auths-cli 0.0.1-rc.8

Command-line interface for Auths decentralized identity system
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99

use std::path::Path;
use std::sync::Arc;

use anyhow::{Context, Result};
use auths_core::config::EnvironmentConfig;
use auths_core::signing::PassphraseProvider;
use auths_infra_http::{HttpGistPublisher, HttpGitHubOAuthProvider, HttpRegistryClaimClient};
use auths_sdk::workflows::platform::{GitHubClaimConfig, claim_github_identity};
use chrono::Utc;
use clap::{Parser, Subcommand};
use console::style;

use crate::factories::storage::build_auths_context;
use crate::ux::format::{JsonResponse, is_json_mode};

use super::register::DEFAULT_REGISTRY_URL;

const DEFAULT_GITHUB_CLIENT_ID: &str = "Ov23lio2CiTHBjM2uIL4";

fn github_client_id() -> String {
    std::env::var("AUTHS_GITHUB_CLIENT_ID").unwrap_or_else(|_| DEFAULT_GITHUB_CLIENT_ID.to_string())
}

#[derive(Parser, Debug, Clone)]
#[command(about = "Add a platform claim to an already-registered identity.")]
pub struct ClaimCommand {
    #[command(subcommand)]
    pub platform: ClaimPlatform,

    #[arg(long, default_value = DEFAULT_REGISTRY_URL)]
    pub registry: String,
}

#[derive(Subcommand, Debug, Clone)]
pub enum ClaimPlatform {
    /// Link your GitHub account to your identity.
    Github,
}

pub fn handle_claim(
    cmd: &ClaimCommand,
    repo_path: &Path,
    passphrase_provider: Arc<dyn PassphraseProvider + Send + Sync>,
    env_config: &EnvironmentConfig,
) -> Result<()> {
    let ctx = build_auths_context(repo_path, env_config, Some(passphrase_provider))
        .context("Failed to build auths context")?;

    let oauth = HttpGitHubOAuthProvider::new();
    let publisher = HttpGistPublisher::new();
    let registry_client = HttpRegistryClaimClient::new();

    let config = GitHubClaimConfig {
        client_id: github_client_id(),
        registry_url: cmd.registry.clone(),
        scopes: "read:user gist".to_string(),
    };

    let on_device_code = |code: &auths_core::ports::platform::DeviceCodeResponse| {
        println!();
        println!(
            "  Enter this code: {}",
            style(&code.user_code).bold().cyan()
        );
        println!("  At: {}", style(&code.verification_uri).cyan());
        println!();
        if let Err(e) = open::that(&code.verification_uri) {
            println!(
                "  {}",
                style(format!("Could not open browser: {e}")).yellow()
            );
            println!("  Please open the URL above manually.");
        } else {
            println!("  Browser opened — waiting for authorization...");
        }
    };

    let rt = tokio::runtime::Runtime::new().context("failed to create async runtime")?;
    let response = rt
        .block_on(claim_github_identity(
            &oauth,
            &publisher,
            &registry_client,
            &ctx,
            config,
            Utc::now(),
            &on_device_code,
        ))
        .map_err(|e| anyhow::anyhow!("{}", e))?;

    if is_json_mode() {
        let json_resp = JsonResponse::success("id claim", &response.message);
        json_resp.print()?;
    } else {
        println!("  {}", style(&response.message).green());
    }

    Ok(())
}