Class: Puppet::Provider::SensuAPI

Inherits:

Puppet::Provider

• Object
• Puppet::Provider
• Puppet::Provider::SensuAPI

Defined in:

lib/puppet/provider/sensu_api.rb

Class Attribute Summary

• .access_token ⇒ Object

  Returns the value of attribute access_token.

• .password ⇒ Object

  Returns the value of attribute password.

• .refresh_token ⇒ Object

  Returns the value of attribute refresh_token.

• .url ⇒ Object

  Returns the value of attribute url.

• .username ⇒ Object

  Returns the value of attribute username.

Class Method Summary

• .api_request(path, data = nil, opts = {}) ⇒ Object
• .auth(username, password) ⇒ Object
• .auth_test(url = nil, username, password) ⇒ Object
• .auth_token ⇒ Object
• .get_bonsai_asset(name) ⇒ Object
• .get_bonsai_latest_version(namespace, name) ⇒ Object
• .namespaces ⇒ Object
• .type_properties ⇒ Object
• .update_access_token ⇒ Object

Instance Method Summary

• #api_request(*args) ⇒ Object
• #auth_test(*args) ⇒ Object
• #convert_boolean_property_value(value) ⇒ Object
• #get_bonsai_asset(name) ⇒ Object
• #namespaces ⇒ Object
• #type_properties ⇒ Object
• #update_access_token ⇒ Object

Class Attribute Details

.access_token ⇒ Object

Returns the value of attribute access_token.

# File 'lib/puppet/provider/sensu_api.rb', line 12

def access_token
  @access_token
end

.password ⇒ Object

Returns the value of attribute password.

# File 'lib/puppet/provider/sensu_api.rb', line 11

def password
  @password
end

.refresh_token ⇒ Object

Returns the value of attribute refresh_token.

# File 'lib/puppet/provider/sensu_api.rb', line 13

def refresh_token
  @refresh_token
end

.url ⇒ Object

Returns the value of attribute url.

# File 'lib/puppet/provider/sensu_api.rb', line 9

def url
  @url
end

.username ⇒ Object

Returns the value of attribute username.

# File 'lib/puppet/provider/sensu_api.rb', line 10

def username
  @username
end

Class Method Details

.api_request(path, data = nil, opts = {}) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 56

def self.api_request(path, data = nil, opts = {})
  api_group = opts[:api_group] || 'core'
  api_version = opts[:api_version] || 'v2'
  namespace = opts[:namespace] || nil
  url = opts[:url] || @url
  username = opts[:username] || @username
  password = opts[:password] || @password
  method = opts[:method] || 'get'
  failonfail = opts[:failonfail].nil? ? true : opts[:failonfail]
  if opts[:use_token] == false
    token = nil
  else
    token = @access_token
  end
  if path =~ %r{^/}
    uri = URI(URI.join(url, path))
  elsif namespace
    uri = URI(URI.join(url, "/api/#{api_group}/#{api_version}/namespaces/#{namespace}/#{path}"))
  else
    uri = URI(URI.join(url, "/api/#{api_group}/#{api_version}/#{path}"))
  end
  if method == 'get' && !data.nil?
    uri.query = URI.encode_www_form(data)
  end
  Puppet.debug("method=#{method}: #{uri.to_s}")
  http = Net::HTTP.new(uri.host, uri.port)
  http.use_ssl = (uri.scheme == 'https')
  http.verify_mode = OpenSSL::SSL::VERIFY_NONE if http.use_ssl?
  if method == 'get'
    request = Net::HTTP::Get.new(uri.path)
  elsif method == 'post'
    request = Net::HTTP::Post.new(uri.path)
  elsif method == 'put'
    request = Net::HTTP::Put.new(uri.path)
  elsif method == 'delete'
    request = Net::HTTP::Delete.new(uri.path)
  end
  # Add data for POST and PUT
  if ['post','put'].include?(method)
    Puppet.debug("BODY: #{data.to_json}")
    request.body = data.to_json unless data.nil?
  end
  # Add headers
  request.add_field("Accept", "application/json") if defined?(request) && !request.nil?
  request.add_field("Content-Type", "application/json") if defined?(request) && !request.nil?
  # Add either token or basic auth
  if token.nil? && username && password && opts[:auth] != false
    Puppet.debug("Sensu API: Using basic auth of #{username}:#{password}")
    request.basic_auth(username, password) if defined?(request) && !request.nil?
  else
    Puppet.debug("Sensu API: Using token #{token}")
    request.add_field("Authorization", "Bearer #{token}") if defined?(request) && !request.nil?
  end
  # Make request
  if method == 'post-form' || method == 'put-form'
    encoded_form = URI.encode_www_form(data)
    headers = { content_type: "application/x-www-form-urlencoded", authorization: "Bearer #{token}" }
  end
  if method == 'post-form'
    response = http.request_post(uri.path, encoded_form, headers)
  elsif method == 'put-form'
    response = http.request_put(uri.path, encoded_form, headers)
  else
    response = http.request(request)
  end
  Puppet.debug("RESPONSE: #{response.code}\n#{response.body}")
  return response if opts[:return_response]
  # Handle expired auth token and retry
  if response.kind_of?(Net::HTTPUnauthorized) && opts[:retry] != false
    update_access_token
    opts[:retry] = false
    return api_request(path, data, opts)
  end
  unless response.kind_of?(Net::HTTPSuccess)
    raise Puppet::Error, "Unable to make API request at #{uri.to_s}: #{response.class}"
  end
  if Puppet::Provider::Sensuctl.valid_json?(response.body)
    data = JSON.parse(response.body)
    Puppet.debug("BODY: #{JSON.pretty_generate(data)}")
    return data
  else
    Puppet.debug("BODY: Not valid JSON")
    return {}
  end
rescue Exception => e
  if failonfail
    raise
  else
    Puppet.err "Unable to connect to #{uri.to_s}: #{e.message}"
    return {}
  end
rescue Puppet::Error => e
  if failonfail
    raise
  else
    Puppet.err "Unable to connect to #{uri.to_s}: #{e.message}"
    return {}
  end
end

.auth(username, password) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 159

def self.auth(username, password)
  opts = {
    username: username,
    password: password,
    use_token: false,
    return_response: true,
  }
  response = api_request('/auth', nil, opts)
  if response.kind_of?(Net::HTTPSuccess)
    data = JSON.parse(response.body)
    @access_token = data['access_token']
    @refresh_token = data['refresh_token']
    return true
  else
    return false
  end
end

.auth_test(url = nil, username, password) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 199

def self.auth_test(url = nil, username, password)
  opts = {
    :url => url,
    :username => username,
    :password => password,
    :return_response => true,
    :use_token => false
  }
  response = api_request('/auth/test', nil, opts)
  if response.kind_of?(Net::HTTPSuccess)
    return true
  elsif response.kind_of?(Net::HTTPUnauthorized)
    return false
  else
    Puppet.debug "Error testing username/password using SensuAPI"
    return false
  end
end

.auth_token ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 177

def self.auth_token()
  opts = {
    auth: false,
    return_response: true,
    method: 'post',
  }
  if @refresh_token.nil?
    config = Puppet::Provider::Sensuctl.sensuctl_config
    @access_token = config['access_token']
    @refresh_token = config['refresh_token']
  end
  response = api_request('/auth/token', {'refresh_token' => @refresh_token}, opts)
  if response.kind_of?(Net::HTTPSuccess)
    data = JSON.parse(response.body)
    @access_token = data['access_token']
    @refresh_token = data['refresh_token']
    return true
  else
    return false
  end
end

.get_bonsai_asset(name) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 221

def self.get_bonsai_asset(name)
  opts = {
    :url => 'https://bonsai.sensu.io'
  }
  data = api_request("/api/v1/assets/#{name}", nil, opts)
rescue Exception => e
  Puppet.notice "Unable to connect to bonsai at #{url}: #{e.message}"
  Puppet.debug("ERROR: #{e.backtrace.join("\n")}")
  return {}
else
  return data
end

.get_bonsai_latest_version(namespace, name) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 236

def self.get_bonsai_latest_version(namespace, name)
  return nil if namespace.nil? || name.nil?
  full_name = "#{namespace}/#{name}"
  @latest_version = {} if @latest_version.nil?
  return @latest_version[full_name] if @latest_version[full_name]
  @latest_version[full_name] = nil
  versions = []
  bonsai_asset = Puppet::Provider::SensuAPI.get_bonsai_asset(full_name)
  (bonsai_asset['versions'] || []).each do |bonsai_version|
    version = bonsai_version['version']
    next unless version =~ /^[0-9]/
    versions << version
  end
  versions = versions.sort_by { |v| Gem::Version.new(v) }
  @latest_version[full_name] = versions.last
  @latest_version[full_name]
end

.namespaces ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 37

def self.namespaces
  opts = {
    :namespace => nil,
  }
  Puppet.debug("Fetching namespaces via Sensu API")
  data = api_request('namespaces')
  names = []
  data.each do |d|
    names << d['name']
  end
  names
rescue Exception => e
  Puppet.debug("ERROR fetching namespaces via Sensu API: #{e.backtrace.join("\n")}")
  return []
end

.type_properties ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 26

def self.type_properties
  resource_type.validproperties.reject { |p| p.to_sym == :ensure }
end

.update_access_token ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 16

def self.update_access_token
  auth_success = self.auth(@username, @password)
  return if auth_success
  auth_token_success = self.auth_token()
  return if auth_token_success
end

Instance Method Details

#api_request(*args) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 155

def api_request(*args)
  self.class.api_request(*args)
end

#auth_test(*args) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 217

def auth_test(*args)
  self.class.auth_test(*args)
end

#convert_boolean_property_value(value) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 33

def convert_boolean_property_value(value)
  Puppet::Provider::Sensuctl.convert_boolean_property_value(value)
end

#get_bonsai_asset(name) ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 233

def get_bonsai_asset(name)
  self.class.get_bonsai_asset(name)
end

#namespaces ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 52

def namespaces
  self.class.namespaces
end

#type_properties ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 29

def type_properties
  self.class.type_properties
end

#update_access_token ⇒ Object

# File 'lib/puppet/provider/sensu_api.rb', line 22

def update_access_token
  self.class.update_access_token
end