porter/cli/cmd/auth.go

package cmd

import (
	"context"
	"fmt"
	"os"

	"github.com/fatih/color"

	"github.com/porter-dev/porter/cli/cmd/api"
	"github.com/porter-dev/porter/cli/cmd/utils"
	"github.com/spf13/cobra"
)

var authCmd = &cobra.Command{
	Use:   "auth",
	Short: "Commands for authenticating to a Porter server",
}

var loginCmd = &cobra.Command{
	Use:   "login",
	Short: "Authorizes a user for a given Porter server",
	Run: func(cmd *cobra.Command, args []string) {
		err := login()

		if err != nil {
			color.Red("Error logging in:", err.Error())
			os.Exit(1)
		}
	},
}

var registerCmd = &cobra.Command{
	Use:   "register",
	Short: "Creates a user for a given Porter server",
	Run: func(cmd *cobra.Command, args []string) {
		err := register()

		if err != nil {
			color.Red("Error registering:", err.Error())
			os.Exit(1)
		}
	},
}

var logoutCmd = &cobra.Command{
	Use:   "logout",
	Short: "Logs a user out of a given Porter server",
	Run: func(cmd *cobra.Command, args []string) {
		err := checkLoginAndRun(args, logout)

		if err != nil {
			os.Exit(1)
		}
	},
}

var token string = ""

func init() {
	rootCmd.AddCommand(authCmd)

	authCmd.AddCommand(loginCmd)
	authCmd.AddCommand(registerCmd)
	authCmd.AddCommand(logoutCmd)

	authCmd.PersistentFlags().StringVar(
		&host,
		"host",
		getHost(),
		"host url of Porter instance",
	)

	loginCmd.PersistentFlags().StringVar(
		&token,
		"token",
		"",
		"bearer token for authentication",
	)
}

func login() error {
	var client *api.Client

	if token != "" {
		// set the token in config
		err := setToken(token)

		if err != nil {
			return err
		}

		client = api.NewClientWithToken(getHost()+"/api", token)

		user, _ := client.AuthCheck(context.Background())

		if user == nil {
			color.Red("Invalid token.")
			return nil
		}
	} else {
		client = api.NewClient(getHost()+"/api", "cookie.json")
	}

	user, _ := client.AuthCheck(context.Background())

	if user != nil {
		color.Yellow("You are already logged in. If you'd like to log out, run \"porter auth logout\".")
		return nil
	}

	var username, pw string

	fmt.Println("Please log in with an email and password:")

	username, err := utils.PromptPlaintext("Email: ")

	if err != nil {
		return err
	}

	pw, err = utils.PromptPassword("Password: ")

	if err != nil {
		return err
	}

	_user, err := client.Login(context.Background(), &api.LoginRequest{
		Email:    username,
		Password: pw,
	})

	if err != nil {
		return err
	}

	color.New(color.FgGreen).Println("Successfully logged in!")

	// if the login was token-based, decode the claims to get the token
	if token != "" {
		projID, err := api.GetProjectIDFromToken(token)

		if err != nil {
			return err
		}

		setProject(projID)
	} else {
		// get a list of projects, and set the current project
		projects, err := client.ListUserProjects(context.Background(), _user.ID)

		if err != nil {
			return err
		}

		if len(projects) > 0 {
			setProject(projects[0].ID)
		}
	}

	return nil
}

func register() error {
	fmt.Println("Please register your admin account with an email and password:")

	username, err := utils.PromptPlaintext("Email: ")

	if err != nil {
		return err
	}

	pw, err := utils.PromptPasswordWithConfirmation()

	if err != nil {
		return err
	}

	client := GetAPIClient()

	resp, err := client.CreateUser(context.Background(), &api.CreateUserRequest{
		Email:    username,
		Password: pw,
	})

	if err != nil {
		return err
	}

	color.New(color.FgGreen).Printf("Created user with email %s and id %d\n", username, resp.ID)

	return nil
}

func logout(user *api.AuthCheckResponse, client *api.Client, args []string) error {
	err := client.Logout(context.Background())

	if err != nil {
		return err
	}

	color.Green("Successfully logged out")

	return nil
}