maitre_d 0.2.0 → 0.3.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 1e79119958343605dabd87304c21e2e9c770711b
+  data.tar.gz: 4ed73d17abf94091dfb18e566984637699e8569a
+SHA512:
+  metadata.gz: 36feafdb16cd476413a95b34da6dfc675c43fa47772b04d6ec34117aeb71c42646556700920582689dda9fa845667451c93f8812408d340e14cd76eb5fe6cb3a
+  data.tar.gz: aa9b728329779092e8f1482e50db5dbfe45751cce6957135ec35f8d7f959b162cd55fbcd0e093db3534b7bf82249becbccdc3604981f217dc780b61b5d7c10bd

data/.travis.yml

@@ -1,7 +1,4 @@
 language: ruby
 rvm:
-  - 1.8.7
-  - 1.9.2
   - 1.9.3
-  - ree
 script: bundle exec rspec spec

data/Gemfile

@@ -1,9 +1,5 @@
 source "http://rubygems.org"
 
-gem 'combustion',
-  :git => 'git://github.com/pat/combustion',
-  :ref => 'd7a6836269a8fb528bc3721e9b8c06b5a62ef3cc'
-
 gemspec
 
 # Until a new Grape release is out:

data/HISTORY

@@ -1,3 +1,7 @@
+0.3.0 - July 27th 2013
+* No longer supporting 1.8.7/ree/1.9.2. Use 1.9.3 or 2.0.0.
+* Broadstack support.
+
 0.2.0 - December 12th 2012
 * Support region parameter from Heroku.
 * Adding tentative CloudControl support.

data/config/routes.rb

@@ -1,4 +1,5 @@
 Rails.application.routes.draw do
+  mount MaitreD::Broadstack::API   => '/broadstack'
   mount MaitreD::Heroku::API       => '/heroku'
   mount MaitreD::CloudControl::API => '/cloudcontrol'
   mount MaitreD::Opperator::API    => '/opperator'

data/lib/maitre_d.rb

@@ -3,6 +3,7 @@ require 'grape'
 module MaitreD
 end
 
+require 'maitre_d/broadstack'
 require 'maitre_d/heroku'
 require 'maitre_d/cloud_control'
 require 'maitre_d/opperator'

data/lib/maitre_d/broadstack.rb

@@ -0,0 +1,40 @@
+module MaitreD::Broadstack
+  def self.configure
+    yield self
+  end
+
+  def self.listener
+    @listener
+  end
+
+  def self.listener=(listener)
+    @listener = listener
+  end
+
+  def self.id
+    @id
+  end
+
+  def self.id=(id)
+    @id = id
+  end
+
+  def self.password
+    @password
+  end
+
+  def self.password=(password)
+    @password = password
+  end
+
+  def self.sso_salt
+    @sso_salt
+  end
+
+  def self.sso_salt=(salt)
+    @sso_salt = salt
+  end
+end
+
+require 'maitre_d/broadstack/api_helpers'
+require 'maitre_d/broadstack/api'

data/lib/maitre_d/broadstack/api.rb

@@ -0,0 +1,49 @@
+class MaitreD::Broadstack::API < Grape::API
+  helpers MaitreD::Broadstack::APIHelpers
+
+  resources :sso do
+    post do
+      error!('403 Forbidden', 403) unless valid_token? && valid_timestamp?
+
+      hash = listener.single_sign_on(params[:id])
+
+      hash[:session] ||= {}
+      hash[:session].each { |key, value| session[key] = value }
+
+      if env['action_dispatch.cookies']
+        env['action_dispatch.cookies']['heroku-nav-data'] = params['nav-data']
+      else
+        Rack::Utils.set_cookie_header! header, 'heroku-nav-data',
+          :value => params['nav-data']
+      end
+
+      status 302
+      header 'Location', hash[:uri]
+    end
+  end
+
+  resources :resources do
+    post do
+      authenticate!
+
+      listener.provision(
+        provider_id,            params[:plan],          params[:region],
+        params[:callback_url],  params[:logplex_token], params[:options]
+      )
+    end
+
+    put ':id' do
+      authenticate!
+
+      listener.plan_change(
+        params[:id], provider_id, params[:plan]
+      )
+    end
+
+    delete ':id' do
+      authenticate!
+
+      listener.deprovision params[:id]
+    end
+  end
+end

data/lib/maitre_d/broadstack/api_helpers.rb

@@ -0,0 +1,44 @@
+module MaitreD::Broadstack::APIHelpers
+  def authenticate!
+    error!('401 Unauthorized', 401) unless valid_authorization?
+  end
+
+  def listener
+    MaitreD::Broadstack.listener.new
+  end
+
+  def provider_id
+    params[:broadstack_id]
+  end
+
+  def session
+    env['rack.session']
+  end
+
+  def valid_timestamp?
+    params[:timestamp].to_i >= (Time.now - 5*60).to_i
+  end
+
+  def valid_token?
+    expected_token == params[:token]
+  end
+
+  private
+
+  def expected_token
+    @expected_token ||= Digest::SHA1.hexdigest(
+      "#{params[:id]}:#{MaitreD::Broadstack.sso_salt}:#{params[:timestamp]}"
+    ).to_s
+  end
+
+  def valid_authorization?
+    valid_authorization.strip == env['HTTP_AUTHORIZATION'].strip
+  end
+
+  def valid_authorization
+    encoded_authorization = Base64.encode64(
+      "#{MaitreD::Broadstack.id}:#{MaitreD::Broadstack.password}"
+    )
+    "Basic #{encoded_authorization}"
+  end
+end

data/maitre_d.gemspec

@@ -3,7 +3,7 @@ $:.push File.expand_path('../lib', __FILE__)
 
 Gem::Specification.new do |s|
   s.name        = 'maitre_d'
-  s.version     = '0.2.0'
+  s.version     = '0.3.0'
   s.authors     = ['Pat Allan']
   s.email       = ['pat@freelancing-gods.com']
   s.homepage    = 'http://github.com/flying-sphinx/maitre_d'
@@ -17,6 +17,7 @@ Gem::Specification.new do |s|
   s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
   s.require_paths = ['lib']
 
+  s.add_development_dependency 'combustion',  '0.5.1'
   s.add_development_dependency 'kensa',       '1.3.0'
   s.add_development_dependency 'rails',       '3.1.3'
   s.add_development_dependency 'rspec-rails', '2.7.0'

data/spec/api/broadstack/provisioning_spec.rb

@@ -0,0 +1,94 @@
+require 'spec_helper'
+
+describe 'Broadstack Provisioning API' do
+  let(:authorisation) { "Basic #{Base64.encode64('foo:bar')}" }
+  let(:json_response) { JSON.parse response.body }
+
+  describe 'Provisioning' do
+    let(:params) {
+      {
+        :plan         => 'basic',
+        :callback_url => 'https://domain/vendor/apps/app123%40broadstack.com',
+        :broadstack_id    => 'app123@broadstack.com'
+      }
+    }
+
+    it "returns a 401 if the HTTP authorisation does not match" do
+      post '/broadstack/resources', params,
+        {'HTTP_AUTHORIZATION' => 'Basic foobarbaz'}
+
+      response.status.should == 401
+    end
+
+    it "returns the resource id" do
+      post '/broadstack/resources', params, {'HTTP_AUTHORIZATION' => authorisation}
+
+      json_response['id'].should == '123'
+    end
+
+    it "returns the resource configuration" do
+      post '/broadstack/resources', params, {'HTTP_AUTHORIZATION' => authorisation}
+
+      json_response['config'].should == {'FOO_PROVISIONED' => "true"}
+    end
+
+    it "returns a custom message" do
+      post '/broadstack/resources', params, {'HTTP_AUTHORIZATION' => authorisation}
+
+      json_response['message'].should == 'Add-on provisioned!'
+    end
+
+    it "returns the region if it exists" do
+      post '/broadstack/resources', params.merge(:region => 'us-west'),
+        {'HTTP_AUTHORIZATION' => authorisation}
+
+      json_response['region'].should == 'us-west'
+    end
+  end
+
+  describe 'Changing Plans' do
+    let(:params) {
+      {:broadstack_id => 'app123@broadstack.com', :plan => 'premium'}
+    }
+
+    it "returns a 401 if the HTTP authorisation does not match" do
+      put '/broadstack/resources/7', params,
+        {'HTTP_AUTHORIZATION' => 'Basic foobarbaz'}
+
+      response.status.should == 401
+    end
+
+    it "returns the new resource configuration" do
+      put '/broadstack/resources/7', params, {'HTTP_AUTHORIZATION' => authorisation}
+
+      json_response['config'].should == {'FOO_PROVISIONED' => "false"}
+    end
+
+    it "returns a custom message" do
+      put '/broadstack/resources/7', params, {'HTTP_AUTHORIZATION' => authorisation}
+
+      json_response['message'].should == 'Add-on upgraded or downgraded.'
+    end
+  end
+
+  describe 'Deprovisioning' do
+    it "returns a 401 if the HTTP authorisation does not match" do
+      delete '/broadstack/resources/28', {},
+        {'HTTP_AUTHORIZATION' => 'Basic foobarbaz'}
+
+      response.status.should == 401
+    end
+
+    it "returns with a status of 200" do
+      delete '/broadstack/resources/28', {}, {'HTTP_AUTHORIZATION' => authorisation}
+
+      response.status.should == 200
+    end
+
+    it "returns a custom message" do
+      delete '/broadstack/resources/28', {}, {'HTTP_AUTHORIZATION' => authorisation}
+
+      json_response['message'].should == 'Add-on removed.'
+    end
+  end
+end

data/spec/api/broadstack/single_sign_on_spec.rb

@@ -0,0 +1,49 @@
+require 'spec_helper'
+
+describe 'Broadstack SSO API' do
+  let(:timestamp) { Time.now.to_i }
+  let(:nav_data)  { 'heroku-nav-data-goes-here' }
+  let(:token)     {
+    pre_token = "789:sea salt:#{timestamp.to_s}"
+    Digest::SHA1.hexdigest(pre_token).to_s
+  }
+
+  it "renders a 403 if the token is incorrect" do
+    post '/broadstack/sso', :token => 'foo', :id => '789',
+      :timestamp => timestamp, 'nav-data' => nav_data
+
+    response.status.should == 403
+  end
+
+  it "renders a 403 if the timestamp is older than 5 minutes" do
+    timestamp = 5.minutes.ago.to_i - 1
+    pre_token = "789:sea salt:#{timestamp.to_s}"
+    token     = Digest::SHA1.hexdigest(pre_token).to_s
+
+    post '/broadstack/sso', :token => token, :id => '789',
+      :timestamp => timestamp, 'nav-data' => nav_data
+
+    response.status.should == 403
+  end
+
+  it "sets the heroku nav data cookie" do
+    post '/broadstack/sso', :token => token, :id => '789',
+      :timestamp => timestamp, 'nav-data' => nav_data
+
+    cookies['heroku-nav-data'].should == nav_data
+  end
+
+  it "redirects to the appropriate URL" do
+    post '/broadstack/sso', :token => token, :id => '789',
+      :timestamp => timestamp, 'nav-data' => nav_data
+
+    response.should redirect_to('/my/dashboard')
+  end
+
+  it "should set the provided session variables" do
+    post '/broadstack/sso', :token => token, :id => '789',
+      :timestamp => timestamp, 'nav-data' => nav_data
+
+    session[:app_id].should == '789'
+  end
+end

data/spec/internal/app/listeners/broadstack_listener.rb

@@ -0,0 +1,30 @@
+class BroadstackListener
+  def provision(heroku_id, plan, region, callback_url, logplex_token, options)
+    {
+      :id      => '123',
+      :config  => {'FOO_PROVISIONED' => 'true'},
+      :message => 'Add-on provisioned!',
+      :region  => region
+    }
+  end
+
+  def plan_change(resource_id, heroku_id, plan)
+    {
+      :config  => {'FOO_PROVISIONED' => 'false'},
+      :message => 'Add-on upgraded or downgraded.'
+    }
+  end
+
+  def deprovision(resource_id)
+    {
+      :message => 'Add-on removed.'
+    }
+  end
+
+  def single_sign_on(resource_id)
+    {
+      :uri     => '/my/dashboard',
+      :session => {:app_id => resource_id}
+    }
+  end
+end

data/spec/internal/config/initializers/broadstack.rb

@@ -0,0 +1,6 @@
+MaitreD::Broadstack.configure do |config|
+  config.id       = 'foo'
+  config.password = 'bar'
+  config.sso_salt = 'sea salt'
+  config.listener = BroadstackListener
+end

data/spec/spec_helper.rb

@@ -1,7 +1,7 @@
-require 'rubygems'
-require 'bundler'
+require 'bundler/setup'
 
-Bundler.require :default, :development
+require 'combustion'
+require 'maitre_d'
 
 Combustion.initialize! :action_controller
 

metadata

@@ -1,20 +1,32 @@
 --- !ruby/object:Gem::Specification
 name: maitre_d
 version: !ruby/object:Gem::Version
-  version: 0.2.0
-  prerelease: 
+  version: 0.3.0
 platform: ruby
 authors:
 - Pat Allan
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-12-12 00:00:00.000000000 Z
+date: 2013-07-27 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: combustion
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.5.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.5.1
 - !ruby/object:Gem::Dependency
   name: kensa
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - '='
       - !ruby/object:Gem::Version
@@ -22,7 +34,6 @@ dependencies:
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - '='
       - !ruby/object:Gem::Version
@@ -30,7 +41,6 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - '='
       - !ruby/object:Gem::Version
@@ -38,7 +48,6 @@ dependencies:
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - '='
       - !ruby/object:Gem::Version
@@ -46,7 +55,6 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: rspec-rails
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - '='
       - !ruby/object:Gem::Version
@@ -54,7 +62,6 @@ dependencies:
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - '='
       - !ruby/object:Gem::Version
@@ -78,6 +85,9 @@ files:
 - config.ru
 - config/routes.rb
 - lib/maitre_d.rb
+- lib/maitre_d/broadstack.rb
+- lib/maitre_d/broadstack/api.rb
+- lib/maitre_d/broadstack/api_helpers.rb
 - lib/maitre_d/cloud_control.rb
 - lib/maitre_d/cloud_control/api.rb
 - lib/maitre_d/cloud_control/api_helpers.rb
@@ -91,14 +101,18 @@ files:
 - lib/maitre_d/opperator/api_helpers.rb
 - lib/maitre_d/opperator/listener.rb
 - maitre_d.gemspec
+- spec/api/broadstack/provisioning_spec.rb
+- spec/api/broadstack/single_sign_on_spec.rb
 - spec/api/cloud_control/provisioning_spec.rb
 - spec/api/cloud_control/single_sign_on_spec.rb
 - spec/api/heroku/provisioning_spec.rb
 - spec/api/heroku/single_sign_on_spec.rb
 - spec/api/opperator/provisioning_spec.rb
+- spec/internal/app/listeners/broadstack_listener.rb
 - spec/internal/app/listeners/cloud_control_listener.rb
 - spec/internal/app/listeners/heroku_listener.rb
 - spec/internal/app/listeners/opperator_listener.rb
+- spec/internal/config/initializers/broadstack.rb
 - spec/internal/config/initializers/cloud_control.rb
 - spec/internal/config/initializers/heroku.rb
 - spec/internal/config/initializers/opperator.rb
@@ -108,37 +122,40 @@ files:
 - spec/spec_helper.rb
 homepage: http://github.com/flying-sphinx/maitre_d
 licenses: []
+metadata: {}
 post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project: maitre_d
-rubygems_version: 1.8.23
+rubygems_version: 2.0.2
 signing_key: 
-specification_version: 3
+specification_version: 4
 summary: Rack API and Rails Engine for Heroku and Opperator add-ons
 test_files:
+- spec/api/broadstack/provisioning_spec.rb
+- spec/api/broadstack/single_sign_on_spec.rb
 - spec/api/cloud_control/provisioning_spec.rb
 - spec/api/cloud_control/single_sign_on_spec.rb
 - spec/api/heroku/provisioning_spec.rb
 - spec/api/heroku/single_sign_on_spec.rb
 - spec/api/opperator/provisioning_spec.rb
+- spec/internal/app/listeners/broadstack_listener.rb
 - spec/internal/app/listeners/cloud_control_listener.rb
 - spec/internal/app/listeners/heroku_listener.rb
 - spec/internal/app/listeners/opperator_listener.rb
+- spec/internal/config/initializers/broadstack.rb
 - spec/internal/config/initializers/cloud_control.rb
 - spec/internal/config/initializers/heroku.rb
 - spec/internal/config/initializers/opperator.rb