storj/cmd/certificates/main.go

// Copyright (C) 2019 Storj Labs, Inc.
// See LICENSE for copying information.

package main

import (
	"github.com/spf13/cobra"
	"go.uber.org/zap"

	"storj.io/storj/internal/fpath"
	"storj.io/storj/pkg/certificates"
	"storj.io/storj/pkg/cfgstruct"
	"storj.io/storj/pkg/identity"
	"storj.io/storj/pkg/process"
	"storj.io/storj/pkg/server"
)

type batchCfg struct {
	EmailsPath string `help:"optional path to a list of emails, delimited by <delimiter>, for batch processing"`
	Delimiter  string `help:"delimiter to split emails loaded from <emails-path> on (e.g. comma, new-line)" default:"\n"`
}

var (
	rootCmd = &cobra.Command{
		Use:   "certificates",
		Short: "Certificate request signing",
	}

	runCmd = &cobra.Command{
		Use:   "run",
		Short: "Run a certificate signing server",
		RunE:  cmdRun,
	}

	config struct {
		batchCfg
		CA       identity.CASetupConfig
		Identity identity.SetupConfig
		Server   struct { // workaround server.Config change
			Identity identity.Config
			server.Config
		}
		Signer     certificates.CertServerConfig
		All        bool   `help:"print the all authorizations for auth info/export subcommands" default:"false"`
		Out        string `help:"output file path for auth export subcommand; if \"-\", will use STDOUT" default:"-"`
		ShowTokens bool   `help:"if true, token strings will be printed for auth info command" default:"false"`
		Overwrite  bool   `default:"false" help:"if true ca, identity, and authorization db will be overwritten/truncated"`
	}

	confDir     string
	identityDir string
)

func cmdRun(cmd *cobra.Command, args []string) error {
	ctx := process.Ctx(cmd)

	identity, err := config.Server.Identity.Load()
	if err != nil {
		zap.S().Fatal(err)
	}

	return config.Server.Run(ctx, identity, nil, config.Signer)
}

func main() {
	defaultConfDir := fpath.ApplicationDir("storj", "cert-signing")
	defaultIdentityDir := fpath.ApplicationDir("storj", "identity", "certificates")
	cfgstruct.SetupFlag(zap.L(), rootCmd, &confDir, "config-dir", defaultConfDir, "main directory for certificates configuration")
	//cfgstruct.SetupFlag(zap.L(), rootCmd, &identityDir, "identity-dir", fpath.ApplicationDir("storj", "identity", "bootstrap"), "main directory for bootstrap identity credentials")
	rootCmd.PersistentFlags().StringVar(&identityDir, "identity-dir", defaultIdentityDir, "main directory for storagenode identity credentials")
	defaults := cfgstruct.DefaultsFlag(rootCmd)

	rootCmd.AddCommand(authCmd)
	rootCmd.AddCommand(runCmd)
	rootCmd.AddCommand(setupCmd)
	rootCmd.AddCommand(signCmd)
	rootCmd.AddCommand(verifyCmd)
	rootCmd.AddCommand(claimsCmd)
	claimsCmd.AddCommand(claimsExportCmd)
	claimsCmd.AddCommand(claimDeleteCmd)
	authCmd.AddCommand(authCreateCmd)
	authCmd.AddCommand(authInfoCmd)
	authCmd.AddCommand(authExportCmd)

	cfgstruct.Bind(authCreateCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir))
	cfgstruct.Bind(authInfoCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir))
	cfgstruct.Bind(authExportCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir))
	cfgstruct.Bind(runCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir), cfgstruct.IdentityDir(identityDir))
	cfgstruct.BindSetup(setupCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir), cfgstruct.IdentityDir(identityDir))
	cfgstruct.Bind(signCmd.Flags(), &signCfg, defaults, cfgstruct.ConfDir(confDir), cfgstruct.IdentityDir(identityDir))
	cfgstruct.Bind(verifyCmd.Flags(), &verifyCfg, defaults, cfgstruct.ConfDir(confDir), cfgstruct.IdentityDir(identityDir))
	cfgstruct.Bind(claimsExportCmd.Flags(), &claimsExportCfg, defaults, cfgstruct.ConfDir(confDir))
	cfgstruct.Bind(claimDeleteCmd.Flags(), &claimsDeleteCfg, defaults, cfgstruct.ConfDir(confDir))

	process.Exec(rootCmd)
}
Improve cert signing integration test+: (#997) 2019-01-11 14:59:35 +00:00			`// Copyright (C) 2019 Storj Labs, Inc.`
CSR service (part 1): authorizations (#906) 2018-12-20 18:29:05 +00:00			`// See LICENSE for copying information.`

			`package main`

			`import (`
			`"github.com/spf13/cobra"`
certificates config and --certs-dir fixes (#1093) 2019-01-22 12:35:48 +00:00			`"go.uber.org/zap"`
CSR service (part 1): authorizations (#906) 2018-12-20 18:29:05 +00:00
			`"storj.io/storj/internal/fpath"`
			`"storj.io/storj/pkg/certificates"`
			`"storj.io/storj/pkg/cfgstruct"`
certificates config and --certs-dir fixes (#1093) 2019-01-22 12:35:48 +00:00			`"storj.io/storj/pkg/identity"`
CSR service (part 1): authorizations (#906) 2018-12-20 18:29:05 +00:00			`"storj.io/storj/pkg/process"`
pkg/provider: split into pkg/server, pkg/identity (#953) 2019-01-02 10:23:25 +00:00			`"storj.io/storj/pkg/server"`
CSR service (part 1): authorizations (#906) 2018-12-20 18:29:05 +00:00			`)`

			`type batchCfg struct {`
			EmailsPath string `help:"optional path to a list of emails, delimited by <delimiter>, for batch processing"`
			Delimiter string `help:"delimiter to split emails loaded from <emails-path> on (e.g. comma, new-line)" default:"\n"`
			`}`

			`var (`
			`rootCmd = &cobra.Command{`
			`Use: "certificates",`
			`Short: "Certificate request signing",`
			`}`

			`runCmd = &cobra.Command{`
			`Use: "run",`
			`Short: "Run a certificate signing server",`
			`RunE: cmdRun,`
			`}`

certificates config and --certs-dir fixes (#1093) 2019-01-22 12:35:48 +00:00			`config struct {`
			`batchCfg`
Separate identity from server config (#1138) 2019-01-25 14:54:54 +00:00			`CA identity.CASetupConfig`
			`Identity identity.SetupConfig`
			`Server struct { // workaround server.Config change`
			`Identity identity.Config`
			`server.Config`
			`}`
certificates config and --certs-dir fixes (#1093) 2019-01-22 12:35:48 +00:00			`Signer certificates.CertServerConfig`
			All bool `help:"print the all authorizations for auth info/export subcommands" default:"false"`
			Out string `help:"output file path for auth export subcommand; if \"-\", will use STDOUT" default:"-"`
			ShowTokens bool `help:"if true, token strings will be printed for auth info command" default:"false"`
			Overwrite bool `default:"false" help:"if true ca, identity, and authorization db will be overwritten/truncated"`
CSR service (part 1): authorizations (#906) 2018-12-20 18:29:05 +00:00			`}`

Development defaults for configuration (#1430) added --dev command line option, cfgstruct.DevFlag(), and cfgstruct.SetupFlag() 2019-03-12 12:51:06 +00:00			`confDir string`
			`identityDir string`
CSR service (part 1): authorizations (#906) 2018-12-20 18:29:05 +00:00			`)`

identity improvements: (#1215) 2019-02-06 16:40:55 +00:00			`func cmdRun(cmd *cobra.Command, args []string) error {`
			`ctx := process.Ctx(cmd)`

			`identity, err := config.Server.Identity.Load()`
			`if err != nil {`
			`zap.S().Fatal(err)`
			`}`

			`return config.Server.Run(ctx, identity, nil, config.Signer)`
			`}`

			`func main() {`
Development defaults for configuration (#1430) added --dev command line option, cfgstruct.DevFlag(), and cfgstruct.SetupFlag() 2019-03-12 12:51:06 +00:00			`defaultConfDir := fpath.ApplicationDir("storj", "cert-signing")`
			`defaultIdentityDir := fpath.ApplicationDir("storj", "identity", "certificates")`
			`cfgstruct.SetupFlag(zap.L(), rootCmd, &confDir, "config-dir", defaultConfDir, "main directory for certificates configuration")`
			`//cfgstruct.SetupFlag(zap.L(), rootCmd, &identityDir, "identity-dir", fpath.ApplicationDir("storj", "identity", "bootstrap"), "main directory for bootstrap identity credentials")`
certificates config and --certs-dir fixes (#1093) 2019-01-22 12:35:48 +00:00			`rootCmd.PersistentFlags().StringVar(&identityDir, "identity-dir", defaultIdentityDir, "main directory for storagenode identity credentials")`
pkg/cfgstruct: tie defaults to releases (#1787) * tie defaults to releases this change makes it so that by default, the flag defaults are chosen based on whether the build was built as a release build or an ordinary build. release builds by default get release defaults, whereas ordinary builds by default get dev defaults. any binary can have its defaults changed by specifying --defaults=dev or --defaults=release Change-Id: I6d216aa345d211c69ad913159d492fac77b12c64 * make release defaults more clear this change extends cfgstruct structs to support either a 'default' tag, or a pair of 'devDefault' and 'releaseDefault' tags, but not both, for added clarity Change-Id: Ia098be1fa84b932fdfe90a4a4d027ffb95e249c6 * clarify cfgstruct.DefaultsFlag Change-Id: I55f2ff9080ebbc0ce83abf956e085242a92f883e 2019-04-19 19:17:30 +01:00			`defaults := cfgstruct.DefaultsFlag(rootCmd)`
automate certificate signing in storage node setup (#954) 2019-01-04 17:23:23 +00:00
identity improvements: (#1215) 2019-02-06 16:40:55 +00:00			`rootCmd.AddCommand(authCmd)`
automate certificate signing in storage node setup (#954) 2019-01-04 17:23:23 +00:00			`rootCmd.AddCommand(runCmd)`
identity improvements: (#1215) 2019-02-06 16:40:55 +00:00			`rootCmd.AddCommand(setupCmd)`
			`rootCmd.AddCommand(signCmd)`
			`rootCmd.AddCommand(verifyCmd)`
some certificates cmd cleanup: (#1361) 2019-02-26 08:55:52 +00:00			`rootCmd.AddCommand(claimsCmd)`
			`claimsCmd.AddCommand(claimsExportCmd)`
			`claimsCmd.AddCommand(claimDeleteCmd)`
identity improvements: (#1215) 2019-02-06 16:40:55 +00:00			`authCmd.AddCommand(authCreateCmd)`
			`authCmd.AddCommand(authInfoCmd)`
			`authCmd.AddCommand(authExportCmd)`
Separate identity from server config (#1138) 2019-01-25 14:54:54 +00:00
pkg/cfgstruct: tie defaults to releases (#1787) * tie defaults to releases this change makes it so that by default, the flag defaults are chosen based on whether the build was built as a release build or an ordinary build. release builds by default get release defaults, whereas ordinary builds by default get dev defaults. any binary can have its defaults changed by specifying --defaults=dev or --defaults=release Change-Id: I6d216aa345d211c69ad913159d492fac77b12c64 * make release defaults more clear this change extends cfgstruct structs to support either a 'default' tag, or a pair of 'devDefault' and 'releaseDefault' tags, but not both, for added clarity Change-Id: Ia098be1fa84b932fdfe90a4a4d027ffb95e249c6 * clarify cfgstruct.DefaultsFlag Change-Id: I55f2ff9080ebbc0ce83abf956e085242a92f883e 2019-04-19 19:17:30 +01:00			`cfgstruct.Bind(authCreateCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir))`
			`cfgstruct.Bind(authInfoCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir))`
			`cfgstruct.Bind(authExportCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir))`
			`cfgstruct.Bind(runCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir), cfgstruct.IdentityDir(identityDir))`
			`cfgstruct.BindSetup(setupCmd.Flags(), &config, defaults, cfgstruct.ConfDir(confDir), cfgstruct.IdentityDir(identityDir))`
			`cfgstruct.Bind(signCmd.Flags(), &signCfg, defaults, cfgstruct.ConfDir(confDir), cfgstruct.IdentityDir(identityDir))`
			`cfgstruct.Bind(verifyCmd.Flags(), &verifyCfg, defaults, cfgstruct.ConfDir(confDir), cfgstruct.IdentityDir(identityDir))`
			`cfgstruct.Bind(claimsExportCmd.Flags(), &claimsExportCfg, defaults, cfgstruct.ConfDir(confDir))`
			`cfgstruct.Bind(claimDeleteCmd.Flags(), &claimsDeleteCfg, defaults, cfgstruct.ConfDir(confDir))`
CSR service (part 1): authorizations (#906) 2018-12-20 18:29:05 +00:00
			`process.Exec(rootCmd)`
			`}`