Class: EnfCli::Cmd::User

Inherits:

EnfThor

• Object
• Thor
• EnfThor
• EnfCli::Cmd::User

Defined in:

lib/enfcli/commands/user.rb

Overview

This class handles the commands that maniupulate users and roles

Instance Method Summary

• #activate_user ⇒ Object
• #add_user_role ⇒ Object
• #deactivate_user ⇒ Object
• #delete_invite ⇒ Object
• #delete_user_roles ⇒ Object
• #get_user_details ⇒ Object
• #list_invites ⇒ Object
• #list_user_roles ⇒ Object
• #list_users ⇒ Object
• #resend_invite ⇒ Object
• #send_invite ⇒ Object

Methods inherited from EnfThor

capture_stdout, command_help, handle_argument_error, help

Instance Method Details

#activate_user ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 302

def activate_user
  try_with_rescue_in_session do
    ## call the api
    status = { status: "ACTIVE" }
    EnfApi::UserManager.instance.update_user_status options[:email], status
    say "Activated user!", :green
  end
end

#add_user_role ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 281

def add_user_role
  try_with_rescue_in_session do
    ## get options
    email = options[:email]
    role = options[:role]
    role = role.upcase if role
    cidr = EnfCli::IPV6Cidr.new(options[:cidr]).to_s

    ## call api
    role_hash = [{ cidr: cidr, role: role }]
    resp = EnfApi::UserManager.instance.add_user_role email, role_hash
    resp_roles = resp[:data]

    ## display response
    display_roles resp_roles
  end
end

#deactivate_user ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 261

def deactivate_user
  try_with_rescue_in_session do
    ## call the api
    status = { status: "INACTIVE" }
    EnfApi::UserManager.instance.update_user_status options[:email], status

    say "Deactivated user!", :green
  end
end

#delete_invite ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 131

def delete_invite
  try_with_rescue_in_session do
    id = options[:id]
    # call api
    EnfApi::UserManager.instance.delete_invite id
    say "Invite: #{id} successfully deleted", :green
  end
end

#delete_user_roles ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 242

def delete_user_roles
  try_with_rescue_in_session do
    user_id = options[:email]
    roles = options[:roles]
    roles = roles.upcase if roles
    network = options[:network]

    if roles[0..6] == "NETWORK" && !network
      raise EnfCli::ERROR, "--network option must be included for --roles=#{roles}"
    end

    EnfApi::UserManager.instance.delete_user_roles user_id, roles, network
    say "Role: #{roles} successfully removed from user: #{user_id}", :green
  end
end

#get_user_details ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 179

def get_user_details
  try_with_rescue_in_session do
    # call the api
    data = EnfApi::UserManager.instance.get_user options[:email]
    user = data[:data][0]

    display_user_details user
  end
end

#list_invites ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 155

def list_invites
  try_with_rescue_in_session do
    # use the domain network of the user
    domain = nil

    # only XAPTUM_ADMIN can specify --domain (but doesn't have to)
    if EnfCli::CTX.instance.xaptum_admin?
      domain = options[:domain] if options[:domain]
    elsif options[:domain]
      say "Warning: Ignoring command option --domain #{options[:domain]}", :yellow
    end

    # call the api
    data = EnfApi::UserManager.instance.list_invites domain
    invites = data[:data]

    display_invites invites
  end
end

#list_user_roles ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 221

def list_user_roles
  try_with_rescue_in_session do
    # call api
    data = EnfApi::UserManager.instance.list_user_roles options[:email], options[:network]
    roles = data[:data]

    # print roles
    display_roles roles
  end
end

#list_users ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 195

def list_users
  try_with_rescue_in_session do
    domain = options[:domain]
    network = options[:network]

    ## initalize query param
    query_param = ""
    if domain
      query_param = "?domain=#{domain}"
    elsif network
      query_param = "?network=#{network}"
    end

    # call the api
    data = EnfApi::UserManager.instance.list_users query_param
    users = data[:data]

    display_users users
  end
end

#resend_invite ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 143

def resend_invite
  try_with_rescue_in_session do
    id = options[:id]
    # call api
    EnfApi::UserManager.instance.resend_invite id
    say "Resent invite: #{id}!", :green
  end
end

#send_invite ⇒ Object

# File 'lib/enfcli/commands/user.rb', line 80

def send_invite
  try_with_rescue_in_session do
    # get params
    name = options[:name].join(" ").gsub(/\A"+(.*?)"+\Z/m, '\1')
    email = options[:email]

    # get correct domain
    domain = EnfCli::CTX.instance.session[:domain]
    raise EnfCli::ERROR, "User not in a valid domain!" unless domain

    # check if admin
    if EnfCli::CTX.instance.xaptum_admin?
      raise EnfCli::ERROR, "--domain is required" unless options[:domain]

      domain = options[:domain]
    elsif options[:domain]
      say "Warning: Ignoring command option --domain #{options[:domain]}", :yellow
    end

    invite_hash = { email: email,
                    full_name: name,
                    domain: domain }

    role = options[:role]
    role = role.upcase if role
    network = options[:network]

    roles_hash = nil

    case role
    when "XAPTUM_ADMIN", "IAM_ADMIN"
      roles_hash = [{ cidr: "::/0", role: role }]
    when "DOMAIN_ADMIN", "DOMAIN_USER", "CAPTIVE_ADMIN"
      roles_hash = [{ cidr: domain, role: role }]
    when "NETWORK_ADMIN", "NETWORK_USER"
      roles_hash = [{ cidr: network, role: role }]
    end

    if roles_hash
      invite_hash[:roles] = roles_hash
    end

    resp_data = EnfApi::UserManager.instance.invite invite_hash
    invite = resp_data[:data]
    display_invites invite
  end
end