Class: AwsUtils::Ec2SecurityGroup

Inherits:

Object

• Object
• AwsUtils::Ec2SecurityGroup

Defined in:

lib/awsutils/ec2sg.rb

Direct Known Subclasses

Ec2AddSecurityGroup, Ec2DeleteSecurityGroup, Ec2LsGrp

Instance Method Summary

• #assigned? ⇒ Boolean
• #connection ⇒ Object
• #current_groups ⇒ Object
• #exist? ⇒ Boolean
• #groups ⇒ Object
• #references(search) ⇒ Object

Instance Method Details

#assigned? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/awsutils/ec2sg.rb', line 53

def assigned?
  servers_using_group = connection.servers.map do |server|
    next unless server.state != 'terminated' &&
                server.groups.include?(@opts[:security_group])
    server.tags['Name'] ? server.tags['Name'] : server.id
  end.compact

  return false unless servers_using_group.length > 0
  print 'The following servers are still using this group: '
  puts servers_using_group.join(',')

  true
end

#connection ⇒ Object

# File 'lib/awsutils/ec2sg.rb', line 6

def connection
  @connection ||= begin
    options = {}

    if ENV['AWS_ACCESS_KEY']
      options = {
        aws_access_key_id: ENV['AWS_ACCESS_KEY'],
        aws_secret_access_key: ENV['AWS_SECRET_KEY']
      }
    end

    Fog::Compute::AWS.new options
  end
end

#current_groups ⇒ Object

# File 'lib/awsutils/ec2sg.rb', line 71

def current_groups
  @current_groups ||= begin
    connection.security_groups.map { |g| [g.name, g.group_id] }.flatten.uniq
  end
end

#exist? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/awsutils/ec2sg.rb', line 67

def exist?
  current_groups.include?(@opts[:security_group])
end

#groups ⇒ Object

# File 'lib/awsutils/ec2sg.rb', line 49

def groups
  @groups ||= connection.security_groups
end

#references(search) ⇒ Object

# File 'lib/awsutils/ec2sg.rb', line 21

def references(search)
  if search =~ /^sg-/
    search_id = search
  else
    search_id = groups.find { |g| g.name == search }.group_id
  end

  groups.each_with_object({}) do |grp, m|
    assoc_p = grp.ip_permissions.select do |ip_perm|
      !ip_perm['groups'].select { |src_grp|
        src_grp['groupName'] == search ||
          src_grp['groupId'] == search_id
      }.empty?
    end
    if assoc_p.empty?
      next
    else
      m[grp.name] = {
        'groupId' => grp.group_id,
        'ipPermissions' => assoc_p.map do |ap|
          ap.delete('ipRanges')
          ap
        end
      }
    end
  end
end