Class: Vra::Client

Inherits:

Object

• Object
• Vra::Client

Defined in:

lib/vra/client.rb

Constant Summary

REFRESH_TOKEN_URL =

'/csp/gateway/am/api/login?access_token'

ACCESS_TOKEN_URL =

'/iaas/api/login'

ROLES_URL =

'/csp/gateway/am/api/loggedin/user/orgs'

Instance Attribute Summary

• #page_size ⇒ Object

  Returns the value of attribute page_size.

Instance Method Summary

• #access_token ⇒ Object

  client methods.

• #access_token=(value) ⇒ Object
• #authorize! ⇒ Object
• #authorized? ⇒ Boolean
• #catalog ⇒ Object

  methods to other classes.

• #deployments ⇒ Object
• #full_url(path) ⇒ Object
• #generate_access_token ⇒ Object
• #get_parsed(path) ⇒ Object
• #http_delete(path, skip_auth = nil) ⇒ Object
• #http_fetch(method, path, skip_auth = nil) ⇒ Object
• #http_get(path, skip_auth = nil) ⇒ Object
• #http_get!(path) ⇒ Object
• #http_get_paginated_array!(path, filter = nil) ⇒ Object
• #http_head(path, skip_auth = nil) ⇒ Object
• #http_post(path, payload, skip_auth = nil) ⇒ Object
• #http_post!(path, payload) ⇒ Object
• #initialize(opts) ⇒ Client constructor

  A new instance of Client.

• #raise_http_exception(caught_exception, path) ⇒ Object
• #refresh_token ⇒ Object
• #refresh_token=(value) ⇒ Object
• #request_headers ⇒ Object
• #token_params ⇒ Object
• #valid_uri?(uri) ⇒ Boolean
• #validate_client_options! ⇒ Object

Constructor Details

#initialize(opts) ⇒ Client

Returns a new instance of Client.

# File 'lib/vra/client.rb', line 32

def initialize(opts)
  @base_url      = opts[:base_url]
  @username      = opts[:username]
  @password      = PasswordMasker.new(opts[:password])
  @tenant        = opts[:tenant]
  @verify_ssl    = opts.fetch(:verify_ssl, true)
  @refresh_token = PasswordMasker.new(nil)
  @access_token  = PasswordMasker.new(nil)
  @page_size     = opts.fetch(:page_size, 20)

  validate_client_options!
end

Instance Attribute Details

#page_size ⇒ Object

Returns the value of attribute page_size.

# File 'lib/vra/client.rb', line 30

def page_size
  @page_size
end

Instance Method Details

#access_token ⇒ Object

client methods

# File 'lib/vra/client.rb', line 63

def access_token
  @access_token.value
end

#access_token=(value) ⇒ Object

# File 'lib/vra/client.rb', line 71

def access_token=(value)
  @access_token.value = value
end

#authorize! ⇒ Object

Raises:

• (Vra::Exception::Unauthorized)

# File 'lib/vra/client.rb', line 96

def authorize!
  generate_access_token unless authorized?

  raise Vra::Exception::Unauthorized, 'Unable to authorize against vRA' unless authorized?
end

#authorized? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/vra/client.rb', line 102

def authorized?
  return false if @access_token.value.nil?

  response = http_head(ROLES_URL, :skip_auth)
  response.success?
end

#catalog ⇒ Object

methods to other classes

# File 'lib/vra/client.rb', line 50

def catalog
  @catalog ||= Vra::Catalog.new(self)
end

#deployments ⇒ Object

# File 'lib/vra/client.rb', line 54

def deployments
  @deployments ||= Vra::Deployments.new(self)
end

#full_url(path) ⇒ Object

# File 'lib/vra/client.rb', line 132

def full_url(path)
  "#{@base_url}#{path}"
end

#generate_access_token ⇒ Object

Raises:

• (Vra::Exception::Unauthorized)

# File 'lib/vra/client.rb', line 109

def generate_access_token
  @refresh_token.value = nil
  @access_token.value = nil
  validate_client_options!

  # VRA 8 has a two-step authentication process - This probably breaks VRA7, who knows?!?
  # First step: Sending Username/Password to get a Refresh Token
  refresh_response = http_post(REFRESH_TOKEN_URL,
                       FFI_Yajl::Encoder.encode(token_params),
                       :skip_auth)
  raise Vra::Exception::Unauthorized, "Unable to get the refresh token: #{refresh_response.body}" unless refresh_response.success_ok?

  refresh_response_body = FFI_Yajl::Parser.parse(refresh_response.body)
  @refresh_token.value = refresh_response_body['refresh_token']

  # Second Step: Sending the refresh token to a separate endpoint to get an Access Token
  access_response = http_post(ACCESS_TOKEN_URL, "{ \"refreshToken\": \"#{@refresh_token.value}\" }", :skip_auth)
  raise Vra::Exception::Unauthorized, "Unable to get the access token: #{access_response.body}" unless access_response.success_ok?

  access_response_body = FFI_Yajl::Parser.parse(access_response.body)
  @access_token.value = access_response_body['token']
end

#get_parsed(path) ⇒ Object

# File 'lib/vra/client.rb', line 166

def get_parsed(path)
  FFI_Yajl::Parser.parse(http_get!(path))
end

#http_delete(path, skip_auth = nil) ⇒ Object

# File 'lib/vra/client.rb', line 162

def http_delete(path, skip_auth = nil)
  http_fetch(:delete, path, skip_auth)
end

#http_fetch(method, path, skip_auth = nil) ⇒ Object

# File 'lib/vra/client.rb', line 136

def http_fetch(method, path, skip_auth = nil)
  authorize! unless skip_auth

  response = Vra::Http.execute(method: method,
                               url: full_url(path),
                               headers: request_headers,
                               verify_ssl: @verify_ssl)
rescue => e
  raise_http_exception(e, path)
else
  response
end

#http_get(path, skip_auth = nil) ⇒ Object

# File 'lib/vra/client.rb', line 153

def http_get(path, skip_auth = nil)
  http_fetch(:get, path, skip_auth)
end

#http_get!(path) ⇒ Object

# File 'lib/vra/client.rb', line 157

def http_get!(path)
  response = http_get(path)
  response.body
end

#http_get_paginated_array!(path, filter = nil) ⇒ Object

# File 'lib/vra/client.rb', line 170

def http_get_paginated_array!(path, filter = nil)
  items = []
  page = 0
  base_path = path + "?$top=#{page_size}"
  base_path += "&#{filter}" if filter

  loop do
    response = get_parsed("#{base_path}&$skip=#{page * page_size}")
    items += response["content"]

    page += 1
    break if page >= response["totalPages"]
  end

  if items.uniq!
    raise Vra::Exception::DuplicateItemsDetected,
          "Duplicate items were returned by the vRA API. " \
          "Increase your page size to avoid this vRA API bug. " \
          "See https://github.com/chef-partners/vmware-vra-gem#pagination " \
          "for more information."
  end

  items
end

#http_head(path, skip_auth = nil) ⇒ Object

# File 'lib/vra/client.rb', line 149

def http_head(path, skip_auth = nil)
  http_fetch(:head, path, skip_auth)
end

#http_post(path, payload, skip_auth = nil) ⇒ Object

# File 'lib/vra/client.rb', line 195

def http_post(path, payload, skip_auth = nil)
  authorize! unless skip_auth

  response = Vra::Http.execute(method: :post,
                               url: full_url(path),
                               headers: request_headers,
                               payload: payload,
                               verify_ssl: @verify_ssl)
rescue => e
  raise_http_exception(e, path)
else
  response
end

#http_post!(path, payload) ⇒ Object

# File 'lib/vra/client.rb', line 209

def http_post!(path, payload)
  response = http_post(path, payload)
  response.body
end

#raise_http_exception(caught_exception, path) ⇒ Object

Raises:

• (exception)

# File 'lib/vra/client.rb', line 214

def raise_http_exception(caught_exception, path)
  raise unless caught_exception.respond_to?(:http_code)

  klass = if caught_exception.http_code == 404
            Vra::Exception::HTTPNotFound
          else
            Vra::Exception::HTTPError
          end

  exception = klass.new(code: caught_exception.http_code,
                        body: caught_exception.response,
                        klass: caught_exception.class,
                        path: path)

  message = exception.errors.empty? ? caught_exception.message : exception.errors.join(", ")
  raise exception, message
end

#refresh_token ⇒ Object

# File 'lib/vra/client.rb', line 67

def refresh_token
  @refresh_token.value
end

#refresh_token=(value) ⇒ Object

# File 'lib/vra/client.rb', line 75

def refresh_token=(value)
  @refresh_token.value = value
end

#request_headers ⇒ Object

# File 'lib/vra/client.rb', line 87

def request_headers
  headers                   = {}
  headers['Accept']         = 'application/json'
  headers['Content-Type']   = 'application/json'
  headers['Authorization']  = 'Bearer ' + @access_token.value unless @access_token.value.nil?

  headers
end

#token_params ⇒ Object

# File 'lib/vra/client.rb', line 79

def token_params
  {
    'username': @username,
    'password': @password.value,
    'tenant': @tenant
  }
end

#valid_uri?(uri) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/vra/client.rb', line 239

def valid_uri?(uri)
  uri = URI.parse(uri)
  uri.is_a?(URI::HTTP)
rescue URI::InvalidURIError
  false
end

#validate_client_options! ⇒ Object

Raises:

• (ArgumentError)

# File 'lib/vra/client.rb', line 232

def validate_client_options!
  raise ArgumentError, "Username and password are required" if @username.nil? || @password.value.nil?
  raise ArgumentError, "A tenant is required" if @tenant.nil?
  raise ArgumentError, "A base URL is required" if @base_url.nil?
  raise ArgumentError, "Base URL #{@base_url} is not a valid URI." unless valid_uri?(@base_url)
end