knife-tidy 2.0.11 → 2.0.12
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/chef/knife/tidy_backup_clean.rb +7 -7
- data/lib/chef/knife/tidy_notify.rb +1 -1
- data/lib/chef/knife/tidy_server_clean.rb +2 -2
- data/lib/chef/tidy_acls.rb +12 -12
- data/lib/chef/tidy_common.rb +17 -0
- data/lib/chef/tidy_substitutions.rb +1 -1
- data/lib/knife-tidy/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 7f6ab0938f4a6ca55ff3b6551451f2ceecf78eb05b3187880a7a6341525ea32e
|
|
4
|
+
data.tar.gz: bf2e3f30342700b6c7578d0256505475dfa0aa74b095383f0af98a79457035e2
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: f0e80bd713ce788302e0555c1611d4b08b47107fd9e0b6c96c1794ef1715a6fe40a4e4762f7c3b58b4b4d34e36f75510758dcd9874eabb812ed4d06a6e9050fd
|
|
7
|
+
data.tar.gz: 7d3ed20eac5000a9b60e48cbe3fbfa12250162c917a02619ff428213cfa948d24ff8fe355359f4f2667d59ec90edacdfd78b2af5ed2cac0e6ff059cb8575e301
|
|
@@ -75,7 +75,7 @@ class Chef
|
|
|
75
75
|
tidy.global_user_names.each do |user|
|
|
76
76
|
email = ""
|
|
77
77
|
ui.stdout.puts "INFO: Validating #{user}"
|
|
78
|
-
the_user =
|
|
78
|
+
the_user = tidy.json_file_to_hash(File.join(tidy.users_path, "#{user}.json"), symbolize_names: false)
|
|
79
79
|
if the_user.key?("email") && the_user["email"].match(/\A[^@\s]+@[^@\s]+\z/)
|
|
80
80
|
if emails_seen.include?(the_user["email"])
|
|
81
81
|
ui.stdout.puts "REPAIRING: Already saw #{user}'s email, creating a unique one."
|
|
@@ -147,7 +147,7 @@ class Chef
|
|
|
147
147
|
add_cookbook_name_to_metadata(cookbook_name, rb_path) if lines.empty?
|
|
148
148
|
else
|
|
149
149
|
if ::File.exist?(json_path)
|
|
150
|
-
metadata =
|
|
150
|
+
metadata = tidy.json_file_to_hash(json_path, symbolize_names: false)
|
|
151
151
|
if metadata["name"] != cookbook_name
|
|
152
152
|
metadata["name"] = cookbook_name
|
|
153
153
|
ui.stdout.puts "REPAIRING: Correcting `name` in #{json_path}`"
|
|
@@ -227,7 +227,7 @@ class Chef
|
|
|
227
227
|
|
|
228
228
|
def fix_metadata_fields(cookbook_path)
|
|
229
229
|
json_path = ::File.join(cookbook_path, "metadata.json")
|
|
230
|
-
metadata =
|
|
230
|
+
metadata = tidy.json_file_to_hash(json_path, symbolize_names: false)
|
|
231
231
|
md = metadata.dup
|
|
232
232
|
metadata.each_pair do |key, value|
|
|
233
233
|
if value.nil?
|
|
@@ -349,7 +349,7 @@ class Chef
|
|
|
349
349
|
end
|
|
350
350
|
|
|
351
351
|
def repair_role_run_lists(role_path)
|
|
352
|
-
the_role =
|
|
352
|
+
the_role = tidy.json_file_to_hash(role_path, symbolize_names: false)
|
|
353
353
|
new_role = the_role.clone
|
|
354
354
|
rl = Chef::RunList.new
|
|
355
355
|
new_role["run_list"] = []
|
|
@@ -382,7 +382,7 @@ class Chef
|
|
|
382
382
|
for_each_role(org) do |role_path|
|
|
383
383
|
ui.stdout.puts "INFO: Validating Role at #{role_path}"
|
|
384
384
|
begin
|
|
385
|
-
Chef::Role.from_hash(
|
|
385
|
+
Chef::Role.from_hash(tidy.json_file_to_hash(role_path, symbolize_names: false))
|
|
386
386
|
rescue ArgumentError
|
|
387
387
|
repair_role_run_lists(role_path)
|
|
388
388
|
end
|
|
@@ -392,7 +392,7 @@ class Chef
|
|
|
392
392
|
def validate_clients_group(org)
|
|
393
393
|
ui.stdout.puts "INFO: validating all clients for org #{org} exist in clients group"
|
|
394
394
|
clients_group_path = ::File.join(tidy.groups_path(org), "clients.json")
|
|
395
|
-
existing_group_data =
|
|
395
|
+
existing_group_data = tidy.json_file_to_hash(clients_group_path, symbolize_names: false)
|
|
396
396
|
existing_group_data["clients"] = [] unless existing_group_data.key?("clients")
|
|
397
397
|
if existing_group_data["clients"].length != tidy.client_names(org).length
|
|
398
398
|
ui.stdout.puts "REPAIRING: Adding #{(existing_group_data["clients"].length - tidy.client_names(org).length).abs} missing clients into #{org}'s client group file #{clients_group_path}"
|
|
@@ -406,7 +406,7 @@ class Chef
|
|
|
406
406
|
def validate_invitations(org)
|
|
407
407
|
invite_file = tidy.invitations_path(org)
|
|
408
408
|
ui.stdout.puts "INFO: validating org #{org} invites in #{invite_file}"
|
|
409
|
-
invitations =
|
|
409
|
+
invitations = tidy.json_file_to_hash(invite_file, symbolize_names: false)
|
|
410
410
|
invitations_new = []
|
|
411
411
|
invitations.each do |invite|
|
|
412
412
|
if invite["username"].nil?
|
|
@@ -88,7 +88,7 @@ class Chef
|
|
|
88
88
|
file_name = "#{reports_dir}/#{org}#{report}"
|
|
89
89
|
ui.info(" Parsing file #{file_name}")
|
|
90
90
|
json_string = File.read(file_name)
|
|
91
|
-
reports[org][report] =
|
|
91
|
+
reports[org][report] = tidy.json_file_to_hash(json_string, symbolize_names: false)
|
|
92
92
|
rescue Errno::ENOENT
|
|
93
93
|
ui.info(" Skipping file #{file_name} - not found for organization #{org}")
|
|
94
94
|
reports[org][report] = {}
|
|
@@ -91,7 +91,7 @@ class Chef
|
|
|
91
91
|
return unless ::File.exist?(unused_cookbooks_file)
|
|
92
92
|
|
|
93
93
|
ui.stdout.puts "INFO: Cleaning cookbooks for Org: #{org}, using #{unused_cookbooks_file}"
|
|
94
|
-
unused_cookbooks =
|
|
94
|
+
unused_cookbooks = tidy.json_file_to_hash(unused_cookbooks_file, symbolize_names: true)
|
|
95
95
|
unused_cookbooks.keys.each do |cookbook|
|
|
96
96
|
versions = unused_cookbooks[cookbook]
|
|
97
97
|
versions.each do |version|
|
|
@@ -118,7 +118,7 @@ class Chef
|
|
|
118
118
|
return unless ::File.exist?(stale_nodes_file)
|
|
119
119
|
|
|
120
120
|
ui.stdout.puts "INFO: Cleaning stale nodes for Org: #{org}, using #{stale_nodes_file}"
|
|
121
|
-
stale_nodes =
|
|
121
|
+
stale_nodes = tidy.json_file_to_hash(stale_nodes_file, symbolize_names: true)
|
|
122
122
|
stale_nodes[:list].each do |node|
|
|
123
123
|
queue << -> { delete_node_job(org, node) }
|
|
124
124
|
end
|
data/lib/chef/tidy_acls.rb
CHANGED
|
@@ -20,26 +20,26 @@ class Chef
|
|
|
20
20
|
def load_users
|
|
21
21
|
@tidy.ui.stdout.puts "INFO: Loading users"
|
|
22
22
|
Dir[::File.join(@tidy.users_path, "*.json")].each do |user|
|
|
23
|
-
@users.push(
|
|
23
|
+
@users.push(@tidy.json_file_to_hash(user, symbolize_names: true))
|
|
24
24
|
end
|
|
25
25
|
end
|
|
26
26
|
|
|
27
27
|
def load_members
|
|
28
28
|
@tidy.ui.stdout.puts "INFO: Loading members for #{@org}"
|
|
29
|
-
@members =
|
|
29
|
+
@members = @tidy.json_file_to_hash(@tidy.members_path(@org), symbolize_names: true)
|
|
30
30
|
end
|
|
31
31
|
|
|
32
32
|
def load_clients
|
|
33
33
|
@tidy.ui.stdout.puts "INFO: Loading clients for #{@org}"
|
|
34
34
|
Dir[::File.join(@tidy.clients_path(@org), "*.json")].each do |client|
|
|
35
|
-
@clients.push(
|
|
35
|
+
@clients.push(@tidy.json_file_to_hash(client, symbolize_names: true))
|
|
36
36
|
end
|
|
37
37
|
end
|
|
38
38
|
|
|
39
39
|
def load_groups
|
|
40
40
|
@tidy.ui.stdout.puts "INFO: Loading groups for #{@org}"
|
|
41
41
|
Dir[::File.join(@tidy.groups_path(@org), "*.json")].each do |group|
|
|
42
|
-
@groups.push(
|
|
42
|
+
@groups.push(@tidy.json_file_to_hash(group, symbolize_names: true))
|
|
43
43
|
end
|
|
44
44
|
end
|
|
45
45
|
|
|
@@ -128,7 +128,7 @@ class Chef
|
|
|
128
128
|
|
|
129
129
|
def remove_group_from_acl(group, acl_file)
|
|
130
130
|
@tidy.ui.stdout.puts "REPAIRING: Removing invalid group: #{group} from #{acl_file}"
|
|
131
|
-
acl =
|
|
131
|
+
acl = @tidy.json_file_to_hash(acl_file, symbolize_names: false)
|
|
132
132
|
acl_ops.each do |op|
|
|
133
133
|
acl[op]["groups"].reject! { |the_group| the_group == group }
|
|
134
134
|
end
|
|
@@ -137,7 +137,7 @@ class Chef
|
|
|
137
137
|
|
|
138
138
|
# Appends the proper acls for ::server-admins and the org's read access group if they are missing.
|
|
139
139
|
def ensure_global_group_acls(acl_file)
|
|
140
|
-
acl =
|
|
140
|
+
acl = @tidy.json_file_to_hash(acl_file, symbolize_names: false)
|
|
141
141
|
acl_ops.each do |op|
|
|
142
142
|
unless acl[op]["groups"].include? "::server-admins"
|
|
143
143
|
@tidy.ui.stdout.puts "REPAIRING: Adding #{op} acl for ::server-admins in #{acl_file}"
|
|
@@ -152,7 +152,7 @@ class Chef
|
|
|
152
152
|
end
|
|
153
153
|
|
|
154
154
|
def ensure_client_read_acls(acl_file)
|
|
155
|
-
acl =
|
|
155
|
+
acl = @tidy.json_file_to_hash(acl_file, symbolize_names: false)
|
|
156
156
|
%w{users admins}.each do |group|
|
|
157
157
|
unless acl["read"]["groups"].include? group
|
|
158
158
|
@tidy.ui.stdout.puts "REPAIRING: Adding read acl for #{group} in #{acl_file}"
|
|
@@ -164,7 +164,7 @@ class Chef
|
|
|
164
164
|
|
|
165
165
|
def validate_acls
|
|
166
166
|
org_acls.each do |acl_file|
|
|
167
|
-
acl =
|
|
167
|
+
acl = @tidy.json_file_to_hash(acl_file, symbolize_names: false)
|
|
168
168
|
actors_groups = acl_actors_groups(acl)
|
|
169
169
|
actors_groups[:actors].each do |actor|
|
|
170
170
|
next if actor == "pivotal"
|
|
@@ -203,11 +203,11 @@ class Chef
|
|
|
203
203
|
@members.each do |member|
|
|
204
204
|
user_acl_path = ::File.join(@tidy.user_acls_path, "#{member[:user][:username]}.json")
|
|
205
205
|
begin
|
|
206
|
-
user_acl =
|
|
206
|
+
user_acl = @tidy.json_file_to_hash(user_acl_path, symbolize_names: false)
|
|
207
207
|
rescue Errno::ENOENT
|
|
208
208
|
@tidy.ui.stdout.puts "REPAIRING: Replacing missing user acl for #{member[:user][:username]}."
|
|
209
209
|
@tidy.write_new_file(default_user_acl(member), user_acl_path, backup = false)
|
|
210
|
-
user_acl =
|
|
210
|
+
user_acl = @tidy.json_file_to_hash(user_acl_path, symbolize_names: false)
|
|
211
211
|
end
|
|
212
212
|
ensure_global_group_acls(user_acl_path)
|
|
213
213
|
actors_groups = acl_actors_groups(user_acl)
|
|
@@ -221,11 +221,11 @@ class Chef
|
|
|
221
221
|
@clients.each do |client|
|
|
222
222
|
client_acl_path = ::File.join(@tidy.org_acls_path(@org), "clients", "#{client[:name]}.json")
|
|
223
223
|
begin
|
|
224
|
-
client_acl =
|
|
224
|
+
client_acl = @tidy.json_file_to_hash(client_acl_path, symbolize_names: false)
|
|
225
225
|
rescue Errno::ENOENT
|
|
226
226
|
@tidy.ui.stdout.puts "REPAIRING: Replacing missing client acl for #{client[:name]} in #{client_acl_path}."
|
|
227
227
|
@tidy.write_new_file(default_client_acl(client[:name]), client_acl_path, backup = false)
|
|
228
|
-
client_acl =
|
|
228
|
+
client_acl = @tidy.json_file_to_hash(client_acl_path, symbolize_names: false)
|
|
229
229
|
end
|
|
230
230
|
ensure_client_read_acls(client_acl_path)
|
|
231
231
|
end
|
data/lib/chef/tidy_common.rb
CHANGED
|
@@ -149,6 +149,23 @@ class Chef
|
|
|
149
149
|
end
|
|
150
150
|
end
|
|
151
151
|
|
|
152
|
+
# Read a json file and return a hash of parsed content with optional symbolized keys
|
|
153
|
+
#
|
|
154
|
+
# @param [String] path to file
|
|
155
|
+
# @param [double splat] options to pass FFI_Yajl::Parser.parse()
|
|
156
|
+
#
|
|
157
|
+
# @return [Hash] original json content as hash
|
|
158
|
+
#
|
|
159
|
+
# @example
|
|
160
|
+
# json_file_to_hash('/path/to/file.json', symbolize_names: true) => { foo: "bar" }
|
|
161
|
+
#
|
|
162
|
+
def json_file_to_hash(file_path, **options)
|
|
163
|
+
FFI_Yajl::Parser.parse(File.read(file_path), options)
|
|
164
|
+
rescue Errno::ENOENT, Errno::EACCES, FFI_Yajl::ParseError
|
|
165
|
+
puts "ERROR: unable to parse file: '#{file_path}'"
|
|
166
|
+
raise
|
|
167
|
+
end
|
|
168
|
+
|
|
152
169
|
#
|
|
153
170
|
# Determine the cookbook name from path
|
|
154
171
|
#
|
|
@@ -17,7 +17,7 @@ class Chef
|
|
|
17
17
|
|
|
18
18
|
def load_data
|
|
19
19
|
@tidy.ui.stdout.puts "INFO: Loading substitutions from #{file_path}"
|
|
20
|
-
@data =
|
|
20
|
+
@data = @tidy.json_file_to_hash(@file_path, symbolize_names: false)
|
|
21
21
|
rescue Errno::ENOENT
|
|
22
22
|
raise NoSubstitutionFile, file_path
|
|
23
23
|
end
|
data/lib/knife-tidy/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: knife-tidy
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 2.0.
|
|
4
|
+
version: 2.0.12
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Jeremy Miller
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-04-
|
|
11
|
+
date: 2020-04-20 00:00:00.000000000 Z
|
|
12
12
|
dependencies: []
|
|
13
13
|
description: Report on stale Chef Server nodes and cookbooks and clean up data integrity
|
|
14
14
|
issues in a knife-ec-backup object based backup
|