Merge pull request #92 from bacongobbler/deis-tls

feat(tls): add `deis tls`

Author: Matthew Fisher

api/tls.go

@@ -0,0 +1,36 @@
+package api
+
+import (
+	"fmt"
+)
+
+// TLS is the structure of an app's TLS settings.
+type TLS struct {
+	// Owner is the app owner. It cannot be updated with TLS.Set(). See app.Transfer().
+	Owner string `json:"owner,omitempty"`
+	// App is the app the tls settings apply to and cannot be updated.
+	App string `json:"app,omitempty"`
+	// Created is the time that the TLS settings was created and cannot be updated.
+	Created string `json:"created,omitempty"`
+	// Updated is the last time the TLS settings was changed and cannot be updated.
+	Updated string `json:"updated,omitempty"`
+	// UUID is a unique string reflecting the TLS settings in its current state.
+	// It changes every time the TLS settings is changed and cannot be updated.
+	UUID string `json:"uuid,omitempty"`
+	//HTTPSEnforced determines if the router should enable or disable https-only requests.
+	HTTPSEnforced *bool `json:"https_enforced,omitempty"`
+}
+
+// NewTLS creates a new TLS object with fields properly zeroed
+func NewTLS() *TLS {
+	return &TLS{
+		HTTPSEnforced: new(bool),
+	}
+}
+
+func (t TLS) String() string {
+	if t.HTTPSEnforced != nil {
+		return fmt.Sprintf("HTTPS Enforced: %t", *t.HTTPSEnforced)
+	}
+	return "HTTPS Enforced: not set"
+}

api/tls_test.go

@@ -0,0 +1,33 @@
+package api
+
+import (
+	"strings"
+	"testing"
+)
+
+func TestTLSString(t *testing.T) {
+	tls := &TLS{}
+
+	expected := "HTTPS Enforced: not set"
+
+	if strings.TrimSpace(tls.String()) != expected {
+		t.Errorf("Expected:\n\n%s\n\nGot:\n\n%s", expected, tls.String())
+	}
+
+	tls = NewTLS()
+
+	expected = "HTTPS Enforced: false"
+
+	if strings.TrimSpace(tls.String()) != expected {
+		t.Errorf("Expected:\n\n%s\n\nGot:\n\n%s", expected, tls.String())
+	}
+
+	b := true
+	tls.HTTPSEnforced = &b
+
+	expected = "HTTPS Enforced: true"
+
+	if strings.TrimSpace(tls.String()) != expected {
+		t.Errorf("Expected:\n\n%s\n\nGot:\n\n%s", expected, tls.String())
+	}
+}

tls/tls.go

@@ -0,0 +1,79 @@
+// Package tls provides methods for managing tls configuration for apps.
+package tls
+
+import (
+	"encoding/json"
+	"fmt"
+
+	deis "github.com/deis/controller-sdk-go"
+	"github.com/deis/controller-sdk-go/api"
+)
+
+// Info displays an app's tls config.
+func Info(c *deis.Client, app string) (api.TLS, error) {
+	u := fmt.Sprintf("/v2/apps/%s/tls/", app)
+
+	res, reqErr := c.Request("GET", u, nil)
+	if reqErr != nil {
+		return api.TLS{}, reqErr
+	}
+	defer res.Body.Close()
+
+	tls := api.TLS{}
+	if err := json.NewDecoder(res.Body).Decode(&tls); err != nil {
+		return api.TLS{}, err
+	}
+
+	return tls, reqErr
+}
+
+// Enable enables the router to enforce https-only requests to the application.
+func Enable(c *deis.Client, app string) (api.TLS, error) {
+	t := api.NewTLS()
+	b := true
+	t.HTTPSEnforced = &b
+	body, err := json.Marshal(t)
+
+	if err != nil {
+		return api.TLS{}, err
+	}
+
+	u := fmt.Sprintf("/v2/apps/%s/tls/", app)
+
+	res, reqErr := c.Request("POST", u, body)
+	if reqErr != nil {
+		return api.TLS{}, reqErr
+	}
+	defer res.Body.Close()
+
+	newTLS := api.TLS{}
+	if err = json.NewDecoder(res.Body).Decode(&newTLS); err != nil {
+		return api.TLS{}, err
+	}
+
+	return newTLS, reqErr
+}
+
+// Disable disables the router from enforcing https-only requests to the application.
+func Disable(c *deis.Client, app string) (api.TLS, error) {
+	body, err := json.Marshal(api.NewTLS())
+
+	if err != nil {
+		return api.TLS{}, err
+	}
+
+	u := fmt.Sprintf("/v2/apps/%s/tls/", app)
+
+	res, reqErr := c.Request("POST", u, body)
+	if reqErr != nil {
+		return api.TLS{}, reqErr
+	}
+	defer res.Body.Close()
+
+	newTLS := api.TLS{}
+	if err = json.NewDecoder(res.Body).Decode(&newTLS); err != nil {
+		return api.TLS{}, err
+	}
+
+	return newTLS, reqErr
+}