runa-chef 0.8.0.1

data/lib/chef/provider/group.rb

@@ -0,0 +1,120 @@
+#
+# Author:: AJ Christensen (<aj@opscode.com>)
+# Copyright:: Copyright (c) 2008 OpsCode, Inc.
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+# 
+#     http://www.apache.org/licenses/LICENSE-2.0
+# 
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+require 'chef/provider'
+require 'chef/mixin/command'
+require 'chef/resource/group'
+require 'etc'
+
+class Chef
+  class Provider
+    class Group < Chef::Provider
+      include Chef::Mixin::Command
+      attr_accessor :group_exists
+      
+      def initialize(node, new_resource, collection=nil, definitions=nil, cookbook_loader=nil)
+        super(node, new_resource, collection, definitions, cookbook_loader)
+        @group_exists = true
+      end
+      
+      def load_current_resource
+        @current_resource = Chef::Resource::Group.new(@new_resource.name)
+        @current_resource.group_name(@new_resource.group_name)
+        
+        group_info = nil
+        begin
+          group_info = Etc.getgrnam(@new_resource.group_name)
+        rescue ArgumentError => e
+          @group_exists = false
+          Chef::Log.debug("#{@new_resource}: group does not exist")
+        end
+        
+        if group_info
+          @new_resource.gid(group_info.gid)
+          @current_resource.gid(group_info.gid)
+          @current_resource.members(group_info.mem)
+        end
+        
+        @current_resource
+      end
+      
+      # Check to see if a group needs any changes
+      #
+      # ==== Returns
+      # <true>:: If a change is required
+      # <false>:: If a change is not required
+      def compare_group
+        return true if @new_resource.gid != @current_resource.gid
+
+        if(@new_resource.append)
+          @new_resource.members.each do |member|
+            next if @current_resource.members.include?(member)
+            return true
+          end
+        else
+          return true if @new_resource.members != @current_resource.members
+        end
+
+        return false
+      end
+      
+      def action_create
+        case @group_exists
+        when false
+          create_group
+          Chef::Log.info("Created #{@new_resource}")
+          @new_resource.updated = true
+        else 
+          if compare_group
+            manage_group
+            Chef::Log.info("Altered #{@new_resource}")
+            @new_resource.updated = true
+          end
+        end
+      end
+      
+      def action_remove
+        if @group_exists
+          remove_group
+          @new_resource.updated = true
+          Chef::Log.info("Removed #{@new_resource}")
+        end
+      end
+      
+      def action_manage
+        if @group_exists && compare_group
+          manage_group 
+          @new_resource.updated = true
+          Chef::Log.info("Managed #{@new_resource}")
+        end
+      end
+      
+      def action_modify
+        if @group_exists 
+          if compare_group
+            manage_group
+            @new_resource.updated = true
+            Chef::Log.info("Modified #{@new_resource}")
+          end
+        else
+          raise Chef::Exceptions::Group, "Cannot modify #{@new_resource} - group does not exist!"
+        end
+      end
+    end
+  end
+end

data/lib/chef/provider/group/dscl.rb

@@ -0,0 +1,128 @@
+#
+# Author:: Dreamcat4 (<dreamcat4@gmail.com>)
+# Copyright:: Copyright (c) 2009 OpsCode, Inc.
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+# 
+#     http://www.apache.org/licenses/LICENSE-2.0
+# 
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+class Chef
+  class Provider
+    class Group
+      class Dscl < Chef::Provider::Group
+
+        def dscl(*args)
+          host = "."
+          stdout_result = ""; stderr_result = ""; cmd = "dscl #{host} -#{args.join(' ')}"
+          status = popen4(cmd) do |pid, stdin, stdout, stderr|
+            stdout.each { |line| stdout_result << line }
+            stderr.each { |line| stderr_result << line }
+          end
+          return [cmd, status, stdout_result, stderr_result]
+        end
+
+        def safe_dscl(*args)
+          result = dscl(*args)
+          return "" if ( args.first =~ /^delete/ ) && ( result[1].exitstatus != 0 )
+          raise(Chef::Exceptions::Group,"dscl error: #{result.inspect}") unless result[1].exitstatus == 0
+          raise(Chef::Exceptions::Group,"dscl error: #{result.inspect}") if result[2] =~ /No such key: /
+          return result[2]
+        end
+        
+        # This is handled in providers/group.rb by Etc.getgrnam()
+        # def group_exists?(group)
+        #   groups = safe_dscl("list /Groups")
+        #   !! ( groups =~ Regexp.new("\n#{group}\n") )
+        # end
+
+        # get a free GID greater than 200
+        def get_free_gid(search_limit=1000)
+          gid = nil; next_gid_guess = 200
+          groups_gids = safe_dscl("list /Groups gid")
+          while(next_gid_guess < search_limit + 200)
+            if groups_gids =~ Regexp.new("#{next_gid_guess}\n")
+              next_gid_guess += 1
+            else
+              gid = next_gid_guess
+              break
+            end
+          end
+          return gid || raise("gid not found. Exhausted. Searched #{search_limit} times")
+        end
+
+        def gid_used?(gid)
+          return false unless gid
+          groups_gids = safe_dscl("list /Groups gid")
+          !! ( groups_gids =~ Regexp.new("#{gid}\n") )
+        end
+
+        def set_gid
+          @new_resource.gid(get_free_gid) if [nil,""].include? @new_resource.gid
+          raise(Chef::Exceptions::Group,"gid is already in use") if gid_used?(@new_resource.gid)
+          safe_dscl("create /Groups/#{@new_resource.group_name} PrimaryGroupID #{@new_resource.gid}")
+        end
+
+        def set_members
+          unless @new_resource.append
+            Chef::Log.debug("#{@new_resource}: removing group members #{@current_resource.members.join(' ')}") unless @current_resource.members.empty?
+            safe_dscl("create /Groups/#{@new_resource.group_name} GroupMembers") # clear guid list
+            safe_dscl("create /Groups/#{@new_resource.group_name} GroupMembership") # clear user list
+          end
+          Chef::Log.debug("#{@new_resource}: setting group members #{@new_resource.members.join(', ')}") unless @new_resource.members.empty?
+          safe_dscl("append /Groups/#{@new_resource.group_name} GroupMembership #{@new_resource.members.join(' ')}")
+        end
+
+        def load_current_resource
+          super
+          raise Chef::Exceptions::Group, "Could not find binary /usr/bin/dscl for #{@new_resource}" unless ::File.exists?("/usr/bin/dscl")
+        end
+        
+        def create_group
+          manage_group(false)
+        end
+        
+        def manage_group(manage=true)#
+          fields = []
+          if manage
+            [:group_name,:gid,:members].each do |field|
+              if @current_resource.send(field) != @new_resource.send(field)
+                fields << field if @new_resource.send(field)
+              end
+            end
+          else
+            # create
+            fields = [:group_name,:gid,:members]
+          end
+
+          fields.each do |field|
+            case field
+            when :group_name
+              safe_dscl("create /Groups/#{@new_resource.group_name}")
+              safe_dscl("create /Groups/#{@new_resource.group_name} Password '*'")
+              
+            when :gid
+              set_gid
+              
+            when :members
+              set_members
+            end
+          end
+        end
+        
+        def remove_group
+          safe_dscl("delete /Groups/#{@new_resource.group_name}")
+        end
+      end
+    end
+  end
+end

data/lib/chef/provider/group/gpasswd.rb

@@ -0,0 +1,50 @@
+#
+# Author:: AJ Christensen (<aj@opscode.com>)
+# Copyright:: Copyright (c) 2008 OpsCode, Inc.
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+# 
+#     http://www.apache.org/licenses/LICENSE-2.0
+# 
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+require 'chef/provider/group/groupadd'
+
+class Chef
+  class Provider
+    class Group
+      class Gpasswd < Chef::Provider::Group::Groupadd
+        
+        def load_current_resource
+          super
+
+          raise Chef::Exceptions::Group, "Could not find binary /usr/bin/gpasswd for #{@new_resource}" unless ::File.exists?("/usr/bin/gpasswd")
+        end
+
+        def modify_group_members
+          unless @new_resource.members.empty?
+            if(@new_resource.append)
+              @new_resource.members.each do |member|
+                Chef::Log.debug("#{@new_resource}: appending member #{member} to group #{@new_resource.group_name}")
+                run_command(:command => "gpasswd -a #{member} #{@new_resource.group_name}")
+              end
+            else
+              Chef::Log.debug("#{@new_resource}: setting group members to #{@new_resource.members.join(', ')}")
+              run_command(:command => "gpasswd -M #{@new_resource.members.join(',')} #{@new_resource.group_name}")
+            end
+          else
+            Chef::Log.debug("#{@new_resource}: not changing group members, the group has no members")
+          end
+        end
+      end
+    end
+  end
+end

data/lib/chef/provider/group/groupadd.rb

@@ -0,0 +1,78 @@
+#
+# Author:: AJ Christensen (<aj@opscode.com>)
+# Copyright:: Copyright (c) 2008 OpsCode, Inc.
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+# 
+#     http://www.apache.org/licenses/LICENSE-2.0
+# 
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+class Chef
+  class Provider
+    class Group
+      class Groupadd < Chef::Provider::Group
+        
+        def load_current_resource
+          super
+          
+          [ "/usr/sbin/groupadd",
+            "/usr/sbin/groupmod",
+            "/usr/sbin/groupdel" ].each do |required_binary|
+            raise Chef::Exceptions::Group, "Could not find binary #{required_binary} for #{@new_resource}" unless ::File.exists?(required_binary)
+          end
+        end
+
+        # Create the group
+        def create_group
+          command = "groupadd"
+          command << set_options
+          run_command(:command => command)
+          modify_group_members    
+        end
+        
+        # Manage the group when it already exists
+        def manage_group
+          command = "groupmod"
+          command << set_options
+          run_command(:command => command)
+          modify_group_members
+        end
+        
+        # Remove the group
+        def remove_group
+          run_command(:command => "groupdel #{@new_resource.group_name}")
+        end
+        
+        def modify_group_members
+          raise Chef::Exceptions::Group, "you must override modify_group_members in #{self.to_s}"
+        end
+        # Little bit of magic as per Adam's useradd provider to pull the assign the command line flags
+        #
+        # ==== Returns
+        # <string>:: A string containing the option and then the quoted value
+        def set_options
+          opts = ""
+          { :gid => "-g" }.sort { |a,b| a[0] <=> b[0] }.each do |field, option|
+            if @current_resource.send(field) != @new_resource.send(field)
+              if @new_resource.send(field)
+                Chef::Log.debug("#{@new_resource}: setting #{field.to_s} to #{@new_resource.send(field)}")
+                opts << " #{option} '#{@new_resource.send(field)}'"
+              end
+            end
+          end
+          opts << " #{@new_resource.group_name}"
+        end
+        
+      end
+    end
+  end
+end

data/lib/chef/provider/group/pw.rb

@@ -0,0 +1,88 @@
+#
+# Author:: Stephen Haynes (<sh@nomitor.com>)
+# Copyright:: Copyright (c) 2009 Opscode, Inc.
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+# 
+#     http://www.apache.org/licenses/LICENSE-2.0
+# 
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+class Chef
+  class Provider
+    class Group
+      class Pw < Chef::Provider::Group
+        
+        def load_current_resource
+          super
+          raise Chef::Exceptions::Group, "Could not find binary /usr/sbin/pw for #{@new_resource}" unless ::File.exists?("/usr/sbin/pw")
+        end
+        
+        # Create the group
+        def create_group
+          command = "pw groupadd"
+          command << set_options
+          command << set_members_option
+          run_command(:command => command)
+        end
+        
+        # Manage the group when it already exists
+        def manage_group
+          command = "pw groupmod"
+          command << set_options
+          command << set_members_option
+          run_command(:command => command)
+        end
+        
+        # Remove the group
+        def remove_group
+          run_command(:command => "pw groupdel #{@new_resource.group_name}")
+        end
+        
+        # Little bit of magic as per Adam's useradd provider to pull and assign the command line flags
+        #
+        # ==== Returns
+        # <string>:: A string containing the option and then the quoted value
+        def set_options
+          opts = " #{@new_resource.group_name}"
+          { :gid => "-g" }.sort { |a,b| a[0] <=> b[0] }.each do |field, option|
+            if @current_resource.send(field) != @new_resource.send(field)
+              if @new_resource.send(field)
+                Chef::Log.debug("#{@new_resource}: setting #{field.to_s} to #{@new_resource.send(field)}")
+                opts << " #{option} '#{@new_resource.send(field)}'"
+              end
+            end
+          end
+          opts
+        end
+
+        # Set the membership option depending on the current resource states
+        def set_members_option
+          opt = ""
+          unless @new_resource.members.empty?
+            opt << " -M #{@new_resource.members.join(',')}"
+            Chef::Log.debug("#{@new_resource}: setting group members to #{@new_resource.members.join(', ')}")
+          else
+            # New member list is empty so we should delete any old group members
+            unless @current_resource.members.empty?
+              opt << " -d #{@current_resource.members.join(',')}"
+              Chef::Log.debug("#{@new_resource}: removing group members #{@current_resource.members.join(', ')}")
+            else
+              Chef::Log.debug("#{@new_resource}: not changing group members, the group has no members")
+            end
+          end
+          opt
+        end
+        
+      end
+    end
+  end
+end