miam 0.1.0.beta

data/lib/miam/exporter.rb

@@ -0,0 +1,137 @@
+class Miam::Exporter
+  def self.export(iam, options = {}, &block)
+    self.new(iam, options).export(&block)
+  end
+
+  def initialize(iam, options = {})
+    @iam = iam
+    @options = options
+  end
+
+  def export(&block)
+    users = list_users
+    groups = list_groups
+    group_users = {}
+
+    export_options = {
+      :progress_total => (users.length + groups.length),
+      :progress => 0,
+    }
+
+    expected = {
+      :users => export_users(users, group_users, export_options, &block),
+      :groups => export_groups(groups, export_options, &block),
+    }
+
+    [expected, group_users]
+  end
+
+  private
+
+  def export_users(users, group_users, export_options = {})
+    result = {}
+
+    users.each do |user|
+      user_name = user.user_name
+
+      groups = export_user_groups(user_name)
+
+      groups.each do |group_name|
+        group_users[group_name] ||= []
+        group_users[group_name] << user_name
+      end
+
+      result[user_name] = {
+        :path => user.path,
+        :groups => groups,
+        :policies => export_user_policies(user_name),
+      }
+
+      login_profile = export_login_profile(user_name)
+
+      if login_profile
+        result[user_name][:login_profile] = login_profile
+      end
+
+      export_options[:progress] += 1
+      yield(export_options) if block_given?
+    end
+
+    result
+  end
+
+  def export_user_groups(user_name)
+    @iam.list_groups_for_user(:user_name => user_name).map {|resp|
+      resp.groups.map do |group|
+        group.group_name
+      end
+    }.flatten
+  end
+
+  def export_user_policies(user_name)
+    result = {}
+
+    @iam.list_user_policies(:user_name => user_name).each do |resp|
+      resp.policy_names.map do |policy_name|
+        policy = @iam.get_user_policy(:user_name => user_name, :policy_name => policy_name)
+        document = CGI.unescape(policy.policy_document)
+        result[policy_name] = JSON.parse(document)
+      end
+    end
+
+    result
+  end
+
+  def export_login_profile(user_name)
+    begin
+      resp = @iam.get_login_profile(:user_name => user_name)
+      {:password_reset_required => resp.login_profile.password_reset_required}
+    rescue Aws::IAM::Errors::NoSuchEntity
+      nil
+    end
+  end
+
+  def export_groups(groups, export_options = {})
+    result = {}
+
+    groups.each do |group|
+      group_name = group.group_name
+
+      result[group_name] = {
+        :path => group.path,
+        :policies => export_group_policies(group_name),
+      }
+
+      export_options[:progress] += 1
+      yield(export_options) if block_given?
+    end
+
+    result
+  end
+
+  def export_group_policies(group_name)
+    result = {}
+
+    @iam.list_group_policies(:group_name => group_name).each do |resp|
+      resp.policy_names.map do |policy_name|
+        policy = @iam.get_group_policy(:group_name => group_name, :policy_name => policy_name)
+        document = CGI.unescape(policy.policy_document)
+        result[policy_name] = JSON.parse(document)
+      end
+    end
+
+    result
+  end
+
+  def list_users
+    @iam.list_users.map {|resp|
+      resp.users.to_a
+    }.flatten
+  end
+
+  def list_groups
+    @iam.list_groups.map {|resp|
+      resp.groups.to_a
+    }.flatten
+  end
+end

data/lib/miam/ext/string_ext.rb

@@ -0,0 +1,25 @@
+class String
+  @@colorize = false
+
+  class << self
+    def colorize=(value)
+      @@colorize = value
+    end
+
+    def colorize
+      @@colorize
+    end
+  end # of class methods
+
+  Term::ANSIColor::Attribute.named_attributes.map do |attribute|
+    class_eval(<<-EOS, __FILE__, __LINE__ + 1)
+      def #{attribute.name}
+        if @@colorize
+          Term::ANSIColor.send(#{attribute.name.inspect}, self)
+        else
+          self
+        end
+      end
+    EOS
+  end
+end

data/lib/miam/logger.rb

@@ -0,0 +1,28 @@
+class Miam::Logger < ::Logger
+  include Singleton
+
+  def initialize
+    super($stdout)
+
+    self.formatter = proc do |severity, datetime, progname, msg|
+      "#{msg}\n"
+    end
+
+    self.level = Logger::INFO
+  end
+
+  def set_debug(value)
+    self.level = value ? Logger::DEBUG : Logger::INFO
+  end
+
+  module Helper
+    def log(level, message, options = {})
+      options = (@options || {}).merge(options)
+      message = "[#{level.to_s.upcase}] #{message}" unless level == :info
+      message << ' (dry-run)' if options[:dry_run]
+      message = message.send(options[:color]) if options[:color]
+      logger = options[:logger] || Miam::Logger.instance
+      logger.send(level, message)
+    end
+  end
+end

data/lib/miam/password_manager.rb

@@ -0,0 +1,37 @@
+class Miam::PasswordManager
+  def initialize(output, options = {})
+    @output = output
+    @options = options
+  end
+
+  def identify(user, type)
+    password = mkpasswd
+    puts_password(user, type, password)
+    password
+  end
+
+  def puts_password(user, type, password)
+    open_output do |f|
+      f.puts("#{user},#{type},#{password}")
+    end
+  end
+
+  private
+
+  def mkpasswd(len = 8)
+    [*1..9, *'A'..'Z', *'a'..'z'].shuffle.slice(0, len).join
+  end
+
+  def open_output
+    return if @options[:dry_run]
+
+    if @output == '-'
+      yield($stdout)
+      $stdout.flush
+    else
+      open(@output, 'a') do |f|
+        yield(f)
+      end
+    end
+  end
+end

data/lib/miam/utils.rb

@@ -0,0 +1,19 @@
+class Miam::Utils
+  class << self
+    def unbrace(str)
+      str.sub(/\A\s*\{/, '').sub(/\}\s*\z/, '')
+    end
+
+    def camelize(str)
+      str.slice(0, 1).upcase + str.slice(1..-1).downcase
+    end
+
+    def bytesize(str)
+      if str.respond_to?(:bytesize)
+        str.bytesize
+      else
+        str.length
+      end
+    end
+  end
+end

data/lib/miam/version.rb

@@ -0,0 +1,3 @@
+module Miam
+  VERSION = '0.1.0.beta'
+end

data/miam.gemspec

@@ -0,0 +1,28 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'miam/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'miam'
+  spec.version       = Miam::VERSION
+  spec.authors       = ['Genki Sugawara']
+  spec.email         = ['sgwr_dts@yahoo.co.jp']
+  spec.summary       = %q{TODO: Write a short summary. Required.}
+  spec.description   = %q{TODO: Write a longer description. Optional.}
+  spec.summary       = %q{Miam is a tool to manage IAM.}
+  spec.description   = %q{Miam is a tool to manage IAM. It defines the state of IAM using DSL, and updates IAM according to DSL.}
+  spec.homepage      = 'https://github.com/winebarrel/miam'
+  spec.license       = 'MIT'
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ['lib']
+
+  spec.add_dependency 'aws-sdk-core', '~> 2.0.3'
+  spec.add_dependency 'ruby-progressbar'
+  spec.add_dependency 'term-ansicolor'
+  spec.add_development_dependency 'bundler', '~> 1.7'
+  spec.add_development_dependency 'rake', '~> 10.0'
+end

metadata

@@ -0,0 +1,137 @@
+--- !ruby/object:Gem::Specification
+name: miam
+version: !ruby/object:Gem::Version
+  version: 0.1.0.beta
+platform: ruby
+authors:
+- Genki Sugawara
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-10-19 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: aws-sdk-core
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.0.3
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.0.3
+- !ruby/object:Gem::Dependency
+  name: ruby-progressbar
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: term-ansicolor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '10.0'
+description: Miam is a tool to manage IAM. It defines the state of IAM using DSL,
+  and updates IAM according to DSL.
+email:
+- sgwr_dts@yahoo.co.jp
+executables:
+- miam
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/miam
+- lib/miam.rb
+- lib/miam/client.rb
+- lib/miam/driver.rb
+- lib/miam/dsl.rb
+- lib/miam/dsl/context.rb
+- lib/miam/dsl/context/group.rb
+- lib/miam/dsl/context/user.rb
+- lib/miam/dsl/converter.rb
+- lib/miam/exporter.rb
+- lib/miam/ext/string_ext.rb
+- lib/miam/logger.rb
+- lib/miam/password_manager.rb
+- lib/miam/utils.rb
+- lib/miam/version.rb
+- miam.gemspec
+homepage: https://github.com/winebarrel/miam
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>'
+    - !ruby/object:Gem::Version
+      version: 1.3.1
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.1
+signing_key: 
+specification_version: 4
+summary: Miam is a tool to manage IAM.
+test_files: []