open-vault/command/status.go

package command

import (
	"fmt"
	"strings"

	"github.com/hashicorp/vault/api"
)

// StatusCommand is a Command that outputs the status of whether
// Vault is sealed or not as well as HA information.
type StatusCommand struct {
	Meta
}

func (c *StatusCommand) Run(args []string) int {
	flags := c.Meta.FlagSet("status", FlagSetDefault)
	flags.Usage = func() { c.Ui.Error(c.Help()) }
	if err := flags.Parse(args); err != nil {
		return 2
	}

	client, err := c.Client()
	if err != nil {
		c.Ui.Error(fmt.Sprintf(
			"Error initializing client: %s", err))
		return 2
	}

	sealStatus, err := client.Sys().SealStatus()
	if err != nil {
		c.Ui.Error(fmt.Sprintf(
			"Error checking seal status: %s", err))
		return 2
	}
	c.Ui.Output(fmt.Sprintf(
		"Sealed: %v\n"+
			"Key Shares: %d\n"+
			"Key Threshold: %d\n"+
			"Unseal Progress: %d",
		sealStatus.Sealed,
		sealStatus.N,
		sealStatus.T,
		sealStatus.Progress))

	// Mask the 'Vault is sealed' error, since this means HA is enabled,
	// but that we cannot query for the leader since we are sealed.
	leaderStatus, err := client.Sys().Leader()
	if err != nil && strings.Contains(err.Error(), "Vault is sealed") {
		leaderStatus = &api.LeaderResponse{HAEnabled: true}
		err = nil
	}
	if err != nil {
		c.Ui.Error(fmt.Sprintf(
			"Error checking leader status: %s", err))
		return 2
	}

	// Output if HA is enabled
	c.Ui.Output("")
	c.Ui.Output(fmt.Sprintf("High-Availability Enabled: %v", leaderStatus.HAEnabled))
	if leaderStatus.HAEnabled {
		if sealStatus.Sealed {
			c.Ui.Output("\tMode: sealed")
		} else {
			mode := "standby"
			if leaderStatus.IsSelf {
				mode = "active"
			}
			c.Ui.Output(fmt.Sprintf("\tMode: %s", mode))

			if leaderStatus.LeaderAddress == "" {
				leaderStatus.LeaderAddress = "<none>"
			}
			c.Ui.Output(fmt.Sprintf("\tLeader: %s", leaderStatus.LeaderAddress))
		}
	}

	if sealStatus.Sealed {
		return 1
	} else {
		return 0
	}
}

func (c *StatusCommand) Synopsis() string {
	return "Outputs status of whether Vault is sealed and if HA mode is enabled"
}

func (c *StatusCommand) Help() string {
	helpText := `
Usage: vault status [options]

  Outputs the state of the Vault, sealed or unsealed and if HA is enabled.

  This command outputs whether or not the Vault is sealed. The exit
  code also reflects the seal status (0 unsealed, 1 sealed, 2+ error).

General Options:

  ` + generalOptionsUsage()
	return strings.TrimSpace(helpText)
}
command/seal-status 2015-03-13 18:33:17 +00:00			`package command`

			`import (`
			`"fmt"`
			`"strings"`
command/status: refactor to improve output 2015-04-20 20:37:32 +00:00
			`"github.com/hashicorp/vault/api"`
command/seal-status 2015-03-13 18:33:17 +00:00			`)`

command: Rename seal-status to status 2015-04-20 19:11:21 +00:00			`// StatusCommand is a Command that outputs the status of whether`
			`// Vault is sealed or not as well as HA information.`
			`type StatusCommand struct {`
command/seal-status 2015-03-13 18:33:17 +00:00			`Meta`
			`}`

command: Rename seal-status to status 2015-04-20 19:11:21 +00:00			`func (c *StatusCommand) Run(args []string) int {`
			`flags := c.Meta.FlagSet("status", FlagSetDefault)`
command/seal-status 2015-03-13 18:33:17 +00:00			`flags.Usage = func() { c.Ui.Error(c.Help()) }`
			`if err := flags.Parse(args); err != nil {`
Don't return 1 when flags don't parse for status command, as all other errors return 2; 1 is for when the vault is sealed 2016-01-29 15:53:56 +00:00			`return 2`
command/seal-status 2015-03-13 18:33:17 +00:00			`}`

			`client, err := c.Client()`
			`if err != nil {`
			`c.Ui.Error(fmt.Sprintf(`
			`"Error initializing client: %s", err))`
			`return 2`
			`}`

command: Adding HA status 2015-04-20 19:08:54 +00:00			`sealStatus, err := client.Sys().SealStatus()`
command/seal-status 2015-03-13 18:33:17 +00:00			`if err != nil {`
			`c.Ui.Error(fmt.Sprintf(`
			`"Error checking seal status: %s", err))`
			`return 2`
			`}`
command/status: refactor to improve output 2015-04-20 20:37:32 +00:00			`c.Ui.Output(fmt.Sprintf(`
			`"Sealed: %v\n"+`
command/status: no weird indentintg 2015-04-21 18:11:15 +00:00			`"Key Shares: %d\n"+`
			`"Key Threshold: %d\n"+`
			`"Unseal Progress: %d",`
command/status: refactor to improve output 2015-04-20 20:37:32 +00:00			`sealStatus.Sealed,`
			`sealStatus.N,`
			`sealStatus.T,`
			`sealStatus.Progress))`
command/seal-status 2015-03-13 18:33:17 +00:00
command/status: refactor to improve output 2015-04-20 20:37:32 +00:00			`// Mask the 'Vault is sealed' error, since this means HA is enabled,`
			`// but that we cannot query for the leader since we are sealed.`
command: Adding HA status 2015-04-20 19:08:54 +00:00			`leaderStatus, err := client.Sys().Leader()`
command/status: refactor to improve output 2015-04-20 20:37:32 +00:00			`if err != nil && strings.Contains(err.Error(), "Vault is sealed") {`
			`leaderStatus = &api.LeaderResponse{HAEnabled: true}`
			`err = nil`
			`}`
command: Adding HA status 2015-04-20 19:08:54 +00:00			`if err != nil {`
			`c.Ui.Error(fmt.Sprintf(`
			`"Error checking leader status: %s", err))`
			`return 2`
			`}`

command/status: refactor to improve output 2015-04-20 20:37:32 +00:00			`// Output if HA is enabled`
command/status: no weird indentintg 2015-04-21 18:11:15 +00:00			`c.Ui.Output("")`
command/status: refactor to improve output 2015-04-20 20:37:32 +00:00			`c.Ui.Output(fmt.Sprintf("High-Availability Enabled: %v", leaderStatus.HAEnabled))`
			`if leaderStatus.HAEnabled {`
			`if sealStatus.Sealed {`
			`c.Ui.Output("\tMode: sealed")`
			`} else {`
			`mode := "standby"`
			`if leaderStatus.IsSelf {`
			`mode = "active"`
			`}`
			`c.Ui.Output(fmt.Sprintf("\tMode: %s", mode))`
command/status: improve output when sealed 2015-04-20 19:19:25 +00:00
command/status: refactor to improve output 2015-04-20 20:37:32 +00:00			`if leaderStatus.LeaderAddress == "" {`
			`leaderStatus.LeaderAddress = "<none>"`
			`}`
			`c.Ui.Output(fmt.Sprintf("\tLeader: %s", leaderStatus.LeaderAddress))`
			`}`
			`}`
command/seal-status 2015-03-13 18:33:17 +00:00
command: Adding HA status 2015-04-20 19:08:54 +00:00			`if sealStatus.Sealed {`
command/seal-status 2015-03-13 18:33:17 +00:00			`return 1`
			`} else {`
			`return 0`
			`}`
			`}`

command: Rename seal-status to status 2015-04-20 19:11:21 +00:00			`func (c *StatusCommand) Synopsis() string {`
			`return "Outputs status of whether Vault is sealed and if HA mode is enabled"`
command/seal-status 2015-03-13 18:33:17 +00:00			`}`

command: Rename seal-status to status 2015-04-20 19:11:21 +00:00			`func (c *StatusCommand) Help() string {`
command/seal-status 2015-03-13 18:33:17 +00:00			helpText := `
command: Rename seal-status to status 2015-04-20 19:11:21 +00:00			`Usage: vault status [options]`
command/seal-status 2015-03-13 18:33:17 +00:00
command: Rename seal-status to status 2015-04-20 19:11:21 +00:00			`Outputs the state of the Vault, sealed or unsealed and if HA is enabled.`
command/seal-status 2015-03-13 18:33:17 +00:00
			`This command outputs whether or not the Vault is sealed. The exit`
			`code also reflects the seal status (0 unsealed, 1 sealed, 2+ error).`

			`General Options:`

command: source general options docs from common source 2015-06-30 19:01:23 +00:00			` + generalOptionsUsage()
command/seal-status 2015-03-13 18:33:17 +00:00			`return strings.TrimSpace(helpText)`
			`}`