ockam_command 0.118.0

End-to-end encryption and mutual authentication for distributed applications.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111

use crate::project::EnrollCommand;
use crate::run::parser::resource::traits::CommandsParser;
use crate::run::parser::resource::utils::parse_cmd_from_args;
use crate::run::parser::resource::{ParsedCommand, ValuesOverrides};
use crate::{color_primary, fmt_info, Command, CommandGlobalOpts, OckamSubcommand};
use async_trait::async_trait;
use colorful::Colorful;
use miette::{miette, Result};
use ockam_node::Context;
use serde::{Deserialize, Serialize};

#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct ProjectEnroll {
    pub ticket: Option<String>,
}

impl ProjectEnroll {
    fn get_subcommand(args: &[String]) -> Result<EnrollCommand> {
        if let OckamSubcommand::Project(cmd) = parse_cmd_from_args(EnrollCommand::NAME, args)? {
            if let crate::project::ProjectSubcommand::Enroll(c) = cmd.subcommand {
                return Ok(*c);
            }
        }
        Err(miette!(format!(
            "Failed to parse {} command",
            color_primary(EnrollCommand::NAME)
        )))
    }
}

#[async_trait]
impl CommandsParser<EnrollCommand> for ProjectEnroll {
    fn parse_commands(self, _overrides: &ValuesOverrides) -> Result<Vec<EnrollCommand>> {
        match self.ticket {
            Some(path_or_contents) => Ok(vec![Self::get_subcommand(&[path_or_contents])?]),
            None => Ok(vec![]),
        }
    }
}

/// This struct supports some additional validation on the EnrollCommand before running it
struct ParsedEnrollCommand {
    command: EnrollCommand,
}

#[async_trait]
impl ParsedCommand for ParsedEnrollCommand {
    /// Before running the enroll command, check if the identity is not already enrolled
    async fn is_valid(&self, _ctx: &Context, opts: &CommandGlobalOpts) -> Result<bool> {
        let identity_name = &self.command.cloud_opts.identity;
        let identity = opts
            .state
            .clone()
            .get_named_identity_or_default(identity_name)
            .await?;
        if let Ok(is_enrolled) = opts.state.is_identity_enrolled(identity_name).await {
            if is_enrolled {
                opts.terminal.write_line(&fmt_info!(
                    "Identity {} is already enrolled",
                    color_primary(identity.name())
                ))?;
                return Ok(false);
            }
        }
        Ok(true)
    }

    async fn run(&self, ctx: &Context, opts: &CommandGlobalOpts) -> Result<()> {
        self.command.clone().async_run(ctx, opts.clone()).await
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use ockam_api::authenticator::one_time_code::OneTimeCode;
    use ockam_api::EnrollmentTicket;
    use std::fs::File;
    use std::io::Write;
    use tempfile::tempdir;

    #[test]
    fn project_enroll_config() {
        let enrollment_ticket = EnrollmentTicket::new(OneTimeCode::new(), None);
        let enrollment_ticket_hex = enrollment_ticket.hex_encoded().unwrap();

        // As contents
        let config = format!("ticket: {enrollment_ticket_hex}");
        let parsed: ProjectEnroll = serde_yaml::from_str(&config).unwrap();
        let cmds = parsed.parse_commands(&ValuesOverrides::default()).unwrap();
        assert_eq!(cmds.len(), 1);
        assert_eq!(
            cmds[0].enrollment_ticket.as_ref().unwrap(),
            &enrollment_ticket
        );

        // As path
        let dir = tempdir().unwrap();
        let file_path = dir.path().join("my.ticket");
        let mut file = File::create(&file_path).unwrap();
        file.write_all(enrollment_ticket_hex.as_bytes()).unwrap();
        let config = format!("ticket: {}", file_path.to_str().unwrap());
        let parsed: ProjectEnroll = serde_yaml::from_str(&config).unwrap();
        let cmds = parsed.parse_commands(&ValuesOverrides::default()).unwrap();
        assert_eq!(cmds.len(), 1);
        assert_eq!(
            cmds[0].enrollment_ticket.as_ref().unwrap(),
            &enrollment_ticket
        );
    }
}