From 84872a6f6826ab4722df41cd203db27af52360e4 Mon Sep 17 00:00:00 2001
From: Matthew Boedicker and Tony Hansmann <cf-frameworks@rbcon.com>
Date: Tue, 9 Apr 2013 17:54:35 -0700
Subject: [PATCH] add biff erb helper 'random_string' for unique password
 generation in manifests

---
 .travis.yml                                   |   4 +-
 Gemfile.lock                                  |   2 +
 bosh_cli/bosh_cli.gemspec                     |   2 +
 bosh_cli/lib/cli.rb                           |   2 +
 bosh_cli/lib/cli/commands/biff.rb             |  13 ++++++
 bosh_cli/spec/assets/biff/random_string.yml   |  37 ++++++++++++++++++
 .../assets/biff/random_string_template.erb    |  10 +++++
 bosh_cli/spec/unit/cli_commands/biff_spec.rb  |  29 ++++++++++++++
 vendor/cache/haddock-0.2.2.gem                | Bin 0 -> 7168 bytes
 9 files changed, 98 insertions(+), 1 deletion(-)
 create mode 100644 bosh_cli/spec/assets/biff/random_string.yml
 create mode 100644 bosh_cli/spec/assets/biff/random_string_template.erb
 create mode 100644 vendor/cache/haddock-0.2.2.gem

diff --git a/.travis.yml b/.travis.yml
index 0a48e2ec5a..991a7630c5 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -14,4 +14,6 @@ notifications:
     on_failure: always
 matrix:
   allow_failures:
-    - rvm: ruby-2.0.0
\ No newline at end of file
+    - rvm: ruby-2.0.0
+before_install:
+  - sudo apt-get --assume-yes install wamerican
diff --git a/Gemfile.lock b/Gemfile.lock
index ca6aa1b801..c41b0eacb8 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -62,6 +62,7 @@ PATH
       archive-tar-minitar (~> 0.5)
       blobstore_client (~> 1.5.0.pre.3)
       bosh_common (~> 1.5.0.pre.3)
+      haddock
       highline (~> 1.6.2)
       httpclient (= 2.2.4)
       json_pure (~> 1.7.6)
@@ -281,6 +282,7 @@ GEM
     guard-rspec (2.5.1)
       guard (>= 1.1)
       rspec (~> 2.11)
+    haddock (0.2.2)
     highline (1.6.16)
     httpclient (2.2.4)
     json (1.7.7)
diff --git a/bosh_cli/bosh_cli.gemspec b/bosh_cli/bosh_cli.gemspec
index 673342efbb..83dd050f27 100644
--- a/bosh_cli/bosh_cli.gemspec
+++ b/bosh_cli/bosh_cli.gemspec
@@ -31,4 +31,6 @@ Gem::Specification.new do |s|
   s.add_dependency "net-scp", "~>1.1.0"
   s.add_dependency "netaddr", "~>1.5.0"
   s.add_dependency "archive-tar-minitar", "~>0.5"
+  s.add_dependency "haddock"
+
 end
diff --git a/bosh_cli/lib/cli.rb b/bosh_cli/lib/cli.rb
index 1aea8a4db4..5bf2fdceba 100644
--- a/bosh_cli/lib/cli.rb
+++ b/bosh_cli/lib/cli.rb
@@ -32,6 +32,8 @@ module Cli
 require "netaddr"
 require "zlib"
 require "archive/tar/minitar"
+require "haddock"
+Haddock::Password.delimiters='!@#%^&()-,./'
 include Archive::Tar
 
 unless defined?(Bosh::Cli::VERSION)
diff --git a/bosh_cli/lib/cli/commands/biff.rb b/bosh_cli/lib/cli/commands/biff.rb
index f4fa2145a5..4e5eb4d39a 100644
--- a/bosh_cli/lib/cli/commands/biff.rb
+++ b/bosh_cli/lib/cli/commands/biff.rb
@@ -384,5 +384,18 @@ def setup(template)
       @temp_file_path_2 = "#{@dir_name}/bosh_biff_2"
     end
 
+    # Generate a random string for passwords and tokens.
+    # Length is the length of the string.
+    # name is an optional name of a previously generated string. This is used
+    # to allow setting the same passwd for different components.
+    def random_string(length, name=nil)
+      @random_cache ||= {}
+      if name
+        @random_cache[name] ||= Haddock::Password.generate(length)
+      else
+        Haddock::Password.generate(length)
+      end
+    end
+
   end
 end
diff --git a/bosh_cli/spec/assets/biff/random_string.yml b/bosh_cli/spec/assets/biff/random_string.yml
new file mode 100644
index 0000000000..63ff0061ff
--- /dev/null
+++ b/bosh_cli/spec/assets/biff/random_string.yml
@@ -0,0 +1,37 @@
+---
+name: cf-spec
+director_uuid: xxxxxx-xxx-xxx-xxxxxxxx
+release:
+  name: Spec-manifest
+  version: latest
+networks:
+- name: cf
+  type: manual
+  subnets:
+  - range: 10.10.2.0/23
+    name: default_unused
+    reserved:
+    - 10.10.2.2 - 10.10.2.9
+    static:
+    - 10.10.2.10 - 10.10.2.50
+    gateway: 10.10.2.1
+    dns:
+    - 10.10.0.2
+- name: services
+  type: manual
+  subnets:
+  - range: 10.10.4.0/24
+    name: default_unused
+    reserved:
+    - 10.10.4.2 - 10.10.4.9
+    static:
+    - 10.10.4.10 - 10.10.4.200
+    gateway: 10.10.4.1
+    dns:
+    - 10.10.0.2
+
+properties:
+  defined_but_no_passwd:
+    password:
+  defined_with_passwd:
+    password: passwd_set_in_yml
diff --git a/bosh_cli/spec/assets/biff/random_string_template.erb b/bosh_cli/spec/assets/biff/random_string_template.erb
new file mode 100644
index 0000000000..6089d00bec
--- /dev/null
+++ b/bosh_cli/spec/assets/biff/random_string_template.erb
@@ -0,0 +1,10 @@
+---
+properties:
+  defined_but_no_passwd:
+    password: "<%= random_string 12, :foo %>"
+  defined_with_passwd:
+    password: <%= find("properties.defined_with_passwd.password") %>
+  same_passwd:
+    password: "<%= random_string 12, :foo %>"
+  diff_passwd:
+    password: "<%= random_string 12, :bar %>"
\ No newline at end of file
diff --git a/bosh_cli/spec/unit/cli_commands/biff_spec.rb b/bosh_cli/spec/unit/cli_commands/biff_spec.rb
index fc46fec2a9..39518c1a72 100644
--- a/bosh_cli/spec/unit/cli_commands/biff_spec.rb
+++ b/bosh_cli/spec/unit/cli_commands/biff_spec.rb
@@ -117,6 +117,35 @@
         }.should raise_error Bosh::Cli::CliError, "There were 1 errors."
       end
     end
+
+    context "randomized strings" do
+      let(:template_file) { spec_asset("biff/random_string_template.erb") }
+      let(:config_file) { spec_asset("biff/random_string.yml") }
+
+      before {
+        biff.stub!(:deployment).and_return(config_file)
+        biff.should_receive(:agree).with(
+          "Would you like to keep the new version? [yn]").once.and_return(false)
+      }
+
+      subject {
+        biff.biff(template_file)
+        Psych.load(biff.template_output)['properties']
+      }
+
+      it "Generate a password and put it in" do
+        expect(subject["defined_but_no_passwd"]["password"]).to_not be_nil
+      end
+
+      it "Retain an existing" do
+        expect(subject["defined_with_passwd"]["password"]).to eq "passwd_set_in_yml"
+      end
+
+      it "Duplicate passwords with same name" do
+        expect(subject["same_passwd"]["password"]).to eq subject["defined_but_no_passwd"]["password"]
+      end
+    end
+
   end
 
   context "with good_simple_config" do
diff --git a/vendor/cache/haddock-0.2.2.gem b/vendor/cache/haddock-0.2.2.gem
new file mode 100644
index 0000000000000000000000000000000000000000..14250239b6aa2a9b2d0d3ab9e78747c9cc321724
GIT binary patch
literal 7168
zcmeHLS5y;Pv!;aJL0ag&NJ;1&0@4D~r3%uEbfg%Xf^<ZrL<qecN@yOcK%^;x7!)A_
zLZlbzRRT!Kf6o2aUH7c>a-aV4;JnP<d)D4F^Q~F4_I&Oxp)OLPE+JB0kp%xL0sSEg
za&iQJ>ObV~T2WSB{(sN@X$Q;7%7O`aLI0|N{`zj%gFmwW!+nIehlk%^4S!qzfA;@L
z?Jvpw?fQS~mM5K@Am9XIL_oa5ab<&j->kX)GXH%<@@>C!V)9fDso;LjNRq<Y^$E3S
z-7W1Mr~F1uZSiK>c-*I*CiipV&Nhmeh|JsE9pT@7y}ZJ`JU!5<y1cf6*FSdcNwDd=
z{^zOw=dCR$b-dI?y~EkQso8mwOqJxb1SbBAdJ4CB^&q+oY16%ki4e0{2?!fq(`LF$
z!cHlej@?f%+?<x($H0$Gj~3XC3Ay`9lOjIT?7If*x5KkOwobz6@IkKx;-G|g8mXT*
zGdqX*A6@~C(c=08x$x%F#NHLSqk>y6`f{nAnbue!k2f;9477z7W#`R)90P1YEXL7s
z<Qa&OE3ypNeDWK*3XaXP?BW&TVlIE_4nMFk8Ki%kdaK+A*Z48$z_E+B{Q2YR>#IAx
z$(1x^efyLw50aP+k1D_4GEb_W=zkt*_~L<bEMb&0^dpqTlAC7o2NU<vexyfo^8ybk
z2DyTwntj$JFi`EB^huxeNq$rla#OACT3?M3l5#)z$<nKqX0pq^G<@FGqwnu>@S0F8
z7W*XaPHUZ6l6}=toz;xkomVt&Om(2JSeiHd#$7xK-o{MBJS}3!i7o_w+R3=5btjac
zdA*)367K~E`?G&#tbpfkSR--bI-&4c4UJ3$)jFV2oh?=l0{CGDlwC+*sNhr{*I$Qa
z7Y|clp>}s<k3<^o*T?Ip*}M%~%1&hP=Zu@xe2&1?XAj4aHh*sAJBv8X?O;gp5-Z>_
zB|C#3oQ1NG=20i{J&=VO030R<=Hj`MIAf+(B<|)WCA!e-LGw%V$F#{N7s11sUJtC{
zx?Hbc+sy4h6cuiIaJ4f)vy8kd$EL0vGjPc)V-%?fdD8H8(&08Z{M;<&8qf9-x~wL^
zLBVF%3R3wvG+<~+6AF4$W;VhW)Ys7AMZD79GT#Bt2D|&Ms9LfZ?!anu;?5tLULZGL
z*kJ>QRtWJ6vyFa|7mqw%9j)Rs$8lOwRW8N}`IG21Fl)|3XBPsCq2F8;1{zXfYT`9P
zY=QldR@6eXX;e7MgN-JiG+)MqJywZ0bATFCRL>jgBJqUzo3+G-#c+y#j^by^H0QTU
z^t_<SP(HS}eCKXJ2l$H%FRS?Pac?~<Bc^=9(KW?5)XKVH-kSm`jv>CNYTj-h`&~>^
z25|@7G=!7LGse7lxkwNpFV@G^>f`RInq$Cp(W&{vHP7WKa-BS=uEu#&41~a}Iq&O(
z$Oho2Tgi|OYE7rYZRcYLczlw2@k2lQ6lb7*`|ez$V(cOv@xt1TFqsH-99sL$2*PQ<
zm!{ZM*rYwfd@DgHj?c_lRODQJ!=H`!rmZIcI&VE$CK0Sc9wbJ>qf!#la}0cIO-=j~
zgz5`v0+Y(qf~|9XM`EbE!0dWr+ei=hkC0h1lESqQ)?K)|=tL?uxLLnN%UP8>sx$>z
z^P&!Oxs90fDUoyNkwRpQHF*PtSj9}b`oly9$u}N1FV4w#`mGL@h*qd;aW<2WhHxgX
zc`qk4>>QPg8UdK%Kfk9%I?0tQKyNr58X%$4fjuQ#Mc!s=nPM>ZoP0w&01zR^EhWkZ
z6|e<Zw6-|RIjx-8#+B$dbKEUkGBr=`Y<GUsvZyqSi*23s2kP}Er^8%N7xU>5Jk3Pm
zG*sfTFI`Ni9jpAmiiEL3ZsK>3_!k9D?UdHCMvWc<lw6V!GfJV+U%VOg_}o@qH|&@4
znZ-PUFMab}erlhOX(@fH*%^Xh3LH5m*t3jpJpC;G`NsRNW{v~TRok?c;Q2@7J{)Cr
zsxTSj)_U-0y!*1uuxzKytUGyA&;trrLMtmu_+I+#g+Y?LZNZaetqndNQ;@!Pg*QM~
zOr*Lh4z2%VWVOxnkU(BWEFPWugO}wiyLpXOVAi_1-tjX~vfOhb{jRmU-zN;&7-RG(
zneBCDMo<L+%sa%vd$xDwnG%S>U}7u8>e)>W$}PSF^F`PI^KHqK$k_t#-Qu`WV6aq3
z<RaNd9&|2*(DV4tq>eY%+l2UqpH1iOpNsC*OpH--Dy8BfAS&&VKv;n{xTjJ$6r0?0
znqk7UBel5xvo+?k8bRy$JFiyq{oQ%<iv}|Cai6wGp0XJ7j486S^f?t#?c>0jPLYW6
zIq*&n#toGk6Yh&Y+vyLu0_@YjoYX^ijQ3`FzoZ#7%V{Ze<PV?N+2L7oTPcq5JJq<6
zp@W*{FG${{m0N5Z-<-Md8qT0CDhV^e&Iz|@YPCqB!oEVJLRbd`DidQqU$XO*MI{6n
zG&~(*hc57)JNL!>EO*0)etA-fJA^Q)F36j=ka7#BF`L}Sce<3`SSkyiI75mx&l*&@
z(dTE=&hyA4)6e7&@EXO@av4|Q_0t2x{GVDdM&=9HIZp;47s`lId8f@ZjTFfQp3Np-
zZZAlqL;_i?0g#RJ2COl~aw=9y&)!kHT1>cq3eRFBa(HP&DKgcOeAKtgiaxyO|ElBS
z23}q7qR9k~(@_a><hGc4v42XpyW-h*@A3DC;;tcHKwl!{BuJb%QBTNHW9gRMVv9HV
zdYsDWHvN#sphm#&07koNh_l&rvO0-I7$WQb>rXODGk!fL?@qb-?b&o!h2rbB)5jjt
zk4ZBq9H56>=?3bg)IM&y5@tS{v77&9h1e2aucags_zgl2PM~)geY#*_fp=_&0r9&J
zpKI>y?R;Cqw{MyFuU)_FzWTE<hK#v?HTLYkG=edBv(W`mzG!cg2FQXRyh&-qvcAZ<
zSt;qeR|DY5K83#0rDT9f#n=-M58q9xI8q83YM|}n5c}Alnt$Uv3cAGd>CT}>Hz)%D
zJ~;N=^m=-4)WUFj>-H=Q^@n-S=6-5dE~Luc^?-?;MX#rf2hP3nLM#`9iRDe}ES<(T
z@+giyjU>p|ovcjDBS(4CDT?aHsCL@G?mVq#{_c6tSX;-kKReKLleIkH`j}OLWUM`g
zafi7ynK|TKeKVZ8<DNq;d23cY<LRD|8ri*ab!WFdqo5Jpf{(3TN7=|;yBxOdW}+`P
zWFDS8G;XAJ#}!s|nuVcp7RFgyCvJuY;TV{JwC!)yY`hl{GX{HlZ|p2tvhK{sQ;Z2Q
zK1K`!?wR>%I4`HU%)US&9;h}u;6`Rf8maeKNr8`Yh)K|Q-8Ay~5?nQ2D%;<DXu5r&
znO3^y!w4yx)dI+DqCz`Ge3f%erXV&1De8oF=Jd%r3Y4G|Z90}yLsRs1vZ?|e<lh{Q
z_kXBHkKgy3wBEx<M3ijxWln?~FxS6Qem@mh6UPxXQ&6X2BQ{(8iugW9D5rO=`vX}k
z1e{XPa_`tjtr)%1+$=5p0x<3%J`w5T9$aLKR%#pf<!s0Df3lWO&lTkM&7v(x&S+iX
z=D*`hF@Y2iW|*w7T1%#=I}@~8*AM(nv`8UR-*FIsE#B7=Nr6s8$1fk_cHe-z4>KQW
zMipM{UG(99M@Z-Xj2asYlnQuszII%?-RGD8Zh9(nO_77ryf^3;!`;ExSsG;_Ki?4=
z2ljXQz6+-DAv;CHO1?Qf0I{J%?m?40IhH4Qxx~dcG4^@+*>AtzHmoa{rC;gN;?Asv
zi&iCuue>#?bI8z1@-E++sr%qsC7UZdhBBPDZDei$C{`VMRQ*&9?yYryqzDhIiXzEu
zHJHpXeXH#6NJ0b1-^flP2j1D~<r6T2*i#aQ*vU2*wn<YhId;a4S(RNkxJFQG3LKKw
zk_A{sb0r~JR5)|6#&QYcCA)5eLrl^jrmQy0gWCPqhD4K5n?+LHOq12R^jdNQo&5j}
z=+Ap1pDq{7j)@)>3E|w9*N&B;rCUa(+WtPBw`*-ts-4!iHPgn~H^hIFqat>c6T0~!
zNXOJ<<m1XTH7sQR^!(fHlqqiGi!TvWn{HdfuhQugJ!G!FfL1F{eEVaJPCTaR@@@qM
zGOUHkwDQE-a-M<f9}6`ake2CM?8^yt*x8q58x(*`I71O;g^xRQMP7F-?!@^P0AMHG
zr17gQ>rT?89K8xh>}d-k0{5U6HPbQjhKGjkJ!VW_(M+GBDJ)ENK7?c6(2Sg{D(E`{
zq58``+X$%G3kd~|yvmV|_)!;vN?sghPKQa`K(ltbura)K@`BOznbtP{fW)4@tXgcq
z$0(bWc-$(Z!G3+HH)e=>R;686%c9z$mDJaiSM723u}J;ukBwP0Cg!Q8)8|l}v*p|R
z<uUD8!&Jwl`$I76>D?l|<IPH3;hRMHA^>Ja{EB+Os-#_}IssFX5YAA?ddfJZv33Mz
zHDCIqek-nAO0ecWiGm_z#g>0V-?!*qx$Q_&bIsCs+9m>-2}uLQ6IwfjkwcAaW^|BE
zap_Vhhlt_~1FAx&px0z`FDO9QT6ppO`j?mG<;2Ndr44Jl()sc&c>&o%sOLMqNljYJ
z%H=47Q?ZYi(%5CR{X){P&Z#DRE4}J65Y=)Kia!?J1<?5mFa|4mvbkONRl)9O&Q0|c
zpSQ!*7V!>~@P$XaU+Pp%|M;v*_B3TBX-zlyz6_r<H@0c&E_xyYR-fGVN~w@?J1tIW
zgynrQBg|@R7VJp*+3MFLLZgYBnmUP_*K{r4Kr7Z=@@=~bV&Ud)3@qe6O1TS%GAAL$
z9%FIemEp8d3ks%`-bnmyi%C{)yG?$|!L6-4$2^nw$fxnGOuDsRD}zFz$7&Inf!F7l
z(Vt$N&S}Wx0O?Rd^`2)^_^WSXSKG_yu&N(h%dkCR!q>?8x;U9J6WeP)$(Q5l^-zfh
z#AdYQ1ch1y8dg>Lv!$#(1#*Cv|540$r6j$jT5`Et;(WD=TWm5CwX6M#+Mfs0SiLx@
zYKP{fG8VTe!WZnuM_06kyJ5$zc4v(3YxP)?DwR5hZ$db(k-b2RRHx}{V7t4e;4z}B
zTllNp-M079G0LTOuMPx~qpte*-INyc-sMa9z@wV_L@^OX+gnaIBOJ}*@4JYp^%;@Z
zEk!%BhnAn72j;}p$4}eP4}AG;RN5J9x=j^v;AHUF8sSB4Zka2MEa-y}@o4q}BLs1|
z&(zy%a9>Jh_p7h;{~WsUcwz$B*rF@Jt^d{${689(zelKx`=1=pe~$kFgA^71&i}}P
z<bUx$|Bk}=KmKRb$|w^9qVK)1p;ph)NA>eDW->QCejD-?8U+yzDKc~gVh2jJF80|)
zHi>N;7xkDY5r?CS3$L>UDbx<#!rtFKVP<CDAHVS~T&s$sQP9T=V(at!W0R?NOVvZJ
z80WCV#|u}{Bt(nu@S4I<fg~r3mDggtDiq2V-=jsf1b-LeRB1b4iQ-z$I6m|LQlgUv
z#oAvGo!y{Rhu7s4Kr|mQRJ<4zE{rY~Iae7eg_N*jhz+mf>CD{(hD)H|DuIU9SGl()
zD%R=={WGk6sHuRYYbRPv-+e*GMASzNSI*D*E`xeW!}X*Qu9VnX@6ZjWw<4!EG_<$L
zQ()7Jz%mny4^Ux02WuZF2@rWf^rq;baLo$5Z>22o>DKoT67IpK-fm#lI*BN|$N;^W
zjmljzuKY>9jQcEsRg*NNP#;r?`MJA&s2+s$n1+vpLi42Nd8=RqoB0`>BS%t>X(J3S
zX_@^qjhR6;9mB*@WXOR3K!q|%5-TKnpDC*174+QSk7eA<-L4+VQEywm)8amCRxzEn
z{lIT^k<AgS)v|B&j8j+?3`gI-D$X%w+)KKWeC2WU0b-$87;K{N?>ICg$%DY7W<Hly
zbrN4o=z$2HQP$f?+gt(@^;t!)P0Fp$w?b-SJ-$>>;F;=4lobTD4`*N9HQyKR$9S!p
zu5bSkkCBQGXzcLsdP}U6gq9wk`2kHBXWOKE)L!pe(0Tk#Qz=oC@ShD;K|D5*lH}h}
VpTB(kLf{tyzYzF^z`q88e*n2Ew<rJr

literal 0
HcmV?d00001