summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorLamont Granquist <lamont@scriptkiddie.org>2015-01-25 14:41:38 -0800
committerLamont Granquist <lamont@scriptkiddie.org>2015-01-25 14:41:38 -0800
commit9e73df36e78dd2e7632339ec8a7c7d0eddf6b1d6 (patch)
tree5e93d95c60107f259a9ae5dfe5c60cbb19b03083
parentd6e55c1dc0d3b3182382b23ebed4f61f2545cf2f (diff)
parentf2abc6028ed3fa15e473fa545a32c3d3100b6ac5 (diff)
downloadchef-9e73df36e78dd2e7632339ec8a7c7d0eddf6b1d6.tar.gz
Merge pull request #2808 from chef/lcg/2448
Lcg/2448
-rw-r--r--CHANGELOG.md1
-rw-r--r--lib/chef/org.rb148
-rw-r--r--spec/unit/org_spec.rb196
3 files changed, 345 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index ab6adf8e36..3952306e8c 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -49,6 +49,7 @@
* fixed bugs in the deep_merge_cache logic introduced in 12.0.0 around `node['foo']` vs `node[:foo]` vs. `node.foo`
* add `include_recipe "::recipe"` sugar to reference a recipe in the current cookbook
* Add --proxy-auth option to `knife raw`
+* added Chef::Org model class for Chef Organizations in Chef 12 Server
## 12.0.3
* [**Phil Dibowitz**](https://github.com/jaymzh):
diff --git a/lib/chef/org.rb b/lib/chef/org.rb
new file mode 100644
index 0000000000..41d74b6186
--- /dev/null
+++ b/lib/chef/org.rb
@@ -0,0 +1,148 @@
+#
+# Author:: Steven Danna (steve@opscode.com)
+# Copyright:: Copyright (c) 2014 Chef Software, Inc
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+require 'chef/json_compat'
+require 'chef/mixin/params_validate'
+require 'chef/rest'
+
+class Chef
+ class Org
+
+ include Chef::Mixin::ParamsValidate
+
+ def initialize(name)
+ @name = name
+ @full_name = ''
+ # The Chef API returns the private key of the validator
+ # client on create
+ @private_key = nil
+ @guid = nil
+ end
+
+ def chef_rest
+ @chef_rest ||= Chef::REST.new(Chef::Config[:chef_server_root])
+ end
+
+ def name(arg=nil)
+ set_or_return(:name, arg,
+ :regex => /^[a-z0-9\-_]+$/)
+ end
+
+ def full_name(arg=nil)
+ set_or_return(:full_name,
+ arg, :kind_of => String)
+ end
+
+ def private_key(arg=nil)
+ set_or_return(:private_key,
+ arg, :kind_of => String)
+ end
+
+ def guid(arg=nil)
+ set_or_return(:guid,
+ arg, :kind_of => String)
+ end
+
+ def to_hash
+ result = {
+ "name" => @name,
+ "full_name" => @full_name
+ }
+ result["private_key"] = @private_key if @private_key
+ result["guid"] = @guid if @guid
+ result
+ end
+
+ def to_json(*a)
+ Chef::JSONCompat.to_json(to_hash, *a)
+ end
+
+ def create
+ payload = {:name => self.name, :full_name => self.full_name}
+ new_org = chef_rest.post_rest("organizations", payload)
+ Chef::Org.from_hash(self.to_hash.merge(new_org))
+ end
+
+ def update
+ payload = {:name => self.name, :full_name => self.full_name}
+ new_org = chef_rest.put_rest("organizations/#{name}", payload)
+ Chef::Org.from_hash(self.to_hash.merge(new_org))
+ end
+
+ def destroy
+ chef_rest.delete_rest("organizations/#{@name}")
+ end
+
+ def save
+ begin
+ create
+ rescue Net::HTTPServerException => e
+ if e.response.code == "409"
+ update
+ else
+ raise e
+ end
+ end
+ end
+
+ def associate_user(username)
+ request_body = {:user => username}
+ response = chef_rest.post_rest "organizations/#{@name}/association_requests", request_body
+ association_id = response["uri"].split("/").last
+ chef_rest.put_rest "users/#{username}/association_requests/#{association_id}", { :response => 'accept' }
+ end
+
+ def dissociate_user(username)
+ chef_rest.delete_rest "organizations/#{name}/users/#{username}"
+ end
+
+ # Class methods
+ def self.from_hash(org_hash)
+ org = Chef::Org.new(org_hash['name'])
+ org.full_name org_hash['full_name']
+ org.private_key org_hash['private_key'] if org_hash.key?('private_key')
+ org.guid org_hash['guid'] if org_hash.key?('guid')
+ org
+ end
+
+ def self.from_json(json)
+ Chef::Org.from_hash(Chef::JSONCompat.from_json(json))
+ end
+
+ class <<self
+ alias_method :json_create, :from_json
+ end
+
+ def self.load(org_name)
+ response = Chef::REST.new(Chef::Config[:chef_server_root]).get_rest("organizations/#{org_name}")
+ Chef::Org.from_hash(response)
+ end
+
+ def self.list(inflate=false)
+ orgs = Chef::REST.new(Chef::Config[:chef_server_root]).get_rest('organizations')
+ if inflate
+ orgs.inject({}) do |org_map, (name, _url)|
+ org_map[name] = Chef::Org.load(name)
+ org_map
+ end
+ else
+ orgs
+ end
+ end
+ end
+end
diff --git a/spec/unit/org_spec.rb b/spec/unit/org_spec.rb
new file mode 100644
index 0000000000..cd6cc94d91
--- /dev/null
+++ b/spec/unit/org_spec.rb
@@ -0,0 +1,196 @@
+#
+# Author:: Steven Danna (steve@opscode.com)
+# Copyright:: Copyright (c) 2014 Chef Software, Inc
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+require 'spec_helper'
+
+require 'chef/org'
+require 'tempfile'
+
+describe Chef::Org do
+ let(:org) { Chef::Org.new("an_org") }
+
+ describe "initialize" do
+ it "is a Chef::Org" do
+ expect(org).to be_a_kind_of(Chef::Org)
+ end
+ end
+
+ describe "name" do
+ it "lets you set the name to a string" do
+ org.name "sg1"
+ expect(org.name).to eq("sg1")
+ end
+
+ # It is not feasible to check all invalid characters. Here are a few
+ # that we probably care about.
+ it "raises on invalid characters" do
+ # capital letters
+ expect { org.name "Bar" }.to raise_error(ArgumentError)
+ # slashes
+ expect { org.name "foo/bar" }.to raise_error(ArgumentError)
+ # ?
+ expect { org.name "foo?" }.to raise_error(ArgumentError)
+ # &
+ expect { org.name "foo&" }.to raise_error(ArgumentError)
+ # spaces
+ expect { org.name "foo " }.to raise_error(ArgumentError)
+ end
+
+ it "raises an ArgumentError if you feed it anything but a string" do
+ expect { org.name Hash.new }.to raise_error(ArgumentError)
+ end
+ end
+
+ describe "full_name" do
+ it "lets you set the full name" do
+ org.full_name "foo"
+ expect(org.full_name).to eq("foo")
+ end
+
+ it "raises an ArgumentError if you feed it anything but a string" do
+ expect { org.name Hash.new }.to raise_error(ArgumentError)
+ end
+ end
+
+ describe "private_key" do
+ it "returns the private key" do
+ org.private_key("super private")
+ expect(org.private_key).to eq("super private")
+ end
+
+ it "raises an ArgumentError if you feed it something lame" do
+ expect { org.private_key Hash.new }.to raise_error(ArgumentError)
+ end
+ end
+
+ describe "when serializing to JSON" do
+ let(:json) do
+ org.name("black")
+ org.full_name("black crowes")
+ org.to_json
+ end
+
+ it "serializes as a JSON object" do
+ expect(json).to match(/^\{.+\}$/)
+ end
+
+ it "includes the name value" do
+ expect(json).to include(%q{"name":"black"})
+ end
+
+ it "includes the full name value" do
+ expect(json).to include(%q{"full_name":"black crowes"})
+ end
+
+ it "includes the private key when present" do
+ org.private_key("monkeypants")
+ expect(org.to_json).to include(%q{"private_key":"monkeypants"})
+ end
+
+ it "does not include the private key if not present" do
+ expect(json).to_not include("private_key")
+ end
+ end
+
+ describe "when deserializing from JSON" do
+ let(:org) do
+ o = { "name" => "turtle",
+ "full_name" => "turtle_club",
+ "private_key" => "pandas" }
+ Chef::Org.from_json(o.to_json)
+ end
+
+ it "deserializes to a Chef::Org object" do
+ expect(org).to be_a_kind_of(Chef::Org)
+ end
+
+ it "preserves the name" do
+ expect(org.name).to eq("turtle")
+ end
+
+ it "preserves the full_name" do
+ expect(org.full_name).to eq("turtle_club")
+ end
+
+ it "includes the private key if present" do
+ expect(org.private_key).to eq("pandas")
+ end
+ end
+
+ describe "API Interactions" do
+ let(:rest) do
+ Chef::Config[:chef_server_root] = "http://www.example.com"
+ r = double('rest')
+ allow(Chef::REST).to receive(:new).and_return(r)
+ r
+ end
+
+ let(:org) do
+ o = Chef::Org.new("foobar")
+ o.full_name "foo bar bat"
+ o
+ end
+
+ describe "list" do
+ let(:response) { {"foobar" => "http://www.example.com/organizations/foobar"} }
+ let(:inflated_response) { {"foobar" => org } }
+
+ it "lists all orgs" do
+ expect(rest).to receive(:get_rest).with("organizations").and_return(response)
+ expect(Chef::Org.list).to eq(response)
+ end
+
+ it "inflate all orgs" do
+ allow(Chef::Org).to receive(:load).with("foobar").and_return(org)
+ expect(rest).to receive(:get_rest).with("organizations").and_return(response)
+ expect(Chef::Org.list(true)).to eq(inflated_response)
+ end
+ end
+
+ describe "create" do
+ it "creates a new org via the API" do
+ expect(rest).to receive(:post_rest).with("organizations", {:name => "foobar", :full_name => "foo bar bat"}).and_return({})
+ org.create
+ end
+ end
+
+ describe "read" do
+ it "loads a named org from the API" do
+ expect(rest).to receive(:get_rest).with("organizations/foobar").and_return({"name" => "foobar", "full_name" => "foo bar bat", "private_key" => "private"})
+ org = Chef::Org.load("foobar")
+ expect(org.name).to eq("foobar")
+ expect(org.full_name).to eq("foo bar bat")
+ expect(org.private_key).to eq("private")
+ end
+ end
+
+ describe "update" do
+ it "updates an existing org on via the API" do
+ expect(rest).to receive(:put_rest).with("organizations/foobar", {:name => "foobar", :full_name => "foo bar bat"}).and_return({})
+ org.update
+ end
+ end
+
+ describe "destroy" do
+ it "deletes the specified org via the API" do
+ expect(rest).to receive(:delete_rest).with("organizations/foobar")
+ org.destroy
+ end
+ end
+ end
+end