kaname 0.1.3

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 30644357a76c9ef65d0fd3222cc63dc5076267b6
+  data.tar.gz: 3601c2122c142716b86b9e816165b9ec662360dd
+SHA512:
+  metadata.gz: f6691c9b16d5701921cd3b8b3a201cd36ff17f45f70cceb204196efdecbfd6ce5257aa8f86a83302ce506ec6a679990907ee1380a2edf9067a1e6960d60fcccc
+  data.tar.gz: 0e7280a6787bf7c85b7dbe8147f61e2896fa6e76737a2512fc0e1b35a0240a0e13d99d197e37a369e4ca0a7ad8532f66b9858a7b29965af6612f222b38f311b3

data/.gitignore

@@ -0,0 +1,11 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+
+keystone.yml

data/.travis.yml

@@ -0,0 +1,3 @@
+language: ruby
+rvm:
+  - 2.1.5

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in kaname.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2015 SHIBATA Hiroshi
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,69 @@
+# Kaname
+
+[![Build Status](https://secure.travis-ci.org/hsbt/kaname.png)](https://travis-ci.org/hsbt/kaname)
+
+Kaname(要) is configuration management tool of Keystone.
+
+## Installation
+
+Install it yourself as:
+
+    $ gem install kaname
+
+## Usage
+
+You can define keystone configuration for OpenStack via YAML format. Like following syntax.
+
+```yaml
+antipop:
+  email: "antipop@example.com"
+  password: "awesome-password"
+  tenants:
+    production: "cto"
+hsbt:
+  email: "hsbt@example.com"
+  password: "awesome-password"
+  tenants:
+    development: "admin"
+    production: "member"
+```
+
+You need to put fog configuration to home directory.
+
+```sh
+% cat ~/.fog
+default:
+  openstack_auth_url: "http://your-openstack-endpoint/v2.0/tokens"
+  openstack_username: "admin"
+  openstack_tenant: "admin"
+  openstack_api_key: "admin-no-password"
+```
+
+run following command.
+
+```sh
+$ kaname diff # You can see difference of definition
+$ kaname apply # You can apply configuration into OpenStack
+```
+
+You can create user and user's role with tenant.
+
+If you need to initialize your Keystone configuration, you can get it via following command:
+
+```sh
+$ kaname dump
+```
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release` to create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+
+## Contributing
+
+1. Fork it ( https://github.com/[my-github-username]/kaname/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create a new Pull Request

data/Rakefile

@@ -0,0 +1,9 @@
+require "bundler/gem_tasks"
+require 'rake/testtask'
+
+Rake::TestTask.new do |t|
+  t.libs << "test"
+  t.test_files = FileList['test/test_*.rb']
+end
+
+task(default: :test)

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "kaname"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start

data/bin/setup

@@ -0,0 +1,7 @@
+#!/bin/bash
+set -euo pipefail
+IFS=$'\n\t'
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/exe/kaname

@@ -0,0 +1,7 @@
+#!/usr/bin/env ruby
+
+$: << File.expand_path("#{File.dirname __FILE__}/../lib")
+require 'rubygems'
+require 'kaname'
+
+Kaname::CLI.start

data/kaname.gemspec

@@ -0,0 +1,31 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'kaname/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "kaname"
+  spec.version       = Kaname::VERSION
+  spec.authors       = ["SHIBATA Hiroshi"]
+  spec.email         = ["hsbt@ruby-lang.org"]
+
+  spec.summary       = %q{Identity configuration tool for OpenStack.}
+  spec.description   = %q{Identity configuration tool for OpenStack. You can apply simple YAML definition into Keystone.}
+  spec.homepage      = "https://github.com/hsbt/kaname"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_dependency "fog"
+  spec.add_dependency "diffy"
+  spec.add_dependency "hashdiff"
+  spec.add_dependency "thor"
+
+  spec.add_development_dependency "bundler"
+  spec.add_development_dependency "rake"
+  spec.add_development_dependency "minitest"
+  spec.add_development_dependency "mocha"
+end

data/lib/kaname.rb

@@ -0,0 +1,8 @@
+require "kaname/version"
+
+require 'kaname/cli'
+require 'kaname/resource'
+require 'kaname/adapter'
+
+module Kaname
+end

data/lib/kaname/adapter.rb

@@ -0,0 +1,2 @@
+require 'kaname/adapter/real'
+require 'kaname/adapter/mock'

data/lib/kaname/adapter/mock.rb

@@ -0,0 +1,31 @@
+module Kaname
+  module Adapter
+    class Mock
+      def find_user(name)
+        {"name" => name}
+      end
+
+      def create_user(name, email)
+        puts "Create User: #{name} #{email}"
+        {"name" => name}
+      end
+
+      def create_user_role(tenant, user_hash, role)
+        puts "Create User Role: #{tenant} #{user_hash["name"]} #{role}"
+      end
+
+      def delete_user(name)
+        puts "Delete User: #{name}"
+      end
+
+      def delete_user_role(tenant, user_hash, role)
+        puts "Delete User Role: #{tenant} #{user_hash["name"]} #{role}"
+      end
+
+      def change_user_role(tenant, user_hash, before_role, after_role)
+        delete_user_role(tenant, user_hash, before_role)
+        create_user_role(tenant, user_hash, after_role)
+      end
+    end
+  end
+end

data/lib/kaname/adapter/real.rb

@@ -0,0 +1,39 @@
+module Kaname
+  module Adapter
+    class Real
+      def find_user(name)
+        user = Kaname::Resource.users.find_by_name(name)
+        {"id" => user.id, "name" => user.name}
+      end
+
+      def create_user(name, email)
+        password = Kaname::Generator.password
+        puts "#{user},#{password}"
+        response = Fog::Identity[:openstack].create_user(resource[0], password, diff[2]['email'])
+        response.data[:body]["user"]
+      end
+
+      def create_user_role(tenant, user_hash, email)
+        tenant = Kaname::Resource.tenants.find{|t| t.name == tenant}
+        role = Kaname::Resource.roles.find{|r| r.name == role}
+        Fog::Identity[:openstack].create_user_role(tenant.id, user_hash["id"], role.id)
+      end
+
+      def delete_user(name)
+        user = find_user(name)
+        Fog::Identity[:openstack].delete_user(user["id"])
+      end
+
+      def delete_user_role(tenant, user_hash, role)
+        tenant = Kaname::Resource.tenants.find{|t| t.name == tenant}
+        role = Kaname::Resource.roles.find{|r| r.name == role}
+        Fog::Identity[:openstack].delete_user_role(tenant.id, user_hash["id"], role.id)
+      end
+
+      def change_user_role(tenant, user_hash, before_role, after_role)
+        delete_user_role(tenant, user_hash, before_role)
+        create_user_role(tenant, user_hash, after_role)
+      end
+    end
+  end
+end

data/lib/kaname/cli.rb

@@ -0,0 +1,60 @@
+require 'yaml'
+require 'fog'
+require 'thor'
+require 'hashdiff'
+require 'diffy'
+
+module Kaname
+  class CLI < Thor
+    option :dryrun, type: :boolean, aliases: "-d", default: true
+    desc 'apply', 'Commands about configuration apply'
+    def apply
+      adapter = if options[:dryrun]
+        Kaname::Adapter::Mock.new
+      else
+        Kaname::Adapter::Real.new
+      end
+
+      if Kaname::Resource.yaml
+        diffs = HashDiff.diff(Kaname::Resource.users_hash, Kaname::Resource.yaml)
+        diffs.each do |diff|
+          resource = diff[1].split('.')
+          if resource.size == 1 # "user"
+            if diff[0] == "+"
+              user = adapter.create_user(resource[0], diff[2]['email'])
+              diff[2]["tenants"].each do |tenant, role|
+                adapter.create_user_role(tenant, user, role)
+              end
+            else
+              adapter.delete_user(resource[0])
+            end
+          elsif resource.size == 3 # "user.tenants.foo"
+            user_hash = adapter.find_user(resource[0])
+            case diff[0]
+            when "+"
+              adapter.create_user_role(resource[2], user_hash, diff[2])
+            when "-"
+              adapter.delete_user_role(resource[2], user_hash, diff[2])
+            when "~"
+              adapter.change_user_role(resource[2], user_hash, diff[2], diff[3])
+            end
+          else # "user.tenants"
+            # XXX
+          end
+        end
+      else
+        puts "Please put you keystone configuration file named keystone.yml to current directory."
+      end
+    end
+
+    desc 'diff', 'Commands about show diffs from your openstack'
+    def diff
+      puts Diffy::Diff.new(YAML.dump(Kaname::Resource.users_hash), YAML.dump(Kaname::Resource.yaml))
+    end
+
+    desc 'dump', 'Commands about dump Keystone configuration.'
+    def dump
+      puts YAML.dump(Kaname::Resource.users_hash)
+    end
+  end
+end

data/lib/kaname/generator.rb

@@ -0,0 +1,11 @@
+require 'securerandom'
+
+module Kaname
+  class Generator
+    class < self
+      def password
+        SecureRandom.base64(6)
+      end
+    end
+  end
+end

data/lib/kaname/resource.rb

@@ -0,0 +1,58 @@
+require 'yaml'
+
+module Kaname
+  class Resource
+    class << self
+      def yaml(filename = 'keystone.yml')
+        @_yaml = if File.exists?(filename)
+                   YAML.load_file(filename)
+                 else
+                   nil
+                 end
+      end
+
+      def users
+        @_users ||= Fog::Identity[:openstack].users
+      end
+
+      def tenants
+        @_tenants ||= Fog::Identity[:openstack].tenants
+      end
+
+      def roles
+        @_roles ||= Fog::Identity[:openstack].roles
+      end
+
+      def users_hash
+        return @h if @h
+
+        @h = {}
+        users.each do |u|
+          next if ignored_users.include?(u.name)
+          @h[u.name] = {}
+          @h[u.name]["email"] = u.email
+          @h[u.name]["tenants"] = {}
+          tenants.each do |t|
+            r = u.roles(t.id)
+            if r.size > 0
+              @h[u.name]["tenants"][t.name] = r.first["name"]
+            end
+          end
+        end
+        @h
+      end
+
+      # default service users
+      def ignored_users
+        %w[
+          neutron
+          glance
+          cinder
+          admin
+          nova_ec2
+          nova
+        ]
+      end
+    end
+  end
+end

data/lib/kaname/version.rb

@@ -0,0 +1,3 @@
+module Kaname
+  VERSION = "0.1.3"
+end

metadata

@@ -0,0 +1,176 @@
+--- !ruby/object:Gem::Specification
+name: kaname
+version: !ruby/object:Gem::Version
+  version: 0.1.3
+platform: ruby
+authors:
+- SHIBATA Hiroshi
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2015-04-08 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: fog
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: diffy
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: hashdiff
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: thor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: mocha
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Identity configuration tool for OpenStack. You can apply simple YAML
+  definition into Keystone.
+email:
+- hsbt@ruby-lang.org
+executables:
+- kaname
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".travis.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- exe/kaname
+- kaname.gemspec
+- lib/kaname.rb
+- lib/kaname/adapter.rb
+- lib/kaname/adapter/mock.rb
+- lib/kaname/adapter/real.rb
+- lib/kaname/cli.rb
+- lib/kaname/generator.rb
+- lib/kaname/resource.rb
+- lib/kaname/version.rb
+homepage: https://github.com/hsbt/kaname
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.6
+signing_key: 
+specification_version: 4
+summary: Identity configuration tool for OpenStack.
+test_files: []