ockam_command 0.150.0

End-to-end encryption and mutual authentication for distributed applications.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344

use std::collections::BTreeMap;

use miette::{miette, IntoDiagnostic, Result};
use ockam_api::colors::color_primary;
use serde::{Deserialize, Serialize};

use crate::node::CreateCommand;
use crate::run::parser::building_blocks::{as_command_args, ArgKey, ArgValue, NamedResources};

use crate::run::parser::resource::utils::parse_cmd_from_args;
use crate::run::parser::resource::Resource;
use crate::service::config::ServicesConfig;
use crate::{node, Command, OckamSubcommand};

#[derive(Debug, Clone, PartialEq, Serialize, Deserialize, Default)]
pub struct Node {
    pub name: Option<ArgValue>,
    #[serde(alias = "skip-is-running-check")]
    pub skip_is_running_check: Option<ArgValue>,
    pub foreground: Option<ArgValue>,
    #[serde(alias = "child-process")]
    pub child_process: Option<ArgValue>,
    #[serde(alias = "exit-on-eof")]
    pub exit_on_eof: Option<ArgValue>,
    #[serde(alias = "tcp-listener-address")]
    pub tcp_listener_address: Option<ArgValue>,
    #[serde(alias = "http-server", alias = "enable-http-server")]
    pub http_server: Option<ArgValue>,
    #[serde(alias = "no-status-endpoint")]
    pub no_status_endpoint: Option<ArgValue>,
    #[serde(alias = "status-endpoint")]
    pub status_endpoint: Option<ArgValue>,
    pub identity: Option<ArgValue>,
    pub project: Option<ArgValue>,
    #[serde(flatten, alias = "launch-config")]
    pub services: Option<Services>,
    #[serde(alias = "opentelemetry-context")]
    pub opentelemetry_context: Option<ArgValue>,
    pub udp: Option<ArgValue>,
    #[serde(alias = "udp-listener-address")]
    pub udp_listener_address: Option<ArgValue>,
    #[serde(alias = "in-memory")]
    pub in_memory: Option<ArgValue>,
}

impl Resource<CreateCommand> for Node {
    const COMMAND_NAME: &'static str = CreateCommand::NAME;

    fn args(self) -> Vec<String> {
        let mut args: BTreeMap<ArgKey, ArgValue> = BTreeMap::new();
        args.insert("started-from-configuration".into(), true.into());
        if let Some(name) = self.name {
            args.insert("name".into(), name);
        }
        if let Some(skip_is_running_check) = self.skip_is_running_check {
            args.insert("skip-is-running-check".into(), skip_is_running_check);
        }
        if let Some(foreground) = self.foreground {
            args.insert("foreground".into(), foreground);
        }
        if let Some(child_process) = self.child_process {
            args.insert("child-process".into(), child_process);
        }
        if let Some(exit_on_eof) = self.exit_on_eof {
            args.insert("exit-on-eof".into(), exit_on_eof);
        }
        if let Some(tcp_listener_address) = self.tcp_listener_address {
            args.insert("tcp-listener-address".into(), tcp_listener_address);
        }
        if let Some(udp_listener_address) = self.udp_listener_address {
            args.insert("udp-listener-address".into(), udp_listener_address);
        }
        if let Some(no_status_endpoint) = self.no_status_endpoint {
            args.insert("no-status-endpoint".into(), no_status_endpoint);
        }
        if let Some(status_endpoint) = self.status_endpoint {
            args.insert("status-endpoint".into(), status_endpoint);
        }
        if let Some(identity) = self.identity {
            args.insert("identity".into(), identity);
        }
        if let Some(project) = self.project {
            args.insert("project".into(), project);
        }
        if let Some(services) = self.services {
            // Because the services is flattened, `self.services` will be Some even if it's not
            // defined in the config, so we need to check if the inner fields are defined first.
            if services.services.is_some() {
                if let Ok(services) = services.into_arg() {
                    if let Ok(services) = serde_json::to_string(&services) {
                        args.insert("services".into(), services.into());
                    }
                }
            }
        }
        if let Some(opentelemetry_context) = self.opentelemetry_context {
            args.insert("opentelemetry-context".into(), opentelemetry_context);
        }
        if let Some(udp) = self.udp {
            args.insert("udp".into(), udp);
        }
        if let Some(in_memory) = self.in_memory {
            args.insert("in-memory".into(), in_memory);
        }

        if args.is_empty() {
            return vec![];
        }

        // Convert the map into a list of cli args
        let mut cmd_args = vec![];
        // Remove "name" from the arguments and use it as a positional argument
        if let Some(ArgValue::String(name)) = args.remove(&Self::NAME_ARG.into()) {
            cmd_args.push(name.to_string());
        }
        cmd_args.extend(as_command_args(args));
        cmd_args
    }
}

impl Node {
    pub const NAME_ARG: &'static str = "name";

    /// Return the node name if defined
    pub fn name(&self) -> Option<String> {
        self.name
            .clone()
            .map(|v| match v {
                ArgValue::String(s) => Some(s),
                _ => None,
            })
            .unwrap_or(None)
    }

    /// Return the identity name if defined
    pub fn identity(&self) -> Option<String> {
        self.identity
            .clone()
            .map(|v| match v {
                ArgValue::String(s) => Some(s),
                _ => None,
            })
            .unwrap_or(None)
    }

    pub fn into_parsed_commands(self) -> Result<Vec<CreateCommand>> {
        Ok(vec![Self::get_subcommand(&self.args())?])
    }

    fn get_subcommand(args: &[String]) -> Result<CreateCommand> {
        if let OckamSubcommand::Node(cmd) = parse_cmd_from_args(CreateCommand::NAME, args)? {
            if let node::NodeSubcommand::Create(mut c) = cmd.subcommand {
                c.config_args.configuration = None;
                c.config_args.variables = vec![];
                c.config_args.enrollment_ticket = None;
                c.config_args.started_from_configuration = true;
                return Ok(c);
            }
        }
        Err(miette!(format!(
            "Failed to parse {} command",
            color_primary(CreateCommand::NAME)
        )))
    }
}

#[derive(Debug, Clone, PartialEq, Serialize, Deserialize, Default)]
pub struct Services {
    pub services: Option<NamedResources>,
}

impl Services {
    /// Parse the services fields into a `ServicesConfig` struct
    pub fn into_arg(self) -> Result<ServicesConfig> {
        let as_json = serde_json::json!({
            "services": self.services,
        });
        serde_json::from_value(as_json).into_diagnostic()
    }

    pub fn from_arg(arg: &ServicesConfig) -> Result<Self> {
        Self::from_string(&arg.to_string()?)
    }

    fn from_string(contents: &str) -> Result<Self> {
        if let Ok(c) = serde_yaml::from_str(contents) {
            return Ok(c);
        }
        if let Ok(c) = serde_json::from_str(contents) {
            return Ok(c);
        }
        Err(miette!(format!("invalid services config {:?}", contents)))
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::service::config::ControlApiNodeResolution;

    #[test]
    fn node_config() {
        let get_parsed_cmd = |c: &str| {
            let parsed: Node = serde_yaml::from_str(c).unwrap();
            let cmds = parsed.into_parsed_commands().unwrap();
            assert_eq!(cmds.len(), 1);
            cmds.into_iter().next().unwrap()
        };

        // Name only
        let config = r#"
            name: n1
        "#;
        let cmd = get_parsed_cmd(config);
        assert_eq!(cmd.name, "n1");

        // Multiple arguments
        let config = r#"
        name: n1
        tcp-listener-address: 127.0.0.1:1234
        skip-is-running-check: true
        "#;
        let cmd = get_parsed_cmd(config);
        assert_eq!(cmd.name, "n1");
        assert_eq!(cmd.tcp_listener_address, "127.0.0.1:1234");
        assert!(cmd.skip_is_running_check);
        assert!(cmd.services.is_none());

        // Services
        let config = r#"
        name: n1
        tcp-listener-address: 127.0.0.1:3333
        start_default_services: true
        services:
          control_api:
            authentication_token: token
            backend: true
            node_resolution: direct-connection
        "#;
        let cmd = get_parsed_cmd(config);
        assert_eq!(cmd.name, "n1");
        assert_eq!(cmd.tcp_listener_address, "127.0.0.1:3333");
        let services = cmd.services.unwrap();
        assert_eq!(
            services
                .services
                .unwrap()
                .control_api
                .unwrap()
                .authentication_token
                .unwrap(),
            "token"
        );

        // With other sections
        let config = r#"
        relays: r1

        name: n1
        tcp-listener-address: 127.0.0.1:1234
        skip-is-running-check: true

        tcp_inlets:
          ti1:
            from: 6060
            at: n
        "#;
        let cmd = get_parsed_cmd(config);
        assert_eq!(cmd.name, "n1");
        assert_eq!(cmd.tcp_listener_address, "127.0.0.1:1234");
    }

    #[test]
    fn services_config() {
        let get_parsed_config = |c: &str| {
            // Convert yaml yo struct representation
            let parsed: Services = serde_yaml::from_str(c).unwrap();
            // Convert yaml struct to command argument representation
            let arg = parsed.clone().into_arg().unwrap();
            // Convert command argument representation back to yaml struct representation
            let parsed_again = Services::from_arg(&arg).unwrap();
            // Convert yaml struct representation back to command argument representation to compare
            let arg_again = parsed_again.clone().into_arg().unwrap();
            // We compare the `ServicesConfig` struct as it's easier to compare basic types (bools, strings, etc)
            // than comparing the `Services` struct which has a `NamedResources` field and the types can be dynamic
            assert_eq!(arg, arg_again);
            arg
        };

        // Single service
        let config = r#"
        services:
          secure-channel-listener:
            address: api
        "#;
        let parsed = get_parsed_config(config);
        let services = parsed.services.unwrap();
        let secure_channel_listener = services.secure_channel_listener.unwrap();
        assert_eq!(secure_channel_listener.address, "api");

        let config = r#"
        services:
          control-api:
            authentication-token: token
            backend: true
            node-resolution: direct-connection
        "#;
        let parsed = get_parsed_config(config);
        let services = parsed.services.unwrap();
        let control_api = services.control_api.unwrap();
        assert_eq!(control_api.authentication_token.unwrap(), "token");
        assert!(control_api.backend);
        assert_eq!(
            control_api.node_resolution,
            ControlApiNodeResolution::DirectConnection
        );

        // Multiple services
        let config = r#"
        services:
          secure-channel-listener:
            address: api
            disabled: true
          control-api:
            authentication-token: token
            backend: true
            node-resolution: direct-connection
        "#;
        let parsed = get_parsed_config(config);

        let services = parsed.services.unwrap();
        let secure_channel_listener = services.secure_channel_listener.unwrap();
        assert_eq!(secure_channel_listener.address, "api");
        assert!(secure_channel_listener.disabled);

        let control_api = services.control_api.unwrap();
        assert_eq!(control_api.authentication_token.unwrap(), "token");
        assert!(control_api.backend);
        assert_eq!(
            control_api.node_resolution,
            ControlApiNodeResolution::DirectConnection
        );
    }
}