feat(auth): add tokens api

Author: duanhongyi

cmd/auth.go

@@ -1,90 +1,11 @@
 package cmd
 
 import (
-	"errors"
-	"fmt"
-	"net/url"
-	"os/exec"
-	"runtime"
-	"time"
-
 	drycc "github.com/drycc/controller-sdk-go"
-	"github.com/drycc/controller-sdk-go/api"
 	"github.com/drycc/controller-sdk-go/auth"
 	"github.com/drycc/workflow-cli/settings"
 )
 
-func (d *DryccCmd) doLogin(s settings.Settings, username, password string) error {
-	key, err := auth.Login(s.Client, username, password)
-	if d.checkAPICompatibility(s.Client, err) != nil {
-		return err
-	}
-	if err != nil {
-		return nil
-	}
-	if username == "" || password == "" {
-		fmt.Printf("Opening browser to %s\n", key)
-		d.Print("Waiting for login... ")
-		err = d.openBrower(key)
-		if err != nil {
-			d.Print("Cannot open browser, please visit the website in yourself")
-		}
-		u, err := url.Parse(key)
-		if err != nil {
-			return err
-		}
-		key = u.Query()["key"][0]
-	}
-	quit := progress(d.WOut)
-	d.doToken(s, key)
-	quit <- true
-	<-quit
-	return nil
-}
-
-func (d *DryccCmd) openBrower(URL string) error {
-	var commands = map[string]string{
-		"windows": "start",
-		"darwin":  "open",
-		"linux":   "xdg-open",
-	}
-	run, ok := commands[runtime.GOOS]
-	if !ok {
-		return errors.New("warning: Cannot open browser")
-	}
-	cmd := exec.Command(run, URL)
-	err := cmd.Start()
-	if err != nil {
-		return errors.New("warning: Cannot open browser")
-	}
-
-	return nil
-}
-
-func (d *DryccCmd) doToken(s settings.Settings, key string) error {
-	var token api.AuthTokenResponse
-	for i := 0; i <= 120; i++ {
-		token, _ = auth.Token(s.Client, key)
-		time.Sleep(time.Duration(5) * time.Second)
-		if token.Token != "" && token.Username != "" {
-			break
-		}
-	}
-	if token.Token == "" || token.Token == "fail" {
-		d.Printf("Logged fail")
-	} else {
-		s.Client.Token = token.Token
-		s.Username = token.Username
-		filename, err := s.Save(d.ConfigFile)
-		if err != nil {
-			return nil
-		}
-		d.Printf("Logged in as %s\n", token.Username)
-		d.Printf("Configuration file written to %s\n", filename)
-	}
-	return nil
-}
-
 // Login to a Drycc controller.
 func (d *DryccCmd) Login(controller string, sslVerify bool, username, password string) error {
 	c, err := drycc.New(sslVerify, controller, "")
@@ -100,8 +21,21 @@ func (d *DryccCmd) Login(controller string, sslVerify bool, username, password s
 		return err
 	}
 
+	token, err := d.TokensAdd(c, username, password, "workflow-cli", "yes", false)
+	if err != nil {
+		return err
+	}
+	// save settings
 	s := settings.Settings{Client: c}
-	return d.doLogin(s, username, password)
+	s.Client.Token = token.Token
+	s.Username = token.Username
+	filename, err := s.Save(d.ConfigFile)
+	if err != nil {
+		return err
+	}
+	d.Printf("Logged in as %s\n", token.Username)
+	d.Printf("Configuration file written to %s\n", filename)
+	return nil
 }
 
 // Logout from a Drycc controller.

cmd/cmd.go

@@ -4,6 +4,7 @@ import (
 	"fmt"
 	"io"
 
+	drycc "github.com/drycc/controller-sdk-go"
 	"github.com/drycc/controller-sdk-go/api"
 )
 
@@ -23,6 +24,9 @@ type Commander interface {
 	Login(string, bool, string, string) error
 	Logout() error
 	Whoami(bool) error
+	TokensList(int) error
+	TokensAdd(*drycc.Client, string, string, string, string, bool) (*api.AuthTokenResponse, error)
+	TokensRemove(string, string) error
 	BuildsList(string, int) error
 	BuildsCreate(string, string, string, string, string) error
 	CanaryInfo(string) error

cmd/token.go

@@ -0,0 +1,166 @@
+package cmd
+
+import (
+	"errors"
+	"fmt"
+	"net/url"
+	"os/exec"
+	"runtime"
+	"time"
+
+	drycc "github.com/drycc/controller-sdk-go"
+	"github.com/drycc/controller-sdk-go/api"
+	"github.com/drycc/controller-sdk-go/auth"
+	"github.com/drycc/controller-sdk-go/tokens"
+	"github.com/drycc/workflow-cli/settings"
+)
+
+func (d *DryccCmd) TokensList(results int) error {
+	s, err := settings.Load(d.ConfigFile)
+
+	if err != nil {
+		return err
+	}
+
+	if results == defaultLimit {
+		results = s.Limit
+	}
+
+	tokens, _, err := tokens.List(s.Client, results)
+	if d.checkAPICompatibility(s.Client, err) != nil {
+		return err
+	}
+	table := d.getDefaultFormatTable([]string{"UUID", "OWNER", "ALIAS", "KEY", "CREATE", "UPDATED"})
+	for _, token := range tokens {
+		table.Append([]string{
+			token.UUID,
+			token.Owner,
+			safeGetString(token.Alias),
+			token.Key,
+			token.Created,
+			token.Updated,
+		})
+	}
+	table.Render()
+	return nil
+}
+
+func (d *DryccCmd) TokensAdd(c *drycc.Client, username, password, alias, confirm string, render bool) (*api.AuthTokenResponse, error) {
+	if c == nil {
+		s, err := settings.Load(d.ConfigFile)
+
+		if err != nil {
+			return nil, err
+		}
+		c = s.Client
+	}
+
+	if confirm == "" {
+		d.Printf(` !    WARNING: Make sure to copy your token now.
+ !    You won't be able to see it again, please confirm whether to continue.
+ !    To proceed, type "yes" !
+
+> `)
+
+		fmt.Scanln(&confirm)
+	}
+
+	if confirm != "yes" {
+		return nil, fmt.Errorf("cancel the creation of %s's token, aborting", username)
+	}
+
+	key, err := auth.Login(c, username, password)
+	if d.checkAPICompatibility(c, err) != nil {
+		return nil, err
+	}
+	if err != nil {
+		return nil, err
+	}
+	if username == "" || password == "" {
+		fmt.Printf("Opening browser to %s\n", key)
+		d.Print("Waiting for login... ")
+		err = d.openBrower(key)
+		if err != nil {
+			d.Print("Cannot open browser, please visit the website in yourself")
+		}
+		u, err := url.Parse(key)
+		if err != nil {
+			return nil, err
+		}
+		key = u.Query()["key"][0]
+	}
+	quit := progress(d.WOut)
+	token, err := d.doToken(c, key, alias)
+	quit <- true
+	<-quit
+	if render {
+		table := d.getDefaultFormatTable([]string{"USERNAME", "TOKEN"})
+		table.Append([]string{token.Username, token.Token})
+		table.Render()
+	}
+	return token, err
+}
+
+func (d *DryccCmd) TokensRemove(id, confirm string) error {
+	s, err := settings.Load(d.ConfigFile)
+
+	if err != nil {
+		return err
+	}
+
+	if confirm == "" {
+		d.Printf(` !    WARNING: You cannot undo this action.
+ !    Any using this token will no longer be able to access the Controller API.
+ !    To proceed, type "yes" !
+
+> `)
+
+		fmt.Scanln(&confirm)
+	}
+
+	if confirm != "yes" {
+		d.Println("skip")
+		return nil
+	}
+
+	err = tokens.Delete(s.Client, id)
+	if err != nil {
+		return err
+	}
+	d.Println("done")
+	return nil
+}
+
+func (d *DryccCmd) openBrower(URL string) error {
+	var commands = map[string]string{
+		"windows": "start",
+		"darwin":  "open",
+		"linux":   "xdg-open",
+	}
+	run, ok := commands[runtime.GOOS]
+	if !ok {
+		return errors.New("warning: Cannot open browser")
+	}
+	cmd := exec.Command(run, URL)
+	err := cmd.Start()
+	if err != nil {
+		return errors.New("warning: Cannot open browser")
+	}
+
+	return nil
+}
+
+func (d *DryccCmd) doToken(c *drycc.Client, key, alias string) (*api.AuthTokenResponse, error) {
+	var token api.AuthTokenResponse
+	for i := 0; i <= 120; i++ {
+		token, _ = auth.Token(c, key, alias)
+		time.Sleep(time.Duration(5) * time.Second)
+		if token.Token != "" && token.Username != "" {
+			break
+		}
+	}
+	if token.Token == "" || token.Token == "fail" {
+		return nil, errors.New("logged fail")
+	}
+	return &token, nil
+}

cmd/token_test.go

@@ -0,0 +1,79 @@
+package cmd
+
+import (
+	"bytes"
+	"fmt"
+	"net/http"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+
+	"github.com/drycc/workflow-cli/pkg/testutil"
+)
+
+func TestTokensList(t *testing.T) {
+	t.Parallel()
+	cf, server, err := testutil.NewTestServerAndClient()
+	if err != nil {
+		t.Fatal(err)
+	}
+	defer server.Close()
+	var b bytes.Buffer
+	cmdr := DryccCmd{WOut: &b, ConfigFile: cf}
+
+	server.Mux.HandleFunc("/v2/tokens/", func(w http.ResponseWriter, _ *http.Request) {
+		testutil.SetHeaders(w)
+		fmt.Fprintf(w, `{
+			"count": 2,
+			"next": null,
+			"previous": null,
+			"results": [
+				{
+					"uuid": "f71e3b18-e702-409e-bd7f-8fb0a66d7b12",
+					"owner": "test",
+					"alias": "",
+					"fuzzy_key": "c8e74fa4cbf...e4954d602ec5ed19ba",
+					"created": "2023-04-18T00:00:00UTC",
+					"updated": "2023-04-19T00:00:00UTC"
+				},
+				{
+					"uuid": "f71e3b18-e702-499e-bd7f-8fb0a66d7b12",
+					"owner": "test",
+					"alias": "test",
+					"fuzzy_key": "c8e74fa4cbf...e4954d60cec5ed19ba",
+					"created": "2023-04-18T10:00:00UTC",
+					"updated": "2023-04-19T12:00:00UTC"
+				}
+			]
+		}`)
+	})
+
+	err = cmdr.TokensList(-1)
+	assert.NoError(t, err)
+
+	assert.Equal(t, b.String(), `UUID                                    OWNER    ALIAS     KEY                                 CREATE                    UPDATED                
+f71e3b18-e702-409e-bd7f-8fb0a66d7b12    test     <none>    c8e74fa4cbf...e4954d602ec5ed19ba    2023-04-18T00:00:00UTC    2023-04-19T00:00:00UTC    
+f71e3b18-e702-499e-bd7f-8fb0a66d7b12    test     test      c8e74fa4cbf...e4954d60cec5ed19ba    2023-04-18T10:00:00UTC    2023-04-19T12:00:00UTC    
+`, "output")
+}
+
+func TestTokenDelete(t *testing.T) {
+	t.Parallel()
+	cf, server, err := testutil.NewTestServerAndClient()
+	if err != nil {
+		t.Fatal(err)
+	}
+	defer server.Close()
+	var b bytes.Buffer
+	cmdr := DryccCmd{WOut: &b, ConfigFile: cf}
+
+	server.Mux.HandleFunc("/v2/tokens/f71e3b18-e702-499e-bd7f-8fb0a66d7b12/", func(w http.ResponseWriter, r *http.Request) {
+		testutil.SetHeaders(w)
+		w.WriteHeader(204)
+	})
+
+	err = cmdr.TokensRemove("f71e3b18-e702-499e-bd7f-8fb0a66d7b12", "yes")
+
+	assert.NoError(t, err)
+	assert.Equal(t, b.String(), "done\n")
+}

drycc.go

@@ -67,6 +67,7 @@ Subcommands, use 'drycc help [subcommand]' to learn more:
   tags          manage tags for application containers
   tls           manage TLS settings for applications
   users         manage users
+  tokens        manage tokens
   version       display client version
   services      manage services for your applications
   routes        manage routes for your applications
@@ -166,6 +167,8 @@ Use 'git push drycc main' to deploy to an application.
 		err = parser.TLS(argv, &cmdr)
 	case "users":
 		err = parser.Users(argv, &cmdr)
+	case "tokens":
+		err = parser.Tokens(argv, &cmdr)
 	case "version":
 		err = parser.Version(argv, &cmdr)
 	case "volumes":