idnio 2.3.2b

data/lib/objects/applications.rb

@@ -0,0 +1,145 @@
+#!/usr/bin/env ruby
+require 'json'
+require 'uri'
+require 'idnio/idnapi'
+require 'idnio/program'
+require 'idnio/markdown'
+require 'objects/access-profiles'
+
+module Applications
+
+  @@app_response = nil
+
+  def self.query(query)
+    if @@app_response.nil?
+      @@app_response = IDNAPI.get("#{$url}/cc/api/app/list?filter=org", $token)
+    end
+
+    unless @@app_response.nil?
+      apps = JSON.parse(@@app_response.body)
+      apps.each do |app|
+        tmp_name = app['name']
+        next unless tmp_name == query
+        full_app = IDNAPI.get("#{$url}/cc/api/app/get/#{app['id']}", $token)
+        next if full_app.nil?
+        j_full_app = JSON.parse(full_app)
+        j_full_app['AccessProfiles'] = Applications.getAccessProfiles( app['id'] )
+        return j_full_app
+      end
+      return nil
+    end
+  end
+
+  def self.getAccessProfiles( id )
+    access = IDNAPI.get("#{$url}/cc/api/app/getAccessProfiles/#{id}", $token)
+    accessArray = []
+    unless access.nil?
+      j_access = JSON.parse(access)
+      j_access['items'].each do |ap|
+        accessArray.push(ap['name'])
+      end
+    end
+
+    accessArray
+  end
+
+  def self.isValidUpdateAttribute(text)
+    case text
+    when 'appProfiles'
+      false
+    when 'id'
+      false
+    when 'appId'
+      false
+    when 'service'
+      false
+    when 'serviceId'
+      false
+    when 'serviceAppId'
+      false
+    when 'accountServiceId'
+      false
+    when 'dateCreated'
+      false
+    when 'accountServiceName'
+      false
+    when 'accountServiceExternalId'
+      false
+    when 'externalId'
+      false
+    when 'accountServicePolicyId'
+      false
+    when 'accountServicePolicyName'
+      false
+    when 'accountServicePolicies'
+      false
+    when 'xsdVersion'
+      false
+    when 'passwordServiceId'
+      false
+    when 'version'
+      false
+    when 'owner'
+      false
+    when 'lastUpdated'
+      false
+    when 'scriptName'
+      false
+    when 'definitionName'
+      false
+    when 'appCount'
+      false
+    when 'userCount'
+      false
+    when 'sourceConnected'
+      false
+    when 'authenticationCookie'
+      false
+    when 'icon'
+      false
+    when 'connectedApps'
+      false
+    when 'health'
+      false
+    else
+      true
+  end
+  end
+
+  #
+  # Exports Application configurations.
+  #
+  def self.export(directory)
+    response = IDNAPI.get("#{$url}/cc/api/app/list?filter=org", $token)
+    unless response.nil?
+      apps = JSON.parse(response.body)
+
+      $log.info "\tDetected #{apps.length} apps."
+
+      apps.each do |app|
+        if app['controlType'] == 'PERSONAL'
+          $log.debug "\t\tSkipping PERSONAL Controlled Application: #{app['name']}"
+        else
+          $log.info "\tApplication: #{app['name']}"
+
+          full_app = Applications.query(app['name'])
+          Program.write_file("#{directory}/applications/", "Application - #{full_app['name']}.json", JSON.pretty_generate(full_app))
+        end
+      end
+    end
+  end
+
+  #
+  # Import Application configurations.
+  #
+  def self.import(_directory)
+    $log.warn "\tImport for object type application is not supported at this time."
+  end
+
+  #
+  # Documents Application configurations.
+  #
+  def self.doc
+    $log.warn "\tDocumentation for object type application is not supported at this time."
+  end
+end

data/lib/objects/attribute-sync-config.rb

@@ -0,0 +1,122 @@
+#!/usr/bin/env ruby
+require "json"
+require "idnio/idnapi"
+require "idnio/program"
+require "idnio/markdown"
+
+module AttributeSyncConfig
+
+  @@source_response = nil
+
+  def self.query( query )
+
+    if (@@source_response == nil)
+      @@source_response = IDNAPI.get( "#{$url}/cc/api/source/list", $token )
+    end
+
+    unless @@source_response.nil?
+      sources = JSON.parse( @@source_response.body )
+      sources.each do |source|
+        tmp_name = source["name"]
+        tmp_name.gsub!(/[^0-9A-Za-z. -]/,"-")
+        if(tmp_name == query)
+          return source
+        end
+      end
+      return nil
+    end
+  end
+
+  #
+  # Exports Attribute Sync Config configurations.
+  #
+  def self.export( directory )
+
+    response = IDNAPI.get( "#{$url}/cc/api/source/list", $token )
+    unless response.nil?
+      sources = JSON.parse( response.body )
+
+      $log.info "\tDetected #{sources.count} attribute sync config, across #{sources.count} sources."
+
+      sources.each do |source|
+        response = IDNAPI.get( "#{$url}/cc/api/source/getAttributeSyncConfig/#{source["id"]}", $token )
+
+        unless response.nil?
+          config = JSON.parse( response.body )
+          $log.info "\tAttribute Sync Config: #{source["name"]}"
+          Program.write_file( "#{directory}/attribute-sync-config/", "Attribute Sync Config - #{source["name"]}.json", JSON.pretty_generate( config ) )
+        end
+      end
+    end
+  end
+
+  #
+  # Imports Attribute Sync Config configurations.
+  #
+  def self.import( directory )
+    file_names = Program.get_filenames("#{directory}/attribute-sync-config")
+
+    $log.info "\tDetected #{file_names.length} attribute sync configurations."
+
+    file_names.each do |file|
+      file.index(" - ")
+      file.rindex(" - ")
+      tmp = file[file.index(" - ")+3..file.rindex(".json")-1].strip
+
+      $log.info "\tAttribute Sync Config: #{tmp}"
+
+      source = AttributeSyncConfig.query(tmp)
+      if(source == nil)
+        $log.warn "\tSkipping import. Associated source (#{tmp}) doesn't exist."
+      else
+        file_contents = Program.read_file(file)
+        unless file_contents.nil?
+          j_fc = JSON.parse(file_contents)
+          if( j_fc["syncAttributes"] == nil)
+            $log.warn "\t\tSkipping import. Configuration is null or empty."
+          else
+            $log.debug "\t\tUpdating Attribute Sync Configuration for Source: #{source["name"]}"
+            IDNAPI.post_json( "#{$url}/cc/api/source/setAttributeSyncConfig/#{source["id"]}", $token, j_fc )
+          end
+
+        end
+      end
+    end
+  end
+
+  #
+  # Documents Attribute Sync Config configurations.
+  #
+  def self.doc
+
+    Markdown.h2( "Attribute Sync Config" )
+
+    response = IDNAPI.get( "#{$url}/cc/api/source/list", $token )
+
+    unless response.nil?
+
+      sources = JSON.parse( response.body )
+
+      $log.info "\tDetected #{sources.count} attribute sync config, across #{sources.count} sources."
+
+      sources.each do |source|
+
+        response = IDNAPI.get( "#{$url}/cc/api/source/getAttributeSyncConfig/#{source["id"]}", $token )
+        syncAttributes = JSON.parse( response.body )
+
+        $log.info "\tAttribute Sync Config: #{source["name"]}"
+
+        unless ( syncAttributes.nil? || syncAttributes["syncAttributes"].nil? || syncAttributes["syncAttributes"].empty? )
+          Markdown.h3( "#{source["name"]}" )
+          Markdown.text( "| Account Attribute | Identity Attribute | Enabled |\n" )
+          Markdown.text( "|-------------------|--------------------|---------|\n" )
+          syncAttributes["syncAttributes"].each do |syncAttribute|
+            Markdown.text( "|#{syncAttribute["targetAttribute"]}|#{syncAttribute["identityAttributeName"]}|#{syncAttribute["enabled"]}|\n" )
+          end
+        end
+      end
+    end
+
+    Markdown.write
+  end
+end

data/lib/objects/branding.rb

@@ -0,0 +1,49 @@
+#!/usr/bin/env ruby
+require 'json'
+require 'idnio/idnapi'
+require 'idnio/program'
+require 'idnio/markdown'
+
+module Branding
+
+  #
+  # Exports Branding configurations.
+  #
+  def self.export( directory )
+
+    response = IDNAPI.get( "#{$url}/cc/api/branding/list", $token )
+
+    case response
+    when Net::HTTPSuccess
+
+      brands = JSON.parse( response.body )
+
+      $log.info "\tDetected #{brands.count} branding configs."
+
+      brands['items'].each do |brand|
+
+        $log.info "\tBranding: #{brand['productName']}"
+        Program.write_file( "#{directory}/branding/", "Brand - #{brand['productName']}.json", JSON.pretty_generate( brand ) )
+
+      end # brands['items'].each do |brand|
+
+    else
+      $log.error "\tError: Unable to fetch branding."
+    end # case response
+
+  end
+
+  #
+  # Import Branding configurations.
+  #
+  def self.import( directory )
+    $log.warn "\tImport for object type branding is not supported at this time."
+  end
+
+  #
+  # Documents Branding configurations.
+  #
+  def self.doc
+    $log.warn "\tDocumentation for object type branding is not supported at this time."
+  end
+end

data/lib/objects/campaign-filters.rb

@@ -0,0 +1,61 @@
+#!/usr/bin/env ruby
+require "json"
+require "idnio/idnapi"
+require "idnio/program"
+require "idnio/markdown"
+
+module CampaignFilters
+
+  #
+  # Exports Campaign Filter configurations.
+  #
+  def self.export( directory )
+
+    response = IDNAPI.get( "#{$url}/cc/api/campaignFilter/list?includeSystemFilters=false", $token )
+
+    filters = JSON.parse( response.body )
+
+    $log.info "\tDetected #{filters['count']} campaign filters."
+
+    filters['items'].each do |filter|
+      $log.info "\tCampaign Filter: #{filter["name"]}"
+      Program.write_file( "#{directory}/campaign-filters/", "Campaign Filter - #{filter["name"]}.json", JSON.pretty_generate( filter ) )
+    end
+  end
+
+  #
+  # Import Campaign Filter configurations.
+  #
+  def self.import( directory )
+    $log.warn "\tImport for object type campaign-filter is not supported at this time."
+  end
+
+  #
+  # Documents Campaign Filter configurations.
+  #
+  def self.doc
+
+    Markdown.h2( "Campaign Filters" )
+
+    response = IDNAPI.get( "#{$url}/cc/api/campaignFilter/list?includeSystemFilters=false", $token )
+    unless response.nil?
+        filters = JSON.parse( response.body )
+
+        $log.info "\tDetected #{filters['count']} campaign filters."
+
+        filters['items'].each do |filter|
+          $log.info "\tCampaign Filter: #{filter["name"]}"
+          Markdown.h3( "#{filter["name"]}" )
+          Markdown.text( "- **Name** - #{filter["name"]}\n" )
+          Markdown.text( "- **Description** - #{filter["description"]}\n" )
+          Markdown.text( "- **Owner** - #{filter["owner"]}\n" )
+          Markdown.text( "- **Mode** - #{filter["mode"]}\n\n" )
+          Markdown.text( "- **Criteria**\n" )
+          Markdown.code( filter["criteriaList"] )
+        end
+    end
+
+    Markdown.write
+  end
+
+end

data/lib/objects/connectors.rb

@@ -0,0 +1,291 @@
+#!/usr/bin/env ruby
+require "json"
+require "idnio/idnapi"
+require "idnio/program"
+require "idnio/markdown"
+
+module Connectors
+
+  @@script_type = {
+      "ACF2 - Full" => "acf2",
+      "Active Directory - Direct" => "active-directory",
+      "ADAM - Direct" => "adam",
+      "AIX - Direct" => "aix",
+      "AWS" => "aws",
+      "Azure Active Directory" => "azure-active-directory",
+      "BMC Remedy" => "bmc-remedy",
+      "Box" => "box",
+      "Delimited File" => "delimited-file",
+      "DelimitedFile" => "delimited-file",
+      "Dropbox" => "dropbox",
+      "Duo" => "duo",
+      "Generic" => "generic",
+      "Google Apps - Direct" => "google-apps",
+      "GoToMeeting" => "gotomeeting",
+      "IBM DB2" => "ibm-db2",
+      "IBM i" => "ibm-i",
+      "IBM Lotus Domino - Direct" => "ibm-lotus-domino",
+      "IBM Tivoli DS - Direct" => "ibm-tivoli-ds",
+      "JDBC" => "jdbc",
+      "Linux - Direct" => "linux",
+      "Microsoft SharePoint Online" => "microsoft-sharepoint-online",
+      "Microsoft SharePoint Server" => "microsoft-sharepoint-server",
+      "Microsoft SQL Server - Direct" => "microsoft-sql-server",
+      "Novell eDirectory - Direct" => "novell-edirectory",
+      "Okta" => "okta",
+      "OpenLDAP - Direct" => "openldap",
+      "Oracle Database - Direct" => "oracle-database",
+      "Oracle E-Business" => "oracle-ebusiness",
+      "Oracle Fusion HCM" => "oracle-fusion-hcm",
+      "Oracle HRMS" => "oracle-hrms",
+      "Oracle Internet Directory - Direct" => "oracle-internet-directory",
+      "Oracle NetSuite" => "oracle-netsuite",
+      "PeopleSoft - Direct" => "peoplesoft",
+      "PeopleSoft HCM Database" => "peoplesoft-hrms",
+      "RACF - Full" => "racf",
+      "RACF LDAP" => "racf-ldap",
+      "RemedyForce" => "remedyforce",
+      "RSA Authentication Manager - Direct" => "rsa-authentication-manager",
+      "Salesforce" => "salesforce",
+      "SAP - Direct" => "sap",
+      "SAP HANA Database" => "sap-hana",
+      "SAP HR/HCM" => "sap-hrhcm",
+      "SAP Portal - UMWebService" => "sap-portal-umwebservice",
+      "SCIM 1.1" => "scim11",
+      "SCIM 2.0" => "scim20",
+      "ServiceNow" => "servicenow",
+      "Siebel" => "siebel",
+      "Solaris - Direct" => "solaris",
+      "SuccessFactors" => "successfactors",
+      "SunOne - Direct" => "sunone",
+      "Sybase - Direct" => "sybase",
+      "Top Secret LDAP" => "top-secret-ldap",
+      "TopSecret - Full" => "top-secret",
+      "Web Services" => "web-services",
+      "Webex" => "webex",
+      "Workday Accounts" => "workday-accounts",
+      "Workday" => "workday",
+      "Yammer" => "yammer"
+  }
+
+  @@default_connectors = [
+    "ACF2",
+    "Active Directory",
+    "ADAM",
+    "AIX",
+    "AWS",
+    "Azure Active Directory",
+    "BMC Remedy",
+    "Box",
+    "IBM DB2",
+    "Delimited File",
+    "Dropbox",
+    "Duo",
+    "Generic",
+    "Google Apps",
+    "GoToMeeting",
+    "IBM i",
+    "IBM Lotus Domino",
+    "IBM Tivoli Access Manager",
+    "IBM Tivoli DS",
+    "JDBC",
+    "Jive",
+    "Linux",
+    "Microsoft SharePoint",
+    "Microsoft SharePoint Server",
+    "Microsoft SQL Server",
+    "NetSuite",
+    "Novell eDirectory",
+    "Okta",
+    "OpenLDAP",
+    "Oracle Database",
+    "Oracle E-Business",
+    "Oracle HRMS",
+    "Oracle Internet Directory",
+    "Oracle NetSuite",
+    "PeopleSoft",
+    "PeopleSoft HCM Database",
+    "RACF",
+    "RACF LDAP",
+    "RemedyForce",
+    "RSA Authentication Manager",
+    "SalesForce",
+    "SAP",
+    "SAP HANA",
+    "SAP HR/HCM",
+    "SAP Portal - UMWebService",
+    "SCIM 1.1",
+    "SCIM 2.0",
+    "ServiceNow",
+    "Siebel",
+    "Solaris",
+    "SuccessFactors",
+    "SunOne",
+    "Sybase",
+    "Top Secret",
+    "Top Secret LDAP",
+    "Web Services",
+    "WebEx",
+    "Workday",
+    "Yammer",
+    "Microsoft SharePoint Online",
+    "Oracle Fusion HCM",
+    "Workday Accounts"
+  ]
+
+  #
+  # Exports Connector configurations.
+  #
+  def self.export( directory )
+
+    response = IDNAPI.get( "#{$url}/cc/api/connector/list", $token )
+
+    case response
+    when Net::HTTPSuccess
+
+      connectors = JSON.parse( response.body )
+
+      $log.info "\tDetected #{connectors['total']} connectors."
+
+      connectors['items'].each do |connector|
+
+        if (!@@default_connectors.include? connector["name"] || $config["include-defaults"])
+          $log.info "\tConnector: #{connector["name"]}"
+          Program.write_file( "#{directory}/connectors/", "Connector - #{connector["name"]}.json", JSON.pretty_generate( connector ) )
+        else
+          $log.info "\tSkipping Default Connector: #{connector["name"]}"
+        end
+
+      end
+
+    else
+      $log.error "\tError: Unable to fetch connectors."
+    end
+  end
+
+  #
+  # Imports Connector configurations.
+  #
+  def self.import( directory )
+
+    # Read from the file system to determine how many transforms we have.
+    connectors = Program.read_directory( "#{directory}/connectors" )
+    $log.info "\tDetected #{connectors.length} connectors."
+
+    # Iterate through each connector.
+    connectors.each do |connector|
+
+      # Get the transform JSON.
+      template_connector = JSON.parse( connector )
+
+      $log.info "\tConnector: #{template_connector["name"]}"
+
+      # Is this a default connector? If so, skip it.
+      unless @@default_connectors.include? template_connector["name"]
+
+        # existing_connector = Connectors.get_by_name( template_connector["name"] )
+
+        # If we don't have an existing connector, lets create one.
+        # if existing_connector.nil?
+          $log.debug "\t\tCreating connector..."
+
+          form_data = {
+            'name': template_connector["name"],
+            'description': template_connector["name"],
+            'className': template_connector["className"],
+            'directConnect': template_connector["directConnect"],
+            'status': template_connector["status"]
+          }
+          IDNAPI.post_form( "#{$url}/cc/api/connector/create", $token, form_data )
+        # If we don't have an existing connector, lets update the one we have.
+        # else
+        #   $log.debug "\t\tUpdating connector..."
+        #   IDNAPI.post_json( "#{$url}/cc/api/transform/update", $token, template_connector )
+        # end
+
+        # Upload Artifacts Here.
+
+      else
+        $log.info "\t\tSkipping default connector."
+      end #unless @@default_connectors.include? template_connector["name"]
+    end # connectors.each do |connector|
+  end # def self.import( directory )
+
+  #
+  # Documents Connector configurations.
+  #
+  def self.doc
+
+    Markdown.h2( "Connectors" )
+
+    response = IDNAPI.get( "#{$url}/cc/api/connector/list", $token )
+
+    case response
+    when Net::HTTPSuccess
+
+      connectors = JSON.parse( response.body )
+
+      $log.info "\tDetected #{connectors['total']} connectors."
+
+      connectors['items'].each do |connector|
+
+        if (!@@default_connectors.include? connector["name"] || $config["include-defaults"])
+          $log.info "\tConnector: #{connector["name"]}"
+          
+          Markdown.h3( connector["name"] )
+          Markdown.text( "- Class: #{connector["className"]}\n" )
+          Markdown.text( "- Direct Connect: #{connector["directConnect"]}\n" )
+          Markdown.text( "- Status: #{connector["status"]}\n" )
+
+        else
+          $log.info "\tSkipping Default Connector: #{connector["name"]}"
+        end
+
+      end
+
+    else
+      $log.error "\tError: Unable to fetch connectors."
+    end
+
+  end
+
+  #
+  # Gets a connector script, given type
+  #
+  def self.get_script( type )
+    return @@script_type[ type ]
+  end
+
+  #
+  # Gets a connector by the type
+  #
+  def self.get_by_type( type )
+    return Connectors.get_by_attribute( "type", type )
+  end
+
+  #
+  # Gets a connector by an attribute
+  #
+  def self.get_by_attribute( attribute, value )
+
+    response = IDNAPI.get( "#{$url}/cc/api/connector/list", $token )
+
+    unless response.nil?
+
+        connectors = JSON.parse( response.body )
+
+        connectors['items'].each do |connector|
+
+          if ( connector[ attribute ] == value )
+            return connector
+          end
+
+        end # connectors['items'].each do |connector|
+
+    end # unless response.nil?
+
+    return nil
+
+  end # def self.get_by_attribute( attribute, value )
+
+end