itamae-plugin-resource-authorized_keys 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: dfcbb26fc7f2a800ee8eb8813ba79fce54508c92
+  data.tar.gz: 799cdaf31187dfa2e5c929d6aef6e32c1a85f443
+SHA512:
+  metadata.gz: 4e0a13d0471ef2521c05136449e04971881714d5f934c2db15a98d62cabb5f834d8bcd6983d5f21815e748dcddcc5cb9e03f99a6726253e015d6a6b030288ff5
+  data.tar.gz: d6faa5e7921ed3a8ee0770e0563af18d3502a996726239d5f210b1ea6dd766e8888b3e49e9ce2aaa132b30cf121b9b42f758f14fc036db9aa108987c78a337ed

data/.gitignore

@@ -0,0 +1,10 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+.vagrant

data/.rspec

@@ -0,0 +1,2 @@
+--format documentation
+--color

data/.travis.yml

@@ -0,0 +1,3 @@
+language: ruby
+rvm:
+  - 2.2.0

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in itamae-plugin-resource-ssh_key.gemspec
+gemspec

data/README.md

@@ -0,0 +1,58 @@
+# Authorized Keys Resource for Itamae
+
+This gem is an itamae plugin resource to provide user's SSH public key.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'itamae-plugin-resource-authorized_keys'
+```
+
+And then execute:
+
+    $ bundle
+
+## Usage
+
+In your recipe:
+
+```ruby
+require "itamae/plugin/resource/authorized_keys"
+
+user "user01"
+authorized_keys "user01" do
+  content "ssh-rsa A..."
+end
+
+user "user02"
+authorized_keys "user02" do
+  content ["ssh-rsa A...", "ssh-rsa A..."]
+end
+
+user "user03"
+authorized_keys "user03" do
+  source "/home/user/.ssh/id_rsa.pub"
+end
+
+# Import SSH keys from github user.
+user "user04"
+authorized_keys "user04" do
+  github "user04"
+end
+```
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release` to create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+
+## Contributing
+
+1. Fork it ( https://github.com/[my-github-username]/itamae-plugin-resource-authorized_keys/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create a new Pull Request

data/Rakefile

@@ -0,0 +1,55 @@
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+require "tempfile"
+require "net/ssh"
+
+VAGRANT_HOSTNAME = "itamae-spec-authorizedkeys"
+
+desc "Run provisining vagrant and serverspec tests"
+task integration: ["integration:provision", "integration:spec", "integration:destroy"]
+
+namespace :integration do
+  desc "Provision Vagrant"
+  task :provision do
+    env = {"VAGRANT_CWD" => File.expand_path("./spec/integration")}
+    tmp_ssh_config = Tempfile.new("", Dir.tmpdir)
+
+    Bundler.with_clean_env do
+      system(env, "vagrant up #{VAGRANT_HOSTNAME}") || abort
+      system(env, "vagrant ssh-config #{VAGRANT_HOSTNAME} > #{tmp_ssh_config.path}") || abort
+
+      ssh_option = Net::SSH::Config.for(VAGRANT_HOSTNAME, [tmp_ssh_config.path])
+
+      cmd = [
+        "bundle exec itamae ssh",
+        "-h #{ssh_option[:host_name]}",
+        "-u #{ssh_option[:user]}",
+        "-p #{ssh_option[:port]}",
+        "-i #{ssh_option[:keys].first}",
+        "-l debug",
+        "spec/integration/recipe.rb"
+      ]
+
+      cmd << "--dry-run" if ENV["DRY_RUN"]
+
+      cmd_str = cmd.join(" ")
+      puts cmd_str
+      system(cmd_str) || abort
+    end
+  end
+
+  desc "Run serverspec tests"
+  RSpec::Core::RakeTask.new(:spec) do |t|
+    t.ruby_opts = "-I ./spec/integration"
+    t.pattern = "spec/integration/*_spec.rb"
+  end
+
+  desc "Destroy Vagrant Virtual Machine"
+  task :destroy do
+    env = {"VAGRANT_CWD" => File.expand_path("./spec/integration")}
+
+    Bundler.with_clean_env do
+      system(env, "vagrant destroy #{VAGRANT_HOSTNAME}") || abort
+    end
+  end
+end

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "itamae/plugin/resource/ssh_key"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start

data/bin/setup

@@ -0,0 +1,7 @@
+#!/bin/bash
+set -euo pipefail
+IFS=$'\n\t'
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/itamae-plugin-resource-authorized_keys.gemspec

@@ -0,0 +1,25 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+
+Gem::Specification.new do |spec|
+  spec.name          = "itamae-plugin-resource-authorized_keys"
+  spec.version       = "0.0.1"
+  spec.authors       = ["nownabe"]
+  spec.email         = ["nownabe@gmail.com"]
+
+  spec.summary       = %q{An Itamae plugin to provide user's authorized_keys file.}
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_dependency "itamae"
+
+  spec.add_development_dependency "bundler", "~> 1.9"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "rspec"
+  spec.add_development_dependency "webmock"
+  spec.add_development_dependency "serverspec"
+end

data/lib/itamae/plugin/resource/authorized_keys.rb

@@ -0,0 +1,121 @@
+require "open-uri"
+require "itamae/resource/file"
+
+module Itamae
+  module Plugin
+    module Resource
+      class AuthorizedKeys < ::Itamae::Resource::File
+        define_attribute :content, type: [String, Array]
+        define_attribute :github, type: String
+        define_attribute :source, type: String
+        define_attribute :username, type: String, default_name: true
+
+        def action_create(options)
+          return unless user_exist?
+          create_ssh_directory unless current.dir_exist
+          super
+        end
+
+        def pre_action
+          return unless user_exist?
+          set_attributes
+          super
+        end
+
+        def set_current_attributes
+          return unless user_exist?
+          super
+
+          current.dir_exist = run_specinfra(:check_file_is_directory, ssh_directory)
+          if current.dir_exist
+            current.dir_mode  = current_ssh_directory_mode
+            current.dir_owner = current_ssh_directory_owner
+            current.dir_group = current_ssh_directory_group
+          end
+        end
+
+        def show_differences
+          current.mode = current.mode.rjust(4, "0") if current.mode
+          current.dir_mode = current.dir_mode.rjust(4, "0") if current.dir_mode
+
+          super
+        end
+
+        private
+
+        def content_file
+          if ssh_keys
+            nil
+          else
+            source_file
+          end
+        end
+
+        def create_ssh_directory
+          run_specinfra(:create_file_as_directory, ssh_directory)
+          run_specinfra(:change_file_mode, ssh_directory, attributes.dir_mode)
+          run_specinfra(:change_file_owner, ssh_directory, attributes.dir_owner, attributes.dir_group)
+        end
+
+        def current_ssh_directory_mode
+          run_specinfra(:get_file_mode, ssh_directory).stdout.strip
+        end
+
+        def current_ssh_directory_owner
+          run_specinfra(:get_file_owner_user, ssh_directory).stdout.strip
+        end
+
+        def current_ssh_directory_group
+          run_specinfra(:get_file_owner_group, ssh_directory).stdout.strip
+        end
+
+        def home_directory
+          run_specinfra(:get_user_home_directory, attributes.username).stdout.strip
+        end
+
+        def keys_from_github
+          open("https://github.com/#{attributes.github}.keys").read
+        end
+
+        def keys_path
+          ::File.join(ssh_directory, "authorized_keys")
+        end
+
+        def set_attributes
+          attributes.content = ssh_keys
+          attributes.mode    = "0600"
+          attributes.owner   = attributes.username
+          attributes.group   = attributes.username
+          attributes.path    = keys_path
+
+          attributes.dir_mode  = "0700"
+          attributes.dir_owner = attributes.username
+          attributes.dir_group = attributes.username
+        end
+
+        def source_file
+          @source_file ||= ::File.expand_path(attributes.source, @recipe.dir)
+        end
+
+        def ssh_directory
+          @ssh_directory ||= ::File.join(home_directory, ".ssh")
+        end
+
+        def ssh_keys
+          @ssh_keys ||=
+            if attributes.content
+              [*attributes.content].join("\n")
+            elsif attributes.github
+              keys_from_github
+            else
+              nil
+            end
+        end
+
+        def user_exist?
+          run_specinfra(:check_user_exists, attributes.username)
+        end
+      end
+    end
+  end
+end

data/lib/itamae/plugin/resource/authorized_keys/version.rb

@@ -0,0 +1,9 @@
+module Itamae
+  module Plugin
+    module Resource
+      module AuthorizedKeys
+        VERSION = "0.1.0"
+      end
+    end
+  end
+end

metadata

@@ -0,0 +1,138 @@
+--- !ruby/object:Gem::Specification
+name: itamae-plugin-resource-authorized_keys
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- nownabe
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2015-10-12 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: itamae
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.9'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.9'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: serverspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 
+email:
+- nownabe@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
+- Gemfile
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- itamae-plugin-resource-authorized_keys.gemspec
+- lib/itamae/plugin/resource/authorized_keys.rb
+- lib/itamae/plugin/resource/authorized_keys/version.rb
+homepage: 
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5
+signing_key: 
+specification_version: 4
+summary: An Itamae plugin to provide user's authorized_keys file.
+test_files: []