spaux 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 6c50308cb66f6b1d4cfd64255d28a288fcc76719
+  data.tar.gz: 9c9c2e3a42e4319be7db0bfa484f36419d625d8f
+SHA512:
+  metadata.gz: 73a2d181a03ca651502f506b38fd5023b55ea34226b1018c80bbcfdc2515d1162fa03b35b8b5a25e30303cfb989f5f06191a1c00c4f9ef952bcea91ec5c051c9
+  data.tar.gz: a3f2a933510fd6a7252e286c441bddfc854e5a22b371d5b08accd5e9b69e9231d223a6ee63f546e9c3cd16b24be272b91c463281d4592191acdd0d04119628e7

data/.gitignore

@@ -0,0 +1,15 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+*.bundle
+*.so
+*.o
+*.a
+mkmf.log
+current/

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in spaux.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2014 Miguel Landaeta
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,35 @@
+# Spaux
+
+This is yet another Ruby gem to automate some Chef and cloud computing tasks.
+
+I was not satisfied with some programmatic features from Opscode code so I went ahead and wrote my own gem.
+
+What I'm aiming for is to centralize credentials (API, SSL keys, etc) in the Chef server (e.g. encrypted data bags or chef-vault), store cloud providers settings there as well (plain data bags and attributes) and have a very very simple CLI to launch new environments.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'spaux'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install spaux
+
+## Usage
+
+TODO: Write usage instructions here. Open an issue with questions if you are insterested, I'm still organizing this.
+
+## Contributing
+
+1. Fork it ( https://github.com/[my-github-username]/spaux/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create a new Pull Request

data/Rakefile

@@ -0,0 +1,4 @@
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
+
+RSpec::Core::RakeTask.new(:spec)

data/bin/spaux

@@ -0,0 +1,6 @@
+#!/usr/bin/env ruby
+
+$:.unshift(File.expand_path(File.join(File.dirname(__FILE__), '..', 'lib')))
+require 'spaux/cli'
+
+Spaux::CLI.start(ARGV)

data/examples/attributes.json

@@ -0,0 +1,31 @@
+{
+  "action":"converge",
+  "spaux":{
+    "name":"xanadu",
+    "digital_ocean":{
+      "bootstrap_options":{
+        "flavor_name":"512MB"
+      }
+    },
+    "machine":{
+      "with_rvm":false,
+      "runlist":[
+        "apt",
+        "hostname",
+        "git",
+        "ufw",
+        "users::sysadmins",
+        "sudo"
+      ],
+      "attributes":{
+        "firewall":{
+          "rules":[
+            {"http":{"port":"80"}},
+            {"https":{"port":"443"}}
+          ]
+        }
+      }
+    }
+  },
+  "override_key_name":"fancy"
+}

data/lib/spaux/chef/client.rb

@@ -0,0 +1,56 @@
+require 'spaux/chef/key'
+require 'spaux/chef/monkey_patches'
+
+class Spaux
+  class Chef
+    class Client < ::Chef::Application::Client
+      attr_accessor :work_dir
+      attr_accessor :spaux_config
+
+      DEFAULT_CHEF_CONFIG = {
+        config_file:      ::File.join('@work_dir', 'client.rb'),
+        cache_path:       ::File.join('@work_dir', '.chef'),
+        client_key:       ::File.join('@work_dir', 'client.pem'),
+        json_attribs:     ::File.join('@work_dir', 'attributes.json'),
+        chef_server_url:  'https://api.opscode.com/organizations/spaux',
+        ssl_verify_mode:  :verify_peer,
+        node_name:        'spaux',
+        override_runlist: ["recipe[spaux::machine]"]
+      }
+
+      def initialize(work_dir, *args)
+        @work_dir = work_dir
+        chef_config = args.shift  || {}
+        spaux_config = args.shift || {}
+        super()
+
+        DEFAULT_CHEF_CONFIG.each { |_,v| v.is_a?(String) && v.gsub!(/@work_dir/, @work_dir) }
+        @config.merge! DEFAULT_CHEF_CONFIG.merge(chef_config)
+
+        default_spaux_config = Spaux::Chef::Key::DEFAULT_SPAUX_CONFIG
+        @spaux_config = default_spaux_config.merge(spaux_config)
+        #if !@spaux_config.eql?(default_spaux_config)
+          #trigger a reevalutation of the private key
+
+        @config[:raw_key] = Spaux::Chef::RawKey
+
+        FileUtils.touch @config[:config_file]
+        FileUtils.touch @config[:client_key]
+        unless chef_config[:json_attribs]
+          @config.delete(:json_attribs) if !::File.exists?(@config[:json_attribs])
+        end
+        ENV['SPAUX_HOME'] = @work_dir
+      end
+
+      def reconfigure
+        super
+        ::Chef::Config[:specific_recipes] = []
+      end
+
+      def parse_options(argv=ARGV)
+        argv = []
+        super
+      end
+    end
+  end
+end

data/lib/spaux/chef/key.rb

@@ -0,0 +1,69 @@
+require 'octokit'
+require 'net/ssh'
+
+class Spaux
+  class Chef
+    class Key
+      attr_accessor :work_dir
+      attr_accessor :raw_key
+      attr_accessor :config
+
+      DEFAULT_SPAUX_CONFIG = {
+        chef_private_key_gist_id: '16b65a73953427ce9c40',
+        private_key:              '~/.ssh/id_rsa',
+        aes_key_size:             256,
+        aes_cipher_mode:          :CBC
+      }
+
+      def initialize(config={})
+        @work_dir = ::File.join(ENV['PWD'], 'current')
+        @config = config.merge(DEFAULT_SPAUX_CONFIG)
+        @raw_key ||= get_raw_key
+      end
+
+      private
+      def get_raw_key
+        key_filename = 'encrypted.rb'
+        key_file = ::File.join(@work_dir, key_filename)
+
+        if !::File.exists?(key_file)
+          key = retrieve_key_from_gist(@config[:chef_private_key_gist_id])
+          begin
+            ::File.write(key_file, key)
+          rescue Exception => e
+            puts e.message
+          end
+        else
+          key = ::File.read(key_file)
+        end
+
+        key_hash = eval(key)
+        raw_key = decrypt_key(key_hash, @config[:private_key])
+      end
+
+      def retrieve_key_from_gist(gist)
+        client = Octokit::Client.new
+        key_gist = client.gist(gist)
+        key_filename = key_gist[:files].fields.first
+        key_resource = key_gist[:files][key_filename]
+        key_data = key_resource[:content]
+      end
+
+      def decrypt_key(key_data, rsa_key_filename)
+        rsa_key = Net::SSH::KeyFactory.load_private_key(rsa_key_filename)
+        iv = Base64.decode64(key_data[:iv])
+        sym_key = Base64.decode64(key_data[:key])
+        data = Base64.decode64(key_data[:data])
+
+        decipher = OpenSSL::Cipher::AES.new(@config[:aes_key_size],
+                                            @config[:aes_cipher_mode])
+        decipher.decrypt
+        decipher.iv = rsa_key.private_decrypt(iv)
+        decipher.key = rsa_key.private_decrypt(sym_key)
+        key = decipher.update(data) + decipher.final
+      end
+    end
+  end
+end
+
+Spaux::Chef::RawKey = Spaux::Chef::Key.new.raw_key

data/lib/spaux/chef/monkey_patches.rb

@@ -0,0 +1,32 @@
+require 'chef'
+require 'chef/application/client'
+
+class Chef
+  class HTTP
+    class Authenticator
+      def load_signing_key(key_file, raw_key = nil)
+        @raw_key = Spaux::Chef::RawKey
+        @key = OpenSSL::PKey::RSA.new(@raw_key)
+      rescue OpenSSL::PKey::RSAError
+        msg = "The file #{key_file} or :raw_key option does not contain a correctly formatted private key.\n"
+        msg << "The key file should begin with '-----BEGIN RSA PRIVATE KEY-----' and end with '-----END RSA PRIVATE KEY-----'"
+        raise Chef::Exceptions::InvalidPrivateKey, msg
+      end
+    end
+  end
+end
+
+class ChefVault
+  class Item < Chef::DataBagItem
+    def secret
+      if @keys.include?(Chef::Config[:node_name])
+        private_key = OpenSSL::PKey::RSA.new(Chef::Config[:raw_key])
+        private_key.private_decrypt(Base64.decode64(@keys[Chef::Config[:node_name]]))
+      else
+        raise ChefVault::Exceptions::SecretDecryption,
+          "#{data_bag}/#{id} is not encrypted with your public key.  "\
+          "Contact an administrator of the vault item to encrypt for you!"
+      end
+    end
+  end
+end

data/lib/spaux/cli.rb

@@ -0,0 +1,29 @@
+require 'thor'
+require 'spaux'
+require 'tmpdir'
+require 'fileutils'
+
+class Spaux
+  class CLI < Thor
+    desc 'converge', 'Run spaux chef client'
+    option :dir, :desc => 'Working directory', :banner => 'DIRECTORY'
+    option :current, :type => :boolean, :default => true,
+      :desc => 'Create and/or use a working directory in the current directory'
+    def converge
+      work_dir = options[:dir]
+      if not work_dir
+        if ENV['SPAUX_HOME']
+          work_dir = ENV['SPAUX_HOME']
+        elsif options[:current]
+          work_dir = ::File.join(ENV['PWD'], 'current')
+        else
+          work_dir = Dir.mktmpdir
+        end
+      end
+      FileUtils.mkdir_p work_dir
+
+      client = Spaux::Chef::Client.new(work_dir)
+      client.run
+    end
+  end
+end

data/lib/spaux/version.rb

@@ -0,0 +1,3 @@
+class Spaux
+  VERSION = '0.0.1'
+end

data/lib/spaux.rb

@@ -0,0 +1,6 @@
+require 'spaux/version'
+require 'spaux/cli'
+require 'spaux/chef/client'
+
+class Spaux
+end

data/spaux.gemspec

@@ -0,0 +1,31 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'spaux/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "spaux"
+  spec.version       = Spaux::VERSION
+  spec.authors       = ["Miguel Landaeta"]
+  spec.email         = ["miguel@miguel.cc"]
+  spec.summary       = %q{Spaux automation tasks}
+  spec.homepage      = "https://api.qirtaiba.org/"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ["lib"]
+
+  spec.add_dependency "thor"
+  spec.add_dependency "chef"
+  spec.add_dependency "octokit"
+  spec.add_dependency "net-ssh"
+  spec.add_dependency 'chef-provisioning', '~> 0.15.1'
+  spec.add_dependency 'chef-metal-fog'
+  spec.add_dependency 'chef-vault'
+  spec.add_development_dependency "bundler", "~> 1.7"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "rspec"
+  spec.add_development_dependency "pry"
+end

data/spec/spaux_spec.rb

@@ -0,0 +1,29 @@
+require 'spaux'
+
+# to-do: improve tests
+describe Spaux::Chef::Client do
+  describe '#new' do
+    it 'has a work dir' do
+      client = Spaux::Chef::Client.new(Dir.mktmpdir)
+      expect(client).to respond_to(:work_dir)
+    end
+    it 'has a chef config' do
+      client = Spaux::Chef::Client.new(Dir.mktmpdir)
+      expect(client).to respond_to(:config)
+    end
+    it 'has a spaux config' do
+      client = Spaux::Chef::Client.new(Dir.mktmpdir)
+      expect(client).to respond_to(:spaux_config)
+    end
+  end
+end
+
+#describe Spaux::Chef::Key
+
+describe Spaux::CLI do
+  describe '#converge' do
+    xit 'prints "chef client" in stdout' do
+      expect { Spaux::CLI.new.converge }.to output(/Starting Chef Client/).to_stdout
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1 @@
+require 'spaux'

metadata

@@ -0,0 +1,217 @@
+--- !ruby/object:Gem::Specification
+name: spaux
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Miguel Landaeta
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-11-16 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: thor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: chef
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: octokit
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: net-ssh
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: chef-provisioning
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.15.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.15.1
+- !ruby/object:Gem::Dependency
+  name: chef-metal-fog
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: chef-vault
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 
+email:
+- miguel@miguel.cc
+executables:
+- spaux
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/spaux
+- examples/attributes.json
+- lib/spaux.rb
+- lib/spaux/chef/client.rb
+- lib/spaux/chef/key.rb
+- lib/spaux/chef/monkey_patches.rb
+- lib/spaux/cli.rb
+- lib/spaux/version.rb
+- spaux.gemspec
+- spec/spaux_spec.rb
+- spec/spec_helper.rb
+homepage: https://api.qirtaiba.org/
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.2
+signing_key: 
+specification_version: 4
+summary: Spaux automation tasks
+test_files:
+- spec/spaux_spec.rb
+- spec/spec_helper.rb