lotus/cli/auth.go

package cli

import (
	"errors"
	"fmt"

	"gopkg.in/urfave/cli.v2"

	"github.com/filecoin-project/lotus/api"
)

var authCmd = &cli.Command{
	Name:  "auth",
	Usage: "Manage RPC permissions",
	Subcommands: []*cli.Command{
		authCreateAdminToken,
	},
}

var authCreateAdminToken = &cli.Command{
	Name:  "create-token",
	Usage: "Create token",
	Flags: []cli.Flag{
		&cli.StringFlag{
			Name:  "perm",
			Usage: "permission to assign to the token, one of: read, write, sign, admin",
		},
	},

	Action: func(cctx *cli.Context) error {
		napi, closer, err := GetFullNodeAPI(cctx)
		if err != nil {
			return err
		}
		defer closer()

		ctx := ReqContext(cctx)

		if !cctx.IsSet("perm") {
			return errors.New("--perm flag not set")
		}

		perm := cctx.String("perm")
		idx := -1
		for i, p := range api.AllPermissions {
			if perm == p {
				idx = i
			}
		}

		if idx == -1 {
			return fmt.Errorf("--perm flag has to be one of: %s", api.AllPermissions)
		}

		// TODO: Probably tell the user how powerful this token is

		token, err := napi.AuthNew(ctx, api.AllPermissions[:idx])
		if err != nil {
			return err
		}

		// TODO: Log in audit log when it is implemented

		fmt.Println(string(token))
		return nil
	},
}
Basic single node UI 2019-09-18 17:53:48 +00:00			`package cli`

			`import (`
Add parameters for creating tokens License: MIT Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2019-11-14 20:19:52 +00:00			`"errors"`
Basic single node UI 2019-09-18 17:53:48 +00:00			`"fmt"`

			`"gopkg.in/urfave/cli.v2"`

Cleanup imports after rename License: MIT Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2019-10-18 04:47:41 +00:00			`"github.com/filecoin-project/lotus/api"`
Basic single node UI 2019-09-18 17:53:48 +00:00			`)`

			`var authCmd = &cli.Command{`
			`Name: "auth",`
			`Usage: "Manage RPC permissions",`
			`Subcommands: []*cli.Command{`
			`authCreateAdminToken,`
			`},`
			`}`

			`var authCreateAdminToken = &cli.Command{`
Add parameters for creating tokens License: MIT Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2019-11-14 20:19:52 +00:00			`Name: "create-token",`
			`Usage: "Create token",`
			`Flags: []cli.Flag{`
			`&cli.StringFlag{`
			`Name: "perm",`
			`Usage: "permission to assign to the token, one of: read, write, sign, admin",`
			`},`
			`},`

Basic single node UI 2019-09-18 17:53:48 +00:00			`Action: func(cctx *cli.Context) error {`
fix websocket closing 2019-10-03 18:12:30 +00:00			`napi, closer, err := GetFullNodeAPI(cctx)`
Basic single node UI 2019-09-18 17:53:48 +00:00			`if err != nil {`
			`return err`
			`}`
fix websocket closing 2019-10-03 18:12:30 +00:00			`defer closer()`

Basic single node UI 2019-09-18 17:53:48 +00:00			`ctx := ReqContext(cctx)`

Add parameters for creating tokens License: MIT Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2019-11-14 20:19:52 +00:00			`if !cctx.IsSet("perm") {`
			`return errors.New("--perm flag not set")`
			`}`

			`perm := cctx.String("perm")`
			`idx := -1`
			`for i, p := range api.AllPermissions {`
			`if perm == p {`
			`idx = i`
			`}`
			`}`

			`if idx == -1 {`
			`return fmt.Errorf("--perm flag has to be one of: %s", api.AllPermissions)`
			`}`

Basic single node UI 2019-09-18 17:53:48 +00:00			`// TODO: Probably tell the user how powerful this token is`

Add parameters for creating tokens License: MIT Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2019-11-14 20:19:52 +00:00			`token, err := napi.AuthNew(ctx, api.AllPermissions[:idx])`
Basic single node UI 2019-09-18 17:53:48 +00:00			`if err != nil {`
			`return err`
			`}`

			`// TODO: Log in audit log when it is implemented`

			`fmt.Println(string(token))`
			`return nil`
			`},`
			`}`