Class: ChefServerWebui::Application

Inherits:

Merb::Controller

• Object
• Merb::Controller
• ChefServerWebui::Application

Includes:

Chef::Mixin::Checksum

Defined in:

app/controllers/application.rb

Direct Known Subclasses

Clients, CookbookAttributes, CookbookDefinitions, CookbookFiles, CookbookLibraries, CookbookRecipes, CookbookTemplates, Cookbooks, DatabagItems, Databags, Main, Nodes, OpenidConsumer, Roles, Search, SearchEntries, Status, Users

Instance Method Summary

• #absolute_slice_url(slice_name, *args) ⇒ String

  Generate the absolute url for a slice - takes the slice’s :path_prefix into account.

• #access_denied ⇒ Object
• #authorized_node ⇒ Object
• #authorized_user ⇒ Object
• #cleanup_session ⇒ Object
• #convert_newline_to_br(string) ⇒ Object
• #edit_admin ⇒ Object

  whether or not the user should be able to edit a user’s admin status.

• #get_available_recipes ⇒ Object

  The following should no longer be necessary for the re-factored cookbooks replated webui controllers (which talks to the API) But I want to wait until further verified before removing the code.

• #is_admin(name) ⇒ Object
• #is_last_admin ⇒ Object

  return true if there is only one admin left, false otehrwise.

• #load_cookbook_segment(cookbook_id, segment) ⇒ Object

  Load a cookbook and return a hash with a list of all the files of a given segment (attributes, recipes, definitions, libraries).

• #login_required ⇒ Object

  Check if the user is logged in and if the user still exists.

• #logout_and_redirect_to_login ⇒ Object
• #redirect_back_or_default(default) ⇒ Object

  Redirect to the URI stored by the most recent store_location call or to the passed default.

• #segment_files(segment, cookbook) ⇒ Object
• #store_location ⇒ Object

  Store the URI of the current request in the session.

Instance Method Details

#absolute_slice_url(slice_name, *args) ⇒ String

Generate the absolute url for a slice - takes the slice’s :path_prefix into account.

Examples:

absolute_slice_url(:awesome, :format => ‘html’)

absolute_slice_url(:forum, :posts, :format => ‘xml’)

Parameters:

• slice_name (Symbol) —

  The name of the slice - in identifier_sym format (underscored).

• *args (Array[Symbol,Hash]) —

  There are several possibilities regarding arguments:

  • when passing a Hash only, the :default route of the current slice will be used

  • when a Symbol is passed, it’s used as the route name

  • a Hash with additional params can optionally be passed

Returns:

• (String) —

  A uri based on the requested slice.

# File 'app/controllers/application.rb', line 45

def absolute_slice_url(slice_name, *args)
  options  = extract_options_from_args!(args) || {}
  protocol = options.delete(:protocol) || request.protocol
  host     = options.delete(:host) || request.host
  
  protocol + "://" + host + slice_url(slice_name,*args)
end

#access_denied ⇒ Object

# File 'app/controllers/application.rb', line 149

def access_denied
  case content_type
  when :html
    store_location
    redirect slice_url(:users_login), :message => { :error => "You don't have access to that, please login."}
  else
    raise Unauthorized, "You must authenticate first!"
  end
end

#authorized_node ⇒ Object

# File 'app/controllers/application.rb', line 104

def authorized_node
#  if session[:level] == :admin
#    Chef::Log.debug("Authorized as Administrator")
#    true
#  elsif session[:level] == :node
#    Chef::Log.debug("Authorized as node")
#    if session[:node_name] == params[:id].gsub(/\./, '_')
#      true
#    else
#      raise(
#        Unauthorized,
#        "You are not the correct node for this action: #{session[:node_name]} instead of #{params[:id]}"
#      )
#    end
#  else
#    Chef::Log.debug("Unauthorized")
#    raise Unauthorized, "You are not allowed to take this action."
#  end
end

#authorized_user ⇒ Object

# File 'app/controllers/application.rb', line 124

def authorized_user
  if session[:level] == :admin
    Chef::Log.debug("Authorized as Administrator")
    true
  else
    Chef::Log.debug("Unauthorized")
    raise Unauthorized, "The current user is not an Administrator, you can only Show and Edit the user itself. To control other users, login as an Administrator."
  end 
end

#cleanup_session ⇒ Object

# File 'app/controllers/application.rb', line 69

def cleanup_session
  [:user,:level].each { |n| session.delete(n) }
end

#convert_newline_to_br(string) ⇒ Object

# File 'app/controllers/application.rb', line 277

def convert_newline_to_br(string)
  string.to_s.gsub(/\n/, '<br />') unless string.nil?
end

#edit_admin ⇒ Object

whether or not the user should be able to edit a user’s admin status

# File 'app/controllers/application.rb', line 100

def edit_admin
  is_admin(params[:user_id]) ? (!is_last_admin) : true
end

#get_available_recipes ⇒ Object

The following should no longer be necessary for the re-factored cookbooks replated webui controllers (which talks to the API) But I want to wait until further verified before removing the code. [nuo]

def specific_cookbooks(node_name, cl)

valid_cookbooks = Hash.new
begin
  node = Chef::Node.load(node_name)
  recipes, default_attrs, override_attrs = node.run_list.expand
rescue Net::HTTPServerException
  recipes = []
end
recipes.each do |recipe|
  valid_cookbooks = expand_cookbook_deps(valid_cookbooks, cl, recipe)
end
valid_cookbooks

end

def expand_cookbook_deps(valid_cookbooks, cl, recipe)

cookbook = recipe
if recipe =~ /^(.+)::/
  cookbook = $1
end
Chef::Log.debug("Node requires #{cookbook}")
valid_cookbooks[cookbook] = true 
cl.metadata[cookbook.to_sym].dependencies.each do |dep, versions|
  expand_cookbook_deps(valid_cookbooks, cl, dep) unless valid_cookbooks[dep]
end
valid_cookbooks

end

def load_all_files(segment, node_name=nil)

r = Chef::REST.new(Chef::Config[:chef_server_url])
cookbooks = r.get_rest("cookbooks")

files = Array.new
valid_cookbooks = node_name ? specific_cookbooks(node_name, cookbooks) : {} 
cl.each do |cookbook|
  if node_name
    next unless valid_cookbooks[cookbook.name.to_s]
  end
  segment_files(segment, cookbook).each do |sf|
    mo = sf.match("cookbooks/#{cookbook.name}/#{segment}/(.+)")
    file_name = mo[1]
    files << { 
      :cookbook => cookbook.name, 
      :name => file_name,
      :checksum => checksum(sf)
    }
  end
end
files

end

# File 'app/controllers/application.rb', line 258

def get_available_recipes
  r = Chef::REST.new(Chef::Config[:chef_server_url])
  result = Array.new
  cookbooks = r.get_rest("cookbooks")
  cookbooks.keys.sort.each do |key|
    cb = r.get_rest(cookbooks[key])
    cb["recipes"].each do |recipe|
      recipe["name"] =~ /(.+)\.rb/
      r_name = $1;
      if r_name == "default" 
        result << key
      else
        result << "#{key}::#{r_name}"
      end
    end
  end
  result
end

#is_admin(name) ⇒ Object

# File 'app/controllers/application.rb', line 80

def is_admin(name)
  user = Chef::WebUIUser.load(name)
  return user.admin
end

#is_last_admin ⇒ Object

return true if there is only one admin left, false otehrwise

# File 'app/controllers/application.rb', line 86

def is_last_admin
  count = 0
  users = Chef::WebUIUser.list
  users.each do |u, url|
    user = Chef::WebUIUser.load(u)
    if user.admin
      count = count + 1
      return false if count == 2
    end
  end
  true
end

#load_cookbook_segment(cookbook_id, segment) ⇒ Object

Load a cookbook and return a hash with a list of all the files of a given segment (attributes, recipes, definitions, libraries)

Parameters

cookbook_id<String>

The cookbook to load

segment<Symbol>

:attributes, :recipes, :definitions, :libraries

Returns

<Hash>

A hash consisting of the short name of the file in :name, and the full path

to the file in :file.

Raises:

• (NotFound)

# File 'app/controllers/application.rb', line 169

def load_cookbook_segment(cookbook_id, segment)    
  r = Chef::REST.new(Chef::Config[:chef_server_url])
  cookbook = r.get_rest("cookbooks/#{cookbook_id}")

  raise NotFound unless cookbook
  
  files_list = segment_files(segment, cookbook)
  
  files = Hash.new
  files_list.each do |f|
    files[f['name']] = {
      :name => f["name"],
      :file => f["uri"],
    }
  end
  files
end

#login_required ⇒ Object

Check if the user is logged in and if the user still exists

# File 'app/controllers/application.rb', line 54

def login_required
 if session[:user]
   begin
     Chef::WebUIUser.load(session[:user]) rescue (raise NotFound, "Cannot find User #{session[:user]}, maybe it got deleted by an Administrator.")
   rescue   
     logout_and_redirect_to_login
   else 
     return session[:user]
   end 
 else  
   self.store_location
   throw(:halt, :access_denied)
 end
end

#logout_and_redirect_to_login ⇒ Object

# File 'app/controllers/application.rb', line 73

def logout_and_redirect_to_login
  cleanup_session
  @user = Chef::WebUIUser.new
  redirect(slice_url(:users_login), {:message => { :error => $! }, :permanent => true})
end

#redirect_back_or_default(default) ⇒ Object

Redirect to the URI stored by the most recent store_location call or to the passed default.

# File 'app/controllers/application.rb', line 143

def redirect_back_or_default(default)
  loc = session[:return_to] || default
  session[:return_to] = nil
  redirect loc
end

#segment_files(segment, cookbook) ⇒ Object

# File 'app/controllers/application.rb', line 187

def segment_files(segment, cookbook)
  files_list = nil
  case segment
  when :attributes
    files_list = cookbook["attributes"]
  when :recipes
    files_list = cookbook["recipes"]
  when :definitions
    files_list = cookbook["definitions"]
  when :libraries
    files_list = cookbook["libraries"]
  else
    raise ArgumentError, "segment must be one of :attributes, :recipes, :definitions or :libraries"
  end
  files_list
end

#store_location ⇒ Object

Store the URI of the current request in the session.

We can return to this location by calling #redirect_back_or_default.

# File 'app/controllers/application.rb', line 137

def store_location
  session[:return_to] = request.uri
end