gratan 0.2.6 → 0.2.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 1b39e23930b84b24557337302e39d8a4e3fb8051
-  data.tar.gz: a1986c201ce5314e900edb5ba24a30a13891d0a1
+  metadata.gz: d7351dc27969d2d348085464822282e02791aaaf
+  data.tar.gz: 35721b2caab84b866744e7a0dc91f80db3812c7a
 SHA512:
-  metadata.gz: d1879bf7c0fb932e9bded29a28373616da2877b1b9550016002ec0192f8ebad95c200ef47bb87fab405d8fa63f7ccaf4eda87886e9165663bda67140f4f0540f
-  data.tar.gz: d6be4767694238c350c35bd0da8be087dedc6bab5aba1711d22afd8c3a7ab62179826d337438621eb0daaaed6d453610e148d6c7ef08108c5534ead183b55675
+  metadata.gz: 3e7aa3056a461b53bcbb3ffbf59edf097327b91e66f05a80051b174339f43ec31cfadf30ac93d6d04400dad37caa2045d11fb3d60d592254fdb2a1ee53293b22
+  data.tar.gz: 3219b8636ed500ca60e34c8bf85b65ac97a41037eb536e2ae37a09c06cba3ddb7bcff102bcf738c2df505d12e94ed8bce26c7637dba5310f492032bae70767b8

data/README.md

@@ -53,6 +53,7 @@ Usage: gratan [options]
     -o, --output FILE
         --ignore-user REGEXP
         --target-user REGEXP
+        --ignore-object REGEXP
         --enable-expired
         --ignore-not-exist
         --no-color

data/bin/gratan

@@ -42,6 +42,7 @@ ARGV.options do |opt|
     opt.on('-o', '--output FILE')          {|v| output_file                = v             }
     opt.on(''  , '--ignore-user REGEXP')   {|v| options[:ignore_user]      = Regexp.new(v) }
     opt.on(''  , '--target-user REGEXP')   {|v| options[:target_user]      = Regexp.new(v) }
+    opt.on(''  , '--ignore-object REGEXP') {|v| options[:ignore_object]    = Regexp.new(v) }
     opt.on(''  , '--enable-expired')       {    options[:enable_expired]   = true          }
     opt.on(''  , '--ignore-not-exist')     {|v| options[:ignore_not_exist] = true          }
     opt.on(''  , '--no-color')             {    options[:color]            = false         }

data/lib/gratan/driver.rb

@@ -38,9 +38,13 @@ class Gratan::Driver
 
   def expand_object(object_or_regexp)
     if object_or_regexp.kind_of?(Regexp)
-      show_all_tables.select {|i| i =~ object_or_regexp }
+      objects = show_all_tables.select {|i| i =~ object_or_regexp }
     else
-      [object_or_regexp]
+      objects = [object_or_regexp]
+    end
+
+    objects.select do |object|
+      object !~ @options[:ignore_object]
     end
   end
 

data/lib/gratan/dsl/converter.rb

@@ -38,7 +38,7 @@ end
   end
 
   def output_objects(objects)
-    objects.map {|object, grant|
+    objects.sort_by {|k, v| k }.map {|object, grant|
       options = output_object_options(grant)
 
       <<-EOS
@@ -61,7 +61,7 @@ end
   end
 
   def output_grant(grant)
-    grant[:privs].map {|priv|
+    grant[:privs].sort.map {|priv|
       <<-EOS
     grant #{priv.inspect}
       EOS

data/lib/gratan/exporter.rb

@@ -36,6 +36,7 @@ class Gratan::Exporter
       host = grant.delete(:host)
       user_host = [user, host]
       object = grant.delete(:object)
+      next if object =~ @options[:ignore_object]
       identified = grant.delete(:identified)
       required = grant.delete(:require)
 

data/lib/gratan/version.rb

@@ -1,3 +1,3 @@
 module Gratan
-  VERSION = '0.2.6'
+  VERSION = '0.2.7'
 end

data/spec/change/change_grants_with_ignore_object_spec.rb

@@ -0,0 +1,131 @@
+describe 'Gratan::Client#apply' do
+  before(:each) do
+    apply {
+      <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+  end
+
+  on 'test.*' do
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+  end
+end
+
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+      RUBY
+    }
+  end
+
+  context 'when grant privs with ignore_object' do
+    subject { client(ignore_object: /user/) }
+
+    it do
+      apply(subject) {
+        <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+    grant 'UPDATE (host)' # ignore
+  end
+end
+
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+        RUBY
+      }
+
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON `test`.* TO 'bob'@'localhost'",
+        "GRANT SELECT (user) ON `mysql`.`user` TO 'scott'@'localhost'",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40' REQUIRE SSL",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+        "GRANT USAGE ON *.* TO 'bob'@'localhost'",
+      ]
+    end
+  end
+
+  context 'when grant privs with ignore_object (2)' do
+    subject { client(ignore_object: /user2/) }
+
+    it do
+      apply(subject) {
+        <<-RUBY
+user 'scott', 'localhost', identified: 'tiger', required: 'SSL' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+
+  on 'mysql.user' do
+    grant 'SELECT (user)'
+    grant 'UPDATE (host)'
+  end
+end
+
+user 'bob', 'localhost' do
+  on '*.*' do
+    grant 'USAGE'
+  end
+
+  on 'test.*' do
+    grant 'ALL PRIVILEGES'
+  end
+end
+        RUBY
+      }
+
+      expect(show_grants).to match_array [
+        "GRANT ALL PRIVILEGES ON `test`.* TO 'bob'@'localhost'",
+        "GRANT SELECT (user), UPDATE (host) ON `mysql`.`user` TO 'scott'@'localhost'",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40' REQUIRE SSL",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+        "GRANT USAGE ON *.* TO 'bob'@'localhost'",
+      ]
+    end
+  end
+end

data/spec/create/create_user_with_ignore_object_spec.rb

@@ -0,0 +1,76 @@
+describe 'Gratan::Client#apply' do
+  context 'when user does not exist' do
+    subject { client }
+
+    it do
+      result = apply(subject) { '' }
+      expect(result).to be_falsey
+      expect(show_grants).to match_array []
+    end
+  end
+
+  context 'when create user with ignore_object' do
+    subject { client(ignore_object: /test/) }
+
+    it do
+      result = apply(subject) {
+        <<-RUBY
+user 'scott', 'localhost', identified: 'tiger' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+end
+        RUBY
+      }
+
+      expect(result).to be_truthy
+
+      expect(show_grants).to match_array [
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40'",
+      ]
+    end
+  end
+
+  context 'when create user with ignore_object (2)' do
+    subject { client(ignore_object: /test2/) }
+
+    it do
+      result = apply(subject) {
+        <<-RUBY
+user 'scott', 'localhost', identified: 'tiger' do
+  on '*.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+
+  on 'test.*' do
+    grant 'SELECT'
+    grant 'INSERT'
+    grant 'UPDATE'
+    grant 'DELETE'
+  end
+end
+        RUBY
+      }
+
+      expect(result).to be_truthy
+
+      expect(show_grants).to match_array [
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON *.* TO 'scott'@'localhost' IDENTIFIED BY PASSWORD '*F2F68D0BB27A773C1D944270E5FAFED515A3FA40'",
+        "GRANT SELECT, INSERT, UPDATE, DELETE ON `test`.* TO 'scott'@'localhost'",
+      ]
+    end
+  end
+end

data/spec/export/export_chunk_spec.rb

@@ -47,14 +47,14 @@ user "scott", ["%", "localhost"] do
     grant "SELECT"
   end
 
-  on "test3.*" do
-    grant "UPDATE"
-    grant "DELETE"
-  end
-
   on "test2.*" do
     grant "INSERT"
   end
+
+  on "test3.*" do
+    grant "DELETE"
+    grant "UPDATE"
+  end
 end
       RUBY
     end

data/spec/export/export_with_ignore_object_spec.rb

@@ -0,0 +1,109 @@
+describe 'Gratan::Client#export' do
+  context 'when with ignore_object' do
+    let(:grantfile) {
+      <<-RUBY
+user "scott", "%" do
+  on "*.*" do
+    grant "USAGE"
+  end
+
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+
+user "bob", "localhost" do
+  on "*.*" do
+    grant "USAGE"
+  end
+
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+      RUBY
+    }
+
+    subject { client(ignore_object: /test/) }
+
+    before do
+      apply(subject) do
+        grantfile
+      end
+    end
+
+    it do
+      expect(subject.export.strip).to eq <<-RUBY.strip
+user "scott", "%" do
+  on "*.*" do
+    grant "USAGE"
+  end
+end
+
+user "bob", "localhost" do
+  on "*.*" do
+    grant "USAGE"
+  end
+end
+      RUBY
+    end
+  end
+
+  context 'when with ignore_object (2)' do
+    let(:grantfile) {
+      <<-RUBY
+user "scott", "%" do
+  on "*.*" do
+    grant "USAGE"
+  end
+
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+
+user "bob", "localhost" do
+  on "*.*" do
+    grant "USAGE"
+  end
+
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+      RUBY
+    }
+
+    subject { client(ignore_object: /bob/) }
+
+    before do
+      apply(subject) do
+        grantfile
+      end
+    end
+
+    it do
+      expect(subject.export.strip).to eq <<-RUBY.strip
+user "scott", "%" do
+  on "*.*" do
+    grant "USAGE"
+  end
+
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+
+user "bob", "localhost" do
+  on "*.*" do
+    grant "USAGE"
+  end
+
+  on "test.*" do
+    grant "SELECT"
+  end
+end
+      RUBY
+    end
+  end
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: gratan
 version: !ruby/object:Gem::Version
-  version: 0.2.6
+  version: 0.2.7
 platform: ruby
 authors:
 - Genki Sugawara
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-10-23 00:00:00.000000000 Z
+date: 2014-11-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: mysql2
@@ -166,17 +166,20 @@ files:
 - spec/change/change_grants_regexp_spec.rb
 - spec/change/change_grants_spec.rb
 - spec/change/change_grants_target_spec.rb
+- spec/change/change_grants_with_ignore_object_spec.rb
 - spec/create/create_user_2_spec.rb
 - spec/create/create_user_3_spec.rb
 - spec/create/create_user_multi_hosts_spec.rb
 - spec/create/create_user_regexp_spec.rb
 - spec/create/create_user_spec.rb
 - spec/create/create_user_target_spec.rb
+- spec/create/create_user_with_ignore_object_spec.rb
 - spec/drop/drop_user_2_spec.rb
 - spec/drop/drop_user_spec.rb
 - spec/drop/expire_user_spec.rb
 - spec/export/export_chunk_spec.rb
 - spec/export/export_spec.rb
+- spec/export/export_with_ignore_object_spec.rb
 - spec/misc/misc_spec.rb
 - spec/misc/require_spec.rb
 - spec/spec_helper.rb
@@ -200,7 +203,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.0.14
+rubygems_version: 2.4.1
 signing_key: 
 specification_version: 4
 summary: Gratan is a tool to manage MySQL permissions using Ruby DSL.
@@ -214,17 +217,20 @@ test_files:
 - spec/change/change_grants_regexp_spec.rb
 - spec/change/change_grants_spec.rb
 - spec/change/change_grants_target_spec.rb
+- spec/change/change_grants_with_ignore_object_spec.rb
 - spec/create/create_user_2_spec.rb
 - spec/create/create_user_3_spec.rb
 - spec/create/create_user_multi_hosts_spec.rb
 - spec/create/create_user_regexp_spec.rb
 - spec/create/create_user_spec.rb
 - spec/create/create_user_target_spec.rb
+- spec/create/create_user_with_ignore_object_spec.rb
 - spec/drop/drop_user_2_spec.rb
 - spec/drop/drop_user_spec.rb
 - spec/drop/expire_user_spec.rb
 - spec/export/export_chunk_spec.rb
 - spec/export/export_spec.rb
+- spec/export/export_with_ignore_object_spec.rb
 - spec/misc/misc_spec.rb
 - spec/misc/require_spec.rb
 - spec/spec_helper.rb