Project

umgr

0.0
No release in over 3 years
umgrgowda/umgrHomepageDocumentationSource CodeBug Tracker
Manage account state across providers via CLI and API
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
2026
 Popularity
Downloads
116
Stars
0
Forks
0
Watchers
0
 Releases
Current version
0.1.4
Total releases
1
First release
1980-01-02
Latest release
1980-01-02
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
65
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2026-03-29
Reverse Dependencies
0

 Dependencies

Runtime

faraday-retry
~> 2.3
octokit
~> 9.2
thor
~> 1.3
 Project Readme

umgr

checks CodeQL Advanced

umgr is a declarative account lifecycle tool for managing user account state across platforms with a desired-state workflow.

You declare desired state in a YAML or JSON configuration file, and umgr compares it with tracked current state to detect drift, import current users, and generate/apply changes.

Motivation

Organizations often need to keep user accounts consistent across many systems. umgr provides one interface to define account intent and reconcile drift.

Examples of platforms include Google Workspace, Atlassian, GitHub, Slack, AWS, Azure, and Sentry. This list is illustrative, not exhaustive.

Interfaces

umgr exposes two interfaces:

  • CLI for operators (built with Thor)
  • Ruby gem API for embedding in larger applications

Core Capabilities

  • Drift detection between desired state and platform/user reality.
  • Import of current users from providers/plugins as a baseline state.
  • Declarative plan/apply workflow for account lifecycle changes.

Provider/Plugin Model

Each platform integration is implemented as a provider/plugin.

  • Providers implement platform-specific sync logic with SDKs or REST APIs.
  • Providers can expose additional provider-specific options on top of the core interface.
  • The first built-in test provider is echo, which returns a fake user account by echoing configured attributes.

Provider authoring guide: docs/provider-authoring.md

DSL compile guide: docs/dsl-compile.md

Website:

Configuration and State

  • Configuration formats: YAML and JSON
  • Model: desired state (config) + current state reference (tool-managed state)
  • Core identity convention: provider.type.name

CLI Example

umgr init
umgr validate --config examples/users.yml
umgr plan --config examples/users.yml
umgr apply --config examples/users.yml
umgr show

DSL Compile Workflow

umgr.rb is compile-time input only. Runtime commands (validate, plan, apply, import) consume YAML/JSON config, not DSL source directly.

Assignment-only DSL shape:

umgr do
  version = 1
end

resource "echo.user", "alice" do
  team = "platform"
end
umgr compile > umgr.yml
umgr plan --config umgr.yml

Pipeline mode:

umgr compile | umgr plan --config -
umgr compile | umgr apply --config -

Exhaustive configuration examples for umgr.rb, umgr.yml/umgr.yaml, and umgr.json, plus error notes: docs/dsl-compile.md

Ruby API Example

require "umgr"

runner = Umgr::Runner.new
result = runner.dispatch(:plan, config: "examples/users.yml")

puts result[:ok]
puts result.dig(:changeset, :summary)

Private Installation (GitHub Packages)

umgr pre-releases are published to GitHub Packages (rubygems).

  1. Create a GitHub token with:
  • read:packages
  • repo (required when the package repository is private)
  1. Configure RubyGems credentials:
mkdir -p ~/.gem
cat > ~/.gem/credentials <<'EOF'
---
:github: Bearer <YOUR_GITHUB_TOKEN>
EOF
chmod 0600 ~/.gem/credentials
  1. Install directly:
gem install umgr \
  --source "https://rubygems.pkg.github.com/gowda" \
  --key github

Gemfile Usage (Private Package)

source "https://rubygems.org"
source "https://rubygems.pkg.github.com/gowda" do
  gem "umgr"
end

Configure Bundler authentication for GitHub Packages:

bundle config set --global rubygems.pkg.github.com "<GITHUB_USERNAME>:<YOUR_GITHUB_TOKEN>"

Public RubyGems Publishing (OIDC)

Stable releases are published to RubyGems via OIDC trusted publishing.

  • Public gem: https://rubygems.org/gems/umgr
  • Workflow: .github/workflows/publish-rubygems.yml
  • Publishing details: docs/release-rubygems.md