knife-acl 1.0.0 → 1.0.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +36 -0
- data/lib/chef/knife/acl_base.rb +1 -1
- data/lib/knife-acl/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 1337d3ac69fc8d833aea3604e1748d8af0e753b1
|
|
4
|
+
data.tar.gz: 29021f6eea2b42661d11912bb02a077e6afffa9d
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: c6d47c4840929291017edac53d7fa073c723db4a468f0b2ed36753da7f2e511f29033dc51a9c34d582cff3f10567ad30e53fd5d8316b0e3f966085c699ed71f4
|
|
7
|
+
data.tar.gz: a236b0416abd32f74b3a459c865917c79eddacf4139ed51ba25145e5c5bd6098188b04619f8d26117c56094872fd01946e57e2749deca17635665380dbec39a3
|
data/README.md
CHANGED
|
@@ -44,6 +44,8 @@ Here is a full list of the containers in a Chef Server.
|
|
|
44
44
|
- environments
|
|
45
45
|
- groups
|
|
46
46
|
- nodes
|
|
47
|
+
- policies
|
|
48
|
+
- policy_groups
|
|
47
49
|
- roles
|
|
48
50
|
- sandboxes
|
|
49
51
|
|
|
@@ -112,6 +114,14 @@ knife acl remove group users containers nodes create,update,delete,grant
|
|
|
112
114
|
knife acl bulk remove group users nodes '.*' create,update,delete,grant
|
|
113
115
|
|
|
114
116
|
|
|
117
|
+
knife acl remove group users containers policies create,update,delete,grant
|
|
118
|
+
knife acl bulk remove group users policies '.*' create,update,delete,grant
|
|
119
|
+
|
|
120
|
+
|
|
121
|
+
knife acl remove group users containers policy_groups create,update,delete,grant
|
|
122
|
+
knife acl bulk remove group users policy_groups '.*' create,update,delete,grant
|
|
123
|
+
|
|
124
|
+
|
|
115
125
|
knife acl remove group users containers roles create,update,delete,grant
|
|
116
126
|
knife acl bulk remove group users roles '.*' create,update,delete,grant
|
|
117
127
|
```
|
|
@@ -152,6 +162,14 @@ knife acl add group read-only containers nodes read
|
|
|
152
162
|
knife acl bulk add group read-only nodes '.*' read
|
|
153
163
|
|
|
154
164
|
|
|
165
|
+
knife acl add group read-only containers policies read
|
|
166
|
+
knife acl bulk add group read-only policies '.*' read
|
|
167
|
+
|
|
168
|
+
|
|
169
|
+
knife acl add group read-only containers policy_groups read
|
|
170
|
+
knife acl bulk add group read-only policy_groups '.*' read
|
|
171
|
+
|
|
172
|
+
|
|
155
173
|
knife acl add group read-only containers roles read
|
|
156
174
|
knife acl bulk add group read-only roles '.*' read
|
|
157
175
|
```
|
|
@@ -212,6 +230,8 @@ Valid `OBJECT_TYPE` values are
|
|
|
212
230
|
- environments
|
|
213
231
|
- groups
|
|
214
232
|
- nodes
|
|
233
|
+
- policies
|
|
234
|
+
- policy_groups
|
|
215
235
|
- roles
|
|
216
236
|
|
|
217
237
|
For example, use the following command to obtain the ACL for a node
|
|
@@ -241,6 +261,8 @@ Valid `OBJECT_TYPE` values are
|
|
|
241
261
|
- environments
|
|
242
262
|
- groups
|
|
243
263
|
- nodes
|
|
264
|
+
- policies
|
|
265
|
+
- policy_groups
|
|
244
266
|
- roles
|
|
245
267
|
|
|
246
268
|
Valid `PERMS` are:
|
|
@@ -305,6 +327,8 @@ Valid `OBJECT_TYPE` values are
|
|
|
305
327
|
- environments
|
|
306
328
|
- groups
|
|
307
329
|
- nodes
|
|
330
|
+
- policies
|
|
331
|
+
- policy_groups
|
|
308
332
|
- roles
|
|
309
333
|
|
|
310
334
|
Valid `PERMS` are:
|
|
@@ -378,6 +402,18 @@ knife acl remove group clients containers nodes update,delete,grant
|
|
|
378
402
|
knife acl add group users containers nodes create,read,update,delete
|
|
379
403
|
knife acl remove group users containers nodes grant
|
|
380
404
|
|
|
405
|
+
knife acl add group admins containers policies create,read,update,delete,grant
|
|
406
|
+
knife acl add group clients containers policies read
|
|
407
|
+
knife acl remove group clients containers policies create,update,delete,grant
|
|
408
|
+
knife acl add group users containers policies create,read,update,delete
|
|
409
|
+
knife acl remove group users containers policies grant
|
|
410
|
+
|
|
411
|
+
knife acl add group admins containers policy_groups create,read,update,delete,grant
|
|
412
|
+
knife acl add group clients containers policy_groups read
|
|
413
|
+
knife acl remove group clients containers policy_groups create,update,delete,grant
|
|
414
|
+
knife acl add group users containers policy_groups create,read,update,delete
|
|
415
|
+
knife acl remove group users containers policy_groups grant
|
|
416
|
+
|
|
381
417
|
knife acl add group admins containers roles create,read,update,delete,grant
|
|
382
418
|
knife acl add group clients containers roles read
|
|
383
419
|
knife acl remove group clients containers roles create,update,delete,grant
|
data/lib/chef/knife/acl_base.rb
CHANGED
|
@@ -22,7 +22,7 @@ module OpscodeAcl
|
|
|
22
22
|
|
|
23
23
|
PERM_TYPES = %w(create read update delete grant)
|
|
24
24
|
MEMBER_TYPES = %w(client group user)
|
|
25
|
-
OBJECT_TYPES = %w(clients containers cookbooks data environments groups nodes roles)
|
|
25
|
+
OBJECT_TYPES = %w(clients containers cookbooks data environments groups nodes roles policies policy_groups)
|
|
26
26
|
OBJECT_NAME_SPEC = /^[\-[:alnum:]_\.]+$/
|
|
27
27
|
|
|
28
28
|
def validate_object_type!(type)
|
data/lib/knife-acl/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: knife-acl
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Seth Falcon
|
|
@@ -9,7 +9,7 @@ authors:
|
|
|
9
9
|
autorequire:
|
|
10
10
|
bindir: bin
|
|
11
11
|
cert_chain: []
|
|
12
|
-
date: 2015-
|
|
12
|
+
date: 2015-12-18 00:00:00.000000000 Z
|
|
13
13
|
dependencies: []
|
|
14
14
|
description: Knife plugin to manupulate Chef server access control lists
|
|
15
15
|
email: support@chef.io
|