Class: Jets::Resource::Iam::ClassRole

Inherits:

Base

• Object
• Base
• Jets::Resource::Iam::ClassRole

Includes:

BaseRoleDefinition

Defined in:

lib/jets/resource/iam/class_role.rb

Instance Attribute Summary

Attributes included from BaseRoleDefinition

#managed_policy_definitions, #policy_definitions

Instance Method Summary

• #all_classes ⇒ Object

  Class heirachry in top to down order.

• #application_role ⇒ Object
• #inherit? ⇒ Boolean

  There are 2 types of inheritance: from superclasses and from higher precedence policies.

• #initialize(app_class) ⇒ ClassRole constructor

  A new instance of ClassRole.

• #lookup_iam_policies ⇒ Object

  Accounts for inherited class_iam_policies from superclasses.

• #lookup_managed_iam_policies ⇒ Object

  Accounts for inherited class_managed_iam_policy from superclasses.

• #managed_policy_arns ⇒ Object
• #policy_document ⇒ Object
• #policy_name ⇒ Object
• #replacements ⇒ Object
• #role_logical_id ⇒ Object

Methods included from BaseRoleDefinition

#definition

Methods inherited from Base

#resource

Constructor Details

#initialize(app_class) ⇒ ClassRole

Returns a new instance of ClassRole.

# File 'lib/jets/resource/iam/class_role.rb', line 5

def initialize(app_class)
  @app_class = app_class.to_s # IE: PostsController, HardJob, Hello, HelloFunction
  @policy_definitions = lookup_iam_policies
  @managed_policy_definitions = lookup_managed_iam_policies
end

Instance Method Details

#all_classes ⇒ Object

Class heirachry in top to down order

# File 'lib/jets/resource/iam/class_role.rb', line 63

def all_classes
  klass = @app_class.constantize
  all_classes = []
  while klass != Object
    all_classes << klass
    klass = klass.superclass
  end
  all_classes.reverse
end

#application_role ⇒ Object

# File 'lib/jets/resource/iam/class_role.rb', line 43

def application_role
  Jets::Resource::Iam::ApplicationRole.new
end

#inherit? ⇒ Boolean

There are 2 types of inheritance: from superclasses and from higher precedence policies. This one manages the inheritance for higher precedence policies.

Returns:

• (Boolean)

# File 'lib/jets/resource/iam/class_role.rb', line 39

def inherit?
  !@policy_definitions.empty? || !@managed_policy_definitions.empty?
end

#lookup_iam_policies ⇒ Object

Accounts for inherited class_iam_policies from superclasses

# File 'lib/jets/resource/iam/class_role.rb', line 56

def lookup_iam_policies
  all_classes.map do |k|
    k.class_iam_policy # class_iam_policy contains definitions
  end.uniq
end

#lookup_managed_iam_policies ⇒ Object

Accounts for inherited class_managed_iam_policy from superclasses

# File 'lib/jets/resource/iam/class_role.rb', line 49

def lookup_managed_iam_policies
  all_classes.map do |k|
    k.class_managed_iam_policy # class_managed_iam_policy contains definitions
  end.uniq
end

#managed_policy_arns ⇒ Object

# File 'lib/jets/resource/iam/class_role.rb', line 32

def managed_policy_arns
  @managed_policy_definitions += application_role.managed_policy_definitions if inherit?
  super
end

#policy_document ⇒ Object

# File 'lib/jets/resource/iam/class_role.rb', line 26

def policy_document
  # Handles precedence inheritance from the ApplicationRole to the ClassRole
  @policy_definitions += application_role.policy_definitions if inherit?
  super
end

#policy_name ⇒ Object

# File 'lib/jets/resource/iam/class_role.rb', line 15

def policy_name
  class_namespace = replacements[:namespace].underscore.dasherize
  "#{Jets.config.project_namespace}-#{class_namespace}-policy" # camelized because used as template value
end

#replacements ⇒ Object

# File 'lib/jets/resource/iam/class_role.rb', line 20

def replacements
  {
    namespace: @app_class.gsub('::','').camelize, # camelized because can be used as value
  }
end

#role_logical_id ⇒ Object

# File 'lib/jets/resource/iam/class_role.rb', line 11

def role_logical_id
  "{namespace}_iam_role".underscore
end