Sha256: 9f11713834e246296fb7541756a3652f9b209e115db88ef74026f55b6292de58
Contents?: true
Size: 1.9 KB
Versions: 2
Compression:
Stored size: 1.9 KB
Contents
require 'conjur/authn'
require 'conjur/command'
class Conjur::Command::Roles < Conjur::Command
self.prefix = :role
desc "Create a new role"
arg_name "role"
command :create do |c|
acting_as_option(c)
c.action do |global_options,options,args|
id = require_arg(args, 'role')
role = api.role(id)
role.create(options)
puts "Created #{role}"
end
end
desc "Determines whether a role exists"
arg_name "role"
command :exists do |c|
c.action do |global_options,options,args|
id = require_arg(args, 'role')
role = api.role(id)
puts role.exists?
end
end
desc "Lists role memberships"
arg_name "role"
command :memberships do |c|
c.action do |global_options,options,args|
roleid = args.shift
role = roleid.nil? && api.current_role || api.role(roleid)
display role.all.map(&:roleid)
end
end
desc "Lists all members of the role"
arg_name "role"
command :members do |c|
c.action do |global_options,options,args|
role = args.shift || api.user(api.username).roleid
display api.role(role).members.map(&:member).map(&:roleid)
end
end
desc "Grant a role to another role. You must have admin permission on the granting role."
arg_name "role member"
command :grant_to do |c|
c.desc "Whether to grant with admin option"
c.switch :admin
c.action do |global_options,options,args|
id = require_arg(args, 'role')
member = require_arg(args, 'member')
role = api.role(id)
role.grant_to member, options[:admin]
puts "Role granted"
end
end
desc "Revoke a role from another role."
arg_name "role member"
command :revoke_from do |c|
c.action do |global_options,options,args|
id = require_arg(args, 'role')
member = require_arg(args, 'member')
role = api.role(id)
role.revoke_from member
puts "Role revoked"
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| conjur-cli-2.3.0 | lib/conjur/command/roles.rb |
| conjur-cli-2.2.1 | lib/conjur/command/roles.rb |