2017-09-19 14:47:10 +00:00
|
|
|
package command
|
|
|
|
|
|
|
|
import (
|
|
|
|
"fmt"
|
|
|
|
"strings"
|
|
|
|
|
|
|
|
"github.com/posener/complete"
|
|
|
|
)
|
|
|
|
|
|
|
|
type SentinelReadCommand struct {
|
|
|
|
Meta
|
|
|
|
}
|
|
|
|
|
|
|
|
func (c *SentinelReadCommand) Help() string {
|
|
|
|
helpText := `
|
|
|
|
Usage: nomad sentinel read [options] <name>
|
|
|
|
|
2017-10-13 21:36:02 +00:00
|
|
|
Read is used to inspect a Sentinel policy.
|
2017-09-19 14:47:10 +00:00
|
|
|
|
2020-11-19 21:38:08 +00:00
|
|
|
Sentinel commands are only available when ACLs are enabled. This command
|
|
|
|
requires a management token.
|
|
|
|
|
2017-09-19 14:47:10 +00:00
|
|
|
General Options:
|
|
|
|
|
2020-11-19 16:15:23 +00:00
|
|
|
` + generalOptionsUsage(usageOptsDefault|usageOptsNoNamespace) + `
|
2017-09-19 14:47:10 +00:00
|
|
|
|
|
|
|
Read Options:
|
|
|
|
|
|
|
|
-raw
|
|
|
|
Prints only the raw policy
|
|
|
|
|
|
|
|
`
|
|
|
|
return strings.TrimSpace(helpText)
|
|
|
|
}
|
|
|
|
|
|
|
|
func (c *SentinelReadCommand) AutocompleteFlags() complete.Flags {
|
|
|
|
return mergeAutocompleteFlags(c.Meta.AutocompleteFlags(FlagSetClient),
|
|
|
|
complete.Flags{
|
|
|
|
"-raw": complete.PredictNothing,
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
|
|
|
func (c *SentinelReadCommand) AutocompleteArgs() complete.Predictor {
|
|
|
|
return complete.PredictNothing
|
|
|
|
}
|
|
|
|
|
|
|
|
func (c *SentinelReadCommand) Synopsis() string {
|
|
|
|
return "Inspects an existing Sentinel policies"
|
|
|
|
}
|
|
|
|
|
2018-04-18 16:02:11 +00:00
|
|
|
func (c *SentinelReadCommand) Name() string { return "sentinel read" }
|
|
|
|
|
2017-09-19 14:47:10 +00:00
|
|
|
func (c *SentinelReadCommand) Run(args []string) int {
|
|
|
|
var raw bool
|
2018-04-18 16:02:11 +00:00
|
|
|
flags := c.Meta.FlagSet(c.Name(), FlagSetClient)
|
2017-09-19 14:47:10 +00:00
|
|
|
flags.Usage = func() { c.Ui.Output(c.Help()) }
|
|
|
|
flags.BoolVar(&raw, "raw", false, "")
|
|
|
|
if err := flags.Parse(args); err != nil {
|
|
|
|
return 1
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check that we got exactly one arguments
|
|
|
|
args = flags.Args()
|
|
|
|
if l := len(args); l != 1 {
|
2018-04-18 17:55:51 +00:00
|
|
|
c.Ui.Error("This command takes one argument: <name>")
|
2018-04-18 16:02:11 +00:00
|
|
|
c.Ui.Error(commandErrorText(c))
|
2017-09-19 14:47:10 +00:00
|
|
|
return 1
|
|
|
|
}
|
|
|
|
|
|
|
|
// Get the name and file
|
|
|
|
policyName := args[0]
|
|
|
|
|
|
|
|
// Get the HTTP client
|
|
|
|
client, err := c.Meta.Client()
|
|
|
|
if err != nil {
|
|
|
|
c.Ui.Error(fmt.Sprintf("Error initializing client: %s", err))
|
|
|
|
return 1
|
|
|
|
}
|
|
|
|
|
|
|
|
// Query the policy
|
|
|
|
policy, _, err := client.SentinelPolicies().Info(policyName, nil)
|
|
|
|
if err != nil {
|
|
|
|
c.Ui.Error(fmt.Sprintf("Error querying Sentinel policy: %s", err))
|
|
|
|
return 1
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check for only the raw policy
|
|
|
|
if raw {
|
|
|
|
c.Ui.Output(policy.Policy)
|
|
|
|
return 0
|
|
|
|
}
|
|
|
|
|
|
|
|
// Output the base information
|
|
|
|
info := []string{
|
|
|
|
fmt.Sprintf("Name|%s", policy.Name),
|
|
|
|
fmt.Sprintf("Scope|%s", policy.Scope),
|
|
|
|
fmt.Sprintf("Enforcement Level|%s", policy.EnforcementLevel),
|
|
|
|
fmt.Sprintf("Description|%s", policy.Description),
|
|
|
|
}
|
|
|
|
c.Ui.Output(formatKV(info))
|
|
|
|
c.Ui.Output("Policy:")
|
|
|
|
c.Ui.Output(policy.Policy)
|
|
|
|
return 0
|
|
|
|
}
|