Class: Kakine::Resource::Yaml

Inherits:

Object

• Object
• Kakine::Resource::Yaml

Defined in:

lib/kakine/resource/yaml.rb

Class Method Summary

• .expand_rules(rules, key) ⇒ Object

  => [val0, val1], …

  to [=> val0, …, => val1, …].

• .has_direction?(rule) ⇒ Boolean
• .has_ethertype?(rule) ⇒ Boolean
• .has_port?(rule) ⇒ Boolean
• .has_protocol?(rule) ⇒ Boolean
• .has_remote?(rule) ⇒ Boolean
• .load_file(filename) ⇒ Object
• .load_security_group ⇒ Object
• .perform_desugar(rules) ⇒ Object
• .perform_expansion(rules) ⇒ Object
• .validate_attributes(sg) ⇒ Object
• .validate_file_input(load_sg) ⇒ Object
• .validate_rules(sg) ⇒ Object
• .yaml(filename) ⇒ Object

Class Method Details

.expand_rules(rules, key) ⇒ Object

=> [val0, val1], …

to [=> val0, …, => val1, …]

# File 'lib/kakine/resource/yaml.rb', line 83

def expand_rules(rules, key)
  rules.flat_map do |rule|
    if rule[key].respond_to?(:to_ary)
      rule[key].to_ary.flatten.map do |val|
        rule.dup.tap {|rule| rule[key] = val }
      end
    else
      rule
    end
  end
end

.has_direction?(rule) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/kakine/resource/yaml.rb', line 70

def has_direction?(rule)
  rule.key?("direction")
end

.has_ethertype?(rule) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/kakine/resource/yaml.rb', line 78

def has_ethertype?(rule)
  rule.key?("ethertype")
end

.has_port?(rule) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/kakine/resource/yaml.rb', line 60

def has_port?(rule)
  rule.key?("port") ||
  ( rule.key?("port_range_max") && rule.key?("port_range_min") ) ||
  ( rule.key?("type") && rule.key?("code") )
end

.has_protocol?(rule) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/kakine/resource/yaml.rb', line 74

def has_protocol?(rule)
  rule.key?("protocol")
end

.has_remote?(rule) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/kakine/resource/yaml.rb', line 66

def has_remote?(rule)
  rule.key?("remote_ip") || rule.key?("remote_group")
end

.load_file(filename) ⇒ Object

# File 'lib/kakine/resource/yaml.rb', line 10

def load_file(filename)
  data = yaml(filename).reject {|k, _| k.start_with?('_') && k.end_with?('_') }
  validate_file_input(data)
  data.each do |name, params|
    params['rules'] = perform_desugar(perform_expansion(params['rules'])) if params['rules']
  end
end

.load_security_group ⇒ Object

# File 'lib/kakine/resource/yaml.rb', line 5

def load_security_group
  config = load_file(Kakine::Option.yaml_name)
  config.map {|sg| Kakine::SecurityGroup.new(Kakine::Option.tenant_name, sg) }
end

.perform_desugar(rules) ⇒ Object

# File 'lib/kakine/resource/yaml.rb', line 103

def perform_desugar(rules)
  rules.map do |rule|
    if rule['port'].is_a?(String) && rule['port'] =~ /\A(?<min>\d+)-(?<max>\d+)\z/
      rule.dup.tap do |rule|
        rule.delete('port')
        rule['port_range_min'] = $~[:min].to_i
        rule['port_range_max'] = $~[:max].to_i
      end
    else
      rule
    end
  end
end

.perform_expansion(rules) ⇒ Object

# File 'lib/kakine/resource/yaml.rb', line 95

def perform_expansion(rules)
  %w(remote_ip port protocol).each do |key|
    rules = expand_rules(rules, key)
  end

  rules
end

.validate_attributes(sg) ⇒ Object

# File 'lib/kakine/resource/yaml.rb', line 30

def validate_attributes(sg)
  sg_name = sg[0]
  case
  when sg[1].nil?
    raise(Kakine::ConfigureError, "#{sg_name}:rules and description is required")
  when !sg[1].key?("rules")
    raise(Kakine::ConfigureError, "#{sg_name}:rules is required")
  when sg_name != 'default' && !sg[1].key?("description")
    raise(Kakine::ConfigureError, "#{sg_name}:description is required")
  end
end

.validate_file_input(load_sg) ⇒ Object

# File 'lib/kakine/resource/yaml.rb', line 22

def validate_file_input(load_sg)
  load_sg.each do |sg|
    validate_attributes(sg)
    validate_rules(sg)
  end
  true
end

.validate_rules(sg) ⇒ Object

# File 'lib/kakine/resource/yaml.rb', line 42

def validate_rules(sg)
  sg_name = sg[0]
  sg[1]["rules"].each do |rule|
    case
    when !has_port?(rule)
      raise(Kakine::ConfigureError,  "#{sg_name}:rules port(icmp code) is required")
    when !has_remote?(rule)
      raise(Kakine::ConfigureError, "#{sg_name}:rules remote_ip or remote_group required")
    when !has_direction?(rule)
      raise(Kakine::ConfigureError, "#{sg_name}:rules direction is required")
    when !has_protocol?(rule)
      raise(Kakine::ConfigureError, "#{sg_name}:rules protocol is required")
    when !has_ethertype?(rule)
      raise(Kakine::ConfigureError, "#{sg_name}:rules ethertype is required")
    end
  end unless sg[1]["rules"].nil?
end

.yaml(filename) ⇒ Object

# File 'lib/kakine/resource/yaml.rb', line 18

def yaml(filename)
  YAML.load_file(filename).to_hash
end