RubyGems - kitchen-oci - Versions diffs - 3.0.0 → 3.1.0 - Mend

kitchen-oci 3.0.0 → 3.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml +4 -4
data/lib/kitchen/driver/oci/api.rb +14 -1
data/lib/kitchen/driver/oci/config.rb +4 -2
data/lib/kitchen/driver/oci/instance/compute.rb +4 -1
data/lib/kitchen/driver/oci.rb +1 -0
data/lib/kitchen/driver/oci_version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 31c38885e7c54ae57a9e37b7a0ac7cfa0f8c82d29ec9d84706dfa4a04bdf2b78
-  data.tar.gz: e16f179d0fb5806855dfe840afd60c4e87a7d58abe6f60364a09846f38e64bef
+  metadata.gz: 5bfc39bf616e0eefecc820abb06a06b61ed2b90e96e90434c73be1d6604c7372
+  data.tar.gz: df5a102d375fa58f09e7083957deb3e97ef6ded000d305b7eae03e868a968280
 SHA512:
-  metadata.gz: 128addb8b6ed1e6fd0a0b1dae8c18c9daed987793171d666963d20b6492d5cc0899d3e072bc4050ae7fc1190ddbb44f800d596ad58e67166a04afe45ab0dc14e
-  data.tar.gz: 9bf0610720a61ef373f709d3b1fad3b7f52fdb9a6428d454a98256fddb362fee853b73e07facb9637fe2d8494746a5738652b30619efe413876c3225e07dd37a
+  metadata.gz: 6841666c45f23dce74e419dd4eb14bf28b9964988d37addb43db84b1a41483b01c16f5601c04d8b86ae83f15e0ebc3b8da62ffc642b17f1b986921a5d1325b37
+  data.tar.gz: 5d2269712aa89d1be30882cbd2087ab7fcca506bde7433c2fef949ef6d2867dc4bf17f214073a344ac1a652b6a8e0bba41caefd14964b1d631dc83223555861d

data/lib/kitchen/driver/oci/api.rb CHANGED Viewed

@@ -92,15 +92,28 @@ module Kitchen
         # Determines the signing method if one is specified.
         #
+        # Security token (session) authentication is used when <b>use_token_auth</b> is set explicitly or
+        # when the selected OCI profile contains a <b>security_token_file</b>. The latter allows sessions
+        # created by <tt>oci session authenticate</tt> (RPST) to be detected automatically.
+        #
         # @return [OCI::Auth::Signers::InstancePrincipalsSecurityTokenSigner, OCI::Auth::Signers::SecurityTokenSigner] an instance of the specified token signer.
         def signer
           if config[:use_instance_principals]
             OCI::Auth::Signers::InstancePrincipalsSecurityTokenSigner.new
-          elsif config[:use_token_auth]
+          elsif config[:use_token_auth] || security_token_file?
             token_signer
           end
         end
+        # Whether the loaded OCI config contains a security_token_file pointing at an existing token.
+        #
+        # @return [Boolean]
+        def security_token_file?
+          oci_config.respond_to?(:security_token_file) &&
+            !oci_config.security_token_file.to_s.empty? &&
+            File.exist?(oci_config.security_token_file)
+        end
         # Creates the token signer with a provided key.
         #
         # @return [OCI::Auth::Signers::SecurityTokenSigner]

data/lib/kitchen/driver/oci/config.rb CHANGED Viewed

@@ -40,8 +40,10 @@ module Kitchen
         #
         # @return [OCI::Config]
         def oci_config
-          # OCI::Config is missing this
-          OCI::Config.class_eval { attr_accessor :security_token_file } if @driver_config[:use_token_auth]
+          # OCI::Config is missing this attribute. It is always added so that a security_token_file
+          # present in the selected profile is loaded, which enables auto-detection of session
+          # (RPST) token authentication even when use_token_auth is not explicitly set.
+          OCI::Config.class_eval { attr_accessor :security_token_file } unless OCI::Config.instance_methods.include?(:security_token_file)
           conf = config_loader(config_file_location: @driver_config[:oci_config_file], profile_name: @driver_config[:oci_profile_name])
           @driver_config[:oci_config].each do |key, value|
             conf.send("#{key}=", value) unless value.nil? || value.empty?

data/lib/kitchen/driver/oci/instance/compute.rb CHANGED Viewed

@@ -71,13 +71,16 @@ module Kitchen
           end
           # Adds the source_details property to the launch_details for an instance that is being created from an image.
+          # When <b>kms_key_id</b> is specified the boot volume is encrypted with the provided customer-managed key,
+          # which is required by compartments governed by a Security Zone that mandates customer-managed encryption.
           def instance_source_via_image
             return if config[:boot_volume_id]
             launch_details.source_details = OCI::Core::Models::InstanceSourceViaImageDetails.new(
               sourceType: "image",
               imageId: image_id,
-              bootVolumeSizeInGBs: config[:boot_volume_size_in_gbs]
+              bootVolumeSizeInGBs: config[:boot_volume_size_in_gbs],
+              kmsKeyId: config[:kms_key_id]
             )
           end

data/lib/kitchen/driver/oci.rb CHANGED Viewed

@@ -96,6 +96,7 @@ module Kitchen
       default_config :preemptible_instance, false
       default_config :boot_volume_size_in_gbs, nil
       default_config :use_private_ip, false
+      default_config :kms_key_id, nil
       default_config :volumes, {}
       # dbaas configs

data/lib/kitchen/driver/oci_version.rb CHANGED Viewed

@@ -22,6 +22,6 @@ module Kitchen
     # Version string for Oracle OCI Kitchen driver
     #
     # @author Stephen Pearson (<stephen.pearson@oracle.com>)
-    OCI_VERSION = "3.0.0"
+    OCI_VERSION = "3.1.0"
   end
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: kitchen-oci
 version: !ruby/object:Gem::Version
-  version: 3.0.0
+  version: 3.1.0
 platform: ruby
 authors:
 - Stephen Pearson
@@ -9,7 +9,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2026-03-04 00:00:00.000000000 Z
+date: 2026-06-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: oci