1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
|
#--
# Author:: Adam Jacob (<adam@opscode.com>)
# Author:: Thom May (<thom@clearairturbulence.org>)
# Author:: Nuo Yan (<nuo@opscode.com>)
# Author:: Christopher Brown (<cb@opscode.com>)
# Author:: Christopher Walters (<cw@opscode.com>)
# Author:: Daniel DeLeo (<dan@opscode.com>)
# Copyright:: Copyright (c) 2009, 2010 Opscode, Inc.
# License:: Apache License, Version 2.0
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
require 'uri'
require 'net/http'
require 'chef/http/ssl_policies'
require 'chef/http/http_request'
class Chef
class HTTP
class BasicClient
HTTPS = "https".freeze
attr_reader :url
attr_reader :http_client
attr_reader :ssl_policy
# Instantiate a BasicClient.
# === Arguments:
# url:: An URI for the remote server.
# === Options:
# ssl_policy:: The SSL Policy to use, defaults to DefaultSSLPolicy
def initialize(url, opts={})
@url = url
@ssl_policy = opts[:ssl_policy] || DefaultSSLPolicy
@http_client = build_http_client
end
def host
@url.host
end
def port
@url.port
end
def request(method, url, req_body, base_headers={})
http_request = HTTPRequest.new(method, url, req_body, base_headers).http_request
Chef::Log.debug("Initiating #{method} to #{url}")
Chef::Log.debug("---- HTTP Request Header Data: ----")
base_headers.each do |name, value|
Chef::Log.debug("#{name}: #{value}")
end
http_client.request(http_request) do |response|
yield response if block_given?
# http_client.request may not have the return signature we want, so
# force the issue:
return [http_request, response]
end
rescue OpenSSL::SSL::SSLError => e
Chef::Log.error("SSL Validation failure connecting to host: #{host} - #{e.message}")
raise
end
#adapted from buildr/lib/buildr/core/transports.rb
def proxy_uri
proxy = Chef::Config["#{url.scheme}_proxy"]
proxy = URI.parse(proxy) if String === proxy
excludes = Chef::Config[:no_proxy].to_s.split(/\s*,\s*/).compact
excludes = excludes.map { |exclude| exclude =~ /:\d+$/ ? exclude : "#{exclude}:*" }
return proxy unless excludes.any? { |exclude| File.fnmatch(exclude, "#{host}:#{port}") }
end
def build_http_client
http_client = http_client_builder.new(host, port)
if url.scheme == HTTPS
configure_ssl(http_client)
end
http_client.read_timeout = config[:rest_timeout]
http_client
end
def config
Chef::Config
end
def http_client_builder
http_proxy = proxy_uri
if http_proxy.nil?
Net::HTTP
else
Chef::Log.debug("Using #{http_proxy.host}:#{http_proxy.port} for proxy")
user = Chef::Config["#{url.scheme}_proxy_user"]
pass = Chef::Config["#{url.scheme}_proxy_pass"]
Net::HTTP.Proxy(http_proxy.host, http_proxy.port, user, pass)
end
end
def configure_ssl(http_client)
http_client.use_ssl = true
ssl_policy.apply_to(http_client)
end
end
end
end
|
