lib/puppet/indirector/ssl_file.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83

require 'puppet/indirector/file'

class Puppet::Indirector::SslFile < Puppet::Indirector::Terminus
    def self.store_in(setting)
        @directory_setting = setting
    end

    class << self
        attr_reader :directory_setting
    end

    # The full path to where we should store our files.
    def self.collection_directory
        raise(Puppet::DevError, "No setting defined for %s" % self) unless @directory_setting
        Puppet.settings[@directory_setting]
    end

    def initialize
        Puppet.settings.use(:ssl)
    end

    # Use a setting to determine our path.
    def path(name)
        File.join(collection_directory, name.to_s + ".pem")
    end

    # Remove our file.
    def destroy(request)
        path = path(request.key)
        raise Puppet::Error.new("File %s does not exist; cannot destroy" % [request.key]) unless FileTest.exist?(path)

        begin
            File.unlink(path)
        rescue => detail
            raise Puppet::Error, "Could not remove %s: %s" % [request.key, detail]
        end
    end

    # Find the file on disk, returning an instance of the model.
    def find(request)
        path = path(request.key)

        return nil unless FileTest.exist?(path)

        result = model.new(request.key)
        result.read(path)
        result
    end

    # Save our file to disk.
    def save(request)
        path = path(request.key)
        dir = File.dirname(path)

        raise Puppet::Error.new("Cannot save %s; parent directory %s does not exist" % [request.key, dir]) unless FileTest.directory?(dir)
        raise Puppet::Error.new("Cannot save %s; parent directory %s does not exist" % [request.key, dir]) unless FileTest.writable?(dir)

        begin
            File.open(path, "w") { |f| f.print request.instance.to_s }
        rescue => detail
            raise Puppet::Error, "Could not write %s: %s" % [request.key, detail]
        end
    end

    # Search for more than one file.  At this point, it just returns
    # an instance for every file in the directory.
    def search(request)
        dir = collection_directory
        Dir.entries(dir).reject { |file| file !~ /\.pem$/ }.collect do |file|
            name = file.sub(/\.pem$/, '')
            result = model.new(name)
            result.read(File.join(dir, file))
            result
        end
    end

    private

    # A demeterish pointer to the collection directory.
    def collection_directory
        self.class.collection_directory
    end
end