vagrant-lxc-ng/lib/vagrant-lxc/command/sudoers.rb

require 'tempfile'

module Vagrant
  module LXC
    module Command
      class Sudoers < Vagrant.plugin("2", :command)
        def execute
          options = { user: ENV['USER'] }

          opts = OptionParser.new do |opts|
            opts.banner = "Usage: vagrant lxc sudoers"
            opts.separator ""
            opts.on('-u', '--user', "The user for which to create the policy (defaults to '#{options[:user]}')") do |u|
              options[:user] = u
            end
          end

          argv = parse_options(opts)
          return unless argv

          filename = "vagrant-lxc-#{options[:user]}"
          to_sudoers!(create_tempfile!(options[:user], filename), filename)
        end

        private

        # REFACTOR: Make use ERB rendering after https://github.com/mitchellh/vagrant/issues/3231
        #           lands into core
        def create_tempfile!(user, filename)
          sudoers = Tempfile.new(filename).tap do |file|
            file.write "# Automatically created by vagrant-lxc\n"
            commands.each do |command|
              file.write sudoers_policy(user, command[:cmd], command[:args])
            end
          end
          sudoers.close
          File.chmod(0644, sudoers.path)
          sudoers.path
        end

        def to_sudoers!(source, destination)
          destination = "/etc/sudoers.d/#{destination}"
          commands = [
            "rm -f #{destination}",
            "cp #{source} #{destination}",
            "chmod 440 #{destination}"
          ]
          `echo "#{commands.join('; ')}" | sudo sh`
        end

        def sudoers_policy(user, command, args)
          vagrant_home = "#{`echo ~#{user}`.chomp}/.vagrant.d"
          args = args.gsub /%\{VAGRANT_D\}/, vagrant_home
          args = args.gsub /%\{BOXES\}/, "#{vagrant_home}/boxes"
          "#{user} ALL=(root) NOPASSWD: #{command} #{args}\n"
        end

        def commands
         [
           { cmd: '/usr/bin/lxc-ls',        args: '' },
           { cmd: '/usr/bin/lxc-info',      args: '' },
           { cmd: '/usr/bin/lxc-attach',    args: '' },
           { cmd: '/usr/bin/which',         args: 'lxc-*' },
           { cmd: '/bin/cat',               args: '/var/lib/lxc/*' },
           { cmd: '/bin/mkdir',             args: '-p /var/lib/lxc/*' },
           { cmd: '/bin/su',                args: "root -c sed -e '*' -ibak /var/lib/lxc/*" },
           { cmd: '/bin/su',                args: "root -c echo '*' >> /var/lib/lxc/*" },
           { cmd: '/usr/bin/lxc-start',     args: '-d --name *' },
           { cmd: '/bin/cp',                args: '%{BOXES}/*/lxc/lxc-template /usr/lib/lxc/templates/*' },
           { cmd: '/bin/cp',                args: '%{VAGRANT_D}/gems/gems/vagrant-lxc-*/scripts/lxc-template /usr/lib/lxc/templates/*' },
           { cmd: '/bin/cp',                args: '%{BOXES}/*/lxc/lxc-template /usr/share/lxc/templates/*' },
           { cmd: '/bin/cp',                args: '%{VAGRANT_D}/gems/gems/vagrant-lxc-*/scripts/lxc-template /usr/share/lxc/templates/*' },
           { cmd: '/bin/rm',                args: '/usr/lib/lxc/templates/*' },
           { cmd: '/bin/rm',                args: '/usr/share/lxc/templates/*' },
           { cmd: '/bin/chmod',             args: '+x /usr/lib/lxc/*' },
           { cmd: '/bin/chmod',             args: '+x /usr/share/lxc/*' },
           { cmd: '/usr/bin/lxc-create',    args: '--template * --name * -- --tarball %{BOXES}/*' },
           { cmd: '/bin/rm',                args: '-rf /var/lib/lxc/*/rootfs/tmp/*' },
           { cmd: '/usr/bin/lxc-shutdown',  args: '--name *' },
           { cmd: '/usr/bin/lxc-stop',      args: '--name *' },
           { cmd: '/usr/bin/lxc-destroy',   args: '--name *' }
         ]
        end
      end
    end
  end
end
Created an "lxc sudoers" command to create sudoers file for a given user (defaults to current one). 2014-03-16 17:59:18 +00:00			`require 'tempfile'`

			`module Vagrant`
			`module LXC`
			`module Command`
			`class Sudoers < Vagrant.plugin("2", :command)`
			`def execute`
command/sudoers: Nitpick * Use Ruby 1.9+ hash syntax * Use % as the BOXES placeholder as it is the same symbol used for I18n placeholders as well 2014-03-21 22:48:34 +00:00			`options = { user: ENV['USER'] }`
Created an "lxc sudoers" command to create sudoers file for a given user (defaults to current one). 2014-03-16 17:59:18 +00:00
			`opts = OptionParser.new do \|opts\|`
			`opts.banner = "Usage: vagrant lxc sudoers"`
			`opts.separator ""`
command/sudoers: Mention what is the default value for the user and add a REFACTOR note 2014-03-21 22:53:49 +00:00			`opts.on('-u', '--user', "The user for which to create the policy (defaults to '#{options[:user]}')") do \|u\|`
			`options[:user] = u`
Created an "lxc sudoers" command to create sudoers file for a given user (defaults to current one). 2014-03-16 17:59:18 +00:00			`end`
			`end`

			`argv = parse_options(opts)`
			`return unless argv`

			`filename = "vagrant-lxc-#{options[:user]}"`
			`to_sudoers!(create_tempfile!(options[:user], filename), filename)`
			`end`

			`private`
command/sudoers: Mention what is the default value for the user and add a REFACTOR note 2014-03-21 22:53:49 +00:00
			`# REFACTOR: Make use ERB rendering after https://github.com/mitchellh/vagrant/issues/3231`
			`# lands into core`
Created an "lxc sudoers" command to create sudoers file for a given user (defaults to current one). 2014-03-16 17:59:18 +00:00			`def create_tempfile!(user, filename)`
			`sudoers = Tempfile.new(filename).tap do \|file\|`
			`file.write "# Automatically created by vagrant-lxc\n"`
			`commands.each do \|command\|`
			`file.write sudoers_policy(user, command[:cmd], command[:args])`
			`end`
			`end`
			`sudoers.close`
			`File.chmod(0644, sudoers.path)`
			`sudoers.path`
			`end`

			`def to_sudoers!(source, destination)`
			`destination = "/etc/sudoers.d/#{destination}"`
			`commands = [`
			`"rm -f #{destination}",`
			`"cp #{source} #{destination}",`
			`"chmod 440 #{destination}"`
			`]`
			`echo "#{commands.join('; ')}" \| sudo sh`
			`end`

			`def sudoers_policy(user, command, args)`
command/sudoers: Minor tweaks to make the generated file work with latest changes 2014-03-27 23:04:38 +00:00			vagrant_home = "#{`echo ~#{user}`.chomp}/.vagrant.d"
			`args = args.gsub /%\{VAGRANT_D\}/, vagrant_home`
			`args = args.gsub /%\{BOXES\}/, "#{vagrant_home}/boxes"`
Created an "lxc sudoers" command to create sudoers file for a given user (defaults to current one). 2014-03-16 17:59:18 +00:00			`"#{user} ALL=(root) NOPASSWD: #{command} #{args}\n"`
			`end`

			`def commands`
:scissors: whitespace 2014-03-21 22:38:56 +00:00			`[`
* Ruby >1.9 hash syntax * Improved comment on Vagrant::Registry.keys 2014-03-21 23:58:36 +00:00			`{ cmd: '/usr/bin/lxc-ls', args: '' },`
			`{ cmd: '/usr/bin/lxc-info', args: '' },`
			`{ cmd: '/usr/bin/lxc-attach', args: '' },`
			`{ cmd: '/usr/bin/which', args: 'lxc-*' },`
			`{ cmd: '/bin/cat', args: '/var/lib/lxc/*' },`
command/sudoers: Add missing `-p` to `mkdir` command 2014-03-25 02:50:38 +00:00			`{ cmd: '/bin/mkdir', args: '-p /var/lib/lxc/*' },`
* Ruby >1.9 hash syntax * Improved comment on Vagrant::Registry.keys 2014-03-21 23:58:36 +00:00			`{ cmd: '/bin/su', args: "root -c sed -e '' -ibak /var/lib/lxc/" },`
			`{ cmd: '/bin/su', args: "root -c echo '' >> /var/lib/lxc/" },`
			`{ cmd: '/usr/bin/lxc-start', args: '-d --name *' },`
			`{ cmd: '/bin/cp', args: '%{BOXES}//lxc/lxc-template /usr/lib/lxc/templates/' },`
command/sudoers: Minor tweaks to make the generated file work with latest changes 2014-03-27 23:04:38 +00:00			`{ cmd: '/bin/cp', args: '%{VAGRANT_D}/gems/gems/vagrant-lxc-/scripts/lxc-template /usr/lib/lxc/templates/' },`
* Ruby >1.9 hash syntax * Improved comment on Vagrant::Registry.keys 2014-03-21 23:58:36 +00:00			`{ cmd: '/bin/cp', args: '%{BOXES}//lxc/lxc-template /usr/share/lxc/templates/' },`
command/sudoers: Minor tweaks to make the generated file work with latest changes 2014-03-27 23:04:38 +00:00			`{ cmd: '/bin/cp', args: '%{VAGRANT_D}/gems/gems/vagrant-lxc-/scripts/lxc-template /usr/share/lxc/templates/' },`
* Ruby >1.9 hash syntax * Improved comment on Vagrant::Registry.keys 2014-03-21 23:58:36 +00:00			`{ cmd: '/bin/rm', args: '/usr/lib/lxc/templates/*' },`
			`{ cmd: '/bin/rm', args: '/usr/share/lxc/templates/*' },`
			`{ cmd: '/bin/chmod', args: '+x /usr/lib/lxc/*' },`
			`{ cmd: '/bin/chmod', args: '+x /usr/share/lxc/*' },`
command/sudoers: Minor tweaks to make the generated file work with latest changes 2014-03-27 23:04:38 +00:00			`{ cmd: '/usr/bin/lxc-create', args: '--template * --name * -- --tarball %{BOXES}/*' },`
* Ruby >1.9 hash syntax * Improved comment on Vagrant::Registry.keys 2014-03-21 23:58:36 +00:00			`{ cmd: '/bin/rm', args: '-rf /var/lib/lxc//rootfs/tmp/' },`
			`{ cmd: '/usr/bin/lxc-shutdown', args: '--name *' },`
			`{ cmd: '/usr/bin/lxc-stop', args: '--name *' },`
			`{ cmd: '/usr/bin/lxc-destroy', args: '--name *' }`
Created an "lxc sudoers" command to create sudoers file for a given user (defaults to current one). 2014-03-16 17:59:18 +00:00			`]`
			`end`
			`end`
			`end`
			`end`
			`end`