Class: ChefHandlerForeman::ForemanUploader

Inherits:

Object

• Object
• ChefHandlerForeman::ForemanUploader

Defined in:

lib/chef_handler_foreman/foreman_uploader.rb

Instance Attribute Summary

• #options ⇒ Object readonly

  Returns the value of attribute options.

Instance Method Summary

• #build_request(method, uri, path) ⇒ Object
• #foreman_request(path, body, client_name, method = 'post') ⇒ Object
• #initialize(opts) ⇒ ForemanUploader constructor

  A new instance of ForemanUploader.

• #sign_data(data) ⇒ Object
• #signature(request) ⇒ Object

Constructor Details

#initialize(opts) ⇒ ForemanUploader

Returns a new instance of ForemanUploader.

# File 'lib/chef_handler_foreman/foreman_uploader.rb', line 25

def initialize(opts)
  @options = opts
end

Instance Attribute Details

#options ⇒ Object (readonly)

Returns the value of attribute options.

# File 'lib/chef_handler_foreman/foreman_uploader.rb', line 23

def options
  @options
end

Instance Method Details

#build_request(method, uri, path) ⇒ Object

# File 'lib/chef_handler_foreman/foreman_uploader.rb', line 57

def build_request(method, uri, path)
  Net::HTTP.const_get(method.capitalize).new("#{uri.path}/#{path}")
rescue NameError => e
  raise "unsupported method #{method}, try one of get, post, delete, put"
end

#foreman_request(path, body, client_name, method = 'post') ⇒ Object

# File 'lib/chef_handler_foreman/foreman_uploader.rb', line 29

def foreman_request(path, body, client_name, method = 'post')
  uri              = URI.parse(options[:url])
  http             = Net::HTTP.new(uri.host, uri.port)
  http.use_ssl     = uri.scheme == 'https'
  http.verify_mode = OpenSSL::SSL::VERIFY_NONE

  if http.use_ssl?
    if options[:foreman_ssl_ca] && !options[:foreman_ssl_ca].empty?
      http.ca_file     = options[:foreman_ssl_ca]
      http.verify_mode = OpenSSL::SSL::VERIFY_PEER
    end

    if options[:foreman_ssl_cert] && !options[:foreman_ssl_cert].empty? && options[:foreman_ssl_key] && !options[:foreman_ssl_key].empty?
      http.cert = OpenSSL::X509::Certificate.new(File.read(options[:foreman_ssl_cert]))
      http.key  = OpenSSL::PKey::RSA.new(File.read(options[:foreman_ssl_key]), nil)
    end
  end

  req = build_request(method, uri, path)
  req.add_field('Accept', 'application/json,version=2')
  req.add_field('X-Foreman-Client', client_name)
  req.body = body.to_json
  req.content_type = 'application/json'
  # signature can be computed once we set body and X-Foreman-Client
  req.add_field('X-Foreman-Signature', signature(req))
  response = http.request(req)
end

#sign_data(data) ⇒ Object

# File 'lib/chef_handler_foreman/foreman_uploader.rb', line 74

def sign_data(data)
  hash_to_sign = Digest::SHA256.hexdigest(data)
  key = OpenSSL::PKey::RSA.new(File.read(options[:client_key]))
  # Base64.encode64 is adding \n in the string
  signature = Base64.encode64(key.sign(OpenSSL::Digest::SHA256.new, hash_to_sign)).gsub("\n",'')
end

#signature(request) ⇒ Object

# File 'lib/chef_handler_foreman/foreman_uploader.rb', line 63

def signature(request)
  case request
    when Net::HTTP::Post, Net::HTTP::Patch, Net::HTTP::Put
      sign_data(request.body)
    when Net::HTTP::Get, Net::HTTP::Delete
      sign_data(request['X-Foreman-Client'])
    else
      raise "Don't know how to sign #{req.class} requests"
  end
end