soar-authentication-identity 0.0.5 → 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (13) hide show
  1. checksums.yaml +4 -4
  2. data/.gemspec +2 -2
  3. data/README.md +6 -5
  4. data/config/config.ci.ldap.yml +17 -0
  5. data/config/config.ldap.yml +17 -0
  6. data/docker-compose.ci.staff.yml +26 -0
  7. data/{docker-compose.stub.yml → docker-compose.ci.stub.yml} +0 -0
  8. data/docker-compose.ldap.yml +11 -0
  9. data/lib/soar/authentication/identity/factory.rb +7 -7
  10. data/lib/soar/authentication/identity/provider/staff.rb +1 -2
  11. data/lib/soar/authentication/identity/test/orchestration_provider/staff.rb +21 -16
  12. metadata +9 -6
  13. data/docker-compose.staff.yml +0 -13
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 8552455d9ef80cea2f5b3d055a4aaf8053faa9a6
4
- data.tar.gz: d2a1bbb6de58e7a269d5b3f6b43e1773f3a58674
3
+ metadata.gz: d0c10321d30cb51dff6520b6593a11f12a3aa6fa
4
+ data.tar.gz: a2e413006c1fbede1b6b91ca6a0b02f0ff348fbf
5
5
  SHA512:
6
- metadata.gz: 1fb680c5866e405254781531d6f80ccff2347d1844f988da33b139c01d5ef4da33b6f1f2237c508f4d4c69a75c9c8a0836952b1e74d10c59a55cba706735076a
7
- data.tar.gz: e081c971369a76e52e09157f4b4a9a0f1f87ebb72e195b0cb32b8d51c31c47fe3ee9c8901b7b3e53601595963ba095c6a23c7696a5fd00fd719d914a72459450
6
+ metadata.gz: a9cf1b43cdb354c07683908a1c84803875126f2c147e2debecb4c94ac547fa42fa0a13b091436bd1b16e5de18b74bd02a336a7c66cf8f1fcf6b9ea4eab74c01b
7
+ data.tar.gz: ddbde62e2d3cf33e17cd33586d8bf51d4b723ab755646249f9719c2797599e773ec12243800e807842cf6470bf66780d7eec4f0e0ecf4e005d88e894ad7d9361
data/.gemspec CHANGED
@@ -1,6 +1,6 @@
1
1
  Gem::Specification.new do |spec|
2
2
  spec.name = "soar-authentication-identity"
3
- spec.version = "0.0.5"
3
+ spec.version = "1.0.0"
4
4
  spec.authors = ["Charles Mulder"]
5
5
  spec.email = ["charles.mulder@hetzner.co.za"]
6
6
 
@@ -10,5 +10,5 @@ Gem::Specification.new do |spec|
10
10
  spec.files = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
11
11
  spec.require_paths = ["lib"]
12
12
 
13
- spec.add_runtime_dependency 'soar-registry-identity', '~> 1.0.1'
13
+ spec.add_runtime_dependency 'soar-registry-identity', '~> 1.0.2'
14
14
  end
data/README.md CHANGED
@@ -15,8 +15,8 @@ Example using the factory.
15
15
  "staff" => {
16
16
  "class" => 'Soar::Registry::Directory::Provider::Stub',
17
17
  "config" => {
18
- "table" => "identity",
19
- "index" => ["uuid", "email"]
18
+ table: "identity",
19
+ index: ["uuid", "email"]
20
20
  }
21
21
  },
22
22
  "customer" => {},
@@ -45,7 +45,8 @@ $ TEST_ORCHESTRATION_PROVIDER=Stub cucumber
45
45
 
46
46
  #### Staff identity provider
47
47
  ```bash
48
- $ TEST_ORCHESTRATION_PROVIDER=Staff cucumber
48
+ $ docker-compose --file docker-compose.ldap.yml up --remove-orphans
49
+ $ CONFIG_FILE=config.ldap.yml TEST_ORCHESTRATION_PROVIDER=Staff cucumber
49
50
  ```
50
51
 
51
52
  #### Customer identity provider
@@ -58,14 +59,14 @@ Not implemented
58
59
 
59
60
  #### Stub identity provider
60
61
  ```bash
61
- docker-compose --file docker-compose.stub.yml up --abort-on-container-exit --remove-orphans
62
+ docker-compose --file docker-compose.ci.stub.yml up --abort-on-container-exit --remove-orphans
62
63
  EXIT_CODE=$(docker ps -a -f "name=soar-authentication-identity-provider-stub" -q | xargs docker inspect -f "{{ .State.ExitCode }}");
63
64
  exit $EXIT_CODE;
64
65
  ```
65
66
 
66
67
  #### Staff identity provider
67
68
  ```bash
68
- docker-compose --file docker-compose.staff.yml up --abort-on-container-exit --remove-orphans
69
+ docker-compose --file docker-compose.ci.staff.yml up --abort-on-container-exit --remove-orphans
69
70
  EXIT_CODE=$(docker ps -a -f "name=soar-authentication-identity-provider-staff" -q | xargs docker inspect -f "{{ .State.ExitCode }}");
70
71
  exit $EXIT_CODE;
71
72
  ```
data/config/config.ci.ldap.yml ADDED
@@ -0,0 +1,17 @@
1
+ class: 'Soar::Registry::Directory::Provider::Ldap'
2
+ config:
3
+ base: 'dc=hetzner,dc=co,dc=za'
4
+ index:
5
+ - :entryuuid
6
+ - :mail
7
+ config:
8
+ host: 'ldap'
9
+ port: 389
10
+ attributes:
11
+ - 'entryuuid'
12
+ - 'cn'
13
+ - 'mail'
14
+ - 'sn'
15
+ credentials:
16
+ username: 'cn=admin,dc=hetzner,dc=co,dc=za'
17
+ password: 'secret'
data/config/config.ldap.yml ADDED
@@ -0,0 +1,17 @@
1
+ class: 'Soar::Registry::Directory::Provider::Ldap'
2
+ config:
3
+ base: 'dc=hetzner,dc=co,dc=za'
4
+ index:
5
+ - :entryuuid
6
+ - :mail
7
+ config:
8
+ host: 'localhost'
9
+ port: 389
10
+ attributes:
11
+ - 'entryuuid'
12
+ - 'cn'
13
+ - 'mail'
14
+ - 'sn'
15
+ credentials:
16
+ username: 'cn=admin,dc=hetzner,dc=co,dc=za'
17
+ password: 'secret'
data/docker-compose.ci.staff.yml ADDED
@@ -0,0 +1,26 @@
1
+ version: "2"
2
+ services:
3
+ ldap:
4
+ image: nickstenning/slapd
5
+ expose:
6
+ - "389"
7
+ container_name: soar-authentication-identity-provider-staff-ldap
8
+ environment:
9
+ - LDAP_DOMAIN=hetzner.co.za
10
+ - LDAP_ORGANIZATION=Hetzner
11
+ - LDAP_ROOTPASS=secret
12
+
13
+ tests:
14
+ build:
15
+ context: .
16
+ image: soar-authentication-identity-provider-staff
17
+ container_name: soar-authentication-identity-provider-staff
18
+ links:
19
+ - ldap
20
+ environment:
21
+ - CONFIG_FILE=config.ci.ldap.yml
22
+ - TEST_ORCHESTRATION_PROVIDER=Staff
23
+
24
+
25
+
26
+
data/docker-compose.ldap.yml ADDED
@@ -0,0 +1,11 @@
1
+ version: "2"
2
+ services:
3
+ ldap:
4
+ image: nickstenning/slapd
5
+ ports:
6
+ - "389:389"
7
+ environment:
8
+ - LDAP_DOMAIN=hetzner.co.za
9
+ - LDAP_ORGANIZATION=Hetzner
10
+ - LDAP_ROOTPASS=secret
11
+
data/lib/soar/authentication/identity/factory.rb CHANGED
@@ -1,5 +1,6 @@
1
1
  require 'soar/authentication/identity'
2
2
  require 'soar/registry/directory'
3
+ require 'hashie'
3
4
 
4
5
  module Soar
5
6
  module Authentication
@@ -12,9 +13,7 @@ module Soar
12
13
  # @return [Soar::Authentication::Identity]
13
14
  # @raise [ArgumentError]
14
15
  ##
15
- def self.create(directory_configurations: nil, authenticated_identifier: nil)
16
- raise ArgumentError, 'Missing required directory configuration' if directory_configurations.nil?
17
- raise ArgumentError, 'Missing required authenticated identifier' if authenticated_identifier.nil?
16
+ def self.create(directory_configurations: , authenticated_identifier: )
18
17
  provider = get_provider(directory_configurations, authenticated_identifier)
19
18
  Soar::Authentication::Identity.new(provider)
20
19
  end
@@ -28,7 +27,7 @@ module Soar
28
27
  ##
29
28
  def self.get_directory(config)
30
29
  provider_class = Object.const_get(config.fetch('class'))
31
- provider = provider_class.new(config.fetch('config').symbolize_keys)
30
+ provider = provider_class.new(Hashie.symbolize_keys(config.fetch('config')))
32
31
  Soar::Registry::Directory.new(provider)
33
32
  end
34
33
 
@@ -40,13 +39,14 @@ module Soar
40
39
  def self.get_provider(directory_configurations, authenticated_identifier)
41
40
  case authenticated_identifier
42
41
  when /@hetzner.co.za\z/
42
+ #when /^[^@-_a-zA-Z0-9]@hetzner.co.za\z/
43
43
  Soar::Authentication::Identity::Provider::Staff.new({
44
- directory: get_directory(directory_configurations.fetch('staff')),
44
+ directory: get_directory(directory_configurations.fetch(:staff)),
45
45
  authenticated_identifier: authenticated_identifier
46
46
  })
47
- when /D\d*$/
47
+ when /D\d+$/
48
48
  raise NotImplementedError, 'Domain identities require an implementation'
49
- when /^[CF]{0,1}\d*$/
49
+ when /^[CF]{0,1}\d+$/
50
50
  raise NotImplementedError, 'Customer identities require an implementation'
51
51
  else
52
52
  raise Soar::Authentication::Identity::Error::UnknownIdentityError, 'Unknown identity'
data/lib/soar/authentication/identity/provider/staff.rb CHANGED
@@ -17,8 +17,7 @@ module Soar
17
17
 
18
18
  def uuid
19
19
  attributes = @identity_registry.get_attributes(@authenticated_identifier)
20
- primary_key = @directory.index[0]
21
- attributes[primary_key]
20
+ attributes[@directory.index[0]]
22
21
  end
23
22
 
24
23
  def role
data/lib/soar/authentication/identity/test/orchestration_provider/staff.rb CHANGED
@@ -9,30 +9,34 @@ module Soar
9
9
  class Staff
10
10
 
11
11
  def initialize
12
+ @directory_configurations = {
13
+ staff: YAML.load_file("config/#{ENV['CONFIG_FILE']}"),
14
+ customer: {},
15
+ domain: {}
16
+ }
17
+
12
18
  @entry = {
13
- "uuid" => SecureRandom.uuid,
14
- "email" => 'test@hetzner.co.za'
19
+ dn: "cn=John Smith,#{@directory_configurations[:staff]["config"]["base"]}",
20
+ attributes: {
21
+ cn: "John Smith",
22
+ mail: "test@hetzner.co.za",
23
+ objectclass: ["inetOrgPerson", "top"],
24
+ sn: "Smith"
25
+ }
15
26
  }
27
+
16
28
  @identity = Soar::Authentication::Identity::Factory.create({
17
- authenticated_identifier: @entry["email"],
18
- directory_configurations: {
19
- "staff" => {
20
- "class" => 'Soar::Registry::Directory::Provider::Stub',
21
- "config" => {
22
- "table" => "identity",
23
- "index" => ["uuid", "email"]
24
- }
25
- },
26
- "customer" => {},
27
- "domain" => {}
28
- }
29
+ authenticated_identifier: @entry[:attributes][:mail],
30
+ directory_configurations: @directory_configurations
29
31
  })
32
+
30
33
  end
31
34
 
32
35
  ##
33
36
  # @return [Nil]
34
37
  ##
35
38
  def given_existing_identity
39
+ @identity.directory.provider.delete(@entry[:dn])
36
40
  @identity.directory.put(@entry)
37
41
  end
38
42
 
@@ -40,7 +44,7 @@ module Soar
40
44
  # @return [Nil]
41
45
  ##
42
46
  def given_authenticated_identifier
43
- @entry["email"]
47
+ @entry[:attributes][:mail]
44
48
  end
45
49
 
46
50
  ##
@@ -54,7 +58,8 @@ module Soar
54
58
  # @return [Boolean]
55
59
  ##
56
60
  def uuid?
57
- @entry["uuid"] == @identity.uuid
61
+ entry = @identity.directory.search("mail", @entry[:attributes][:mail])
62
+ entry[0][@identity.directory.index[0]] == @identity.uuid
58
63
  end
59
64
 
60
65
  ##
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: soar-authentication-identity
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.0.5
4
+ version: 1.0.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Charles Mulder
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2017-01-05 00:00:00.000000000 Z
11
+ date: 2017-01-09 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: soar-registry-identity
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - "~>"
18
18
  - !ruby/object:Gem::Version
19
- version: 1.0.1
19
+ version: 1.0.2
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - "~>"
25
25
  - !ruby/object:Gem::Version
26
- version: 1.0.1
26
+ version: 1.0.2
27
27
  description:
28
28
  email:
29
29
  - charles.mulder@hetzner.co.za
@@ -40,8 +40,11 @@ files:
40
40
  - Gemfile
41
41
  - README.md
42
42
  - Rakefile
43
- - docker-compose.staff.yml
44
- - docker-compose.stub.yml
43
+ - config/config.ci.ldap.yml
44
+ - config/config.ldap.yml
45
+ - docker-compose.ci.staff.yml
46
+ - docker-compose.ci.stub.yml
47
+ - docker-compose.ldap.yml
45
48
  - lib/soar/authentication/identity.rb
46
49
  - lib/soar/authentication/identity/error.rb
47
50
  - lib/soar/authentication/identity/factory.rb
data/docker-compose.staff.yml DELETED
@@ -1,13 +0,0 @@
1
- version: "2"
2
- services:
3
- tests:
4
- build:
5
- context: .
6
- image: soar-authentication-identity-provider-staff
7
- container_name: soar-authentication-identity-provider-staff
8
- environment:
9
- - TEST_ORCHESTRATION_PROVIDER=Staff
10
-
11
-
12
-
13
-