class Chef::Knife::AclRemove

Public Instance Methods

run() click to toggle source
# File lib/chef/knife/acl_remove.rb, line 33
def run
  member_type, member_name, object_type, object_name, perms = name_args

  if name_args.length != 5
    show_usage
    ui.fatal "You must specify the member type [client|group|user], member name, object type, object name and perms"
    exit 1
  end

  if member_name == "pivotal" && %w{client user}.include?(member_type)
    ui.fatal "ERROR: 'pivotal' is a system user so knife-acl will not remove it from an ACL."
    exit 1
  end
  if member_name == "admins" && member_type == "group" && perms.to_s.split(",").include?("grant")
    ui.fatal "ERROR: knife-acl will not remove the 'admins' group from the 'grant' ACE."
    ui.fatal "       Removal could prevent future attempts to modify permissions."
    exit 1
  end
  validate_perm_type!(perms)
  validate_member_type!(member_type)
  validate_member_name!(member_name)
  validate_object_name!(object_name)
  validate_object_type!(object_type)
  validate_member_exists!(member_type, member_name)

  remove_from_acl!(member_type, member_name, object_type, object_name, perms)
end