12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697 |
- // Copyright 2016 The etcd Authors
- //
- // Licensed under the Apache License, Version 2.0 (the "License");
- // you may not use this file except in compliance with the License.
- // You may obtain a copy of the License at
- //
- // http://www.apache.org/licenses/LICENSE-2.0
- //
- // Unless required by applicable law or agreed to in writing, software
- // distributed under the License is distributed on an "AS IS" BASIS,
- // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- // See the License for the specific language governing permissions and
- // limitations under the License.
- package command
- import (
- "fmt"
- "github.com/spf13/cobra"
- "go.etcd.io/etcd/etcdserver/api/v3rpc/rpctypes"
- )
- // NewAuthCommand returns the cobra command for "auth".
- func NewAuthCommand() *cobra.Command {
- ac := &cobra.Command{
- Use: "auth <enable or disable>",
- Short: "Enable or disable authentication",
- }
- ac.AddCommand(newAuthEnableCommand())
- ac.AddCommand(newAuthDisableCommand())
- return ac
- }
- func newAuthEnableCommand() *cobra.Command {
- return &cobra.Command{
- Use: "enable",
- Short: "Enables authentication",
- Run: authEnableCommandFunc,
- }
- }
- // authEnableCommandFunc executes the "auth enable" command.
- func authEnableCommandFunc(cmd *cobra.Command, args []string) {
- if len(args) != 0 {
- ExitWithError(ExitBadArgs, fmt.Errorf("auth enable command does not accept any arguments"))
- }
- ctx, cancel := commandCtx(cmd)
- cli := mustClientFromCmd(cmd)
- var err error
- for err == nil {
- if _, err = cli.AuthEnable(ctx); err == nil {
- break
- }
- if err == rpctypes.ErrRootRoleNotExist {
- if _, err = cli.RoleAdd(ctx, "root"); err != nil {
- break
- }
- if _, err = cli.UserGrantRole(ctx, "root", "root"); err != nil {
- break
- }
- }
- }
- cancel()
- if err != nil {
- ExitWithError(ExitError, err)
- }
- fmt.Println("Authentication Enabled")
- }
- func newAuthDisableCommand() *cobra.Command {
- return &cobra.Command{
- Use: "disable",
- Short: "Disables authentication",
- Run: authDisableCommandFunc,
- }
- }
- // authDisableCommandFunc executes the "auth disable" command.
- func authDisableCommandFunc(cmd *cobra.Command, args []string) {
- if len(args) != 0 {
- ExitWithError(ExitBadArgs, fmt.Errorf("auth disable command does not accept any arguments"))
- }
- ctx, cancel := commandCtx(cmd)
- _, err := mustClientFromCmd(cmd).Auth.AuthDisable(ctx)
- cancel()
- if err != nil {
- ExitWithError(ExitError, err)
- }
- fmt.Println("Authentication Disabled")
- }
|