RubyGems - vault - Versions diffs - 0.2.0 → 0.3.0 - Mend

vault 0.2.0 → 0.3.0

Files changed (18) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 85725acc286dd2dc1e346442a4e528d7e11ae42e
-  data.tar.gz: 6344245bd60e54203151708b45134c9ae2201a51
+  metadata.gz: f44b1c7408f1606c17e1b1aea67b3547aae80873
+  data.tar.gz: f908452ae3a2117b1b12c5305921f59242ef89ce
 SHA512:
-  metadata.gz: 6d573f396ec086b8103a3d29750c92aa79c0dd0567c5eb511c60a2d9912ad9fb47ef7d4a7a43b910e480ba3742e61e24cd2df9b3fe30e215dfa8d5d22993da88
-  data.tar.gz: 558a0c41ef94a57da06b5bb40bdd34fb07d0367a0ccdf7b51edae9d53fbb28940a81abccd5b9eccd78474493424d7f259459fcc8c522da515f3af37a0e8d5b2d
+  metadata.gz: 00352ca38411b6340b145dfad3bbe8c1f6d49535fbf169717ee60c37198e07e229e56b1f4b1e30fe907d5d542cfe7656ad3386570e2d2894d922935416ce6b0e
+  data.tar.gz: 5a4d53a45ee70b529d03e77fa3e73adabd2e538c3b18aa4547a1d0f78f733cea6337940b70105952b9067df7b9e5d40327bdef45b6b6b5b933eead0e59a46381

data/.gitignore CHANGED Viewed

@@ -30,9 +30,9 @@ build/
 # for a library or gem, you might want to ignore these files since the code is
 # intended to run in multiple environments; otherwise, check them in:
-# Gemfile.lock
-# .ruby-version
-# .ruby-gemset
+Gemfile.lock
+.ruby-version
+.ruby-gemset
 # unless supporting rvm < 1.11.0 or doing something fancy, ignore this:
 .rvmrc

data/.travis.yml CHANGED Viewed

@@ -3,7 +3,7 @@ cache: bundler
 sudo: false
 before_install: |-
-  wget -O vault.zip -q https://dl.bintray.com/mitchellh/vault/vault_0.2.0_linux_amd64.zip
+  wget -O vault.zip -q https://releases.hashicorp.com/vault/0.5.0-rc1/vault_0.5.0-rc1_linux_amd64.zip
   unzip vault.zip
   mkdir ~/bin
   mv vault ~/bin
@@ -18,3 +18,4 @@ rvm:
   - 2.0
   - 2.1
   - 2.2
+  - 2.3.0

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,23 @@
 # Vault Ruby Changelog
+## v0.3.0.dev (Unreleased)
+## v0.3.0 (February 16, 2016)
+NEW FEATURES
+- Add API for `renew_self`
+- Add API for `revoke_self`
+- Add API for listing secrets where supported
+BUG FIXES
+- Relax bundler constraint
+- Fix race conditions on Ruby 2.3
+- Escape path params before posting to Vault
 ## v0.2.0 (December 2, 2015)
 IMPROVEMENTS

data/lib/vault.rb CHANGED Viewed

@@ -31,8 +31,8 @@ module Vault
     # Delegate all methods to the client object, essentially making the module
     # object behave like a {Client}.
     def method_missing(m, *args, &block)
-      if client.respond_to?(m)
-        client.send(m, *args, &block)
+      if @client.respond_to?(m)
+        @client.send(m, *args, &block)
       else
         super
       end
@@ -40,7 +40,7 @@ module Vault
     # Delegating +respond_to+ to the {Client}.
     def respond_to_missing?(m, include_private = false)
-      client.respond_to?(m, include_private) || super
+      @client.respond_to?(m, include_private) || super
     end
   end
 end

data/lib/vault/api/auth.rb CHANGED Viewed

@@ -93,7 +93,7 @@ module Vault
     # @return [Secret]
     def userpass(username, password, options = {})
       payload = { password: password }.merge(options)
-      json = client.post("/v1/auth/userpass/login/#{username}", JSON.fast_generate(payload))
+      json = client.post("/v1/auth/userpass/login/#{CGI.escape(username)}", JSON.fast_generate(payload))
       secret = Secret.decode(json)
       client.token = secret.auth.client_token
       return secret

data/lib/vault/api/auth_token.rb CHANGED Viewed

@@ -45,6 +45,31 @@ module Vault
       return Secret.decode(json)
     end
+    # Renews a lease associated with the callign token.
+    #
+    # @example
+    #   Vault.auth_token.renew_self #=> #<Vault::Secret lease_id="">
+    #
+    # @param [Fixnum] increment
+    #
+    # @return [Secret]
+    def renew_self(increment = 0)
+      json = client.put("/v1/auth/token/renew-self", JSON.fast_generate(
+        increment: increment,
+      ))
+      return Secret.decode(json)
+    end
+    # Revokes the token used to call it.
+    #
+    # @example
+    #   Vault.auth_token.revoke_self #=> 204
+    #
+    # @return response code.
+    def revoke_self
+      client.post("/v1/auth/token/revoke-self")
+    end
     # Revoke exactly the orphans at the id.
     #
     # @example

data/lib/vault/api/help.rb CHANGED Viewed

@@ -16,7 +16,7 @@ module Vault
     #
     # @return [Help]
     def help(path)
-      json = self.get("/v1/#{path}", help: 1)
+      json = self.get("/v1/#{CGI.escape(path)}", help: 1)
       return Help.decode(json)
     end
   end

data/lib/vault/api/logical.rb CHANGED Viewed

@@ -13,6 +13,24 @@ module Vault
   end
   class Logical < Request
+    # List the secrets at the given path, if the path supports listing. If the
+    # the path does not exist, an exception will be raised.
+    #
+    # @example
+    #   Vault.logical.list("secret") #=> [#<Vault::Secret>, #<Vault::Secret>, ...]
+    #
+    # @param [String] path
+    #   the path to list
+    #
+    # @return [Array<String>]
+    def list(path)
+      json = client.get("/v1/#{CGI.escape(path)}", list: true)
+      json[:data][:keys] || []
+    rescue HTTPError => e
+      return [] if e.code == 404
+      raise
+    end
     # Read the secret at the given path. If the secret does not exist, +nil+
     # will be returned.
     #
@@ -24,7 +42,7 @@ module Vault
     #
     # @return [Secret, nil]
     def read(path)
-      json = client.get("/v1/#{path}")
+      json = client.get("/v1/#{CGI.escape(path)}")
       return Secret.decode(json)
     rescue HTTPError => e
       return nil if e.code == 404
@@ -44,7 +62,7 @@ module Vault
     #
     # @return [Secret]
     def write(path, data = {})
-      json = client.put("/v1/#{path}", JSON.fast_generate(data))
+      json = client.put("/v1/#{CGI.escape(path)}", JSON.fast_generate(data))
       if json.nil?
         return true
       else
@@ -63,7 +81,7 @@ module Vault
     #
     # @return [true]
     def delete(path)
-      client.delete("/v1/#{path}")
+      client.delete("/v1/#{CGI.escape(path)}")
       return true
     end
   end

data/lib/vault/api/sys/audit.rb CHANGED Viewed

@@ -37,7 +37,7 @@ module Vault
     #
     # @return [true]
     def enable_audit(path, type, description, options = {})
-      client.put("/v1/sys/audit/#{path}", JSON.fast_generate(
+      client.put("/v1/sys/audit/#{CGI.escape(path)}", JSON.fast_generate(
         type:        type,
         description: description,
         options:     options,
@@ -53,7 +53,7 @@ module Vault
     #
     # @return [true]
     def disable_audit(path)
-      client.delete("/v1/sys/audit/#{path}")
+      client.delete("/v1/sys/audit/#{CGI.escape(path)}")
       return true
     end
   end

data/lib/vault/api/sys/auth.rb CHANGED Viewed

@@ -36,7 +36,7 @@ module Vault
       payload = { type: type }
       payload[:description] = description if !description.nil?
-      client.post("/v1/sys/auth/#{path}", JSON.fast_generate(payload))
+      client.post("/v1/sys/auth/#{CGI.escape(path)}", JSON.fast_generate(payload))
       return true
     end
@@ -51,7 +51,7 @@ module Vault
     #
     # @return [true]
     def disable_auth(path)
-      client.delete("/v1/sys/auth/#{path}")
+      client.delete("/v1/sys/auth/#{CGI.escape(path)}")
       return true
     end
   end

data/lib/vault/api/sys/mount.rb CHANGED Viewed

@@ -34,7 +34,7 @@ module Vault
       payload = { type: type }
       payload[:description] = description if !description.nil?
-      client.post("/v1/sys/mounts/#{path}", JSON.fast_generate(payload))
+      client.post("/v1/sys/mounts/#{CGI.escape(path)}", JSON.fast_generate(payload))
       return true
     end
@@ -49,7 +49,7 @@ module Vault
     #
     # @return [true]
     def unmount(path)
-      client.delete("/v1/sys/mounts/#{path}")
+      client.delete("/v1/sys/mounts/#{CGI.escape(path)}")
       return true
     end

data/lib/vault/api/sys/policy.rb CHANGED Viewed

@@ -24,7 +24,7 @@ module Vault
     #
     # @return [Policy, nil]
     def policy(name)
-      json = client.get("/v1/sys/policy/#{name}")
+      json = client.get("/v1/sys/policy/#{CGI.escape(name)}")
       return Policy.decode(json)
     rescue HTTPError => e
       return nil if e.code == 404
@@ -54,7 +54,7 @@ module Vault
     #
     # @return [true]
     def put_policy(name, rules)
-      client.put("/v1/sys/policy/#{name}", JSON.fast_generate(
+      client.put("/v1/sys/policy/#{CGI.escape(name)}", JSON.fast_generate(
         rules: rules,
       ))
       return true
@@ -69,7 +69,7 @@ module Vault
     # @param [String] name
     #   the name of the policy
     def delete_policy(name)
-      client.delete("/v1/sys/policy/#{name}")
+      client.delete("/v1/sys/policy/#{CGI.escape(name)}")
       return true
     end
   end

data/lib/vault/client.rb CHANGED Viewed

@@ -80,7 +80,7 @@ module Vault
     # Perform a POST request.
     # @see Client#request
-    def post(path, data, headers = {})
+    def post(path, data = {}, headers = {})
       request(:post, path, data, headers)
     end

data/lib/vault/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Vault
-  VERSION = "0.2.0"
+  VERSION = "0.3.0"
 end

data/vault.gemspec CHANGED Viewed

@@ -19,7 +19,7 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
-  spec.add_development_dependency "bundler", "~> 1.9"
+  spec.add_development_dependency "bundler"
   spec.add_development_dependency "pry"
   spec.add_development_dependency "rake",    "~> 10.0"
   spec.add_development_dependency "rspec",   "~> 3.2"

metadata CHANGED Viewed

@@ -1,29 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: vault
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.3.0
 platform: ruby
 authors:
 - Seth Vargo
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2015-12-02 00:00:00.000000000 Z
+date: 2016-02-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.9'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.9'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: pry
   requirement: !ruby/object:Gem::Requirement
@@ -92,7 +92,6 @@ files:
 - ".travis.yml"
 - CHANGELOG.md
 - Gemfile
-- Gemfile.lock
 - LICENSE
 - README.md
 - Rakefile

data/Gemfile.lock DELETED Viewed

@@ -1,53 +0,0 @@
-PATH
-  remote: .
-  specs:
-    vault (0.2.0)
-GEM
-  remote: https://rubygems.org/
-  specs:
-    addressable (2.3.8)
-    coderay (1.1.0)
-    crack (0.4.2)
-      safe_yaml (~> 1.0.0)
-    diff-lcs (1.2.5)
-    hashdiff (0.2.3)
-    method_source (0.8.2)
-    pry (0.10.1)
-      coderay (~> 1.1.0)
-      method_source (~> 0.8.1)
-      slop (~> 3.4)
-    rake (10.4.2)
-    rspec (3.2.0)
-      rspec-core (~> 3.2.0)
-      rspec-expectations (~> 3.2.0)
-      rspec-mocks (~> 3.2.0)
-    rspec-core (3.2.3)
-      rspec-support (~> 3.2.0)
-    rspec-expectations (3.2.1)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.2.0)
-    rspec-mocks (3.2.1)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.2.0)
-    rspec-support (3.2.2)
-    safe_yaml (1.0.4)
-    slop (3.6.0)
-    webmock (1.22.3)
-      addressable (>= 2.3.6)
-      crack (>= 0.3.2)
-      hashdiff
-PLATFORMS
-  ruby
-DEPENDENCIES
-  bundler (~> 1.9)
-  pry
-  rake (~> 10.0)
-  rspec (~> 3.2)
-  vault!
-  webmock (~> 1.22)
-BUNDLED WITH
-   1.10.6