vagrant-s3auth-mfa 1.4.0

data/test/box/public-minimal.box

@@ -0,0 +1 @@
+test/box/minimal.box

data/test/cleanup.rb

@@ -0,0 +1,23 @@
+#!/usr/bin/env ruby
+
+require 'bundler/setup'
+require 'aws-sdk'
+
+require_relative 'support'
+
+[REGION_STANDARD, REGION_NONSTANDARD].each do |region|
+  s3 = Aws::S3::Resource.new(region: region)
+
+  buckets = if ARGV.include?('--all')
+              s3.buckets.select do |b|
+                b.name.include?('vagrant-s3auth.com') && b.name.include?(region)
+              end
+            else
+              [s3.bucket("#{region}.#{BUCKET}")]
+            end
+
+  buckets.each { |b| b.delete! if b.exists? }
+end
+
+atlas = Atlas.new(ATLAS_TOKEN, ATLAS_USERNAME)
+atlas.delete_box(ATLAS_BOX_NAME)

data/test/run.bats

@@ -0,0 +1,147 @@
+#!/usr/bin/env bats
+
+missing_vars=()
+
+require_var() {
+  [[ "${!1}" ]] || missing_vars+=("$1")
+}
+
+require_var AWS_ACCESS_KEY_ID
+require_var AWS_SECRET_ACCESS_KEY
+require_var ATLAS_TOKEN
+require_var ATLAS_USERNAME
+require_var VAGRANT_S3AUTH_BUCKET
+require_var VAGRANT_S3AUTH_BOX_BASE
+require_var VAGRANT_S3AUTH_ATLAS_BOX_NAME
+require_var VAGRANT_S3AUTH_REGION_NONSTANDARD
+
+if [[ ${#missing_vars[*]} -gt 0 ]]; then
+  echo "Missing required environment variables:"
+  printf '    %s\n' "${missing_vars[@]}"
+  exit 1
+fi
+
+teardown() {
+  bundle exec vagrant box remove "$VAGRANT_S3AUTH_BOX_BASE" > /dev/null 2>&1 || true
+  bundle exec vagrant box remove "public-$VAGRANT_S3AUTH_BOX_BASE" > /dev/null 2>&1 || true
+  bundle exec vagrant box remove "vagrant-s3auth/$VAGRANT_S3AUTH_BOX_BASE" > /dev/null 2>&1 || true
+  bundle exec vagrant box remove "vagrant-s3auth/public-$VAGRANT_S3AUTH_BOX_BASE" > /dev/null 2>&1 || true
+  bundle exec vagrant box remove "$ATLAS_USERNAME/$VAGRANT_S3AUTH_ATLAS_BOX_NAME" > /dev/null 2>&1 || true
+}
+
+@test "vagrant cloud" {
+  bundle exec vagrant box add "$ATLAS_USERNAME/$VAGRANT_S3AUTH_ATLAS_BOX_NAME"
+}
+
+@test "simple box with full path standard url" {
+  bundle exec vagrant box add \
+    --name "$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://s3.amazonaws.com/us-east-1.$VAGRANT_S3AUTH_BUCKET/$VAGRANT_S3AUTH_BOX_BASE.box"
+}
+
+@test "public simple box with full path standard url without credentials" {
+  AWS_ACCESS_KEY_ID= \
+    bundle exec vagrant box add \
+    --name "$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://s3.amazonaws.com/us-east-1.$VAGRANT_S3AUTH_BUCKET/public-$VAGRANT_S3AUTH_BOX_BASE.box"
+}
+
+@test "simple box with full host standard url" {
+  bundle exec vagrant box add \
+    --name "$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://us-east-1.$VAGRANT_S3AUTH_BUCKET.s3.amazonaws.com/$VAGRANT_S3AUTH_BOX_BASE.box"
+}
+
+@test "simple box with shorthand standard url" {
+  bundle exec vagrant box add \
+    --name "$VAGRANT_S3AUTH_BOX_BASE" \
+    "s3://us-east-1.$VAGRANT_S3AUTH_BUCKET/$VAGRANT_S3AUTH_BOX_BASE.box"
+}
+
+@test "simple box with full path nonstandard url" {
+  bundle exec vagrant box add \
+    --name "$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://s3-$VAGRANT_S3AUTH_REGION_NONSTANDARD.amazonaws.com/$VAGRANT_S3AUTH_REGION_NONSTANDARD.$VAGRANT_S3AUTH_BUCKET/$VAGRANT_S3AUTH_BOX_BASE.box"
+}
+
+@test "public simple box with full path nonstandard url without credentials" {
+  AWS_ACCESS_KEY_ID= \
+    bundle exec vagrant box add \
+    --name "$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://s3-$VAGRANT_S3AUTH_REGION_NONSTANDARD.amazonaws.com/$VAGRANT_S3AUTH_REGION_NONSTANDARD.$VAGRANT_S3AUTH_BUCKET/public-$VAGRANT_S3AUTH_BOX_BASE.box"
+}
+
+@test "simple box with full host nonstandard url" {
+  bundle exec vagrant box add \
+    --name "$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://$VAGRANT_S3AUTH_REGION_NONSTANDARD.$VAGRANT_S3AUTH_BUCKET.s3-$VAGRANT_S3AUTH_REGION_NONSTANDARD.amazonaws.com/$VAGRANT_S3AUTH_BOX_BASE.box"
+}
+
+@test "simple box with shorthand nonstandard url" {
+  bundle exec vagrant box add \
+    --name "$VAGRANT_S3AUTH_BOX_BASE" \
+    "s3://$VAGRANT_S3AUTH_REGION_NONSTANDARD.$VAGRANT_S3AUTH_BUCKET/$VAGRANT_S3AUTH_BOX_BASE.box"
+}
+
+@test "metadata box with full path standard url" {
+  bundle exec vagrant box add \
+    --name "vagrant-s3auth/$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://s3.amazonaws.com/us-east-1.$VAGRANT_S3AUTH_BUCKET/$VAGRANT_S3AUTH_BOX_BASE"
+}
+
+@test "public metadata box with full path standard url without credentials" {
+  AWS_ACCESS_KEY_ID= \
+    bundle exec vagrant box add \
+    --name "vagrant-s3auth/public-$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://s3.amazonaws.com/us-east-1.$VAGRANT_S3AUTH_BUCKET/public-$VAGRANT_S3AUTH_BOX_BASE"
+}
+
+@test "metadata box with full host standard url" {
+  bundle exec vagrant box add \
+    --name "vagrant-s3auth/$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://us-east-1.$VAGRANT_S3AUTH_BUCKET.s3.amazonaws.com/$VAGRANT_S3AUTH_BOX_BASE"
+}
+
+@test "metadata box with shorthand standard url" {
+  bundle exec vagrant box add \
+    --name "vagrant-s3auth/$VAGRANT_S3AUTH_BOX_BASE" \
+    "s3://us-east-1.$VAGRANT_S3AUTH_BUCKET/$VAGRANT_S3AUTH_BOX_BASE"
+}
+
+@test "metadata box with full path nonstandard url" {
+  bundle exec vagrant box add \
+    --name "vagrant-s3auth/$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://s3-$VAGRANT_S3AUTH_REGION_NONSTANDARD.amazonaws.com/$VAGRANT_S3AUTH_REGION_NONSTANDARD.$VAGRANT_S3AUTH_BUCKET/$VAGRANT_S3AUTH_BOX_BASE"
+}
+
+@test "public metadata box with full path nonstandard url without credentials" {
+  AWS_ACCESS_KEY_ID= \
+    bundle exec vagrant box add \
+    --name "vagrant-s3auth/public-$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://s3-$VAGRANT_S3AUTH_REGION_NONSTANDARD.amazonaws.com/$VAGRANT_S3AUTH_REGION_NONSTANDARD.$VAGRANT_S3AUTH_BUCKET/public-$VAGRANT_S3AUTH_BOX_BASE"
+}
+
+
+@test "metadata box with full host nonstandard url" {
+  bundle exec vagrant box add \
+    --name "vagrant-s3auth/$VAGRANT_S3AUTH_BOX_BASE" \
+    "https://$VAGRANT_S3AUTH_REGION_NONSTANDARD.$VAGRANT_S3AUTH_BUCKET.s3-$VAGRANT_S3AUTH_REGION_NONSTANDARD.amazonaws.com/$VAGRANT_S3AUTH_BOX_BASE"
+}
+
+@test "metadata box with shorthand nonstandard url" {
+  bundle exec vagrant box add \
+    --name "vagrant-s3auth/$VAGRANT_S3AUTH_BOX_BASE" \
+    "s3://$VAGRANT_S3AUTH_REGION_NONSTANDARD.$VAGRANT_S3AUTH_BUCKET/$VAGRANT_S3AUTH_BOX_BASE"
+}
+
+@test "garbage shorthand url" {
+  run bundle exec vagrant box add --name "$VAGRANT_S3AUTH_BOX_BASE" s3://smoogedydoop
+  [[ "$status" -eq 1 ]]
+  [[ "$output" == *"Malformed shorthand S3 box URL"* ]]
+}
+
+@test "garbage full url" {
+  run bundle exec vagrant box add --name "$VAGRANT_S3AUTH_BOX_BASE" https://smoogedydoop
+  [[ "$status" -eq 1 ]]
+  [[ "$output" == *"error occurred while downloading the remote file"* ]]
+}

data/test/setup.rb

@@ -0,0 +1,34 @@
+#!/usr/bin/env ruby
+
+require 'bundler/setup'
+require 'aws-sdk'
+
+require_relative 'support'
+
+ROOT = Pathname.new(File.dirname(__FILE__))
+
+box_urls = [REGION_STANDARD, REGION_NONSTANDARD].flat_map do |region|
+  s3 = Aws::S3::Resource.new(region: region)
+  bucket = s3.create_bucket(bucket: "#{region}.#{BUCKET}")
+
+  [BOX_BASE, 'public-' + BOX_BASE].flat_map do |box_name|
+    box = bucket.object("#{box_name}.box")
+    box.upload_file(ROOT + Pathname.new("box/#{box_name}.box"))
+    box.acl.put(acl: 'public-read') if box_name.start_with?('public')
+
+    metadata_string = format(File.read(ROOT + Pathname.new("box/#{box_name}")),
+      box_url: box.public_url)
+
+    metadata = bucket.object(box_name)
+    metadata.put(body: metadata_string, content_type: 'application/json')
+    metadata.acl.put(acl: 'public-read') if box_name.start_with?('public')
+
+    box.public_url
+  end
+end
+
+atlas = Atlas.new(ATLAS_TOKEN, ATLAS_USERNAME)
+atlas.create_box(ATLAS_BOX_NAME)
+atlas.create_version(ATLAS_BOX_NAME, '1.0.1')
+atlas.create_provider(ATLAS_BOX_NAME, '1.0.1', box_urls.sample)
+atlas.release_version(ATLAS_BOX_NAME, '1.0.1')

data/test/support.rb

@@ -0,0 +1,82 @@
+require 'http'
+
+BOX_BASE = ENV['VAGRANT_S3AUTH_BOX_BASE'].freeze
+BUCKET = ENV['VAGRANT_S3AUTH_BUCKET'].freeze
+REGION_STANDARD = 'us-east-1'.freeze
+REGION_NONSTANDARD = ENV['VAGRANT_S3AUTH_REGION_NONSTANDARD'].freeze
+
+ATLAS_TOKEN = ENV['ATLAS_TOKEN'].freeze
+ATLAS_USERNAME = ENV['ATLAS_USERNAME'].freeze
+ATLAS_BOX_NAME = ENV['VAGRANT_S3AUTH_ATLAS_BOX_NAME'].freeze
+
+class Atlas
+  BASE_URL = 'https://app.vagrantup.com/api/v1'.freeze
+
+  BOX_CREATE_URL = "#{BASE_URL}/boxes".freeze
+  BOX_RESOURCE_URL = "#{BASE_URL}/box/%<username>s/%<box_name>s".freeze
+
+  VERSION_CREATE_URL = "#{BOX_RESOURCE_URL}/versions".freeze
+  VERSION_RESOURCE_URL = "#{BOX_RESOURCE_URL}/version/%<version>s".freeze
+  VERSION_RELEASE_URL = "#{VERSION_RESOURCE_URL}/release".freeze
+
+  PROVIDER_CREATE_URL = "#{VERSION_RESOURCE_URL}/providers".freeze
+  PROVIDER_RESOURCE_URL = "#{VERSION_RESOURCE_URL}/provider/%<provider_name>s".freeze
+
+  attr_accessor :provider
+
+  def initialize(token, username)
+    raise if !token || token.empty?
+    raise if !username || username.empty?
+
+    @token = token
+    @username = username
+    @provider = 'virtualbox'
+  end
+
+  def create_box(box_name)
+    post(BOX_CREATE_URL, data: { box: { name: box_name, is_private: false } })
+  end
+
+  def delete_box(box_name)
+    url_params = { box_name: box_name }
+    delete(BOX_RESOURCE_URL, url_params: url_params)
+  end
+
+  def create_version(box_name, version)
+    post(VERSION_CREATE_URL,
+      data: { version: { version: version } },
+      url_params: { box_name: box_name })
+  end
+
+  def release_version(box_name, version)
+    put(VERSION_RELEASE_URL,
+      url_params: { box_name: box_name, version: version })
+  end
+
+  def create_provider(box_name, version, url)
+    post(PROVIDER_CREATE_URL,
+      data: { provider: { name: @provider, url: url } },
+      url_params: { box_name: box_name, version: version })
+  end
+
+  def request(method, url, options)
+    url_params = (options[:url_params] || {}).merge(username: @username)
+    data = (options[:data] || {})
+
+    url = (url % url_params) + "?access_token=#{@token}"
+    response = HTTP.request(method, url, json: data)
+    raise response unless response.code >= 200 && response.code < 400
+  end
+
+  def post(url, options)
+    request(:post, url, options)
+  end
+
+  def put(url, options)
+    request(:put, url, options)
+  end
+
+  def delete(url, options)
+    request(:delete, url, options)
+  end
+end

data/vagrant-s3auth.gemspec

@@ -0,0 +1,25 @@
+$LOAD_PATH.unshift File.expand_path('../lib', __FILE__)
+
+require 'vagrant-s3auth/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'vagrant-s3auth-mfa'
+  spec.version       = VagrantPlugins::S3Auth::VERSION
+  spec.authors       = ['Nikhil Benesch']
+  spec.email         = ['benesch@whoop.com']
+  spec.summary       = '[Forked by VRTDev] Private, versioned Vagrant boxes hosted on Amazon S3.'
+  spec.homepage      = 'https://github.com/WhoopInc/vagrant-s3auth'
+  spec.license       = 'MIT'
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.test_files    = spec.files.grep(/spec/)
+  spec.require_paths = ['lib']
+
+  spec.add_dependency 'aws-sdk', '~> 2.6.44'
+  spec.add_dependency 'aws_config', '~> 0.1.0'
+
+  spec.add_development_dependency 'bundler', '~> 1.5'
+  spec.add_development_dependency 'http', '~> 1.0.2'
+  spec.add_development_dependency 'rake', '~> 12.0'
+  spec.add_development_dependency 'rubocop', '~> 0.46'
+end

metadata

@@ -0,0 +1,157 @@
+--- !ruby/object:Gem::Specification
+name: vagrant-s3auth-mfa
+version: !ruby/object:Gem::Version
+  version: 1.4.0
+platform: ruby
+authors:
+- Nikhil Benesch
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2019-01-14 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: aws-sdk
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.6.44
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.6.44
+- !ruby/object:Gem::Dependency
+  name: aws_config
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.0
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+- !ruby/object:Gem::Dependency
+  name: http
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.0.2
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.0.2
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12.0'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.46'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.46'
+description: 
+email:
+- benesch@whoop.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rubocop.yml"
+- ".ruby-version"
+- ".travis.yml"
+- CHANGELOG.md
+- CONTRIBUTING.md
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- TESTING.md
+- lib/vagrant-s3auth.rb
+- lib/vagrant-s3auth/errors.rb
+- lib/vagrant-s3auth/extension/downloader.rb
+- lib/vagrant-s3auth/middleware/expand_s3_urls.rb
+- lib/vagrant-s3auth/plugin.rb
+- lib/vagrant-s3auth/util.rb
+- lib/vagrant-s3auth/version.rb
+- locales/en.yml
+- test/box/minimal
+- test/box/minimal.box
+- test/box/public-minimal
+- test/box/public-minimal.box
+- test/cleanup.rb
+- test/run.bats
+- test/setup.rb
+- test/support.rb
+- vagrant-s3auth.gemspec
+homepage: https://github.com/WhoopInc/vagrant-s3auth
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.7.7
+signing_key: 
+specification_version: 4
+summary: "[Forked by VRTDev] Private, versioned Vagrant boxes hosted on Amazon S3."
+test_files:
+- vagrant-s3auth.gemspec