Project

kakine

0.02
Repository is archived
No commit activity in last 3 years
No release in over 3 years
kakinehsbt/kakineHomepageDocumentationSource CodeBug Tracker
Security Group configuration tool for OpenStack. You can apply simple YAML definition into Security Group on OpenStack.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
49,374
Stars
14
Forks
8
Watchers
5
 Releases
Current version
0.7.0
Total releases
11
First release
2015-04-27
Latest release
2019-01-07
 Issues
Open Issues
1
Closed Issues
1
Total Issues
2
Issue Closure Rate
50%
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
2
Merged Pull Requests
25
Pull Request Acceptance Rate
92%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2016-11-24
Reverse Dependencies
0

 Dependencies

Development

bundler
>= 0
minitest
>= 0
mocha
>= 0
rake
>= 0

Runtime

thor
>= 0
yao
>= 0.3.3
 Project Readme

Kakine

Build Status

Kakine(垣根) is configuration management tool of Security Group on OpenStack.

Installation

Add this line to your application's Gemfile:

gem 'kakine'

And then execute:

$ bundle

Or install it yourself as:

$ gem install kakine

Usage

Syntax

You can define Security Group configuration for OpenStack in YAML format as the following example.

app:
  rules:
    - direction: ingress
      protocol: tcp
      port: 443
      remote_ip: 0.0.0.0/0
    - direction: ingress
      protocol: tcp
      port: 80
      remote_ip: 0.0.0.0/0
  description: app rules
rails:
  rules:
    - direction: ingress
      protocol: tcp
      port: 3000
      remote_ip: 0.0.0.0/0

ports and remote_ips may be specified as arrays, in which case the rule is expanded to set of rules with all the combinations of them.

app:
  rules:
    - direction: ingress
      protocol: tcp
      port: [80, 443]
      remote_ip:
        - 192.0.2.0/24
        - 198.51.100.0/24

Top-level keys whose name both starts and ends with underscores (eg. _common_, _default_) are considered meta sections and do not correspond to security groups. These sections are useful to define values that commonly appears throughout the file, used with YAML's anchors and references.

_common_:
  - &net1 192.0.2.0/24
  - &net2 198.51.100.0/24

restricted_web:
  rules:
  - direction: ingress
    protocol: tcp
    port: 80
    remote_ip: *net1
  - direction: ingress
    protocol: tcp
    port: 80
    remote_ip: *net2
  description: Restricted HTTP access

Authentication configuration

You need to put a configuration file to home directory.

% cat ~/.kakine
auth_url: "http://your-openstack-endpoint/v2.0"
username: "admin"
password: "admin"

also, you can set some options.

client_cert: "/path/to/cert.pem"
client_key: "/path/to/key.pem"
region_name: "YourRegion"

Commands

run following command.

$ kakine show -t tenant_name # show Security Group of tenant_name
$ kakine apply -t tenant_name --dryrun # You can see all of invoke commands(dryrun)
$ kakine apply -t tenant_name # apply configuration into OpenStack

You can create or change Security Group on targeting tenant.

If you need to initialize your Security Gruop, you can get it via following command:

$ kakine show -t tenant_name > tenant_name.yaml

Development

After checking out the repo, run bin/setup to install dependencies. Then, run bin/console for an interactive prompt that will allow you to experiment.

To install this gem onto your local machine, run bundle exec rake install. To release a new version, update the version number in version.rb, and then run bundle exec rake release to create a git tag for the version, push git commits and tags, and push the .gem file to rubygems.org.

Contributing

  1. Fork it ( https://github.com/hsbt/kakine/fork )
  2. Create your feature branch (git checkout -b my-new-feature)
  3. Commit your changes (git commit -am 'Add some feature')
  4. Push to the branch (git push origin my-new-feature)
  5. Create a new Pull Request