Add cli cmd to get app security key

Emyrk · Emyrk · commit 913aef1402d8 · 2023-04-17T14:51:47.000-05:00
diff --git a/cli/appsecuritykey.go b/cli/appsecuritykey.go
@@ -0,0 +1,59 @@
+package cli
+
+import (
+	"database/sql"
+	"fmt"
+
+	"github.com/coder/coder/cli/clibase"
+	"github.com/coder/coder/coderd/database"
+	"github.com/coder/coder/coderd/database/migrations"
+	"golang.org/x/xerrors"
+)
+
+func (*RootCmd) appSecurityKey() *clibase.Cmd {
+	var postgresURL string
+
+	root := &clibase.Cmd{
+		Use:   "app-security-key",
+		Short: "Directly connect to the database to print the app security key",
+		// We can unhide this if we decide to keep it this way.
+		Hidden:     true,
+		Middleware: clibase.RequireNArgs(0),
+		Handler: func(inv *clibase.Invocation) error {
+			sqlDB, err := sql.Open("postgres", postgresURL)
+			if err != nil {
+				return xerrors.Errorf("dial postgres: %w", err)
+			}
+			defer sqlDB.Close()
+			err = sqlDB.Ping()
+			if err != nil {
+				return xerrors.Errorf("ping postgres: %w", err)
+			}
+
+			err = migrations.EnsureClean(sqlDB)
+			if err != nil {
+				return xerrors.Errorf("database needs migration: %w", err)
+			}
+			db := database.New(sqlDB)
+
+			key, err := db.GetAppSecurityKey(inv.Context())
+			if err != nil {
+				return xerrors.Errorf("retrieving key: %w", err)
+			}
+
+			_, _ = fmt.Fprintln(inv.Stdout, key)
+			return nil
+		},
+	}
+
+	root.Options = clibase.OptionSet{
+		{
+			Flag:        "postgres-url",
+			Description: "URL of a PostgreSQL database to connect to.",
+			Env:         "CODER_PG_CONNECTION_URL",
+			Value:       clibase.StringOf(&postgresURL),
+		},
+	}
+
+	return root
+}
diff --git a/cli/root.go b/cli/root.go
@@ -79,6 +79,7 @@ func (r *RootCmd) Core() []*clibase.Cmd {
 		r.portForward(),
 		r.publickey(),
 		r.resetPassword(),
+		r.appSecurityKey(),
 		r.state(),
 		r.templates(),
 		r.users(),
