pipe2me-client 0.2.0

data/lib/pipe2me/tunnel/openssl.rb

@@ -0,0 +1,29 @@
+module Pipe2me::Tunnel::OpenSSL
+  HTTP = Pipe2me::HTTP
+
+  SSL_KEY     = Pipe2me::Tunnel::SSL_KEY
+  SSL_CERT    = Pipe2me::Tunnel::SSL_CERT
+
+  def openssl_conf
+    File.join(File.dirname(__FILE__), "openssl.conf")
+  end
+
+  # create openssl private key and cert signing request.
+  def ssl_keygen
+    sys! "openssl",
+      "req", "-config", openssl_conf,
+      "-new", "-nodes",
+      "-keyout", SSL_KEY,
+      "-out", "#{SSL_KEY}.csr",
+      "-subj", "/C=de/ST=ne/L=Berlin/O=pipe2me/CN=#{config.fqdn}",
+      "-days", "7300"
+  end
+
+  # send cert signing request to server and receive certificate
+  def ssl_certsign
+    cert = HTTP.post!("#{url}/cert.pem", File.read("#{SSL_KEY}.csr"), {'Content-Type' =>'text/plain'})
+    UI.debug "received certificate:\n#{cert}"
+
+    File.atomic_write SSL_CERT, cert
+  end
+end

data/lib/pipe2me/tunnel/ssh.rb

@@ -0,0 +1,16 @@
+module Pipe2me::Tunnel::SSH
+  HTTP = Pipe2me::HTTP
+
+  SSH_PUBKEY  = Pipe2me::Tunnel::SSH_PUBKEY
+  SSH_PRIVKEY = Pipe2me::Tunnel::SSH_PRIVKEY
+
+  def ssh_keygen
+    sh! "ssh-keygen -t rsa -N '' -C #{config.fqdn} -f pipe2me.id_rsa >&2"
+    sh! "chmod 600 pipe2me.id_rsa*"
+    HTTP.post!("#{url}/id_rsa.pub", File.read(SSH_PUBKEY), {'Content-Type' =>'text/plain'})
+  rescue
+    FileUtils.rm_rf SSH_PRIVKEY
+    FileUtils.rm_rf SSH_PUBKEY
+    raise
+  end
+end

data/lib/pipe2me/version.rb

@@ -0,0 +1,4 @@
+module Pipe2me
+  VERSION = "0.2.0"
+  BANNER = "pipe2.me command line client V#{Pipe2me::VERSION}; (c) The kink team, 2013, 2014."
+end

data/test/000-roundup-test.sh

@@ -0,0 +1,7 @@
+#!/usr/bin/env roundup
+describe "Is roundup working?"
+
+it_exits_non_zero() {
+  roundup=$(which roundup)
+  test "" != $roundup
+}

data/test/auth-token-test.sh

@@ -0,0 +1,12 @@
+#!/usr/bin/env roundup
+describe "fails on invalid and missing auth"
+
+. $(dirname $1)/testhelper.inc
+
+it_fails_on_invalid_auth() {
+  ! $pipe2me setup --server $pipe2me_server --auth $pipe2me_token.invalid
+}
+
+it_fails_on_missing_auth_token() {
+  ! $pipe2me setup --server $pipe2me_server
+}

data/test/env-test.sh

@@ -0,0 +1,23 @@
+#!/usr/bin/env roundup
+describe "show pipe2me environment"
+
+. $(dirname $1)/testhelper.inc
+
+it_start_a_tunnel() {
+  fqdn=$($pipe2me setup --server $pipe2me_server --auth $pipe2me_token)
+  $pipe2me env > env
+  echo "== env is ============="
+  cat env
+  echo "== env done ============="
+  
+  cat env | grep PIPE2ME_SERVER
+  cat env | grep PIPE2ME_TOKEN
+  cat env | grep PIPE2ME_FQDN
+  cat env | grep PIPE2ME_URLS_0
+  cat env | grep PIPE2ME_TUNNEL
+  ! (cat env | grep PIPE2ME_URLS_1)
+
+  # can we source the env?
+  eval $($pipe2me env)
+  echo $PIPE2ME_URLS_0 | grep http
+}

data/test/foreman-test.sh

@@ -0,0 +1,11 @@
+#!/usr/bin/env roundup
+describe "setup and starts tunnels in foreman mode"
+
+. $(dirname $1)/testhelper.inc
+
+it_works_with_foreman() {
+  false [TODO] It setup and starts tunnels in foreman mode
+  # i.e.  pipe2me setup
+  #       pipe2me echo
+  #       ...
+}

data/test/monitrc-test.sh

@@ -0,0 +1,23 @@
+#!/usr/bin/env roundup
+describe "setup and starts tunnels in foreman mode"
+
+. $(dirname $1)/testhelper.inc
+
+it_works_with_monitrc() {
+  false [TODO] It setup and starts tunnels in monitrc mode
+  # i.e.  pipe2me setup
+  #       pipe2me monitrc
+  #       pipe2me monit start all
+  #       ...
+}
+
+it_creates_a_monitrc_file() {
+  ! [ -e pipe2me.monitrc ]
+  fqdn=$($pipe2me setup --server $pipe2me_server --auth $pipe2me_token)
+
+  $pipe2me monitrc
+  [ -e pipe2me.monitrc ]
+  
+  # The file is 0600
+  ls -l pipe2me.monitrc | grep -e "-rw-------"
+}

data/test/opensslkey-test.sh

@@ -0,0 +1,25 @@
+#!/usr/bin/env roundup
+describe "openssl tests"
+
+. $(dirname $1)/testhelper.inc
+
+# setup creates and signs openssl credentials
+it_sets_up_openssl_certs() {
+  fqdn=$($pipe2me setup --server $pipe2me_server --auth $pipe2me_token)
+  test -f pipe2me.openssl.priv
+  cat pipe2me.openssl.priv | grep "BEGIN RSA PRIVATE KEY"
+
+  test -f pipe2me.openssl.cert
+  cat pipe2me.openssl.cert | grep "BEGIN CERTIFICATE"
+
+  # verify cert name
+  openssl x509 -in pipe2me.openssl.cert  -text | grep CN=$fqdn
+}
+
+it_cannot_sign_other_certs() {
+  false [TODO] A certificate cannot be used to sign other certificates
+}
+
+it_cannot_sign_fake_certs() {
+  false [TODO] A client cannot ask the server to sign certs with different names
+}

data/test/redirection-test.sh

@@ -0,0 +1,12 @@
+#!/usr/bin/env roundup
+describe 'a HTTP(s) connection to subdomain.$pipe2me_server redirects to subdomain.$pipe2me_server:port'  
+
+. $(dirname $1)/testhelper.inc
+
+it_redirects_https_connections() {
+  false [TODO] 'redirects https://subdomain.$pipe2me_server to https://subdomain.$pipe2me_server:port'
+}
+
+it_redirects_http_connections() {
+  false [TODO] 'redirects http://subdomain.$pipe2me_server to http://subdomain.$pipe2me_server:port'
+}

data/test/setup-test.sh

@@ -0,0 +1,18 @@
+#!/usr/bin/env roundup
+describe "tunnel setup"
+
+. $(dirname $1)/testhelper.inc
+
+# setup a tunnel
+it_sets_up_tunnels() {
+  fqdn=$($pipe2me setup --server $pipe2me_server --auth $pipe2me_token)
+  
+  # pipe2me setup --server $pipe2me_server returns the fqdn of the subdomain and nothing else
+  test 1 -eq $(echo $fqdn | wc -l)  
+
+  # The subdomain is actually a subdomain.
+  echo $fqdn | grep \.pipe2\.dev
+
+  # Cannot setup a second tunnel in the same directory.
+  ! $pipe2me setup --server $pipe2me_server --auth $pipe2me_token
+}

data/test/sshkey-test.sh

@@ -0,0 +1,13 @@
+#!/usr/bin/env roundup
+describe "ssh key creation"
+
+. $(dirname $1)/testhelper.inc
+
+it_sets_up_ssh_identity() {
+  fqdn=$($pipe2me setup --server $pipe2me_server --auth $pipe2me_token)
+  test -f pipe2me.id_rsa.pub
+  test -f pipe2me.id_rsa
+  
+  # identity must contain $fqdn
+  cat pipe2me.id_rsa.pub | grep $fqdn
+}

data/test/testhelper.debug

@@ -0,0 +1,2 @@
+pipe2me_server=http://pipe2.dev:8080
+pipe2me_token=test@test.kinko.me

data/test/testhelper.inc

@@ -0,0 +1,24 @@
+# The pipe2me binary to test
+pipe2me=$(cd $(dirname $1)/../bin && pwd)/pipe2me
+# pipe2me_server=http://test.pipe2.me:8080
+
+# Load test scenario settings
+echo "Load $TEST_ENV test settings"
+if [ -z "$TEST_ENV" ]; then
+  TEST_ENV=debug
+fi
+
+. $(dirname $1)/testhelper.${TEST_ENV}
+
+# A temporary workspace to run tests.
+scrub=$(cd $(dirname $1)/../tmp && pwd)/scrub
+
+before() {
+  mkdir -p $scrub
+  cd $scrub
+}
+
+after() {
+  cd ..
+  rm -rf $scrub
+}

data/test/testhelper.release

@@ -0,0 +1,2 @@
+pipe2me_server=http://pipe2.dev:8080
+pipe2me_token=test@test.kinko.me

data/test/version-test.sh

@@ -0,0 +1,9 @@
+#!/usr/bin/env roundup
+describe "-h shows help"
+
+. $(dirname $1)/testhelper.inc
+
+it_shows_help() {
+  help=$($pipe2me -h)
+  test "" != "$help"
+}

metadata

@@ -0,0 +1,131 @@
+--- !ruby/object:Gem::Specification
+name: pipe2me-client
+version: !ruby/object:Gem::Version
+  version: 0.2.0
+platform: ruby
+authors:
+- radiospiel
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-01-18 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rack
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: thor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: foreman
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simple-ui
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: pipe2.me command line client V0.2.0; (c) The kink team, 2013, 2014.
+email: contact@kinko.me
+executables:
+- pipe2me
+extensions: []
+extra_rdoc_files: []
+files:
+- README.mdown
+- bin/pipe2me
+- lib/pipe2me.rb
+- lib/pipe2me/cli-foreman.rb
+- lib/pipe2me/cli-monit.rb
+- lib/pipe2me/cli.rb
+- lib/pipe2me/config.rb
+- lib/pipe2me/ext/file_ext.rb
+- lib/pipe2me/ext/http.rb
+- lib/pipe2me/ext/shell_format.rb
+- lib/pipe2me/ext/sys.rb
+- lib/pipe2me/tunnel.rb
+- lib/pipe2me/tunnel/commands.rb
+- lib/pipe2me/tunnel/echo/http
+- lib/pipe2me/tunnel/echo/https
+- lib/pipe2me/tunnel/openssl.conf
+- lib/pipe2me/tunnel/openssl.rb
+- lib/pipe2me/tunnel/ssh.rb
+- lib/pipe2me/version.rb
+- test/000-roundup-test.sh
+- test/auth-token-test.sh
+- test/env-test.sh
+- test/foreman-test.sh
+- test/monitrc-test.sh
+- test/opensslkey-test.sh
+- test/redirection-test.sh
+- test/setup-test.sh
+- test/sshkey-test.sh
+- test/testhelper.debug
+- test/testhelper.inc
+- test/testhelper.release
+- test/version-test.sh
+homepage: https://github.com/kinko/pipe2me-client
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.1
+signing_key: 
+specification_version: 4
+summary: pipe2.me command line client V0.2.0; (c) The kink team, 2013, 2014.
+test_files: []