opencode-cloud 25.1.3

CLI for managing opencode as a persistent cloud service
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104

//! User remove subcommand
//!
//! Removes a user from the container.

use anyhow::{Result, bail};
use clap::Args;
use console::style;
use dialoguer::Confirm;
use opencode_cloud_core::docker::{
    CONTAINER_NAME, DockerClient, delete_user, list_users, remove_persisted_user, user_exists,
};
use opencode_cloud_core::{load_config_or_default, save_config};

/// Arguments for the user remove command
#[derive(Args)]
pub struct UserRemoveArgs {
    /// Username to remove
    pub username: String,

    /// Skip confirmation prompt
    #[arg(long, short)]
    pub force: bool,
}

/// System user that cannot be removed (container depends on it)
const PROTECTED_USER: &str = "opencoder";

/// Remove a user from the container
pub async fn cmd_user_remove(
    client: &DockerClient,
    args: &UserRemoveArgs,
    quiet: bool,
    _verbose: u8,
) -> Result<()> {
    let username = &args.username;

    // Protect the opencode system user - cannot be removed even with --force
    if username == PROTECTED_USER {
        bail!(
            "Cannot remove '{PROTECTED_USER}' - this is a protected system user required for the container to function.\n\n\
            To manage authentication users, use:\n  \
            occ user add <username>\n  \
            occ user remove <username>"
        );
    }

    // Check if user exists
    if !user_exists(client, CONTAINER_NAME, username).await? {
        bail!("User '{username}' does not exist in the container");
    }

    // Load config for later update
    let mut config = load_config_or_default()?;

    // Check if this is the last user in the container (not just tracked users)
    let container_users = list_users(client, CONTAINER_NAME).await?;
    let is_last_user = container_users.len() == 1;
    if is_last_user && !args.force {
        bail!(
            "Cannot remove last user. Add another user first or use --force.\n\n\
            To add a new user:\n  \
            occ user add <username>\n\n\
            To force removal:\n  \
            occ user remove {username} --force"
        );
    }

    // Confirm removal
    if !args.force {
        let confirm = Confirm::new()
            .with_prompt(format!("Remove user '{username}'?"))
            .default(false)
            .interact()
            .unwrap_or(false);

        if !confirm {
            if !quiet {
                println!("Cancelled.");
            }
            return Ok(());
        }
    }

    // Delete the user
    delete_user(client, CONTAINER_NAME, username).await?;

    // Remove persisted record if present
    remove_persisted_user(client, CONTAINER_NAME, username).await?;

    // Update config - remove username from users array
    config.users.retain(|u| u != username);
    save_config(&config)?;

    // Display success
    if !quiet {
        println!(
            "{} User '{}' removed successfully",
            style("Success:").green().bold(),
            username
        );
    }

    Ok(())
}