sambot 0.1.133 → 0.1.136

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: b87f23b7adc229d597cf7be106dc222ff4bc4f5a
-  data.tar.gz: ecd50d622fa1cfb2547b40cb079cbccc68b3f747
+  metadata.gz: 6021e47fdeb14f7d2ee79b256a8fbb1f011c84aa
+  data.tar.gz: d1ed6d2ea608e4d2c286e3377caafd303b1c46d3
 SHA512:
-  metadata.gz: 2dc15a5f97c34c46625803880bacd1aa4feb6a4602c263d0772197e06b7e0fb33e25064d87879db9dd66c3b34bf95df229defb87e6883d57e1b6a004600a94d2
-  data.tar.gz: e722b607b8aac892aff0af052ed23d1681a5dfa8c2d6d7555915defa096a3eed9d7afbb51d0b04fed848325ce7fcd2831d554d9d3a8310f86092064dc645a230
+  metadata.gz: 1f0f44f6c2463845aca95ee0d07a82a7fadacec412cdea183d264e8c6918c122c34b37b0ca5350af0566d5432bf5e2a856b12baa385635bb3536ec9e1d11516e
+  data.tar.gz: 5fd140e6e19c2cc2279249010d3d9d9f3c6de97731559e392afa2c50f9f954abd4341a99507d66ffabc1986f1c6fdd9b0bd8d64c32f775ebe5386be2d5b8e700

data/lib/sambot/chef/generator.rb

@@ -1,11 +1,13 @@
 #frozen_string_literal: true
+require 'awesome_print'
 
 module Sambot
     module Chef
       class Generator
 
         def self.from_templates(config, cookbook_essentials, cookbook_generated_files)
-          platforms = config['platforms']
+          platforms = config[:platforms] if config.has_key?(:platforms)
+          platforms = config['platforms'] if config.has_key?('platforms')
           cookbook_essentials.each { |path| exists!(path) } if cookbook_essentials
           cookbook_generated_files.each do |template_name, opts|
             generate_from_template(template_name.to_s, opts, platforms)

data/lib/sambot/chef/kitchen.rb

@@ -55,7 +55,7 @@ module Sambot
           end
 
           def read_template(template, cookbook_name, platforms)
-            result = Template.new("#{template}.erb").evaluate({platforms: platforms}) do |contents|
+            result = Template.new("#{template}.erb").evaluate({platforms: platforms}, {:pattern => '<!--% %-->'}) do |contents|
               contents.gsub(/@@cookbook_name@@/, cookbook_name)
             end
             YAML.load(result.gsub(/\_@/, '<%=').gsub(/@\_/, '%>'))

data/lib/sambot/cli.rb

@@ -46,17 +46,5 @@ module Sambot
       end
     end
 
-    desc 'start', 'Start a new Sambot session'
-    def start
-      execute(need_dev_credentials: true, need_sudo_password: true) do
-        Workflow::Session.new.start(ENV['SAMBOT_DEV_USERNAME'], ENV['SAMBOT_DEV_PASSWORD'], ENV['SAMBOT_SUDO_PASSWORD'])
-      end
-    end
-
-    desc 'stop', 'Stop any active Sambot session'
-    def stop
-      execute(need_sudo_password: true) { Workflow::Session.new.stop }
-    end
-
   end
 end

data/lib/sambot/rackspace/images.rb

@@ -19,7 +19,7 @@ module Sambot
       def find_platform_by_image_id(id)
         available_images = all
         image = available_images.find { |x| x[:value] == id }
-        image[:name].match?(/Linux/) ? 'L' : 'W'
+        image[:name].match(/Linux/) ? 'L' : 'W'
       end
 
     end

data/lib/sambot/template.rb

@@ -11,10 +11,11 @@ module Sambot
       File.expand_path(File.join(File.dirname(__FILE__), 'templates', @filename))
     end
 
-    def evaluate(context = {})
+    def evaluate(context = {}, opts = {})
       input = File.read(path)
       input = yield(input) if block_given?
-      eruby = Erubis::Eruby.new(input)
+      puts opts
+      eruby = Erubis::Eruby.new(input, opts)
       eruby.evaluate(context)
     end
 

data/lib/sambot/templates/.kitchen.gcp.yml.erb

@@ -5,9 +5,8 @@ provisioner:
   require_chef_omnibus: 12
   cookbooks_path:
     - .
-
 platforms:
-<% if @platforms.include?('centos') %>
+<!--% if @platforms.include?('centos') %-->
   - name: centos
     transport:
       username: chefuser
@@ -34,8 +33,8 @@ platforms:
         - "test-kitchen"
         - "consul-agent"
         - "vault-client"
-<% end %>
-<% if @platforms.include?('windows') %>
+<!--% end %-->
+<!--% if @platforms.include?('windows') %-->
   - name: windows
     transport:
       name: winrm
@@ -65,7 +64,7 @@ platforms:
         - "test-kitchen"
         - "consul-agent"
         - "vault-client"
-<% end %>
+<!--% end %-->
 
 verifier:
   name: inspec

data/lib/sambot/templates/.kitchen.rackspace.yml.erb

@@ -1,13 +1,13 @@
 ---
 provisioner:
   name: chef_zero
-  log_level: _@= ENV['TEST_KITCHEN_LOG_LEVEL'] || 'info' @_
+  log_level: <%= ENV['TEST_KITCHEN_LOG_LEVEL'] || 'info' %>
   require_chef_omnibus: 12
   cookbooks_path:
     - .
 
 platforms:
-<% if @platforms.include?('centos') %>
+<!--% if @platforms.include?('centos') %-->
   - name: centos
     transport:
       ssh_key: ./id_rsa
@@ -23,8 +23,8 @@ platforms:
       public_key_path: ./id_rsa.pub
       rackspace_region: 'lon'
       server_name: @@cookbook_name@@-_@ Time.now.to_i @_
-<% end %>
-<% if @platforms.include?('windows') %>
+<!--% end %-->
+<!--% if @platforms.include?('windows') %-->
   - name: windows
     driver:
       name: rax
@@ -40,7 +40,7 @@ platforms:
       rackconnect_wait: true
       platform: windows
       user_data: winrm_config
-<% end %>
+<!--%  end %-->
 
 verifier:
   name: inspec

data/lib/sambot/templates/.kitchen.yml.erb

@@ -14,13 +14,13 @@ provisioner:
     - .
 
 platforms:
-<% if @platforms.include?('centos') %>
+<!--% if @platforms.include?('centos') %-->
   - name: "centos-7.2"
     driver:
      network:
       - ["private_network", {ip: "192.168.255.10"}]
-<% end %>
-<% if @platforms.include?('windows') %>
+<!--% end %-->
+<!--% if @platforms.include?('windows') %-->
   - name: windows-2012R2
     driver:
       box: salesforce/Server2012R2
@@ -29,7 +29,7 @@ platforms:
     transport:
       name: winrm
       elevated: true
-<% end %>
+<!--% end %-->
 
 verifier:
   name: inspec

data/lib/sambot/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Sambot
-  VERSION = '0.1.133'.freeze
+  VERSION = '0.1.136'.freeze
 end

data/lib/sambot/workflow/workstation.rb

@@ -9,7 +9,6 @@ module Sambot
       FORMULAS = {
         'git': 'git',
         'vault': 'vault',
-        'haproxy': 'haproxy',
         'ruby-build': 'ruby-build',
         'rbenv': 'rbenv'
       }

data/lib/sambot.rb

@@ -19,25 +19,10 @@ require_relative 'sambot/rackspace/flavors'
 require_relative 'sambot/rackspace/images'
 require_relative 'sambot/rackspace/instances'
 
-require_relative 'sambot/dns/records'
-require_relative 'sambot/dns/repository'
-
-require_relative 'sambot/workflow/tunnel'
-require_relative 'sambot/workflow/tunnels'
 require_relative 'sambot/workflow/brew'
-require_relative 'sambot/workflow/proxy'
-require_relative 'sambot/workflow/dns'
-require_relative 'sambot/workflow/session'
 require_relative 'sambot/workflow/vault'
 require_relative 'sambot/workflow/workstation'
 
-#require_relative 'sambot/slack/product_tag'
-#require_relative 'sambot/slack/work_item'
-#require_relative 'sambot/slack/api'
-#require_relative 'sambot/slack/formatter'
-#require_relative 'sambot/slack/gus_bot'
-#require_relative 'sambot/slack/dispatcher'
-
 require_relative 'sambot/cli'
 
 module Sambot

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: sambot
 version: !ruby/object:Gem::Version
-  version: 0.1.133
+  version: 0.1.136
 platform: ruby
 authors:
 - Olivier Kouame
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2017-07-04 00:00:00.000000000 Z
+date: 2017-07-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: thor-hollaback
@@ -453,8 +453,6 @@ files:
 - lib/sambot/cli.rb
 - lib/sambot/commands/cookbook_cmd.rb
 - lib/sambot/config.rb
-- lib/sambot/dns/records.rb
-- lib/sambot/dns/repository.rb
 - lib/sambot/docs/build.txt
 - lib/sambot/docs/clean.txt
 - lib/sambot/docs/configure.txt
@@ -495,10 +493,6 @@ files:
 - lib/sambot/version.rb
 - lib/sambot/workflow/brew.rb
 - lib/sambot/workflow/dns.rb
-- lib/sambot/workflow/proxy.rb
-- lib/sambot/workflow/session.rb
-- lib/sambot/workflow/tunnel.rb
-- lib/sambot/workflow/tunnels.rb
 - lib/sambot/workflow/vault.rb
 - lib/sambot/workflow/workstation.rb
 - sambot.gemspec

data/lib/sambot/dns/records.rb

@@ -1,98 +0,0 @@
-# frozen_string_literal: true
-
-module Sambot
-  module DNS
-    class Records
-
-      RACKSPACE_PROXY_IP = '134.213.17.37'
-      DEFAULT_TF_FILENAME = 'dyn_dns.tf'
-
-      def initialize(repository)
-        @repository = repository
-      end
-
-      def remove(hostname, team, commit_changes = false)
-        change(team, hostname, commit_changes) do |contents|
-          if contents['module'].key?(hostname)
-            contents['module'].delete(hostname)
-            UI.debug("The entry \"#{hostname}\" has been deleted.")
-          else
-            UI.debug("The entry \"#{hostname}\" was not found.")
-          end
-        end
-      end
-
-      def add(hostname, internal_address, team, commit_changes = false)
-        change(team, hostname, commit_changes) do |contents|
-          if contents['module'].key?(hostname)
-            UI.debug("The entry for \"<#{hostname}>\" will be overwritten.")
-          else
-            UI.debug("A new entry for \"<#{hostname}>\" will be added.")
-          end
-          contents['module'][hostname] = {
-            'source' => '../../modules/combined_dns',
-            'dnszone' => 'brighter.io',
-            'name' => hostname,
-            'enable-int' => '1',
-            'int-value' => internal_address,
-            'int-type' => 'A',
-            'enable-ext' => '1',
-            'ext-value' => RACKSPACE_PROXY_IP,
-            'ext-type' => 'A'
-          }
-        end
-      end
-
-      private
-
-      def change(team, hostname, commit_changes = false)
-        @repository.clone do |directory|
-          folder = shared_hostname?(hostname) ? find_shared_folder(hostname) : find_team_name(team)
-          containing_folder = File.join(directory, folder)
-          UI.debug("Modifying DNS records in the folder #{containing_folder}")
-          Dir.chdir(containing_folder) do
-            contents = Rhcl.parse(File.read(DEFAULT_TF_FILENAME))
-            yield contents
-            open(DEFAULT_TF_FILENAME, 'w') do |f|
-              f << Rhcl.dump(contents)
-            end
-            if commit_changes
-              commit_msg = "DNS update for hostname #{hostname}"
-              `commit -am #{commit_msg}`
-              `git push`
-            end
-          end
-        end
-      end
-
-      def find_shared_folder(name)
-        folder = name.split('-')[0]
-        UI.debug('This record is a shared entry so will go into the shared folder ' + folder + '.')
-        folder
-      end
-
-      def shared_hostname?(name)
-        name.start_with?('patch', 'stable', 'unstable')
-      end
-
-      def find_team_name(name)
-        UI.debug('This record is a team-specifc entry so will go into the team folder.')
-        raise ApplicationError, 'A team name (symbol i.e. PHX) must be provided if this is not a record for a shared endpoint i.e. patch-api or stable-jetstream.' unless name
-        sanitized_name = name.upcase
-        case sanitized_name
-        when 'PHX'
-          'phx'
-        when 'AVG'
-          'avengers'
-        when 'GD'
-          'guardians'
-        when 'NW'
-          'nightswatch'
-        else
-          raise ApplicationError, 'Unknown team name, should be PHX, AVG, GD or NW'
-        end
-      end
-
-    end
-  end
-end

data/lib/sambot/dns/repository.rb

@@ -1,51 +0,0 @@
-# frozen_string_literal: true
-
-require 'rhcl'
-
-module Sambot
-  module DNS
-    class Repository
-
-      def initialize(url = 'git@github.exacttarget.com:ads-devops/as-terraform-dns-config.git', name = 'as-terraform-dns-config')
-        @url = url
-        @name = name
-      end
-
-      def records
-        Records.new(self)
-      end
-
-      def list_records
-        records = []
-        clone do |directory|
-          records << ['Module', 'Hostname', 'Enable Internal IP', 'Enable External IP', 'External IP', 'Internal IP']
-          Dir['*'].each do |folder|
-            filename = File.join(directory, "#{folder}/dyn_dns.tf")
-            contents = Rhcl.parse(File.read(filename))
-            modules = contents['module']
-            modules.each do |section|
-              record = section[1]
-              next unless record['int-type'] == 'A' || record['ext-type'] == 'A'
-              records << [folder, record['name'], record['enable-int'], record['enable-ext'], record['ext-value'], record['int-value']]
-            end
-          end
-        end
-        records
-      end
-
-      def clone
-        tmp = Dir.mktmpdir
-        Dir.chdir(tmp) do
-          `git clone #{@url} #{@name}`
-          repo = File.join(tmp, @name, 'rackspace')
-          puts repo
-          Dir.chdir(repo) do
-            `git checkout master`
-            yield(repo)
-          end
-        end
-      end
-
-    end
-  end
-end

data/lib/sambot/workflow/proxy.rb

@@ -1,35 +0,0 @@
-# frozen_string_literal: true
-
-module Sambot
-  module Workflow
-    class Proxy
-
-      CONFIG_PATH = '/tmp/haproxy.conf'
-
-      def self.start(forwards)
-        template = Sambot::Template.new('haproxy.conf.erb')
-        services = forwards.map do |key, value|
-          name = key.to_s.split('.')[0]
-          UI.debug("Proxying #{name}.brighter.io:#{value[:proxy_port]} to 0.0.0.0:#{value[:tunnel_port]}")
-          {
-            name: name,
-            tunnel_port: value[:tunnel_port],
-            local_port: value[:proxy_port]
-          }
-        end
-        frontends = {}
-        services.map {|x| x[:local_port]}.uniq.each { |a| frontends[a] = [] }
-        services.each do |service|
-          frontends[service[:local_port]] << service
-        end
-        template.write({frontends: frontends}, CONFIG_PATH)
-        Runtime.sudo("haproxy -f #{CONFIG_PATH}", flag_errors: true)
-      end
-
-      def self.stop
-        Runtime.sudo("killall haproxy", flag_errors: false)
-      end
-
-    end
-  end
-end

data/lib/sambot/workflow/session.rb

@@ -1,111 +0,0 @@
-# frozen_string_literal: true
-require 'titan'
-require 'net/ssh'
-require 'dante'
-require 'haproxy-tools'
-
-module Dante
-  class Runner
-    def log(message)
-      Sambot::UI.info message
-    end
-  end
-end
-
-module Sambot
-  module Workflow
-    class Session
-
-      BASTION_HOST_IP = '146.177.10.174'
-
-      FORWARDS = {
-        'rundeck.brighter.io': {
-          tunnel_port: 9004, dest_port: 4440, proxy_port: 443
-        },
-        'chef.brighter.io': {
-          tunnel_port: 9000, dest_port: 443, proxy_port: 443
-        },
-        'teamcity.brighter.io': {
-          tunnel_port: 9001, dest_port: 8111, proxy_port: 443
-        },
-        'splunk.brighter.io': {
-          tunnel_port: 9002, dest_port: 8080, proxy_port: 443
-        },
-        'vault.brighter.io': {
-          tunnel_port: 9003, dest_port: 8200, proxy_port: 8200
-        }
-      }
-
-      def start(user, pass, sudo_password)
-        stop
-        unless verify_credentials(user, pass)
-          UI.error 'The session could not be started'
-          exit
-        end
-        DNS.update_hosts(FORWARDS)
-        Proxy.start(FORWARDS)
-        Runtime.sudo("ifconfig lo0 -alias 127.0.0.1")
-        Runtime.sudo("ifconfig lo0 alias 127.0.0.1 up")
-        Tunnels.start(user, pass, BASTION_HOST_IP, FORWARDS)
-        run_connectivity_checks()
-        setup_secrets_management(user, pass)
-        UI.info("Your session has now started - run `sambot session stop` to close it")
-      end
-
-      def stop
-        Tunnels.stop(FORWARDS)
-        DNS.reset_hosts(FORWARDS)
-        Proxy.stop
-        release_ports(FORWARDS)
-      end
-
-      private
-
-
-      def release_ports(forwards)
-        forwards.each do |k, v|
-          output = Runtime.sudo("lsof -wni tcp:#{v[:tunnel_port]}", flag_errors: true)
-          if output.strip.size > 0
-            line = output.strip.lines[1]
-            pid = line.split[1]
-            UI.debug(line)
-            Runtime.sudo("kill -9 #{pid}")
-          end
-        end
-        #TODO RELEASE PROXY PORTS
-      end
-
-      def verify_credentials(username, password)
-        full_username = "DEV\\#{username}"
-        begin
-          Net::SSH.start(BASTION_HOST_IP, full_username, :password => password, :non_interactive => true) do |ssh|; end
-          return true
-        rescue Timeout::Error
-          puts "  Timed out"
-        rescue Errno::EHOSTUNREACH
-          puts "  Host unreachable"
-        rescue Errno::ECONNREFUSED
-          puts "  Connection refused"
-        rescue Net::SSH::Disconnect
-          UI.error "Invalid username or password provided"
-        end
-        return false
-      end
-
-      def run_connectivity_checks
-        #TODO
-      end
-
-      def setup_secrets_management(username, password)
-        unless Vault.has_environment_variables?(FORWARDS)
-          UI.info("You have either not configured your workstation or you have not opened up a new shell to pick up the changes applied during configuration")
-        end
-        UI.debug "Authenticating with Hashicorp Vault in Rackspace DEV/QE"
-        token = Vault.authenticate(username, password, FORWARDS)
-        UI.debug "Saving your Vault authentication token to ~/.vault-token"
-        Vault.save_token(token)
-      end
-
-    end
-  end
-end

data/lib/sambot/workflow/tunnel.rb

@@ -1,15 +0,0 @@
-# frozen_string_literal: true
-require 'awesome_print'
-
-module Sambot
-  module Workflow
-    class Tunnel
-
-      def self.create(session, host, port, local_port)
-        UI.debug "Creating a tunnel from 0.0.0.0:#{local_port} to #{host}:#{port}"
-        session.forward.local("0.0.0.0", local_port, host, port)
-      end
-
-    end
-  end
-end

data/lib/sambot/workflow/tunnels.rb

@@ -1,40 +0,0 @@
-module Sambot
-  module Workflow
-
-    class Tunnels
-
-      PID_PATH = '/tmp/sambot-session.pid'
-
-      LOG_PATH = '/tmp/sambot-session.log'
-
-      SESSION_ID = 'sambot'
-
-      def self.start(username, password, bastion_host_ip, forwards)
-        UI.info("Starting daemon for tunneling - log is available at #{LOG_PATH}")
-        Dante::Runner.new(SESSION_ID).execute(daemonize: true, pid_path: PID_PATH, log_path: LOG_PATH) do
-          setup_ssh_tunnels(username, password, bastion_host_ip, forwards)
-        end
-        sleep(2)
-        puts "----- Background Daemon Log -----"
-        puts File.read(LOG_PATH)
-        puts "---------------------------------"
-      end
-
-      def self.stop(forwards)
-        Dante::Runner.new(SESSION_ID).execute(kill: true, pid_path: PID_PATH)
-        UI.debug("All active sessions have been closed")
-        File.delete(LOG_PATH) if File.exist?(LOG_PATH)
-      end
-
-      def self.setup_ssh_tunnels(username, password, bastion_host_ip, forwards)
-        full_username = "DEV\\#{username}"
-        UI.debug "Opening a connection to the Rackspace DEV/QE environment"
-        Net::SSH.start(bastion_host_ip, full_username, password: password) do |session|
-          forwards.each { |key, value| Tunnel.create(session, key, value[:dest_port], value[:tunnel_port]) }
-          session.loop {true}
-        end
-      end
-
-    end
-  end
-end