_client_email}}
|
|
92
88
|
on_failure:
|
|
93
89
|
put: pull-request
|
|
94
90
|
params:
|
|
@@ -112,7 +108,6 @@ jobs:
|
|
|
112
108
|
codecov_token: {{codecov_token}}
|
|
113
109
|
google_project: {{google_project}}
|
|
114
110
|
google_json_key_data: {{google_json_key_data}}
|
|
115
|
-
google_client_email: {{google_client_email}}
|
|
116
111
|
on_failure:
|
|
117
112
|
put: pull-request
|
|
118
113
|
params:
|
|
@@ -136,7 +131,6 @@ jobs:
|
|
|
136
131
|
codecov_token: {{codecov_token}}
|
|
137
132
|
google_project: {{google_project}}
|
|
138
133
|
google_json_key_data: {{google_json_key_data}}
|
|
139
|
-
google_client_email: {{google_client_email}}
|
|
140
134
|
on_failure:
|
|
141
135
|
put: pull-request
|
|
142
136
|
params:
|
|
@@ -160,7 +154,6 @@ jobs:
|
|
|
160
154
|
codecov_token: {{codecov_token}}
|
|
161
155
|
google_project: {{google_project}}
|
|
162
156
|
google_json_key_data: {{google_json_key_data}}
|
|
163
|
-
google_client_email: {{google_client_email}}
|
|
164
157
|
on_failure:
|
|
165
158
|
put: pull-request
|
|
166
159
|
params:
|
|
@@ -184,7 +177,6 @@ jobs:
|
|
|
184
177
|
codecov_token: {{codecov_token}}
|
|
185
178
|
google_project: {{google_project}}
|
|
186
179
|
google_json_key_data: {{google_json_key_data}}
|
|
187
|
-
google_client_email: {{google_client_email}}
|
|
188
180
|
on_failure:
|
|
189
181
|
put: pull-request
|
|
190
182
|
params:
|
|
@@ -208,7 +200,6 @@ jobs:
|
|
|
208
200
|
codecov_token: {{codecov_token}}
|
|
209
201
|
google_project: {{google_project}}
|
|
210
202
|
google_json_key_data: {{google_json_key_data}}
|
|
211
|
-
google_client_email: {{google_client_email}}
|
|
212
203
|
on_failure:
|
|
213
204
|
put: pull-request
|
|
214
205
|
params:
|
data/ci/tasks/run-int.sh
CHANGED
|
@@ -13,7 +13,6 @@ source ci/tasks/utils.sh
|
|
|
13
13
|
popd > /dev/null
|
|
14
14
|
|
|
15
15
|
check_param google_project
|
|
16
|
-
check_param google_client_email
|
|
17
16
|
check_param google_json_key_data
|
|
18
17
|
check_param rake_task
|
|
19
18
|
check_param codecov_token
|
|
@@ -23,7 +22,6 @@ echo $google_json_key_data > `pwd`/service_account_key.json
|
|
|
23
22
|
cat >~/.fog <<EOL
|
|
24
23
|
test:
|
|
25
24
|
google_project: ${google_project}
|
|
26
|
-
google_client_email: ${google_client_email}
|
|
27
25
|
google_json_key_location: `pwd`/service_account_key.json
|
|
28
26
|
EOL
|
|
29
27
|
|
data/ci/tasks/run-int.yml
CHANGED
data/lib/fog/compute/google.rb
CHANGED
data/lib/fog/dns/google.rb
CHANGED
data/lib/fog/google/pubsub.rb
CHANGED
data/lib/fog/google/shared.rb
CHANGED
|
@@ -20,16 +20,13 @@ module Fog
|
|
|
20
20
|
# Initializes the Google API Client
|
|
21
21
|
#
|
|
22
22
|
# @param [Hash] options Google API options
|
|
23
|
+
# @option options [Bool] :google_application_default Explicitly use application default credentials
|
|
23
24
|
# @option options [Google::Auth|Signet] :google_auth Manually created authorization to use
|
|
24
|
-
# @option options [String] :google_client_email A @developer.gserviceaccount.com email address to use
|
|
25
|
-
# @option options [String] :google_key_location The location of a pkcs12 key file
|
|
26
|
-
# @option options [String] :google_key_string The content of the pkcs12 key file
|
|
27
25
|
# @option options [String] :google_json_key_location The location of a JSON key file
|
|
28
26
|
# @option options [String] :google_json_key_string The content of the JSON key file
|
|
29
27
|
# @option options [String] :google_api_scope_url The access scope URLs
|
|
30
28
|
# @option options [String] :app_name The app name to set in the user agent
|
|
31
29
|
# @option options [String] :app_version The app version to set in the user agent
|
|
32
|
-
# @option options [Google::APIClient] :google_client Existing Google API Client
|
|
33
30
|
# @option options [Hash] :google_client_options A hash to send additional options to Google API Client
|
|
34
31
|
# @return [Google::APIClient] Google API Client
|
|
35
32
|
# @raises [ArgumentError] If there is any missing argument
|
|
@@ -50,25 +47,7 @@ module Fog
|
|
|
50
47
|
raise error
|
|
51
48
|
end
|
|
52
49
|
|
|
53
|
-
|
|
54
|
-
# in https://github.com/google/google-api-ruby-client/ version 0.9.
|
|
55
|
-
if options[:google_client]
|
|
56
|
-
raise ArgumentError.new("Deprecated argument no longer works: google_client")
|
|
57
|
-
end
|
|
58
|
-
|
|
59
|
-
# They can also no longer use pkcs12 files, because Google's new auth
|
|
60
|
-
# library doesn't support them either.
|
|
61
|
-
if options[:google_key_location]
|
|
62
|
-
raise ArgumentError.new("Deprecated argument no longer works: google_key_location")
|
|
63
|
-
end
|
|
64
|
-
if options[:google_key_string]
|
|
65
|
-
raise ArgumentError.new("Deprecated argument no longer works: google_key_string")
|
|
66
|
-
end
|
|
67
|
-
|
|
68
|
-
# Validate required arguments
|
|
69
|
-
unless options[:google_api_scope_url]
|
|
70
|
-
raise ArgumentError.new("Missing required arguments: google_api_scope_url")
|
|
71
|
-
end
|
|
50
|
+
validate_client_options(options)
|
|
72
51
|
|
|
73
52
|
application_name = "fog"
|
|
74
53
|
unless options[:app_name].nil?
|
|
@@ -78,41 +57,21 @@ module Fog
|
|
|
78
57
|
::Google::Apis::ClientOptions.default.application_name = application_name
|
|
79
58
|
::Google::Apis::ClientOptions.default.application_version = Fog::Google::VERSION
|
|
80
59
|
|
|
81
|
-
|
|
82
|
-
|
|
83
|
-
|
|
84
|
-
|
|
85
|
-
json_key = File.open(json_key_location, "r", &:read)
|
|
86
|
-
else
|
|
87
|
-
json_key = options[:google_json_key_string]
|
|
88
|
-
end
|
|
89
|
-
|
|
90
|
-
json_key_hash = Fog::JSON.decode(json_key)
|
|
91
|
-
unless json_key_hash.key?("client_email") || json_key_hash.key?("private_key")
|
|
92
|
-
raise ArgumentError.new("Invalid Google JSON key")
|
|
93
|
-
end
|
|
94
|
-
|
|
95
|
-
options[:google_client_email] = json_key_hash["client_email"]
|
|
96
|
-
unless options[:google_client_email]
|
|
97
|
-
raise ArgumentError.new("Missing required arguments: google_client_email")
|
|
98
|
-
end
|
|
60
|
+
if ENV["DEBUG"]
|
|
61
|
+
::Google::Apis.logger = ::Logger.new(::STDERR)
|
|
62
|
+
::Google::Apis.logger.level = ::Logger::DEBUG
|
|
63
|
+
end
|
|
99
64
|
|
|
100
|
-
|
|
101
|
-
::Google::Apis.logger = ::Logger.new(::STDERR)
|
|
102
|
-
::Google::Apis.logger.level = ::Logger::DEBUG
|
|
103
|
-
end
|
|
65
|
+
auth = nil
|
|
104
66
|
|
|
105
|
-
|
|
106
|
-
|
|
107
|
-
:scope => options[:google_api_scope_url]
|
|
108
|
-
)
|
|
67
|
+
if options[:google_json_key_location] || options[:google_json_key_string]
|
|
68
|
+
auth = process_key_auth(options)
|
|
109
69
|
elsif options[:google_auth]
|
|
110
70
|
auth = options[:google_auth]
|
|
71
|
+
elsif options[:google_application_default]
|
|
72
|
+
auth = process_application_default_auth(options)
|
|
111
73
|
else
|
|
112
|
-
|
|
113
|
-
"Missing required arguments: google_json_key_location, "\
|
|
114
|
-
"google_json_key_string or google_auth"
|
|
115
|
-
)
|
|
74
|
+
auth = process_fallback_auth(options)
|
|
116
75
|
end
|
|
117
76
|
|
|
118
77
|
::Google::Apis::RequestOptions.default.authorization = auth
|
|
@@ -188,6 +147,102 @@ module Fog
|
|
|
188
147
|
|
|
189
148
|
response
|
|
190
149
|
end
|
|
150
|
+
|
|
151
|
+
private
|
|
152
|
+
|
|
153
|
+
# Helper method to process application default authentication
|
|
154
|
+
#
|
|
155
|
+
# @param [Hash] options - client options hash
|
|
156
|
+
# @return [Google::Auth::DefaultCredentials] - google auth object
|
|
157
|
+
def process_application_default_auth(options)
|
|
158
|
+
::Google::Auth.get_application_default(options[:google_api_scope_url])
|
|
159
|
+
end
|
|
160
|
+
|
|
161
|
+
# Helper method to process fallback authentication
|
|
162
|
+
# Current fallback is application default authentication
|
|
163
|
+
#
|
|
164
|
+
# @param [Hash] options - client options hash
|
|
165
|
+
# @return [Google::Auth::DefaultCredentials] - google auth object
|
|
166
|
+
def process_fallback_auth(options)
|
|
167
|
+
Fog::Logger.warning(
|
|
168
|
+
"Didn't detect any client auth settings, " \
|
|
169
|
+
"trying to fall back to application default credentials..."
|
|
170
|
+
)
|
|
171
|
+
begin
|
|
172
|
+
return process_application_default_auth(options)
|
|
173
|
+
rescue
|
|
174
|
+
raise Fog::Errors::Error.new(
|
|
175
|
+
"Fallback auth failed, could not configure authentication for Fog client.\n" \
|
|
176
|
+
"Check your auth options, must be one of:\n" \
|
|
177
|
+
"- :google_json_key_location,\n" \
|
|
178
|
+
"- :google_json_key_string,\n" \
|
|
179
|
+
"- :google_auth,\n" \
|
|
180
|
+
"- :google_application_default,\n" \
|
|
181
|
+
"If credentials are valid - please, file a bug to fog-google." \
|
|
182
|
+
)
|
|
183
|
+
end
|
|
184
|
+
end
|
|
185
|
+
|
|
186
|
+
# Helper method to process key authentication
|
|
187
|
+
#
|
|
188
|
+
# @param [Hash] options - client options hash
|
|
189
|
+
# @return [Google::Auth::ServiceAccountCredentials] - google auth object
|
|
190
|
+
def process_key_auth(options)
|
|
191
|
+
if options[:google_json_key_location]
|
|
192
|
+
json_key = File.read(File.expand_path(options[:google_json_key_location]))
|
|
193
|
+
elsif options[:google_json_key_string]
|
|
194
|
+
json_key = options[:google_json_key_string]
|
|
195
|
+
end
|
|
196
|
+
|
|
197
|
+
validate_json_credentials(json_key)
|
|
198
|
+
|
|
199
|
+
::Google::Auth::ServiceAccountCredentials.make_creds(
|
|
200
|
+
:json_key_io => StringIO.new(json_key),
|
|
201
|
+
:scope => options[:google_api_scope_url]
|
|
202
|
+
)
|
|
203
|
+
end
|
|
204
|
+
|
|
205
|
+
# Helper method to sort out deprecated and missing auth options
|
|
206
|
+
#
|
|
207
|
+
# @param [Hash] options - client options hash
|
|
208
|
+
def validate_client_options(options)
|
|
209
|
+
# Users can no longer provide their own clients due to rewrite of auth
|
|
210
|
+
# in https://github.com/google/google-api-ruby-client/ version 0.9.
|
|
211
|
+
if options[:google_client]
|
|
212
|
+
raise ArgumentError.new("Deprecated argument no longer works: google_client")
|
|
213
|
+
end
|
|
214
|
+
|
|
215
|
+
# They can also no longer use pkcs12 files, because Google's new auth
|
|
216
|
+
# library doesn't support them either.
|
|
217
|
+
if options[:google_key_location]
|
|
218
|
+
raise ArgumentError.new("Deprecated auth method no longer works: google_key_location")
|
|
219
|
+
end
|
|
220
|
+
if options[:google_key_string]
|
|
221
|
+
raise ArgumentError.new("Deprecated auth method no longer works: google_key_string")
|
|
222
|
+
end
|
|
223
|
+
|
|
224
|
+
# Google client email option is no longer needed
|
|
225
|
+
if options[:google_client_email]
|
|
226
|
+
Fog::Logger.deprecation("Argument no longer needed for auth: google_client_email")
|
|
227
|
+
end
|
|
228
|
+
|
|
229
|
+
# Validate required arguments
|
|
230
|
+
unless options[:google_api_scope_url]
|
|
231
|
+
raise ArgumentError.new("Missing required arguments: google_api_scope_url")
|
|
232
|
+
end
|
|
233
|
+
end
|
|
234
|
+
|
|
235
|
+
# Helper method to checks whether the necessary fields are present in
|
|
236
|
+
# JSON key credentials
|
|
237
|
+
#
|
|
238
|
+
# @param [String] json_key - Google json auth key string
|
|
239
|
+
def validate_json_credentials(json_key)
|
|
240
|
+
json_key_hash = Fog::JSON.decode(json_key)
|
|
241
|
+
|
|
242
|
+
unless json_key_hash.key?("client_email") || json_key_hash.key?("private_key")
|
|
243
|
+
raise ArgumentError.new("Invalid Google JSON key")
|
|
244
|
+
end
|
|
245
|
+
end
|
|
191
246
|
end
|
|
192
247
|
end
|
|
193
248
|
end
|
data/lib/fog/google/sql.rb
CHANGED
data/lib/fog/google/version.rb
CHANGED
|
@@ -27,13 +27,6 @@ class TestAuthentication < FogIntegrationTest
|
|
|
27
27
|
assert_raises(ArgumentError) { Fog::Compute::Google.new(:google_project => nil) }
|
|
28
28
|
end
|
|
29
29
|
|
|
30
|
-
def test_raises_argument_error_when_google_client_email_is_missing
|
|
31
|
-
assert_raises(ArgumentError) do
|
|
32
|
-
Fog::Compute::Google.new(:google_client_email => nil,
|
|
33
|
-
:google_json_key_location => nil)
|
|
34
|
-
end # JSON key overrides google_client_email
|
|
35
|
-
end
|
|
36
|
-
|
|
37
30
|
def test_raises_argument_error_when_google_keys_are_given
|
|
38
31
|
assert_raises(ArgumentError) do
|
|
39
32
|
Fog::Compute::Google.new(:google_key_location => nil,
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: fog-google
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.9.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Nat Welch
|
|
@@ -9,7 +9,7 @@ authors:
|
|
|
9
9
|
autorequire:
|
|
10
10
|
bindir: bin
|
|
11
11
|
cert_chain: []
|
|
12
|
-
date: 2019-
|
|
12
|
+
date: 2019-03-22 00:00:00.000000000 Z
|
|
13
13
|
dependencies:
|
|
14
14
|
- !ruby/object:Gem::Dependency
|
|
15
15
|
name: fog-core
|
|
@@ -758,7 +758,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
758
758
|
version: '0'
|
|
759
759
|
requirements: []
|
|
760
760
|
rubyforge_project:
|
|
761
|
-
rubygems_version: 2.6.14
|
|
761
|
+
rubygems_version: 2.6.14.3
|
|
762
762
|
signing_key:
|
|
763
763
|
specification_version: 4
|
|
764
764
|
summary: Module for the 'fog' gem to support Google.
|