inspec/lib/bundles/inspec-compliance/target.rb

46 lines
1.2 KiB
Ruby
Raw Normal View History

2016-02-05 07:38:45 +00:00
# encoding: utf-8
# author: Christoph Hartmann
# author: Dominik Richter
require 'uri'
require 'inspec/fetcher'
require 'fetchers/url'
2016-02-05 07:38:45 +00:00
# InSpec Target Helper for Chef Compliance
# reuses UrlHelper, but it knows the target server and the access token already
# similar to `inspec exec http://localhost:2134/owners/%base%/compliance/%ssh%/tar --user %token%`
module Compliance
class Fetcher < Fetchers::Url
name 'compliance'
priority 500
def self.resolve(target, opts = {})
2016-02-05 07:38:45 +00:00
# check for local scheme compliance://
uri = URI(target)
return nil unless URI(uri).scheme == 'compliance'
2016-02-05 07:38:45 +00:00
# check if we have a compliance token
config = Compliance::Configuration.new
return nil if config['token'].nil?
2016-02-05 07:38:45 +00:00
# verifies that the target e.g base/ssh exists
profile = uri.host + uri.path
2016-02-05 10:06:00 +00:00
Compliance::API.exist?(profile)
2016-02-05 07:38:45 +00:00
opts['user'] = config['token']
super(target_url(config, profile), opts)
rescue URI::Error => _e
nil
2016-02-05 07:38:45 +00:00
end
def self.target_url(config, profile)
owner, id = profile.split('/')
"#{config['server']}/owners/#{owner}/compliance/#{id}/tar"
2016-02-05 07:38:45 +00:00
end
def to_s
'Chef Compliance Profile Loader'
end
end
end