foreman_remote_execution 2.0.4 → 2.0.5
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.rubocop.yml +8 -24
- data/README.md +8 -0
- data/app/views/job_invocations/_form.html.erb +1 -1
- data/extra/cockpit/foreman-cockpit-session +25 -31
- data/lib/foreman_remote_execution/engine.rb +12 -12
- data/lib/foreman_remote_execution/version.rb +1 -1
- data/locale/action_names.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 4aba9a7fccd6e4e3833bd7b102ea464e7266947d2b661ed23665588b969ce848
|
|
4
|
+
data.tar.gz: 037e1902f40fa780a090aca7f0141be58e0a10805afef0ca0ae5ebc3f7675e2a
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: a79d209933c9b81a4f0276e20602241147e442f4060d62afd0eab6ccc1d22a65c5b8e95025abfcb0be013ac5d7857f4ccc3cddbea2abf7b67bc2174d6a572406
|
|
7
|
+
data.tar.gz: 19e249a6a63c909a36fb89e7f614d0db5224d4c14b6dbff92fc078a5259eba9f9cf8d6d9e852f81bb73e32cd9a773dff5b95c48b21223406a6040e4474639802
|
data/.rubocop.yml
CHANGED
|
@@ -3,22 +3,25 @@ inherit_from:
|
|
|
3
3
|
|
|
4
4
|
AllCops:
|
|
5
5
|
Exclude:
|
|
6
|
+
- 'config/routes.rb'
|
|
7
|
+
- 'node_modules/**'
|
|
8
|
+
- 'test/**/*'
|
|
6
9
|
- 'doc/plugins/**'
|
|
7
10
|
|
|
8
11
|
Rails:
|
|
9
12
|
Enabled: true
|
|
10
13
|
Exclude:
|
|
11
14
|
- 'lib/foreman_remote_execution_core/**'
|
|
15
|
+
- 'node_modules/**'
|
|
12
16
|
|
|
13
17
|
Rails/Date:
|
|
14
18
|
Enabled: false
|
|
15
19
|
|
|
16
|
-
|
|
17
|
-
Style/Documentation:
|
|
20
|
+
Metrics:
|
|
18
21
|
Enabled: false
|
|
19
22
|
|
|
20
|
-
|
|
21
|
-
|
|
23
|
+
Style/Documentation:
|
|
24
|
+
Enabled: false
|
|
22
25
|
|
|
23
26
|
Style/TrailingCommaInArrayLiteral:
|
|
24
27
|
Enabled: false
|
|
@@ -35,14 +38,10 @@ Naming/AccessorMethodName:
|
|
|
35
38
|
Style/RedundantSelf:
|
|
36
39
|
Enabled: false
|
|
37
40
|
|
|
38
|
-
Metrics/ClassLength:
|
|
39
|
-
Max: 500
|
|
40
|
-
Exclude:
|
|
41
|
-
- 'test/**/*'
|
|
42
|
-
|
|
43
41
|
Naming/FileName:
|
|
44
42
|
Exclude:
|
|
45
43
|
- 'db/seeds.d/*'
|
|
44
|
+
- 'node_modules/font-awesome-sass/lib/font-awesome-sass.rb'
|
|
46
45
|
|
|
47
46
|
Style/WordArray:
|
|
48
47
|
Enabled: false
|
|
@@ -62,15 +61,6 @@ Style/EachWithObject:
|
|
|
62
61
|
Style/GuardClause:
|
|
63
62
|
Enabled: false
|
|
64
63
|
|
|
65
|
-
Metrics/BlockLength:
|
|
66
|
-
Exclude:
|
|
67
|
-
- 'config/routes.rb'
|
|
68
|
-
- 'lib/foreman_remote_execution/engine.rb'
|
|
69
|
-
- 'test/**/*'
|
|
70
|
-
|
|
71
|
-
Metrics/ParameterLists:
|
|
72
|
-
Enabled: false
|
|
73
|
-
|
|
74
64
|
Naming/VariableNumber:
|
|
75
65
|
Enabled: false
|
|
76
66
|
|
|
@@ -102,12 +92,6 @@ Style/SafeNavigation:
|
|
|
102
92
|
Lint/BooleanSymbol:
|
|
103
93
|
Enabled: false
|
|
104
94
|
|
|
105
|
-
Metrics/PerceivedComplexity:
|
|
106
|
-
Max: 8
|
|
107
|
-
|
|
108
|
-
Metrics/AbcSize:
|
|
109
|
-
Max: 45
|
|
110
|
-
|
|
111
95
|
Style/FrozenStringLiteralComment:
|
|
112
96
|
Enabled: false
|
|
113
97
|
|
data/README.md
CHANGED
|
@@ -44,6 +44,14 @@ Because it doesn't really open the outgoing connections, it doesn't need hosts w
|
|
|
44
44
|
|
|
45
45
|
Fork and send a Pull Request. Thanks!
|
|
46
46
|
|
|
47
|
+
To run Rubocop use the rake task in foreman dir:
|
|
48
|
+
|
|
49
|
+
bundle exec rake foreman_remote_execution:rubocop
|
|
50
|
+
|
|
51
|
+
Auto correct can be executed directly too:
|
|
52
|
+
|
|
53
|
+
bundle exec rubocop ~/work/foreman_remote_execution -a
|
|
54
|
+
|
|
47
55
|
## Release Process
|
|
48
56
|
|
|
49
57
|
### Pull Translations from Transifex
|
|
@@ -33,7 +33,7 @@
|
|
|
33
33
|
<% end %>
|
|
34
34
|
</span>
|
|
35
35
|
<%= selectable_f targeting_fields, :bookmark_id, @composer.available_bookmarks.map { |b| [b.name, b.id] }, :selected => @composer.targeting.bookmark_id, :include_blank => true %>
|
|
36
|
-
<%=
|
|
36
|
+
<%= autocomplete_f targeting_fields, :search_query, :search_query => @composer.displayed_search_query, :full_path => auto_complete_search_hosts_path %>
|
|
37
37
|
|
|
38
38
|
<div class="form-group ">
|
|
39
39
|
<label class="col-md-2 control-label"><%= _('Resolves to') %></label>
|
|
@@ -8,7 +8,7 @@ require "yaml"
|
|
|
8
8
|
# Logging
|
|
9
9
|
|
|
10
10
|
LOG = Logger.new($stderr)
|
|
11
|
-
LOG.formatter = proc { |
|
|
11
|
+
LOG.formatter = proc { |severity, datetime, progname, msg| "#{severity}: #{msg}\n" }
|
|
12
12
|
|
|
13
13
|
def safe_log(format_string, data = nil)
|
|
14
14
|
if data.is_a? Hash
|
|
@@ -26,7 +26,7 @@ end
|
|
|
26
26
|
|
|
27
27
|
def read_settings
|
|
28
28
|
settings_path = ENV["FOREMAN_COCKPIT_SETTINGS"] || "/etc/foreman-cockpit/settings.yml"
|
|
29
|
-
settings = YAML.
|
|
29
|
+
settings = YAML.safe_load(File.read(settings_path))
|
|
30
30
|
LOG.level = Logger.const_get(settings.fetch(:log_level, "INFO"))
|
|
31
31
|
LOG.info("Running foreman-cockpit-session with settings from #{settings_path}:\n#{settings.inspect}")
|
|
32
32
|
settings
|
|
@@ -46,7 +46,7 @@ def read_control
|
|
|
46
46
|
raise ArgumentError, "Invalid frame: invalid size" if size.zero?
|
|
47
47
|
data = $stdin.read(size)
|
|
48
48
|
LOG.debug("Received control message #{data.lstrip}")
|
|
49
|
-
raise ArgumentError, "Invalid frame: too short" if data
|
|
49
|
+
raise ArgumentError, "Invalid frame: too short" if data.nil? || data.length < size
|
|
50
50
|
JSON.parse(data)
|
|
51
51
|
end
|
|
52
52
|
|
|
@@ -55,18 +55,16 @@ end
|
|
|
55
55
|
def send_auth_challenge(challenge)
|
|
56
56
|
send_control({ "command" => "authorize",
|
|
57
57
|
"cookie" => "1234", # must be present, but value doesn't matter
|
|
58
|
-
"challenge" => challenge
|
|
59
|
-
})
|
|
58
|
+
"challenge" => challenge})
|
|
60
59
|
end
|
|
61
60
|
|
|
62
61
|
def send_auth_response(response)
|
|
63
62
|
send_control({ "command" => "authorize",
|
|
64
|
-
"response" => response
|
|
65
|
-
})
|
|
63
|
+
"response" => response})
|
|
66
64
|
end
|
|
67
65
|
|
|
68
66
|
def read_auth_reply
|
|
69
|
-
cmd = read_control
|
|
67
|
+
cmd = read_control
|
|
70
68
|
response = cmd["response"]
|
|
71
69
|
raise ArgumentError, "Did not receive a valid authorize command" if cmd["command"] != "authorize" || !response
|
|
72
70
|
response
|
|
@@ -77,8 +75,7 @@ def exit_with_problem(problem, message, auth_methods)
|
|
|
77
75
|
send_control({ "command" => "init",
|
|
78
76
|
"problem" => problem,
|
|
79
77
|
"message" => message,
|
|
80
|
-
"auth-method-results" => auth_methods
|
|
81
|
-
})
|
|
78
|
+
"auth-method-results" => auth_methods})
|
|
82
79
|
exit 1
|
|
83
80
|
end
|
|
84
81
|
|
|
@@ -137,7 +134,7 @@ def ssh_read_and_handle_response_header(sock, url, params)
|
|
|
137
134
|
header = ""
|
|
138
135
|
loop do
|
|
139
136
|
line = sock.readline
|
|
140
|
-
break unless line
|
|
137
|
+
break unless line && (line != "\r\n")
|
|
141
138
|
header += line
|
|
142
139
|
end
|
|
143
140
|
|
|
@@ -145,11 +142,11 @@ def ssh_read_and_handle_response_header(sock, url, params)
|
|
|
145
142
|
status = status_line.split(" ")[1]
|
|
146
143
|
if status != "101"
|
|
147
144
|
m = /^Content-Length:[ \t]*([0-9]+)\r?$/i.match(headers_text)
|
|
148
|
-
if m
|
|
149
|
-
|
|
150
|
-
|
|
151
|
-
|
|
152
|
-
|
|
145
|
+
expected_len = if m
|
|
146
|
+
m[1].to_i
|
|
147
|
+
else
|
|
148
|
+
-1
|
|
149
|
+
end
|
|
153
150
|
response = ""
|
|
154
151
|
while expected_len < 0 || response.length < expected_len
|
|
155
152
|
begin
|
|
@@ -162,7 +159,7 @@ def ssh_read_and_handle_response_header(sock, url, params)
|
|
|
162
159
|
exit_with_problem("access-denied", "The proxy #{url.hostname} does not support web console sessions", nil)
|
|
163
160
|
elsif status[0] == "4"
|
|
164
161
|
if response.include? "cockpit-bridge: command not found"
|
|
165
|
-
exit_with_problem("access-denied", "#{params[
|
|
162
|
+
exit_with_problem("access-denied", "#{params['hostname']} has no web console", nil)
|
|
166
163
|
else
|
|
167
164
|
exit_with_problem("access-denied", response, nil)
|
|
168
165
|
end
|
|
@@ -191,16 +188,14 @@ def ssh_read_sock(sock)
|
|
|
191
188
|
end
|
|
192
189
|
|
|
193
190
|
def ssh_write_sock(sock, data)
|
|
194
|
-
begin
|
|
195
191
|
sock.write_nonblock(data)
|
|
196
|
-
|
|
192
|
+
rescue IO::WaitWritable
|
|
197
193
|
0
|
|
198
|
-
|
|
194
|
+
rescue IO::WaitReadable
|
|
199
195
|
# This might happen with SSL during a renegotiation. Block a
|
|
200
196
|
# bit to get it over with.
|
|
201
197
|
IO.select([sock])
|
|
202
198
|
retry
|
|
203
|
-
end
|
|
204
199
|
end
|
|
205
200
|
|
|
206
201
|
def ssh_with_proxy(proxy, params)
|
|
@@ -208,7 +203,7 @@ def ssh_with_proxy(proxy, params)
|
|
|
208
203
|
LOG.debug("Connecting to proxy at #{url}")
|
|
209
204
|
raw_sock = TCPSocket.open(url.hostname, url.port)
|
|
210
205
|
if url.scheme == 'https'
|
|
211
|
-
ssl_context = OpenSSL::SSL::SSLContext.new
|
|
206
|
+
ssl_context = OpenSSL::SSL::SSLContext.new
|
|
212
207
|
ssl_context.cert = OpenSSL::X509::Certificate.new(File.read(SETTINGS[:ssl_certificate]))
|
|
213
208
|
ssl_context.key = OpenSSL::PKey.read(File.read(SETTINGS[:ssl_private_key]))
|
|
214
209
|
sock = OpenSSL::SSL::SSLSocket.new(raw_sock, ssl_context)
|
|
@@ -253,7 +248,7 @@ def ssh_with_proxy(proxy, params)
|
|
|
253
248
|
begin
|
|
254
249
|
n = ssh_write_sock(sock, inp_buf)
|
|
255
250
|
inp_buf = inp_buf[n..-1]
|
|
256
|
-
raw_sock.close_write
|
|
251
|
+
raw_sock.close_write if (inp_buf == "") && ws_eof
|
|
257
252
|
end
|
|
258
253
|
end
|
|
259
254
|
|
|
@@ -262,16 +257,15 @@ def ssh_with_proxy(proxy, params)
|
|
|
262
257
|
inp_buf += $stdin.readpartial(4096)
|
|
263
258
|
rescue EOFError
|
|
264
259
|
ws_eof = true
|
|
265
|
-
raw_sock.close_write
|
|
260
|
+
raw_sock.close_write if inp_buf == ""
|
|
266
261
|
end
|
|
267
262
|
end
|
|
268
263
|
|
|
269
|
-
|
|
270
|
-
|
|
271
|
-
|
|
272
|
-
|
|
273
|
-
|
|
274
|
-
end
|
|
264
|
+
next unless w.include?($stdout)
|
|
265
|
+
n = $stdout.write(out_buf)
|
|
266
|
+
$stdout.flush
|
|
267
|
+
out_buf = out_buf[n..-1]
|
|
268
|
+
break if (out_buf == "") && bridge_eof
|
|
275
269
|
|
|
276
270
|
end
|
|
277
271
|
end
|
|
@@ -283,7 +277,7 @@ SETTINGS = read_settings
|
|
|
283
277
|
host = ARGV[0]
|
|
284
278
|
|
|
285
279
|
send_auth_challenge("*")
|
|
286
|
-
token = get_token_from_auth_data(read_auth_reply
|
|
280
|
+
token = get_token_from_auth_data(read_auth_reply)
|
|
287
281
|
|
|
288
282
|
params = foreman_call("cockpit/host_ssh_params/#{host}", token)
|
|
289
283
|
exit_with_problem("access-denied", "Host #{host} is not known", nil) unless params
|
|
@@ -157,32 +157,32 @@ module ForemanRemoteExecution
|
|
|
157
157
|
# ProvisioningTemplate.reflect_on_association :template_inputs # => nil
|
|
158
158
|
require_dependency 'job_template'
|
|
159
159
|
(Template.descendants + [Template]).each { |klass| klass.send(:include, ForemanRemoteExecution::TemplateExtensions) }
|
|
160
|
-
Template.
|
|
160
|
+
Template.prepend ForemanRemoteExecution::TemplateOverrides
|
|
161
161
|
|
|
162
162
|
(Taxonomy.descendants + [Taxonomy]).each { |klass| klass.send(:include, ForemanRemoteExecution::TaxonomyExtensions) }
|
|
163
163
|
|
|
164
|
-
User.
|
|
164
|
+
User.include ForemanRemoteExecution::UserExtensions
|
|
165
165
|
|
|
166
|
-
Host::Managed.
|
|
167
|
-
Host::Managed.
|
|
166
|
+
Host::Managed.prepend ForemanRemoteExecution::HostExtensions
|
|
167
|
+
Host::Managed.include ForemanTasks::Concerns::HostActionSubject
|
|
168
168
|
|
|
169
169
|
(Nic::Base.descendants + [Nic::Base]).each do |klass|
|
|
170
170
|
klass.send(:include, ForemanRemoteExecution::NicExtensions)
|
|
171
171
|
end
|
|
172
172
|
|
|
173
|
-
Bookmark.
|
|
174
|
-
HostsHelper.
|
|
175
|
-
ProvisioningTemplatesHelper.
|
|
176
|
-
TemplateInput.
|
|
173
|
+
Bookmark.include ForemanRemoteExecution::BookmarkExtensions
|
|
174
|
+
HostsHelper.prepend ForemanRemoteExecution::HostsHelperExtensions
|
|
175
|
+
ProvisioningTemplatesHelper.prepend ForemanRemoteExecution::JobTemplatesExtensions
|
|
176
|
+
TemplateInput.include ForemanRemoteExecution::TemplateInputExtensions
|
|
177
177
|
|
|
178
|
-
SmartProxy.
|
|
179
|
-
Subnet.
|
|
178
|
+
SmartProxy.prepend ForemanRemoteExecution::SmartProxyExtensions
|
|
179
|
+
Subnet.include ForemanRemoteExecution::SubnetExtensions
|
|
180
180
|
|
|
181
181
|
# We need to explicitly force to load the Task model due to Rails loader
|
|
182
182
|
# having issues with resolving it to Rake::Task otherwise
|
|
183
183
|
require_dependency 'foreman_tasks/task'
|
|
184
|
-
ForemanTasks::Task.
|
|
185
|
-
ForemanTasks::Cleaner.
|
|
184
|
+
ForemanTasks::Task.include ForemanRemoteExecution::ForemanTasksTaskExtensions
|
|
185
|
+
ForemanTasks::Cleaner.include ForemanRemoteExecution::ForemanTasksCleanerExtensions
|
|
186
186
|
RemoteExecutionProvider.register(:SSH, SSHExecutionProvider)
|
|
187
187
|
|
|
188
188
|
ForemanRemoteExecution.register_rex_feature
|
data/locale/action_names.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: foreman_remote_execution
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 2.0.
|
|
4
|
+
version: 2.0.5
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Foreman Remote Execution team
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2019-
|
|
11
|
+
date: 2019-12-10 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: deface
|