RubyGems - gratan - Versions diffs - 0.1.0 - Mend

gratan 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (43) hide show

checksums.yaml +7 -0
data/.gitignore +17 -0
data/.rspec +2 -0
data/.travis.yml +6 -0
data/Gemfile +4 -0
data/LICENSE.txt +22 -0
data/README.md +86 -0
data/Rakefile +5 -0
data/bin/gratan +132 -0
data/gratan.gemspec +28 -0
data/lib/gratan/client.rb +211 -0
data/lib/gratan/driver.rb +166 -0
data/lib/gratan/dsl/context/on.rb +19 -0
data/lib/gratan/dsl/context/user.rb +25 -0
data/lib/gratan/dsl/context.rb +57 -0
data/lib/gratan/dsl/converter.rb +74 -0
data/lib/gratan/dsl/validator.rb +13 -0
data/lib/gratan/dsl.rb +9 -0
data/lib/gratan/exporter.rb +49 -0
data/lib/gratan/ext/string_ext.rb +25 -0
data/lib/gratan/grant_parser.rb +68 -0
data/lib/gratan/identifier/auto.rb +28 -0
data/lib/gratan/identifier/csv.rb +25 -0
data/lib/gratan/identifier/null.rb +5 -0
data/lib/gratan/identifier.rb +2 -0
data/lib/gratan/logger.rb +28 -0
data/lib/gratan/version.rb +3 -0
data/lib/gratan.rb +24 -0
data/spec/change/change_grants_2_spec.rb +154 -0
data/spec/change/change_grants_3_spec.rb +164 -0
data/spec/change/change_grants_4_spec.rb +37 -0
data/spec/change/change_grants_spec.rb +209 -0
data/spec/create/create_user_2_spec.rb +139 -0
data/spec/create/create_user_3_spec.rb +115 -0
data/spec/create/create_user_spec.rb +194 -0
data/spec/drop/drop_user_2_spec.rb +77 -0
data/spec/drop/drop_user_spec.rb +67 -0
data/spec/drop/expire_user_spec.rb +179 -0
data/spec/export/export_spec.rb +119 -0
data/spec/misc/misc_spec.rb +74 -0
data/spec/misc/require_spec.rb +77 -0
data/spec/spec_helper.rb +118 -0
metadata +198 -0

data/spec/create/create_user_spec.rb ADDED Viewed

@@ -0,0 +1,194 @@
+describe 'Gratan::Client#apply' do
+  context 'when user does not exist' do
+    subject { client }
+    it do
+      result = apply(subject) { '' }
+      expect(result).to be_falsey
+      expect(show_grants).to match_array []
+    end
+  end
+  context 'when create user' do
+    subject { client }
+    it do
+      result = apply(subject) {
+        <<-RUBY
+user 'scott', 'localhost', identified: 'tiger' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+end
+        RUBY
+      }
+      expect(result).to be_truthy
+      expect(show_grants).to match_array [
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40'",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+      ]
+    end
+  end
+  context 'when add user' do
+    before do
+      apply {
+        <<-RUBY
+user 'bob', '%', required: 'SSL' do
+  on '*.*' do
+    grant 'ALL PRIVILEGES'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+  end
+end
+        RUBY
+      }
+    end
+    subject { client }
+    it do
+      apply(subject) {
+        <<-RUBY
+user 'bob', '%', required: 'SSL' do
+  on '*.*' do
+    grant 'ALL PRIVILEGES'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+  end
+end
+user 'scott', 'localhost', identified: 'tiger' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+end
+        RUBY
+      }
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON *.* TO 'bob'@'%' REQUIRE SSL",
+        "GRANT SELECT ON `test`.* TO 'bob'@'%'",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40'",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+      ]
+    end
+  end
+  context 'when create user with grant option' do
+    subject { client }
+    it do
+      apply(subject) {
+        <<-RUBY
+user 'scott', 'localhost', identified: 'tiger' do
+  on '*.*', with: 'grant option' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+end
+        RUBY
+      }
+      expect(show_grants).to match_array [
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40' WITH GRANT OPTION",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+      ]
+    end
+  end
+  context 'when duplicata user' do
+    subject { client }
+    it do
+      dsl = <<-RUBY
+user 'scott', 'localhost', required: 'SSL' do
+  on '*.*' do
+    grant 'ALL PRIVILEGES'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+  end
+end
+user 'scott', 'localhost', identified: 'tiger' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+end
+      RUBY
+      expect {
+        apply(subject) { dsl }
+      }.to raise_error('User `scott@localhost` is already defined')
+    end
+  end
+  context 'when duplicata object' do
+    subject { client }
+    it do
+      dsl = <<-RUBY
+user 'scott', 'localhost', required: 'SSL' do
+  on '*.*' do
+    grant 'ALL PRIVILEGES'
+  end
+  on '*.*' do
+    grant 'SELECT'
+  end
+end
+      RUBY
+      expect {
+        apply(subject) { dsl }
+      }.to raise_error('User `scott@localhost`: Object `*.*` is already defined')
+    end
+  end
+end

data/spec/drop/drop_user_2_spec.rb ADDED Viewed

@@ -0,0 +1,77 @@
+describe 'Gratan::Client#apply' do
+  before(:each) do
+    apply {
+      <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+  end
+  on 'test.*' do
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+  end
+end
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+      RUBY
+    }
+  end
+  context 'when drop user' do
+    subject { client(dry_run: true) }
+    it do
+      apply(subject) {
+      <<-RUBY
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+        RUBY
+      }
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON `test`.* TO 'bob'@'localhost'",
+        "GRANT SELECT (user) ON `mysql`.`user` TO 'scott'@'localhost'",
+        "GRANT SELECT, INSERT ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40' REQUIRE SSL",
+        "GRANT UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+        "GRANT USAGE ON *.* TO 'bob'@'localhost'",
+      ]
+    end
+  end
+  context 'when drop all users' do
+    subject { client(dry_run: true) }
+    it do
+      apply(subject) { '' }
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON `test`.* TO 'bob'@'localhost'",
+        "GRANT SELECT (user) ON `mysql`.`user` TO 'scott'@'localhost'",
+        "GRANT SELECT, INSERT ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40' REQUIRE SSL",
+        "GRANT UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+        "GRANT USAGE ON *.* TO 'bob'@'localhost'",
+      ]
+    end
+  end
+end

data/spec/drop/drop_user_spec.rb ADDED Viewed

@@ -0,0 +1,67 @@
+describe 'Gratan::Client#apply' do
+  before(:each) do
+    apply {
+      <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+  end
+  on 'test.*' do
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+  end
+end
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+      RUBY
+    }
+  end
+  context 'when drop user' do
+    subject { client }
+    it do
+      apply(subject) {
+        <<-RUBY
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+        RUBY
+      }
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON `test`.* TO 'bob'@'localhost'",
+        "GRANT USAGE ON *.* TO 'bob'@'localhost'",
+      ]
+    end
+  end
+  context 'when drop all users' do
+    subject { client }
+    it do
+      apply(subject) { '' }
+      expect(show_grants).to match_array []
+    end
+  end
+end

data/spec/drop/expire_user_spec.rb ADDED Viewed

@@ -0,0 +1,179 @@
+describe 'Gratan::Client#apply' do
+  before(:each) do
+    apply {
+      <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+  end
+  on 'test.*' do
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+  end
+end
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+      RUBY
+    }
+  end
+  context 'when has expired' do
+    let(:logger) do
+      logger = Logger.new('/dev/null')
+      expect(logger).to receive(:warn).with('[WARN] User `scott@localhost` has expired')
+      logger
+    end
+    subject do
+      client(
+        enable_expired: true,
+        logger: logger
+      )
+    end
+    it do
+      dsl = <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL', expired: '2014/10/06' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+  end
+  on 'test.*' do
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+  end
+end
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+      RUBY
+      Timecop.freeze(Time.parse('2014/10/06')) do
+        apply(subject) { dsl }
+      end
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON `test`.* TO 'bob'@'localhost'",
+        "GRANT USAGE ON *.* TO 'bob'@'localhost'",
+      ]
+    end
+  end
+  context 'when has not expired' do
+    subject { client(enable_expired: true) }
+    it do
+      dsl = <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL', expired: '2014/10/06' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+  end
+  on 'test.*' do
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+  end
+end
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+      RUBY
+      Timecop.freeze(Time.parse('2014/10/05 23:59:59')) do
+        apply(subject) { dsl }
+      end
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON `test`.* TO 'bob'@'localhost'",
+        "GRANT SELECT (user) ON `mysql`.`user` TO 'scott'@'localhost'",
+        "GRANT SELECT, INSERT ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40' REQUIRE SSL",
+        "GRANT UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+        "GRANT USAGE ON *.* TO 'bob'@'localhost'",
+      ]
+    end
+  end
+  context 'when enable_expired is false' do
+    subject { client(enable_expired: false) }
+    it do
+      dsl = <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL', expired: '2014/10/06' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+  end
+  on 'test.*' do
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+  end
+end
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+      RUBY
+      Timecop.freeze(Time.parse('2014/10/10')) do
+        apply(subject) { dsl }
+      end
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON `test`.* TO 'bob'@'localhost'",
+        "GRANT SELECT (user) ON `mysql`.`user` TO 'scott'@'localhost'",
+        "GRANT SELECT, INSERT ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40' REQUIRE SSL",
+        "GRANT UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+        "GRANT USAGE ON *.* TO 'bob'@'localhost'",
+      ]
+    end
+  end
+end

data/spec/export/export_spec.rb ADDED Viewed

@@ -0,0 +1,119 @@
+describe 'Gratan::Client#export' do
+  context 'when user does not exist' do
+    subject { client }
+    it do
+      expect(subject.export.strip).to eq ''
+    end
+  end
+  context 'when user exists' do
+    let(:grantfile) {
+      <<-RUBY
+user "scott", "%" do
+  on "*.*" do
+    grant "USAGE"
+  end
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+user "scott", "localhost" do
+  on "*.*" do
+    grant "USAGE"
+  end
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+      RUBY
+    }
+    subject { client }
+    before do
+      apply(subject) do
+        grantfile
+      end
+    end
+    it do
+      expect(subject.export.strip).to eq grantfile.strip
+    end
+  end
+  context 'when ignore user exists' do
+    let(:grantfile) {
+      <<-RUBY
+user "scott", "%" do
+  on "*.*" do
+    grant "USAGE"
+  end
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+user "bob", "localhost" do
+  on "*.*" do
+    grant "USAGE"
+  end
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+      RUBY
+    }
+    subject { client(ignore_user: /\Abob\z/) }
+    before do
+      apply(subject) do
+        grantfile
+      end
+    end
+    it do
+      expect(subject.export.strip).to eq <<-RUBY.strip
+user "scott", "%" do
+  on "*.*" do
+    grant "USAGE"
+  end
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+      RUBY
+    end
+  end
+  context 'when with option exists' do
+    let(:grantfile) {
+      <<-RUBY
+user "scott", "%" do
+  on "*.*", :with=>"GRANT OPTION" do
+    grant "USAGE"
+  end
+end
+      RUBY
+    }
+    subject { client(ignore_user: /\Abob\z/) }
+    before do
+      apply(subject) do
+        grantfile
+      end
+    end
+    it do
+      expect(subject.export.strip).to eq grantfile.strip
+    end
+  end
+end

data/spec/misc/misc_spec.rb ADDED Viewed

@@ -0,0 +1,74 @@
+describe 'Gratan::Client#apply' do
+  context 'when colorize is true' do
+    subject { client }
+    it do
+      dsl = <<-RUBY
+user 'scott', 'localhost', identified: 'tiger' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+end
+      RUBY
+      begin
+        String.colorize = true
+        apply(subject) { dsl }
+      ensure
+        String.colorize = false
+      end
+      expect(show_grants).to match_array [
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40'",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+      ]
+    end
+  end
+  context 'when set debug' do
+    let(:logger) do
+      logger = Gratan::Logger.instance
+      logger.set_debug(true)
+      logger
+    end
+    subject { client(logger: logger) }
+    it do
+      apply(subject) {
+        <<-RUBY
+user 'scott', 'localhost', identified: 'tiger' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+end
+        RUBY
+      }
+      expect(show_grants).to match_array [
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40'",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+      ]
+    end
+  end
+end