Sha256: 2ced4e595143c00eb274cef0829dbf29e628208c31f6d059805496ae48aae271
Contents?: true
Size: 1.8 KB
Versions: 5
Compression:
Stored size: 1.8 KB
Contents
require 'conjur/authn'
require 'conjur/command'
class Conjur::Command::Authn < Conjur::Command
self.prefix = :authn
desc "Logs in and caches credentials to netrc"
long_desc <<-DESC
After successful login, subsequent commands automatically use the cached credentials. To switch users, login again using the new user credentials.
To erase credentials, use the authn:logout command.
If specified, the CAS server URL should be in the form https://<hostname>/v1.
It should be running the CAS RESTful services at the /v1 path
(or other path as specified by this argument).
DESC
command :login do |c|
c.arg_name 'username'
c.flag [:u,:username]
c.arg_name 'password'
c.flag [:p,:password]
c.arg_name 'CAS server'
c.desc 'Specifies a CAS server URL to use for login'
c.flag [:"cas-server"]
c.action do |global_options,options,args|
Conjur::Authn.login(options)
end
end
desc "Obtains an authentication token using the current logged-in user"
command :authenticate do |c|
c.arg_name 'header'
c.desc "Base64 encode the result and format as an HTTP Authorization header"
c.switch [:H,:header]
c.action do |global_options,options,args|
token = Conjur::Authn.authenticate(options)
if options[:header]
puts "Authorization: Token token=\"#{Base64.strict_encode64(token.to_json)}\""
else
puts token
end
end
end
desc "Logs out"
command :logout do |c|
c.action do
Conjur::Authn.delete_credentials
end
end
desc "Prints out the current logged in username"
command :whoami do |c|
c.action do
if creds = Conjur::Authn.read_credentials
puts({account: Conjur::Core::API.conjur_account, username: creds[0]}.to_json)
else
exit_now! 'Not logged in.', -1
end
end
end
end
Version data entries
5 entries across 5 versions & 1 rubygems