Class: Puppet::Network::AuthConfig

Inherits:

Util::LoadedFile

• Object
• Util::LoadedFile
• Puppet::Network::AuthConfig

Defined in:

lib/vendor/puppet/network/authconfig.rb

Direct Known Subclasses

RestAuthConfig

Instance Attribute Summary

Attributes inherited from Util::LoadedFile

#file, #statted, #tstamp

Class Method Summary

• .main ⇒ Object

Instance Method Summary

• #allowed?(request) ⇒ Boolean

  Here we add a little bit of semantics.

• #exists? ⇒ Boolean

  Does the file exist? Puppetmasterd does not require it, but puppet agent does.

• #initialize(file = nil, parsenow = true) ⇒ AuthConfig constructor

  A new instance of AuthConfig.

• #read ⇒ Object

  Read the configuration file.

Methods inherited from Util::LoadedFile

#changed?, #stamp, #to_s

Constructor Details

#initialize(file = nil, parsenow = true) ⇒ AuthConfig

Returns a new instance of AuthConfig.

Raises:

• (Puppet::DevError)

# File 'lib/vendor/puppet/network/authconfig.rb', line 42

def initialize(file = nil, parsenow = true)
  @file = file || Puppet[:authconfig]

  raise Puppet::DevError, "No authconfig file defined" unless @file
  return unless self.exists?
  super(@file)
  @rights = Puppet::Network::Rights.new
  @configstamp = @configstatted = nil
  @configtimeout = 60

  read if parsenow
end

Class Method Details

.main ⇒ Object

# File 'lib/vendor/puppet/network/authconfig.rb', line 8

def self.main
  @main ||= self.new
end

Instance Method Details

#allowed?(request) ⇒ Boolean

Here we add a little bit of semantics. They can set auth on a whole namespace or on just a single method in the namespace.

Returns:

• (Boolean)

# File 'lib/vendor/puppet/network/authconfig.rb', line 21

def allowed?(request)
  name        = request.call.intern
  namespace   = request.handler.intern
  method      = request.method.intern

  read

  if @rights.include?(name)
    return @rights[name].allowed?(request.name, request.ip)
  elsif @rights.include?(namespace)
    return @rights[namespace].allowed?(request.name, request.ip)
  end
  false
end

#exists? ⇒ Boolean

Does the file exist? Puppetmasterd does not require it, but puppet agent does.

Returns:

• (Boolean)

# File 'lib/vendor/puppet/network/authconfig.rb', line 38

def exists?
  FileTest.exists?(@file)
end

#read ⇒ Object

Read the configuration file.

# File 'lib/vendor/puppet/network/authconfig.rb', line 56

def read
  return unless FileTest.exists?(@file)

  if @configstamp
    if @configtimeout and @configstatted
      if Time.now - @configstatted > @configtimeout
        @configstatted = Time.now
        tmp = File.stat(@file).ctime

        if tmp == @configstamp
          return
        else
          Puppet.notice "#{tmp} vs #{@configstamp}"
        end
      else
        return
      end
    else
      Puppet.notice "#{@configtimeout} and #{@configstatted}"
    end
  end

  parse

  @configstamp = File.stat(@file).ctime
  @configstatted = Time.now
end