httpd_configmap_generator 0.2.1 → 0.3.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 97e0604454a0d955b16cf177a9d4342cfb73e513
-  data.tar.gz: b69bcd86f4599c5198cbf5fde4c2a58f6d1c4df1
+SHA256:
+  metadata.gz: 74ce527f79c3ee674c52b811ae9075dc19eab97f5e5d7fe53e01a01ba95d41d1
+  data.tar.gz: e5fa88f3cb90605d125a188f16ab5f98d6ee517c6e42b4d77d573c630ae79a19
 SHA512:
-  metadata.gz: 0aff3baa827b66b0cc27958994f43be0015b543bd3e8e161ad169799aa4730276dd9b84a48820d90b865917bb8137eea2549a9b7748e97913e7a9df603b16a32
-  data.tar.gz: 38b9b7a162478059c6523a964b67a5fd50c222ac8df884d378b8a6b48dc0433f82ccdbcd493fc97b61fa781e19d6c9158e0efbabe4072977c04078e925419a10
+  metadata.gz: 7ce0ad42aad3f3b7ba09d1370e0a4efe05c888fa01b7c45bc78da1871802cb515b419c6deed83b8cd8d7a3b329c3d9cf3b9907395ee6f96dbf5c0be983ae2b6d
+  data.tar.gz: f6c95ce7d686c3330d06b12cbaf8d8320d769b244320e83973128c45ff55841f7030a7be03b31a039358ca822ed7ae8c85f26bfc8e541b1ea15c75ecd1cc4f2a

data/.codeclimate.yml

@@ -0,0 +1,16 @@
+prepare:
+  fetch:
+  - url: https://raw.githubusercontent.com/ManageIQ/manageiq-style/master/.rubocop_base.yml
+    path: ".rubocop_base.yml"
+  - url: https://raw.githubusercontent.com/ManageIQ/manageiq-style/master/.rubocop_cc_base.yml
+    path: ".rubocop_cc_base.yml"
+  - url: https://raw.githubusercontent.com/ManageIQ/manageiq-style/master/styles/base.yml
+    path: styles/base.yml
+  - url: https://raw.githubusercontent.com/ManageIQ/manageiq-style/master/styles/cc_base.yml
+    path: styles/cc_base.yml
+plugins:
+  rubocop:
+    enabled: true
+    config: ".rubocop_cc.yml"
+    channel: rubocop-0-82
+version: '2'

data/.gitignore

@@ -1,9 +1,7 @@
-Dockerfile.devel
 .rubocop-*
 /bundle/
 /.bundle/
 /.yardoc
-/Gemfile.lock
 /_yardoc/
 /coverage/
 /doc/

data/.rubocop.yml

@@ -0,0 +1,4 @@
+inherit_gem:
+  manageiq-style: ".rubocop_base.yml"
+inherit_from:
+- ".rubocop_local.yml"

data/.rubocop_cc.yml

@@ -0,0 +1,4 @@
+inherit_from:
+- ".rubocop_base.yml"
+- ".rubocop_cc_base.yml"
+- ".rubocop_local.yml"

data/.travis.yml

@@ -1,10 +1,17 @@
+---
 language: ruby
+dist: bionic
 rvm:
-- '2.3.1'
-- '2.4.2'
-sudo: false
+- 2.6.6
+- 2.7.2
 cache: bundler
-after_script: bundle exec codeclimate-test-reporter
+before_script:
+- curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64
+  > ./cc-test-reporter
+- chmod +x ./cc-test-reporter
+- "./cc-test-reporter before-build"
+after_script:
+- "./cc-test-reporter after-build --exit-code $TRAVIS_TEST_RESULT"
 notifications:
   webhooks:
     urls:

data/.yamllint

@@ -0,0 +1,11 @@
+---
+ignore: |
+  /vendor/**
+
+extends: relaxed
+
+rules:
+  indentation:
+    indent-sequences: false
+  line-length:
+    max: 120

data/Dockerfile

@@ -1,4 +1,4 @@
-FROM manageiq/httpd:latest
+FROM manageiq/httpd-init:latest
 MAINTAINER ManageIQ https://github.com/ManageIQ
 
 LABEL name="httpd-configmap-generator" \
@@ -11,6 +11,14 @@ ENV HTTPD_AUTH_TYPE=internal \
     HTTPD_AUTH_KERBEROS_REALMS=undefined \
     TERM=xterm
 
-RUN yum -y install openldap-clients pamtester
+RUN dnf -y --disableplugin=subscription-manager install \
+        https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm && \
+    dnf -y --disableplugin=subscription-manager install \
+        authselect-compat \
+        openldap-clients \
+        pamtester && \
+    dnf clean all && \
+    rm -rf /var/cache/dnf
 
-RUN gem install --no-ri --no-rdoc --no-document httpd_configmap_generator
+RUN bundle config --global without development:test
+RUN gem install --no-document httpd_configmap_generator

data/Gemfile.lock

@@ -0,0 +1,101 @@
+PATH
+  remote: .
+  specs:
+    httpd_configmap_generator (0.3.2)
+      activesupport (>= 5.0)
+      awesome_spawn (~> 1.4)
+      iniparse (~> 1.4)
+      more_core_extensions (~> 3.4)
+      optimist (~> 3.0)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    activesupport (6.1.4.1)
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      tzinfo (~> 2.0)
+      zeitwerk (~> 2.3)
+    ast (2.4.2)
+    awesome_spawn (1.5.0)
+    concurrent-ruby (1.1.9)
+    diff-lcs (1.4.4)
+    docile (1.4.0)
+    i18n (1.8.10)
+      concurrent-ruby (~> 1.0)
+    iniparse (1.5.0)
+    manageiq-style (1.3.1)
+      more_core_extensions
+      optimist
+      rubocop (~> 1.13)
+      rubocop-performance
+      rubocop-rails
+    minitest (5.14.4)
+    more_core_extensions (3.8.0)
+      activesupport
+    optimist (3.0.1)
+    parallel (1.21.0)
+    parser (3.0.2.0)
+      ast (~> 2.4.1)
+    rack (2.2.3)
+    rainbow (3.0.0)
+    rake (13.0.6)
+    regexp_parser (2.1.1)
+    rexml (3.2.5)
+    rspec (3.10.0)
+      rspec-core (~> 3.10.0)
+      rspec-expectations (~> 3.10.0)
+      rspec-mocks (~> 3.10.0)
+    rspec-core (3.10.1)
+      rspec-support (~> 3.10.0)
+    rspec-expectations (3.10.1)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.10.0)
+    rspec-mocks (3.10.2)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.10.0)
+    rspec-support (3.10.2)
+    rubocop (1.22.1)
+      parallel (~> 1.10)
+      parser (>= 3.0.0.0)
+      rainbow (>= 2.2.2, < 4.0)
+      regexp_parser (>= 1.8, < 3.0)
+      rexml
+      rubocop-ast (>= 1.12.0, < 2.0)
+      ruby-progressbar (~> 1.7)
+      unicode-display_width (>= 1.4.0, < 3.0)
+    rubocop-ast (1.12.0)
+      parser (>= 3.0.1.1)
+    rubocop-performance (1.11.5)
+      rubocop (>= 1.7.0, < 2.0)
+      rubocop-ast (>= 0.4.0)
+    rubocop-rails (2.12.2)
+      activesupport (>= 4.2.0)
+      rack (>= 1.1)
+      rubocop (>= 1.7.0, < 2.0)
+    ruby-progressbar (1.11.0)
+    simplecov (0.21.2)
+      docile (~> 1.1)
+      simplecov-html (~> 0.11)
+      simplecov_json_formatter (~> 0.1)
+    simplecov-html (0.12.3)
+    simplecov_json_formatter (0.1.3)
+    tzinfo (2.0.4)
+      concurrent-ruby (~> 1.0)
+    unicode-display_width (2.1.0)
+    zeitwerk (2.4.2)
+
+PLATFORMS
+  ruby
+  x86_64-darwin-19
+
+DEPENDENCIES
+  httpd_configmap_generator!
+  manageiq-style
+  rake
+  rspec (~> 3.0)
+  simplecov
+
+BUNDLED WITH
+   2.2.24

data/README-oidc.md

@@ -0,0 +1,39 @@
+# Httpd Configmap Generator - OpenID-Connect (OIDC)
+
+This documents how to run the httpd\_configmap\_generator tool to configure the container against an OpenID-Connect (OIDC) identity provider.
+
+## Usage for the `oidc` auth-type:
+
+```
+$ httpd_configmap_generator oidc --help
+Options:
+  -o, --output=<s>                Configuration map file to create
+  -u, --oidc-url=<s>              OpenID-Connect Provider URL
+  -i, --oidc-client-id=<s>        OpenID-Connect Provider Client ID
+  -s, --oidc-client-secret=<s>    OpenID-Connect Provider Client Secret
+  -f, --force                     Force configuration if configured already
+  -d, --debug                     Enable debugging
+  -h, --help                      Show this message
+
+```
+
+### Examples:
+
+Creates the extra data for the container:
+
+```
+$ httpd_configmap_generator oidc \
+    --force                                     \
+    --oidc-url=http://my-keycloak:8080/auth/realms/miq/.well-known/openid-configuration \
+    --oidc-client-id=my-keycloak-oidc-client \ 
+    --oidc-client-secret=99999999-9999-9999-a999-99999a999999 \
+    --debug                                     \
+    -o /tmp/external-oidc.yaml
+```
+
+The auth configmap file for oidc does not include any files. It only includes the following extra data:
+
+* auth-oidc-provider-metadata-url
+* auth-oidc-client-id
+* auth-oidc-client-secret
+

data/README.md

@@ -1,7 +1,7 @@
 # Httpd Configmap Generator
 
 [![Gem Version](https://badge.fury.io/rb/httpd_configmap_generator.svg)](http://badge.fury.io/rb/httpd_configmap_generator)
-[![Build Status](https://travis-ci.org/ManageIQ/httpd_configmap_generator.svg)](https://travis-ci.org/ManageIQ/httpd_configmap_generator)
+[![Build Status](https://travis-ci.org/ManageIQ/httpd_configmap_generator.svg?branch=master)](https://travis-ci.org/ManageIQ/httpd_configmap_generator)
 [![Code Climate](https://codeclimate.com/github/ManageIQ/httpd_configmap_generator.svg)](https://codeclimate.com/github/ManageIQ/httpd_configmap_generator)
 [![Test Coverage](https://codeclimate.com/github/ManageIQ/httpd_configmap_generator/badges/coverage.svg)](https://codeclimate.com/github/ManageIQ/httpd_configmap_generator/coverage)
 [![Dependency Status](https://gemnasium.com/ManageIQ/httpd_configmap_generator.svg)](https://gemnasium.com/ManageIQ/httpd_configmap_generator)
@@ -28,7 +28,7 @@ httpd_configmap_generator 0.1.1 - External Authentication Configuration script
 
 Usage: httpd_configmap_generator auth_type | update | export [--help | options]
 
-supported auth_type: active-directory, ipa, ldap, saml
+supported auth_type: active-directory, ipa, ldap, saml, oidc
 
 httpd_configmap_generator options are:
   -V, --version    Version of the httpd_configmap_generator command
@@ -43,12 +43,13 @@ $ httpd_configmap_generator ipa --help
 
 ## Supported Authentication Types
 
-|auth-type         | Identity Provider/Environment                    | for usage:                                            |
-|------------------|--------------------------------------------------|-------------------------------------------------------|
-| active-directory | Active Directory domain realm join               | [README-active-directory](README-active-directory.md) |
-| ipa              | IPA, IPA 2-factor authentication, IPA/AD Trust   | [README-ipa](README-ipa.md)                           |
-| ldap             | Ldap directories                                 | [README-ldap](README-ldap.md)                         |
-| saml             | Keycloak, etc.                                   | [README-saml](README-saml.md)                         |
+|auth-type                          | Identity Provider/Environment                    | for usage:                                            |
+|-----------------------------------|--------------------------------------------------|-------------------------------------------------------|
+| active-directory                  | Active Directory domain realm join               | [README-active-directory](README-active-directory.md) |
+| ipa                               | IPA, IPA 2-factor authentication, IPA/AD Trust   | [README-ipa](README-ipa.md)                           |
+| ldap                              | Ldap directories                                 | [README-ldap](README-ldap.md)                         |
+| saml                              | Keycloak, etc.                                   | [README-saml](README-saml.md)                         |
+| OpenID-Connect (oidc)             | Keycloak, etc.                                   | [README-oidc](README-oidc.md)                         |
 
 ___
 
@@ -260,8 +261,6 @@ ___
 
 ### Pre-deployment tasks
 
-#### If running without OCI systemd hooks (Minishift)
-
 The httpd-configmap-generator service account must be added to the httpd-scc-sysadmin SCC before the Httpd Configmap Generator can run.
 
 ##### As Admin
@@ -285,22 +284,6 @@ $ oc describe scc httpd-scc-sysadmin | grep Users
 Users:        system:serviceaccount:<your-namespace>:httpd-configmap-generator
 ```
 
-#### If running  with OCI systemd hooks
-
-##### As Admin
-
-```
-$ oc adm policy add-scc-to-user anyuid system:serviceaccount:<your-namespace>:httpd-configmap-generator
-```
-
-Verify that the httpd-configmap-generator service account is included in the anyuid SCC:
-
-```
-$ oc describe scc anyuid | grep Users
-Users:        system:serviceaccount:<your-namespace>:httpd-configmap-generator
-```
-
-
 ### Deploy the Httpd Configmap Generator Application
 
 As basic user
@@ -341,20 +324,20 @@ $ CONFIGMAP_GENERATOR_POD=`oc get pods | grep "httpd-configmap-generator" | cut
 ### Generating a configmap for external authentication against IPA
 
 ```
-$ oc rsh $CONFIGMAP_GENERATOR_POD httpd_configmap_generator ipa ...
+$ oc exec $CONFIGMAP_GENERATOR_POD  -- bash -c 'httpd_configmap_generator ipa ...
 ```
 
 Example configuration:
 
 ```
-$ oc rsh $CONFIGMAP_GENERATOR_POD httpd_configmap_generator ipa \
+$ oc exec $CONFIGMAP_GENERATOR_POD -- bash -c 'httpd_configmap_generator ipa \
     --host=appliance.example.com        \
     --ipa-server=ipaserver.example.com  \
     --ipa-domain=example.com            \
     --ipa-realm=EXAMPLE.COM             \
     --ipa-principal=admin               \
     --ipa-password=smartvm1             \
-    -o /tmp/external-ipa.yaml
+    -o /tmp/external-ipa.yaml'
 ```
 
 `--host` above must be the DNS of the application exposing the httpd auth pod,

data/bin/httpd_configmap_generator

@@ -8,7 +8,7 @@
 #
 
 Dir.chdir(__dir__) { require "bundler/setup" }
-require "trollop"
+require "optimist"
 require "httpd_configmap_generator"
 
 CMD = File.basename($PROGRAM_NAME)
@@ -23,14 +23,14 @@ module HttpdConfigmapGenerator
     SUB_COMMANDS = [HttpdConfigmapGenerator.supported_auth_types] | %w(update export)
 
     def run
-      Trollop.options do
+      Optimist.options do
         version("#{CMD} #{HttpdConfigmapGenerator::VERSION} - External Authentication Configuration script")
         banner <<-EOS
 #{version}
 
 Usage: #{CMD} auth_type | update | export [--help | options]
 
-supported auth_type: #{HttpdConfigmapGenerator.supported_auth_types.join(', ')}
+supported auth_type: #{HttpdConfigmapGenerator.supported_auth_types.sort.join(', ')}
 
 #{CMD} options are:
       EOS
@@ -40,7 +40,7 @@ supported auth_type: #{HttpdConfigmapGenerator.supported_auth_types.join(', ')}
       end
 
       auth_type = ARGV.shift
-      Trollop.die "Must specify an authentication type" if auth_type.nil?
+      Optimist.die "Must specify an authentication type" if auth_type.nil?
 
       begin
         auth_config =
@@ -53,7 +53,7 @@ supported auth_type: #{HttpdConfigmapGenerator.supported_auth_types.join(', ')}
         error_msg(err.to_s)
       end
 
-      params = Trollop.options do
+      params = Optimist.options do
         auth_config.required_options.each do |key, key_options|
           opt key, key_options[:description], HttpdConfigmapGenerator::Cli.options_for(key_options, true)
         end

data/httpd_configmap_generator.gemspec

@@ -23,7 +23,7 @@ Gem::Specification.new do |s|
   s.executables   = s.files.grep(%r{^bin/}) { |f| File.basename(f) } - %w(console setup)
   s.require_paths = ["lib"]
 
-  s.add_development_dependency "codeclimate-test-reporter", "~> 1.0.0"
+  s.add_development_dependency "manageiq-style"
   s.add_development_dependency "rspec",    "~> 3.0"
   s.add_development_dependency "rake"
   s.add_development_dependency "simplecov"
@@ -32,5 +32,5 @@ Gem::Specification.new do |s|
   s.add_dependency "awesome_spawn",        "~> 1.4"
   s.add_dependency "iniparse",             "~> 1.4"
   s.add_dependency "more_core_extensions", "~> 3.4"
-  s.add_dependency "trollop",              "~> 2.1"
+  s.add_dependency "optimist",             "~> 3.0"
 end

data/lib/httpd_configmap_generator/active_directory.rb

@@ -9,6 +9,8 @@ module HttpdConfigmapGenerator
 
     def required_options
       super.merge(
+        :host        => { :description => "Application Domain",
+                          :short       => "-h" },
         :ad_domain   => { :description => "Active Directory Domain"   },
         :ad_user     => { :description => "Active Directory User"     },
         :ad_password => { :description => "Active Directory Password" }
@@ -34,10 +36,8 @@ module HttpdConfigmapGenerator
         /etc/pam.d/postlogin-ac
         /etc/pam.d/smartcard-auth-ac
         /etc/pam.d/system-auth-ac
-        /etc/resolv.conf
         /etc/sssd/sssd.conf
         /etc/sysconfig/authconfig
-        /etc/sysconfig/network
       )
     end
 

data/lib/httpd_configmap_generator/base/config_map.rb

@@ -16,11 +16,11 @@ module HttpdConfigmapGenerator
       @config_map = template
     end
 
-    def generate(auth_type, realm, file_list)
+    def generate(auth_type, realm = "undefined", file_list = nil, metadata = {})
       info_msg("Generating Auth Config-Map for #{auth_type}")
       @config_map = template(auth_type, realm)
       file_specs = gen_filespecs(file_list)
-      define_configuration(file_specs)
+      define_configuration(file_specs, metadata)
       include_files(file_specs)
     end
 
@@ -71,7 +71,7 @@ module HttpdConfigmapGenerator
       file_specs = []
       file_list.each do |file|
         file_specs << file_entry_spec(file.strip)
-      end
+      end unless file_list.nil?
       file_specs.sort_by { |file_spec| file_spec[:basename] }
     end
 
@@ -135,7 +135,7 @@ module HttpdConfigmapGenerator
       }
     end
 
-    def update_configuration(file_specs)
+    def update_configuration(file_specs, metadata={})
       auth_configuration = fetch_auth_configuration
       return define_configuration(file_specs) unless auth_configuration
       # first, remove any file_specs references in the file list, we don't want duplication here.
@@ -146,7 +146,7 @@ module HttpdConfigmapGenerator
       end
       auth_configuration = auth_configuration.join("\n") + "\n"
       # now, append any of the new file_specs at the end of the list.
-      append_configuration(auth_configuration, file_specs)
+      append_configuration(auth_configuration, file_specs, metadata)
     end
 
     def search_file_entry(target_file)
@@ -157,9 +157,9 @@ module HttpdConfigmapGenerator
       entry ? entry.first.split('=')[1].strip.split(' ') : nil
     end
 
-    def define_configuration(file_specs)
+    def define_configuration(file_specs, metadata={})
       auth_configuration = "# External Authentication Configuration File\n#\n"
-      append_configuration(auth_configuration, file_specs)
+      append_configuration(auth_configuration, file_specs, metadata)
     end
 
     def include_files(file_specs)
@@ -175,12 +175,17 @@ module HttpdConfigmapGenerator
       file_spec[:binary] ? "#{file_spec[:basename]}.base64" : file_spec[:basename]
     end
 
-    def append_configuration(auth_configuration, file_specs)
+    def append_configuration(auth_configuration, file_specs, metadata)
       file_specs.each do |file_spec|
         debug_msg("Adding file #{file_spec[:target]} ...")
         auth_configuration += "file = #{file_basename(file_spec)} #{file_spec[:target]} #{file_spec[:mode]}\n"
       end
       config_map[DATA_SECTION] ||= {}
+
+      metadata.each do |key, value|
+        config_map[DATA_SECTION].merge!(key => value)
+      end
+
       config_map[DATA_SECTION].merge!(AUTH_CONFIGURATION => auth_configuration)
     end
 

data/lib/httpd_configmap_generator/base.rb

@@ -54,10 +54,7 @@ module HttpdConfigmapGenerator
 
     def required_options
       {
-        :host   => { :description => "Application Domain",
-                     :short       => "-h" },
-        :output => { :description => "Configuration map file to create",
-                     :short       => "-o" }
+        :output => { :description => "Configuration map file to create", :short => "-o" }
       }
     end
 

data/lib/httpd_configmap_generator/ipa.rb

@@ -1,3 +1,5 @@
+require "socket"               
+
 module HttpdConfigmapGenerator
   class Ipa < Base
     IPA_INSTALL_COMMAND  = "/usr/sbin/ipa-client-install".freeze
@@ -9,6 +11,8 @@ module HttpdConfigmapGenerator
 
     def required_options
       super.merge(
+        :host         => { :description => "Application Domain",
+                           :short       => "-h" },
         :ipa_server   => { :description => "IPA Server FQDN"     },
         :ipa_password => { :description => "IPA Server Password" }
       )
@@ -49,6 +53,7 @@ module HttpdConfigmapGenerator
     end
 
     def configure(opts)
+      opts[:host] = get_canonical_hostname(opts[:host])
       update_hostname(opts[:host])
       command_run!(IPA_INSTALL_COMMAND,
                    :params => [
@@ -118,5 +123,11 @@ module HttpdConfigmapGenerator
       FileUtils.chown(APACHE_USER, nil, HTTP_KEYTAB)
       FileUtils.chmod(0o600, HTTP_KEYTAB)
     end
+
+    def get_canonical_hostname(hostname)
+      Socket.gethostbyname(hostname)[0]
+    rescue SocketError
+      hostname
+    end
   end
 end

data/lib/httpd_configmap_generator/ldap.rb

@@ -10,6 +10,8 @@ module HttpdConfigmapGenerator
 
     def required_options
       super.merge(
+        :host        => { :description => "Application Domain",
+                          :short       => "-h" },
         :cert_file   => { :description => "Cert File" },
         :ldap_host   => { :description => "LDAP Directory Host FQDN" },
         :ldap_mode   => { :description => "ldap | ldaps" },
@@ -55,8 +57,7 @@ module HttpdConfigmapGenerator
          /etc/pam.d/smartcard-auth-ac
          /etc/pam.d/system-auth-ac
          /etc/sssd/sssd.conf
-         /etc/sysconfig/authconfig
-         /etc/sysconfig/network) + [opts[:cert_file]]
+         /etc/sysconfig/authconfig) + [opts[:cert_file]]
     end
 
     def configure(opts)

data/lib/httpd_configmap_generator/oidc.rb

@@ -0,0 +1,48 @@
+module HttpdConfigmapGenerator
+  class Oidc < Base
+
+    AUTH = {
+      :type    => "openid-connect",
+      :subtype => "oidc"
+    }.freeze
+
+    def required_options
+      super.merge(
+        :oidc_url           => { :description => "OpenID-Connect Provider URL", 
+                                 :short       => "-u" },
+        :oidc_client_id     => { :description => "OpenID-Connect Provider Client ID",
+                                 :short       => "-i" },
+        :oidc_client_secret => { :description => "OpenID-Connect Provider Client Secret",
+                                 :short       => "-s" },
+      )
+    end
+
+    def configure(opts)
+      auth_oidc_data = {}
+      auth_oidc_data["auth-oidc-provider-metadata-url"] = opts[:oidc_url]
+      auth_oidc_data["auth-oidc-client-id"] = opts[:oidc_client_id]
+      auth_oidc_data["auth-oidc-client-secret"] = opts[:oidc_client_secret]
+
+      config_map = ConfigMap.new(opts)
+      config_map.generate(AUTH[:type], nil, nil, auth_oidc_data )
+      config_map.save(opts[:output])
+    rescue => err
+      log_command_error(err)
+      raise err
+    end
+
+    def validate_options(opts)
+      super(opts)
+    end
+
+    def configured?
+      false
+    end
+
+    def unconfigure
+      return unless configured?
+    end
+
+  end
+end
+

data/lib/httpd_configmap_generator/saml.rb

@@ -10,7 +10,9 @@ module HttpdConfigmapGenerator
     }.freeze
 
     def required_options
-      super
+      super.merge(
+        :host => { :description => "Application Domain", :short => "-h" },
+      )
     end
 
     def optional_options

data/lib/httpd_configmap_generator/version.rb

@@ -1,3 +1,3 @@
 module HttpdConfigmapGenerator
-  VERSION = "0.2.1".freeze
+  VERSION = "0.3.2".freeze
 end

data/lib/httpd_configmap_generator.rb

@@ -4,6 +4,7 @@ require "httpd_configmap_generator/active_directory"
 require "httpd_configmap_generator/ipa"
 require "httpd_configmap_generator/ldap"
 require "httpd_configmap_generator/saml"
+require "httpd_configmap_generator/oidc"
 require "httpd_configmap_generator/update"
 require "httpd_configmap_generator/export"
 require "more_core_extensions/core_ext/hash"

metadata

@@ -1,29 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: httpd_configmap_generator
 version: !ruby/object:Gem::Version
-  version: 0.2.1
+  version: 0.3.2
 platform: ruby
 authors:
 - Httpd Auth Config Developers
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2017-11-02 00:00:00.000000000 Z
+date: 2021-10-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: codeclimate-test-reporter
+  name: manageiq-style
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
@@ -123,35 +123,42 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '3.4'
 - !ruby/object:Gem::Dependency
-  name: trollop
+  name: optimist
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.1'
+        version: '3.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.1'
+        version: '3.0'
 description: The Httpd Configmap Generator
-email: 
+email:
 executables:
 - httpd_configmap_generator
 extensions: []
 extra_rdoc_files: []
 files:
+- ".codeclimate.yml"
 - ".gitignore"
 - ".rspec"
+- ".rubocop.yml"
+- ".rubocop_cc.yml"
+- ".rubocop_local.yml"
 - ".travis.yml"
+- ".yamllint"
 - Dockerfile
 - Gemfile
+- Gemfile.lock
 - LICENSE
 - README-active-directory.md
 - README-ipa.md
 - README-ldap.md
+- README-oidc.md
 - README-saml.md
 - README.md
 - Rakefile
@@ -174,6 +181,7 @@ files:
 - lib/httpd_configmap_generator/export.rb
 - lib/httpd_configmap_generator/ipa.rb
 - lib/httpd_configmap_generator/ldap.rb
+- lib/httpd_configmap_generator/oidc.rb
 - lib/httpd_configmap_generator/saml.rb
 - lib/httpd_configmap_generator/update.rb
 - lib/httpd_configmap_generator/version.rb
@@ -184,7 +192,7 @@ homepage: https://github.com/ManageIQ/httpd_configmap_generator
 licenses:
 - Apache-2.0
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -199,9 +207,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.6.11
-signing_key: 
+rubygems_version: 3.1.4
+signing_key:
 specification_version: 4
 summary: The Httpd Configmap Generator
 test_files: []