Class: ConsulACLTokenClient

Inherits:

PuppetX::Consul::ACLBase::BaseClient

• Object
• PuppetX::Consul::ACLBase::BaseClient
• ConsulACLTokenClient

Defined in:

lib/puppet/provider/consul_token/default.rb

Instance Method Summary

• #create_token(accessor_id, description, policies_by_name, policies_by_id, tries, secret_id = nil) ⇒ Object
• #delete_token(accessor_id) ⇒ Object
• #encode_body(accessor_id, description, policies_by_name, policies_by_id, secret_id = nil) ⇒ Object
• #get_token_list(tries) ⇒ Object
• #parse_policies(response) ⇒ Object
• #update_token(accessor_id, description, policies_by_name, policies_by_id) ⇒ Object

Instance Method Details

#create_token(accessor_id, description, policies_by_name, policies_by_id, tries, secret_id = nil) ⇒ Object

# File 'lib/puppet/provider/consul_token/default.rb', line 142

def create_token(accessor_id, description, policies_by_name, policies_by_id, tries, secret_id = nil)
  begin
    body = encode_body(accessor_id, description, policies_by_name, policies_by_id, secret_id)
    response = put('/token', body, tries)
  rescue StandardError => e
    Puppet.warning("Unable to create token #{description}: #{e.message}")
    return nil
  end

  ConsulToken.new(response['AccessorID'], response['SecretID'], description, parse_policies(response['Policies']))
end

#delete_token(accessor_id) ⇒ Object

# File 'lib/puppet/provider/consul_token/default.rb', line 166

def delete_token(accessor_id)
  response = delete('/token/' + accessor_id)

  raise 'Consul API returned false as response' if response == 'false'
rescue StandardError => e
  Puppet.warning("Unable to delete token #{accessor_id}: #{e.message}")
  nil
end

#encode_body(accessor_id, description, policies_by_name, policies_by_id, secret_id = nil) ⇒ Object

# File 'lib/puppet/provider/consul_token/default.rb', line 186

def encode_body(accessor_id, description, policies_by_name, policies_by_id, secret_id = nil)
  policies = []
  policies_by_name.each do |name|
    policies.push({ 'Name' => name })
  end

  policies_by_id.each do |id|
    policies.push({ 'ID' => id })
  end

  body = {}
  body.store('AccessorID', accessor_id)
  body.store('Description', description)
  body.store('Local', false)
  body.store('Policies', policies)

  body.store('SecretID', secret_id) if !secret_id.nil? && !secret_id.to_s.strip.empty?

  body
end

#get_token_list(tries) ⇒ Object

# File 'lib/puppet/provider/consul_token/default.rb', line 126

def get_token_list(tries)
  begin
    response = get('/tokens', tries)
  rescue StandardError => e
    Puppet.warning("Cannot retrieve ACL token list: #{e.message}")
    response = {}
  end

  collection = []
  response.each do |item|
    collection.push(ConsulToken.new(item['AccessorID'], item['SecretID'], item['Description'], parse_policies(item['Policies'])))
  end

  collection
end

#parse_policies(response) ⇒ Object

# File 'lib/puppet/provider/consul_token/default.rb', line 175

def parse_policies(response)
  return [] unless response

  policy_links = []
  response.each do |policy|
    policy_links.push(ConsulTokenPolicyLink.new(policy['ID'], policy['Name']))
  end

  policy_links
end

#update_token(accessor_id, description, policies_by_name, policies_by_id) ⇒ Object

# File 'lib/puppet/provider/consul_token/default.rb', line 154

def update_token(accessor_id, description, policies_by_name, policies_by_id)
  begin
    body = encode_body(accessor_id, description, policies_by_name, policies_by_id, nil)
    response = put('/token/' + accessor_id, body)
  rescue StandardError => e
    Puppet.warning("Unable to update token #{description} (Accessor ID: #{accessor_id}): #{e.message}")
    return nil
  end

  parse_policies(response['Policies'])
end