mirror of
https://github.com/minio/mc.git
synced 2025-11-26 20:03:05 +03:00
194 lines
5.4 KiB
Go
194 lines
5.4 KiB
Go
/*
|
|
* MinIO Client (C) 2018 MinIO, Inc.
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
|
|
package cmd
|
|
|
|
import (
|
|
"bufio"
|
|
"fmt"
|
|
"os"
|
|
"strings"
|
|
|
|
"github.com/fatih/color"
|
|
"github.com/minio/cli"
|
|
json "github.com/minio/mc/pkg/colorjson"
|
|
"github.com/minio/mc/pkg/probe"
|
|
"github.com/minio/minio/pkg/console"
|
|
"golang.org/x/crypto/ssh/terminal"
|
|
)
|
|
|
|
var adminUserAddCmd = cli.Command{
|
|
Name: "add",
|
|
Usage: "add a new user",
|
|
Action: mainAdminUserAdd,
|
|
Before: setGlobalsFromContext,
|
|
Flags: globalFlags,
|
|
CustomHelpTemplate: `NAME:
|
|
{{.HelpName}} - {{.Usage}}
|
|
|
|
USAGE:
|
|
{{.HelpName}} TARGET ACCESSKEY SECRETKEY
|
|
|
|
ACCESSKEY:
|
|
Also called as username.
|
|
|
|
SECRETKEY:
|
|
Also called as password.
|
|
|
|
FLAGS:
|
|
{{range .VisibleFlags}}{{.}}
|
|
{{end}}
|
|
EXAMPLES:
|
|
1. Add a new user 'foobar' to MinIO server.
|
|
{{.DisableHistory}}
|
|
{{.Prompt}} {{.HelpName}} myminio foobar foo12345
|
|
{{.EnableHistory}}
|
|
2. Add a new user 'foobar' to MinIO server, prompting for keys.
|
|
{{.Prompt}} {{.HelpName}} myminio
|
|
Enter Access Key: foobar
|
|
Enter Secret Key: foobar12345
|
|
3. Add a new user 'foobar' to MinIO server using piped keys.
|
|
{{.DisableHistory}}
|
|
{{.Prompt}} echo -e "foobar\nfoobar12345" | {{.HelpName}} myminio
|
|
{{.EnableHistory}}
|
|
`,
|
|
}
|
|
|
|
// checkAdminUserAddSyntax - validate all the passed arguments
|
|
func checkAdminUserAddSyntax(ctx *cli.Context) {
|
|
argsNr := len(ctx.Args())
|
|
if argsNr > 3 || argsNr < 1 {
|
|
fatalIf(errInvalidArgument().Trace(ctx.Args().Tail()...),
|
|
"Incorrect number of arguments for user add command.")
|
|
}
|
|
}
|
|
|
|
// userMessage container for content message structure
|
|
type userMessage struct {
|
|
op string
|
|
Status string `json:"status"` // TODO: remove this?
|
|
AccessKey string `json:"accessKey,omitempty"`
|
|
SecretKey string `json:"secretKey,omitempty"`
|
|
PolicyName string `json:"policyName,omitempty"`
|
|
UserStatus string `json:"userStatus,omitempty"`
|
|
MemberOf []string `json:"memberOf,omitempty"`
|
|
}
|
|
|
|
func (u userMessage) String() string {
|
|
switch u.op {
|
|
case "list":
|
|
userFieldMaxLen := 9
|
|
accessFieldMaxLen := 20
|
|
policyFieldMaxLen := 20
|
|
|
|
// Create a new pretty table with cols configuration
|
|
return newPrettyTable(" ",
|
|
Field{"UserStatus", userFieldMaxLen},
|
|
Field{"AccessKey", accessFieldMaxLen},
|
|
Field{"PolicyName", policyFieldMaxLen},
|
|
).buildRow(u.UserStatus, u.AccessKey, u.PolicyName)
|
|
case "info":
|
|
return console.Colorize("UserMessage", strings.Join(
|
|
[]string{
|
|
fmt.Sprintf("AccessKey: %s", u.AccessKey),
|
|
fmt.Sprintf("Status: %s", u.UserStatus),
|
|
fmt.Sprintf("PolicyName: %s", u.PolicyName),
|
|
fmt.Sprintf("MemberOf: %s", strings.Join(u.MemberOf, ",")),
|
|
}, "\n"))
|
|
case "remove":
|
|
return console.Colorize("UserMessage", "Removed user `"+u.AccessKey+"` successfully.")
|
|
case "disable":
|
|
return console.Colorize("UserMessage", "Disabled user `"+u.AccessKey+"` successfully.")
|
|
case "enable":
|
|
return console.Colorize("UserMessage", "Enabled user `"+u.AccessKey+"` successfully.")
|
|
case "add":
|
|
return console.Colorize("UserMessage", "Added user `"+u.AccessKey+"` successfully.")
|
|
}
|
|
return ""
|
|
}
|
|
|
|
func (u userMessage) JSON() string {
|
|
u.Status = "success"
|
|
jsonMessageBytes, e := json.MarshalIndent(u, "", " ")
|
|
fatalIf(probe.NewError(e), "Unable to marshal into JSON.")
|
|
|
|
return string(jsonMessageBytes)
|
|
}
|
|
|
|
// fetchUserKeys - returns the access and secret key
|
|
func fetchUserKeys(args cli.Args) (string, string) {
|
|
accessKey := ""
|
|
secretKey := ""
|
|
console.SetColor(cred, color.New(color.FgYellow, color.Italic))
|
|
isTerminal := terminal.IsTerminal(int(os.Stdin.Fd()))
|
|
reader := bufio.NewReader(os.Stdin)
|
|
|
|
argCount := len(args)
|
|
|
|
if argCount == 1 {
|
|
if isTerminal {
|
|
fmt.Printf("%s", console.Colorize(cred, "Enter Access Key: "))
|
|
}
|
|
value, _, _ := reader.ReadLine()
|
|
accessKey = string(value)
|
|
} else {
|
|
accessKey = args.Get(1)
|
|
}
|
|
|
|
if argCount == 1 || argCount == 2 {
|
|
if isTerminal {
|
|
fmt.Printf("%s", console.Colorize(cred, "Enter Secret Key: "))
|
|
bytePassword, _ := terminal.ReadPassword(int(os.Stdin.Fd()))
|
|
fmt.Printf("\n")
|
|
secretKey = string(bytePassword)
|
|
} else {
|
|
value, _, _ := reader.ReadLine()
|
|
secretKey = string(value)
|
|
}
|
|
} else {
|
|
secretKey = args.Get(2)
|
|
}
|
|
|
|
return accessKey, secretKey
|
|
}
|
|
|
|
// mainAdminUserAdd is the handle for "mc admin user add" command.
|
|
func mainAdminUserAdd(ctx *cli.Context) error {
|
|
checkAdminUserAddSyntax(ctx)
|
|
|
|
console.SetColor("UserMessage", color.New(color.FgGreen))
|
|
|
|
// Get the alias parameter from cli
|
|
args := ctx.Args()
|
|
aliasedURL := args.Get(0)
|
|
accessKey, secretKey := fetchUserKeys(args)
|
|
|
|
// Create a new MinIO Admin Client
|
|
client, err := newAdminClient(aliasedURL)
|
|
fatalIf(err, "Unable to initialize admin connection.")
|
|
|
|
fatalIf(probe.NewError(client.AddUser(globalContext, accessKey, secretKey)).Trace(args...), "Unable to add new user")
|
|
|
|
printMsg(userMessage{
|
|
op: "add",
|
|
AccessKey: accessKey,
|
|
SecretKey: secretKey,
|
|
UserStatus: "enabled",
|
|
})
|
|
|
|
return nil
|
|
}
|