redhat_access 2.0.0

data/ca/rh_cert-api_chain.pem

@@ -0,0 +1,74 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/config/config.yml.example

@@ -0,0 +1,15 @@
+:strata_host : access.redhat.com
+:attachment_max_http_size : 250000000
+:attachment_ftp_host : dropbox.redhat.com
+:attachment_ftp_dir : /incoming
+:deployment : satellite
+
+:enable_telemetry_basic_auth : false
+:telemetry_upload_host : "https://cert-api.access.redhat.com"
+:telemetry_api_host : "https://cert-api.access.redhat.com"
+:telemetry_ssl_verify_peer : true
+
+:diagnostic_logs :
+  - /var/log/foreman/production.log
+  - /var/log/foreman/delayed_job.log
+  - /var/log/foreman/jobs-startup.log

data/config/environments/development.rb

@@ -0,0 +1,5 @@
+Foreman::Application.configure do
+  config.assets.debug = false
+  config.assets.compress = true
+  config.assets.compile = true
+end

data/config/initializers/load_config.rb

@@ -0,0 +1,5 @@
+if File.exists? ("#{RedhatAccess::Engine.root}/config/config.yml")
+  REDHAT_ACCESS_CONFIG = YAML.load_file("#{RedhatAccess::Engine.root}/config/config.yml")
+elsif File.exists? ('/etc/redhat_access/config.yml')
+  REDHAT_ACCESS_CONFIG = YAML.load_file('/etc/redhat_access/config.yml')
+end

data/config/mount_engine.rb

@@ -0,0 +1,3 @@
+Foreman::Application.routes.draw do
+  mount RedhatAccess::Engine, :at => "/redhat_access", :as => 'redhat_access'
+end

data/config/routes.rb

@@ -0,0 +1,36 @@
+RedhatAccess::Engine.routes.draw do
+
+  #API routes
+  get 'configuration' => 'configuration#index'
+  get 'logs' => 'api/logs#index'
+  get 'attachments' => 'api/attachments#index'
+  post 'attachments' => 'api/attachments#create'
+
+  unless  Foreman::Plugin.installed?('foreman_sam')
+    scope '/' do
+      resource :telemetry_configuration, only: [:show, :update]
+    end
+    get "/insights/templates/:page" => "analytics_dashboard#template"  # hack to get around angular-rails-templates bug
+    scope '/r/insights' do
+      get   '/',                    to: 'api/machine_telemetry_api#api_connection_test'
+      get   '/v1/branch_info',      to: 'api/machine_telemetry_api#get_branch_info'
+      post  '/uploads/(:id)',       to: 'api/machine_telemetry_api#proxy_upload'
+      get '/view/api/:v/me' ,   to: 'api/telemetry_api#connection_status', :constraints => {:v =>/(v[0-9]|latest)/}
+      match '/view/api/:path',      to: 'api/telemetry_api#proxy', :constraints => {:path => /.*/} ,via: [:get, :post, :delete,:put]
+      match '/:path',               to: 'api/machine_telemetry_api#proxy', :constraints => {:path => /.*/}, via: [:get, :post, :delete,:put]
+    end
+    get 'insights', to: 'analytics_dashboard#index'
+    get 'analytics_configuration', to: 'telemetry_configuration#index'
+    match '/insights/*path', to: 'analytics_dashboard#index', via: [:get]
+  end
+
+  scope '/strata' do
+    match '/:path', to: 'api/strata_proxy#call', :constraints => {:path => /.*/}, via: [:get, :post, :delete,:put]
+  end
+
+  #Angular UI routes
+
+  match '/:path',  to: 'redhat_access#index', :constraints => {:path => /.*/}, :via => [:get]
+  root :to => 'redhat_access#index'
+
+end

data/db/migrate/20141204161152_create_redhat_access_telemetry_proxy_credentials.rb

@@ -0,0 +1,11 @@
+class CreateRedhatAccessTelemetryProxyCredentials < ActiveRecord::Migration
+  def change
+    create_table :redhat_access_telemetry_proxy_credentials do |t|
+      t.string :username
+      t.string :password
+      t.string :strata_url
+
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20150319153744_create_redhat_access_telemetry_configurations.rb

@@ -0,0 +1,13 @@
+class CreateRedhatAccessTelemetryConfigurations < ActiveRecord::Migration
+  def change
+    create_table :redhat_access_telemetry_configurations do |t|
+      t.string :portal_user
+      t.string :portal_password
+      t.boolean :enable_telemetry
+      t.integer :organization_id
+
+      t.timestamps
+    end
+    add_index :redhat_access_telemetry_configurations, :organization_id
+  end
+end

data/db/migrate/20160425175501_add_email_to_telemetry_configurations.rb

@@ -0,0 +1,5 @@
+class AddEmailToTelemetryConfigurations < ActiveRecord::Migration
+  def change
+    add_column :redhat_access_telemetry_configurations, :email, :string
+  end
+end

data/db/seeds.d/200-update-insights-roles.rb

@@ -0,0 +1,11 @@
+Role.without_auditing do
+  insights_admin_role = Role.where(:name => "Access Insights Admin").first
+  insights_viewer_role = Role.where(:name => "Access Insights Viewer").first
+  view_host_perm = Permission.find_by_name(:view_hosts)
+  if insights_admin_role
+    insights_admin_role.add_permissions!(:view_hosts) unless insights_admin_role.has_permission?(view_host_perm)
+  end
+  if insights_viewer_role
+    insights_viewer_role.add_permissions!(:view_hosts) unless insights_viewer_role.has_permission?(view_host_perm)
+  end
+end

data/lib/redhat_access/configuration.rb

@@ -0,0 +1,8 @@
+module RedhatAccess
+  class Configuration
+    attr_reader :api
+    def initialize()
+
+    end
+  end
+end

data/lib/redhat_access/engine.rb

@@ -0,0 +1,225 @@
+# require 'fast_gettext'
+# require 'gettext_i18n_rails'
+# require 'deface'
+begin
+  # Since we depend on katello, need to force it load so our plugin
+  # dependency checks can work properly
+  require 'katello'
+  require 'foreman_sam.rb'
+rescue Exception => error
+  # don't need to do anything
+end
+
+module RedhatAccess
+  class Engine < ::Rails::Engine
+    isolate_namespace RedhatAccess
+
+    initializer 'redhat_access.load_app_instance_data' do |app|
+      unless app.root.to_s.match root.to_s
+        config.paths["db/migrate"].expanded.each do |expanded_path|
+          app.config.paths["db/migrate"] << expanded_path
+        end
+      end
+    end
+
+    initializer 'redhat_access.mount_engine', :after => :build_middleware_stack do |app|
+      app.routes_reloader.paths << "#{RedhatAccess::Engine.root}/config/mount_engine.rb"
+      app.reload_routes!
+    end
+
+    # Precompile any JS or CSS files under app/assets/
+    # If requiring files from each other, list them explicitly here to avoid precompiling the same
+    # content twice.
+    assets_to_precompile = [
+        'redhat_access/application.js',
+        'redhat_access/application.css',
+        'insights/application.js',
+        'insights/application.css'
+    ]
+    initializer 'redhat_access.assets.precompile' do |app|
+      app.config.assets.precompile += assets_to_precompile
+    end
+    initializer 'redhat_access.configure_assets', :group => :assets do
+      SETTINGS[:redhat_access] = {:assets => {:precompile => assets_to_precompile}}
+    end
+
+    initializer :security_initialization do |app|
+      app.config.filter_parameters << :authToken
+    end
+
+    initializer 'redhat_access.register_gettext', :after => :load_config_initializers do |_app|
+      locale_dir = File.join(File.expand_path('../../..', __FILE__), 'locale')
+      locale_domain = 'redhat_access'
+      Foreman::Gettext::Support.add_text_domain locale_domain, locale_dir
+    end
+
+    initializer :config_csp_headers do |_app|
+      ::SecureHeaders::Configuration.configure do |config|
+        if config && config.csp
+          if config.csp[:frame_src]
+            config.csp[:frame_src] = config.csp[:frame_src] << ' *.redhat.com  *.force.com'
+          end
+          if config.csp[:connect_src]
+            config.csp[:connect_src] = config.csp[:connect_src] << ' *.redhat.com'
+          end
+          if config.csp[:script_src]
+            config.csp[:script_src] = config.csp[:script_src] << ' *.redhat.com'
+          end
+          if config.csp[:img_src]
+            config.csp[:img_src] = config.csp[:img_src] << ' *.redhat.com'
+          end
+        end
+      end
+    end
+
+    config.after_initialize do
+      Foreman::Plugin.register :redhat_access do
+        #
+        # Start Monkey Patching
+        # Implement our own (temp until we fix foreman upstream)
+        #
+        class RhaItem < Menu::Item
+          def initialize(name, options)
+            super(name, options)
+          end
+
+          def authorized?
+            return false if @condition and not @condition.call
+            User.current.allowed_to?(url_hash.slice(:controller, :action, :id))
+          rescue => error
+            Rails.logger.error "#{error.message} (#{error.class})\n#{error.backtrace.join("\n")}"
+            false
+          end
+        end
+
+        def rha_menu(menu, name, options = {})
+          options.merge!(:parent => @parent) if @parent
+          Menu::Manager.map(menu).push(RhaItem.new(name, options), options)
+        end
+
+        #
+        # End monkey patching
+        #
+
+        def sam_deployment?
+          # TODO: make generic and move to lib util class
+          Foreman::Plugin.installed?('foreman_sam')
+        end
+
+        requires_foreman '> 1.6'
+        #requires_foreman_plugin 'katello', '> 3.0.0'
+
+
+        # permission section
+        security_block :redhat_access_security do
+          # Everything except logs should be available to all users
+          permission :view_search, {:"redhat_access/search" => [:index]}, :public => true
+          permission :view_cases, {:"redhat_access/cases" => [:index, :create]}, :public => true
+          permission :attachments, {:"redhat_access/attachments" => [:index, :create]}, :public => true
+          permission :configuration, {:"redhat_access/configuration" => [:index]}, :public => true
+          permission :app_root, {:"redhat_access/redhat_access" => [:index]}, :public => true
+
+          # Logs require special permissions
+          permission :view_log_viewer, {:"redhat_access/logviewer" => [:index]}
+          permission :logs, {:"redhat_access/logs" => [:index]}
+
+          unless sam_deployment?
+            # Proactive Diagnostics permissions
+            permission :rh_telemetry_api, {:"redhat_access/api/telemetry_api" => [:proxy, :connection_status]}
+            permission :rh_telemetry_view, {:"redhat_access/analytics_dashboard" => [:index]}
+            permission :rh_telemetry_configurations, {:"redhat_access/telemetry_configurations" => [:show, :update]}
+          end
+        end
+        # roles section
+        role "Red Hat Access Logs", [:logs, :view_log_viewer]
+        unless sam_deployment?
+          #Need to be kept in sync with db/seeds.d/20-update-insights-roles
+          role "Access Insights Viewer", [:rh_telemetry_api, :rh_telemetry_view]
+          role "Access Insights Admin", [:rh_telemetry_api, :rh_telemetry_view, :rh_telemetry_configurations]
+        end
+        # menus
+        sub_menu :header_menu, :redhat_access_menu, :caption => N_('Red Hat Access') do
+          menu :header_menu,
+               :Search,
+               :url => '/redhat_access/search',
+               :url_hash => {:controller => :"redhat_access/search", :action => :index},
+               :engine => RedhatAccess::Engine,
+               :turbolinks => false
+          menu :header_menu,
+               :LogViewer,
+               :url => '/redhat_access/logviewer',
+               :url_hash => {:controller => :"redhat_access/logs", :action => :index},
+               :engine => RedhatAccess::Engine,
+               :caption => N_('Logs'),
+               :turbolinks => false
+          divider :header_menu, :parent => :redhat_access_menu, :caption => N_('Support')
+          menu :header_menu,
+               :mycases,
+               :url => '/redhat_access/case/list',
+               :url_hash => {:controller => :"redhat_access/cases", :action => :index},
+               :engine => RedhatAccess::Engine,
+               :caption => N_('My Cases'),
+               :turbolinks => false
+
+          menu :header_menu, :new_cases, :caption => N_('Open New Case'),
+               :url => '/redhat_access/case/new',
+               :url_hash => {:controller => :"redhat_access/cases", :action => :create},
+               :engine => RedhatAccess::Engine,
+               :turbolinks => false
+
+        end
+
+        unless sam_deployment?
+          sub_menu :top_menu, :redhat_access_top_menu, :caption => N_('Red Hat Insights') do
+            rha_menu :top_menu,
+                     :rhai_dashboard,
+                     :caption => N_('Overview'),
+                     :url => '/redhat_access/insights',
+                     :url_hash => {:controller => :"redhat_access/analytics_dashboard", :action => :index},
+                     :engine => RedhatAccess::Engine,
+                     :turbolinks => false
+            rha_menu :top_menu,
+                     :rhai_actions,
+                     :caption => N_('Actions'),
+                     :url => '/redhat_access/insights/actions',
+                     :url_hash => {:controller => :"redhat_access/analytics_dashboard", :action => :index},
+                     :engine => RedhatAccess::Engine,
+                     :turbolinks => false
+            rha_menu :top_menu,
+                     :rhai_inventory,
+                     :caption => N_('Inventory'),
+                     :url => '/redhat_access/insights/inventory',
+                     :url_hash => {:controller => :"redhat_access/analytics_dashboard", :action => :index},
+                     :engine => RedhatAccess::Engine,
+                     :turbolinks => false
+            rha_menu :top_menu,
+                     :rhai_rules,
+                     :caption => N_('Rules'),
+                     :url => '/redhat_access/insights/rules',
+                     :url_hash => {:controller => :"redhat_access/analytics_dashboard", :action => :index},
+                     :engine => RedhatAccess::Engine,
+                     :turbolinks => false
+            rha_menu :top_menu,
+                     :rhai_configuration,
+                     :caption => N_('Manage'),
+                     :url => '/redhat_access/insights/manage',
+                     :url_hash => {:controller => :"redhat_access/telemetry_configurations", :action => :show},
+                     :engine => RedhatAccess::Engine,
+                     :turbolinks => false
+            rha_menu :top_menu,
+                     :rhai_help,
+                     :caption => N_('Help'),
+                     :url => '/redhat_access/insights/help',
+                     :url_hash => {:controller => :"redhat_access/analytics_dashboard", :action => :index},
+                     :engine => RedhatAccess::Engine,
+                     :turbolinks => false
+          end
+        end
+      end
+    end
+
+    config.to_prepare do
+      ::Organization.send :include, RedhatAccess::Concerns::OrganizationExtensions
+    end
+  end
+end

data/lib/redhat_access/sos_reports/generator.rb

@@ -0,0 +1,58 @@
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+require 'open3'
+module RedhatAccess::SosReports
+  SOS_COMMAND = "foreman-sosreport --batch -o foreman"
+  class Generator
+    def self.create_report case_num
+      command = SOS_COMMAND
+      unless case_num.nil?
+        unless is_valid_case_number case_num  #security injection check
+          raise ArgumentError.new "case number must be an integer"
+        else
+          command = command + " --ticket-number=#{case_num}"
+        end
+      end
+      begin
+        Open3.popen3(command) do |stdin, stdout, stderr, wait_thr|
+          report_location = ''
+          if wait_thr.value == 0
+            stdout.readlines.each do |line|
+              if line.include? "tar.xz"
+                report_location = line #brittle, but we assume only single line
+                break
+              end
+            end
+          else
+            #puts "sos report failed"
+          end
+          sos_file_name = report_location.strip
+          puts "SOS file created : " + sos_file_name
+          sos_file_name
+        end
+      rescue => exception
+        Rails.logger.error("Error Creating SOS report: #{$!}")
+        raise exception
+      end
+
+    end
+
+    def self.is_valid_case_number case_num
+      if case_num.nil?
+        return false
+      end
+      case_num.to_s =~ /\A\d+\z/ ? true : false
+    end
+  end
+end

data/lib/redhat_access/strata/client.rb

@@ -0,0 +1,39 @@
+require 'redhat_access_lib'
+require 'base64'
+module RedhatAccess::Strata
+  class Client
+    attr_reader :api
+    def initialize(token)
+      username = ""
+      password = ""
+      unless token.nil?
+        token = Base64.decode64(token)
+        username,password = token.split(":")
+      end
+      config = RedHatSupportLib::Network::Config.new
+      config.base_uri = 'https://api.' + REDHAT_ACCESS_CONFIG[:strata_host]
+      config.username= username
+      config.password = password
+      config.proxy = get_portal_http_proxy
+      attachments_config = {:max_http_size => REDHAT_ACCESS_CONFIG[:attachment_max_http_size],
+                            :ftp_host => REDHAT_ACCESS_CONFIG[:attachment_ftp_host],
+                            :ftp_remote_dir => REDHAT_ACCESS_CONFIG[:attachment_ftp_dir]}
+      @api = RedHatSupportLib::Api::API.new(config,attachments_config)
+    end
+
+    def get_portal_http_proxy
+      proxy = nil
+      if Katello.config.cdn_proxy && Katello.config.cdn_proxy.host
+        proxy_config = Katello.config.cdn_proxy
+        uri = URI('')
+        uri.scheme = URI.parse(proxy_config.host).scheme
+        uri.host = URI.parse(proxy_config.host).host
+        uri.port = proxy_config.port
+        uri.user = proxy_config.user
+        uri.password = proxy_config.password
+        proxy = uri.to_s
+      end
+      return proxy
+    end
+  end
+end

data/lib/redhat_access/version.rb

@@ -0,0 +1,3 @@
+module RedhatAccess
+  VERSION = "2.0.0"
+end

data/lib/redhat_access.rb

@@ -0,0 +1,5 @@
+require "redhat_access/engine"
+require 'angular-rails-templates'
+
+module RedhatAccess
+end

data/lib/tasks/redhat_access_tasks.rake

@@ -0,0 +1,41 @@
+# desc "Explaining what the task does"
+# task :redhat_access do
+#   # Task goes here
+# end
+desc 'Compile stand alone engine assets'
+task 'assets:precompile:engine' do
+  require 'sprockets'
+  require 'sprockets/railtie'
+  require 'uglifier'
+  require 'sass/rails/compressor'
+  require File.expand_path('../lib/red_hat_access', __FILE__)
+
+  precompile = [
+    'red_hat_access/articles.js',
+    'red_hat_access/articles.css'
+  ]
+
+  env = Sprockets::Environment.new(RedHatAccess::Engine.root)
+  env.js_compressor = Uglifier.new
+  env.css_compressor = Sass::Rails::CssCompressor.new
+
+  paths = [
+    'app/assets/stylesheets',
+    'app/assets/javascripts',
+    'vendor/assets/javascripts',
+    'vendor/assets/stylesheets',
+  ]
+
+  paths.each do |path|
+    env.append_path(path)
+  end
+
+  target = File.join(RedHatAccess::Engine.root, 'public', 'assets')
+  compiler = Sprockets::StaticCompiler.new(env,
+    target,
+    precompile,
+    :manifest_path => File.join(target),
+    :digest => true,
+    :manifest => true)
+  compiler.compile
+end

data/locale/Makefile

@@ -0,0 +1,62 @@
+#
+# Makefile for PO merging and MO generation. More info in the README.
+#
+# make all-mo (default) - generate MO files
+# make check - check translations using translate-tool
+# make tx-update - download and merge translations from Transifex
+# make clean - clean everything
+#
+DOMAIN = redhat_access
+VERSION = $(shell ruby -e 'require "rubygems";spec = Gem::Specification::load(Dir.glob("../*.gemspec")[0]);puts spec.version')
+POTFILE = $(DOMAIN).pot
+MOFILE = $(DOMAIN).mo
+POFILES = $(shell find . -name '*.po')
+MOFILES = $(patsubst %.po,%.mo,$(POFILES))
+POXFILES = $(patsubst %.po,%.pox,$(POFILES))
+
+%.mo: %.po
+	mkdir -p $(shell dirname $@)/LC_MESSAGES
+	msgfmt -o $(shell dirname $@)/LC_MESSAGES/$(MOFILE) $<
+
+# Generate MO files from PO files
+all-mo: $(MOFILES)
+
+# Check for malformed strings
+%.pox: %.po
+	msgfmt -c $<
+	pofilter --nofuzzy -t variables -t blank -t urls -t emails -t long -t newlines \
+		-t endwhitespace -t endpunc -t puncspacing -t options -t printf -t validchars --gnome $< > $@
+	cat $@
+	! grep -q msgid $@
+
+check: $(POXFILES)
+	msgfmt -c ${POTFILE}
+
+# Merge PO files
+update-po:
+	for f in $(shell find ./ -name "*.po") ; do \
+		msgmerge -N --backup=none -U $$f ${POTFILE} ; \
+	done
+
+# Unify duplicate translations
+uniq-po:
+	for f in $(shell find ./ -name "*.po") ; do \
+		msguniq $$f -o $$f ; \
+	done
+
+tx-pull:
+	tx pull -f
+	for f in $(POFILES) ; do \
+		sed -i 's/^\("Project-Id-Version: \).*$$/\1$(DOMAIN) $(VERSION)\\n"/' $$f; \
+	done
+	-git commit -a -m "i18n - pulling from tx"
+
+reset-po:
+	# merging po files is unnecessary when using transifex.com
+	git checkout -- ../locale/*/*po
+
+tx-update: tx-pull reset-po $(MOFILES)
+	# amend mo files
+	git add ../locale/*/LC_MESSAGES
+	git commit -a --amend -m "i18n - pulling from tx"
+	-echo Changes commited!