Add --user flag to "secrets" and "envs"

cmoog · cmoog · commit a5570f2dca85 · 2020-08-04T18:30:19.000-05:00
diff --git a/cmd/coder/auth.go b/cmd/coder/auth.go
@@ -10,7 +10,7 @@ import (
 )
 
 // requireAuth exits the process with a nonzero exit code if the user is not authenticated to make requests
-func requireAuth() *entclient.Client {
+func requireAuth(userFlag string) *entclient.Client {
 	sessionToken, err := config.Session.Read()
 	requireSuccess(err, "read session: %v (did you run coder login?)", err)
 
@@ -20,10 +20,19 @@ func requireAuth() *entclient.Client {
 	u, err := url.Parse(rawURL)
 	requireSuccess(err, "url misformatted: %v (try runing coder login)", err)
 
-	return &entclient.Client{
+	client := &entclient.Client{
 		BaseURL: u,
 		Token:   sessionToken,
+		UserID:  entclient.Me,
 	}
+
+	user, err := client.UserByEmail(userFlag)
+	requireSuccess(err, "failed to find user (%v) by email: %v", userFlag, err)
+
+	// perform all additional actions as this user
+	client.UserID = user.ID
+
+	return client
 }
 
 // requireSuccess prints the given message and format args as a fatal error if err != nil
diff --git a/cmd/coder/ceapi.go b/cmd/coder/ceapi.go
@@ -28,7 +28,7 @@ outer:
 
 // getEnvs returns all environments for the user.
 func getEnvs(client *entclient.Client) ([]entclient.Environment, error) {
-	me, err := client.Me()
+	me, err := client.TargetUser()
 	if err != nil {
 		return nil, xerrors.Errorf("get self: %+v", err)
 	}
diff --git a/cmd/coder/configssh.go b/cmd/coder/configssh.go
@@ -86,14 +86,14 @@ func configSSH(filepath *string, remove *bool) func(c *cli.Context) error {
 			return nil
 		}
 
-		entClient := requireAuth()
+		entClient := requireAuth(entclient.Me)
 
 		sshAvailable := isSSHAvailable(ctx)
 		if !sshAvailable {
 			return xerrors.New("SSH is disabled or not available for your Coder Enterprise deployment.")
 		}
 
-		me, err := entClient.Me()
+		me, err := entClient.TargetUser()
 		if err != nil {
 			return xerrors.Errorf("failed to fetch username: %w", err)
 		}
diff --git a/cmd/coder/envs.go b/cmd/coder/envs.go
@@ -4,26 +4,36 @@ import (
 	"encoding/json"
 	"os"
 
+	"cdr.dev/coder-cli/internal/entclient"
 	"cdr.dev/coder-cli/internal/x/xtabwriter"
 	"github.com/urfave/cli"
 	"golang.org/x/xerrors"
 )
 
 func makeEnvsCommand() cli.Command {
 	var outputFmt string
+	var user string
 	return cli.Command{
 		Name:        "envs",
 		Usage:       "Interact with Coder environments",
 		Description: "Perform operations on the Coder environments owned by the active user.",
 		Action:      exitHelp,
+		Flags: []cli.Flag{
+			cli.StringFlag{
+				Name:        "user",
+				Usage:       "Specify the user whose resources to target",
+				Value:       entclient.Me,
+				Destination: &user,
+			},
+		},
 		Subcommands: []cli.Command{
 			{
 				Name:        "ls",
 				Usage:       "list all environments owned by the active user",
 				Description: "List all Coder environments owned by the active user.",
 				ArgsUsage:   "[...flags]>",
 				Action: func(c *cli.Context) error {
-					entClient := requireAuth()
+					entClient := requireAuth(user)
 					envs, err := getEnvs(entClient)
 					if err != nil {
 						return err
diff --git a/cmd/coder/secrets.go b/cmd/coder/secrets.go
@@ -15,35 +15,44 @@ import (
 )
 
 func makeSecretsCmd() cli.Command {
+	var user string
 	return cli.Command{
 		Name:        "secrets",
 		Usage:       "Interact with Coder Secrets",
 		Description: "Interact with secrets objects owned by the active user.",
 		Action:      exitHelp,
+		Flags: []cli.Flag{
+			cli.StringFlag{
+				Name:        "user",
+				Usage:       "Specify the user whose resources to target",
+				Value:       entclient.Me,
+				Destination: &user,
+			},
+		},
 		Subcommands: []cli.Command{
+			makeCreateSecret(&user),
 			{
 				Name:   "ls",
 				Usage:  "List all secrets owned by the active user",
-				Action: listSecrets,
+				Action: makeListSecrets(&user),
 			},
-			makeCreateSecret(),
 			{
 				Name:      "rm",
 				Usage:     "Remove one or more secrets by name",
 				ArgsUsage: "[...secret_name]",
-				Action:    removeSecrets,
+				Action:    makeRemoveSecrets(&user),
 			},
 			{
 				Name:      "view",
 				Usage:     "View a secret by name",
 				ArgsUsage: "[secret_name]",
-				Action:    viewSecret,
+				Action:    makeViewSecret(&user),
 			},
 		},
 	}
 }
 
-func makeCreateSecret() cli.Command {
+func makeCreateSecret(user *string) cli.Command {
 	var (
 		fromFile    string
 		fromLiteral string
@@ -73,7 +82,7 @@ func makeCreateSecret() cli.Command {
 		},
 		Action: func(c *cli.Context) error {
 			var (
-				client = requireAuth()
+				client = requireAuth(*user)
 				name   = c.Args().First()
 				value  string
 				err    error
@@ -139,72 +148,77 @@ func makeCreateSecret() cli.Command {
 	}
 }
 
-func listSecrets(_ *cli.Context) error {
-	client := requireAuth()
+func makeListSecrets(user *string) func(c *cli.Context) error {
+	return func(_ *cli.Context) error {
+		client := requireAuth(*user)
 
-	secrets, err := client.Secrets()
-	if err != nil {
-		return xerrors.Errorf("failed to get secrets: %w", err)
-	}
+		secrets, err := client.Secrets()
+		if err != nil {
+			return xerrors.Errorf("failed to get secrets: %w", err)
+		}
 
-	if len(secrets) < 1 {
-		flog.Info("No secrets found")
-		return nil
-	}
+		if len(secrets) < 1 {
+			flog.Info("No secrets found")
+			return nil
+		}
 
-	err = xtabwriter.WriteTable(len(secrets), func(i int) interface{} {
-		s := secrets[i]
-		s.Value = "******" // value is omitted from bulk responses
-		return s
-	})
-	if err != nil {
-		return xerrors.Errorf("failed to write table of secrets: %w", err)
+		err = xtabwriter.WriteTable(len(secrets), func(i int) interface{} {
+			s := secrets[i]
+			s.Value = "******" // value is omitted from bulk responses
+			return s
+		})
+		if err != nil {
+			return xerrors.Errorf("failed to write table of secrets: %w", err)
+		}
+		return nil
 	}
-	return nil
 }
 
-func viewSecret(c *cli.Context) error {
-	var (
-		client = requireAuth()
-		name   = c.Args().First()
-	)
-	if name == "" {
-		return xerrors.New("[name] is a required argument")
-	}
+func makeViewSecret(user *string) func(c *cli.Context) error {
+	return func(c *cli.Context) error {
+		var (
+			client = requireAuth(*user)
+			name   = c.Args().First()
+		)
+		if name == "" {
+			return xerrors.New("[name] is a required argument")
+		}
 
-	secret, err := client.SecretByName(name)
-	if err != nil {
-		return xerrors.Errorf("failed to get secret by name: %w", err)
-	}
+		secret, err := client.SecretByName(name)
+		if err != nil {
+			return xerrors.Errorf("failed to get secret by name: %w", err)
+		}
 
-	_, err = fmt.Fprintln(os.Stdout, secret.Value)
-	if err != nil {
-		return xerrors.Errorf("failed to write: %w", err)
+		_, err = fmt.Fprintln(os.Stdout, secret.Value)
+		if err != nil {
+			return xerrors.Errorf("failed to write: %w", err)
+		}
+		return nil
 	}
-	return nil
 }
+func makeRemoveSecrets(user *string) func(c *cli.Context) error {
+	return func(c *cli.Context) error {
+		var (
+			client = requireAuth(*user)
+			names  = append([]string{c.Args().First()}, c.Args().Tail()...)
+		)
+		if len(names) < 1 || names[0] == "" {
+			return xerrors.New("[...secret_name] is a required argument")
+		}
 
-func removeSecrets(c *cli.Context) error {
-	var (
-		client = requireAuth()
-		names  = append([]string{c.Args().First()}, c.Args().Tail()...)
-	)
-	if len(names) < 1 || names[0] == "" {
-		return xerrors.New("[...secret_name] is a required argument")
-	}
-
-	errorSeen := false
-	for _, n := range names {
-		err := client.DeleteSecretByName(n)
-		if err != nil {
-			flog.Error("Failed to delete secret: %v", err)
-			errorSeen = true
-		} else {
-			flog.Info("Successfully deleted secret %q", n)
+		errorSeen := false
+		for _, n := range names {
+			err := client.DeleteSecretByName(n)
+			if err != nil {
+				flog.Error("Failed to delete secret: %v", err)
+				errorSeen = true
+			} else {
+				flog.Info("Successfully deleted secret %q", n)
+			}
 		}
+		if errorSeen {
+			os.Exit(1)
+		}
+		return nil
 	}
-	if errorSeen {
-		os.Exit(1)
-	}
-	return nil
 }
diff --git a/cmd/coder/shell.go b/cmd/coder/shell.go
@@ -8,6 +8,7 @@ import (
 	"time"
 
 	"cdr.dev/coder-cli/internal/activity"
+	"cdr.dev/coder-cli/internal/entclient"
 	"cdr.dev/coder-cli/internal/x/xterminal"
 	"cdr.dev/wsep"
 	"github.com/urfave/cli"
@@ -83,7 +84,7 @@ func sendResizeEvents(ctx context.Context, termfd uintptr, process wsep.Process)
 
 func runCommand(ctx context.Context, envName string, command string, args []string) error {
 	var (
-		entClient = requireAuth()
+		entClient = requireAuth(entclient.Me)
 	)
 	env, err := findEnv(entClient, envName)
 	if err != nil {
diff --git a/cmd/coder/sync.go b/cmd/coder/sync.go
@@ -8,6 +8,7 @@ import (
 	"path/filepath"
 	"strings"
 
+	"cdr.dev/coder-cli/internal/entclient"
 	"cdr.dev/coder-cli/internal/sync"
 	"github.com/urfave/cli"
 	"golang.org/x/xerrors"
@@ -62,7 +63,7 @@ func makeRunSync(init *bool) func(c *cli.Context) error {
 			remote = c.Args().Get(1)
 		)
 
-		entClient := requireAuth()
+		entClient := requireAuth(entclient.Me)
 
 		info, err := os.Stat(local)
 		if err != nil {
diff --git a/cmd/coder/urls.go b/cmd/coder/urls.go
@@ -9,6 +9,7 @@ import (
 	"strconv"
 	"strings"
 
+	"cdr.dev/coder-cli/internal/entclient"
 	"cdr.dev/coder-cli/internal/x/xtabwriter"
 	"github.com/urfave/cli"
 	"golang.org/x/xerrors"
@@ -191,7 +192,7 @@ func makeCreateDevURL() cli.Command {
 			if urlname != "" && !devURLNameValidRx.MatchString(urlname) {
 				return xerrors.New("update devurl: name must be < 64 chars in length, begin with a letter and only contain letters or digits.")
 			}
-			entClient := requireAuth()
+			entClient := requireAuth(entclient.Me)
 
 			env, err := findEnv(entClient, envName)
 			if err != nil {
@@ -251,7 +252,7 @@ func removeDevURL(c *cli.Context) error {
 		return xerrors.Errorf("failed to validate port: %w", err)
 	}
 
-	entClient := requireAuth()
+	entClient := requireAuth(entclient.Me)
 	env, err := findEnv(entClient, envName)
 	if err != nil {
 		return err
@@ -278,7 +279,7 @@ func removeDevURL(c *cli.Context) error {
 
 // urlList returns the list of active devURLs from the cemanager.
 func urlList(envName string) ([]DevURL, error) {
-	entClient := requireAuth()
+	entClient := requireAuth(entclient.Me)
 	env, err := findEnv(entClient, envName)
 	if err != nil {
 		return nil, err
diff --git a/cmd/coder/users.go b/cmd/coder/users.go
@@ -4,6 +4,7 @@ import (
 	"encoding/json"
 	"os"
 
+	"cdr.dev/coder-cli/internal/entclient"
 	"cdr.dev/coder-cli/internal/x/xtabwriter"
 	"github.com/urfave/cli"
 	"golang.org/x/xerrors"
@@ -35,7 +36,7 @@ func makeUsersCmd() cli.Command {
 
 func listUsers(outputFmt *string) func(c *cli.Context) error {
 	return func(c *cli.Context) error {
-		entClient := requireAuth()
+		entClient := requireAuth(entclient.Me)
 
 		users, err := entClient.Users()
 		if err != nil {
diff --git a/internal/entclient/client.go b/internal/entclient/client.go
@@ -6,10 +6,14 @@ import (
 	"net/url"
 )
 
+// Me is the route param to access resources of the authenticated user
+const Me = "me"
+
 // Client wraps the Coder HTTP API
 type Client struct {
 	BaseURL *url.URL
 	Token   string
+	UserID  string
 }
 
 func (c Client) copyURL() *url.URL {
diff --git a/internal/entclient/devurl.go b/internal/entclient/devurl.go
diff --git a/internal/entclient/me.go b/internal/entclient/me.go
diff --git a/internal/entclient/secrets.go b/internal/entclient/secrets.go
diff --git a/internal/entclient/users.go b/internal/entclient/users.go

Original file line number	Diff line number	Diff line change
`@@ -28,7 +28,7 @@ outer:`
`28`	`28`
`29`	`29`	`// getEnvs returns all environments for the user.`
`30`	`30`	`func getEnvs(client *entclient.Client) ([]entclient.Environment, error) {`
`31`		`- me, err := client.Me()`
	`31`	`+ me, err := client.TargetUser()`
`32`	`32`	`if err != nil {`
`33`	`33`	`return nil, xerrors.Errorf("get self: %+v", err)`
`34`	`34`	`}`
Original file line number	Diff line number	Diff line change
`@@ -86,14 +86,14 @@ func configSSH(filepath string, remove bool) func(c *cli.Context) error {`
`86`	`86`	`return nil`
`87`	`87`	`}`
`88`	`88`
`89`		`- entClient := requireAuth()`
	`89`	`+ entClient := requireAuth(entclient.Me)`
`90`	`90`
`91`	`91`	`sshAvailable := isSSHAvailable(ctx)`
`92`	`92`	`if !sshAvailable {`
`93`	`93`	`return xerrors.New("SSH is disabled or not available for your Coder Enterprise deployment.")`
`94`	`94`	`}`
`95`	`95`
`96`		`- me, err := entClient.Me()`
	`96`	`+ me, err := entClient.TargetUser()`
`97`	`97`	`if err != nil {`
`98`	`98`	`return xerrors.Errorf("failed to fetch username: %w", err)`
`99`	`99`	`}`
Original file line number	Diff line number	Diff line change
`@@ -6,10 +6,14 @@ import (`
`6`	`6`	`"net/url"`
`7`	`7`	`)`
`8`	`8`
	`9`	`+// Me is the route param to access resources of the authenticated user`
	`10`	`+const Me = "me"`
	`11`	`+`
`9`	`12`	`// Client wraps the Coder HTTP API`
`10`	`13`	`type Client struct {`
`11`	`14`	`BaseURL *url.URL`
`12`	`15`	`Token string`
	`16`	`+ UserID string`
`13`	`17`	`}`
`14`	`18`
`15`	`19`	`func (c Client) copyURL() *url.URL {`