v5.10.1

分支 (195)

标签 (247)

管理

管理

main

fallbackPipeline

sudhanshu#5009/DOS-fix

change-password-feature

bugfix/manualCheckExe_5002

sudhanshu#2608-fix

francis#2608-fix

feature/new-silence-attributes

bugfix/5002_manualCheckexe

develop/6

release/6.11

feature-silenced-change

sudhanshu/5009

500

dependabot/go_modules/golang.org/x/crypto-0.17.0

fix-types-wrapper-lift

bump-core-modules

dependabot/go_modules/google.golang.org/grpc-1.56.3

remove-context-emptyCtx-assertions

justin-debug

v6.11.0

types/v0.13.0

types/v0.12.0-alpha10

types/v0.12.0-alpha9

v7.0.0-alpha1

v6.10.0

v6.9.2

types/v0.12.0

types/v0.12.0-alpha8

types/v0.12.0-alpha7

v6.9.1

v6.9.0

types/v0.12.0-alpha6

types/v0.12.0-alpha5

types/v0.12.0-alpha4

types/v0.12.0-alpha3

types/v0.12.0-alpha2

types/v0.12.0-alpha1

v6.8.2

api/core/v2.16.0

sensu-go
/
cli
/
client
/
authentication.go

package client

import (
	"encoding/json"
	"errors"
	"fmt"

	"github.com/sensu/sensu-go/types"
)

// CreateAccessToken returns a new access token given userid and password
func (client *RestClient) CreateAccessToken(url, userid, password string) (*types.Tokens, error) {
	// Make sure any existing auth token doesn't get injected instead
	client.ClearAuthToken()
	defer client.Reset()

	// Execute
	res, err := client.R().SetBasicAuth(userid, password).Get(url + "/auth")
	if err != nil {
		return nil, err
	}

	if res.StatusCode() == 401 {
		return nil, errors.New(string(res.Body()))
	} else if res.StatusCode() >= 400 {
		// TODO: (JK) we may want to expose a bit more of the error here
		return nil, errors.New("Received an unexpected response from the API")
	}

	var tokens types.Tokens
	if err = json.Unmarshal(res.Body(), &tokens); err != nil {
		return nil, errors.New("Unable to unmarshal response from server")
	}

	return &tokens, err
}

// TestCreds checks if the provided User credentials are valid
func (client *RestClient) TestCreds(userid, password string) error {
	client.ClearAuthToken()

	res, err := client.R().SetBasicAuth(userid, password).Get("/auth/test")
	if err != nil {
		return err
	}

	if res.StatusCode() == 401 {
		return errors.New(string(res.Body()))
	} else if res.StatusCode() >= 400 {
		return errors.New("Received an unexpected response from the API")
	}

	return nil
}

// Logout performs a logout of the configured user
func (client *RestClient) Logout(token string) error {
	res, err := client.R().
		SetHeader("Content-Type", "application/json").
		SetBody(map[string]string{"refresh_token": token}).
		Post("/auth/logout")
	if err != nil {
		return err
	}

	if res.StatusCode() >= 400 {
		return fmt.Errorf("The server returned the error: %d %s",
			res.StatusCode(),
			res.String(),
		)
	}

	return nil
}

// RefreshAccessToken returns a new access token given valid refresh token
func (client *RestClient) RefreshAccessToken(token string) (*types.Tokens, error) {
	res, err := client.R().
		SetHeader("Content-Type", "application/json").
		SetBody(map[string]string{"refresh_token": token}).
		SetResult(&types.Tokens{}).
		Post("/auth/token")
	if err != nil {
		return nil, err
	}

	if res.StatusCode() >= 400 {
		return nil, fmt.Errorf("The server returned the error: %d %s",
			res.StatusCode(),
			res.String(),
		)
	}

	tokens, ok := res.Result().(*types.Tokens)
	if !ok {
		return nil, fmt.Errorf("Unable to unmarshal response from server")
	}

	err = tokens.Validate()
	if err != nil {
		return nil, err
	}

	return tokens, err
}