mirror of https://github.com/docker/docs.git
Add username and password prompt
Signed-off-by: Derek McGowan <derek@mcgstyle.net> (github: dmcgowan)
This commit is contained in:
Derek McGowan
David Lawrence
parent
16ff63599d
commit
a5aea53ef5
|
|
@ -1,6 +1,7 @@
|
||||||
package main
|
package main
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
"bufio"
|
||||||
"crypto/sha256"
|
"crypto/sha256"
|
||||||
"crypto/tls"
|
"crypto/tls"
|
||||||
"fmt"
|
"fmt"
|
||||||
|
|
@ -9,6 +10,7 @@ import (
|
||||||
"net/http"
|
"net/http"
|
||||||
"net/url"
|
"net/url"
|
||||||
"os"
|
"os"
|
||||||
|
"strings"
|
||||||
"time"
|
"time"
|
||||||
|
|
||||||
"crypto/subtle"
|
"crypto/subtle"
|
||||||
|
|
@ -16,6 +18,7 @@ import (
|
||||||
"github.com/Sirupsen/logrus"
|
"github.com/Sirupsen/logrus"
|
||||||
"github.com/docker/distribution/registry/client/auth"
|
"github.com/docker/distribution/registry/client/auth"
|
||||||
"github.com/docker/distribution/registry/client/transport"
|
"github.com/docker/distribution/registry/client/transport"
|
||||||
|
"github.com/docker/docker/pkg/term"
|
||||||
notaryclient "github.com/docker/notary/client"
|
notaryclient "github.com/docker/notary/client"
|
||||||
"github.com/spf13/cobra"
|
"github.com/spf13/cobra"
|
||||||
"github.com/spf13/viper"
|
"github.com/spf13/viper"
|
||||||
|
|
@ -82,7 +85,7 @@ func tufAdd(cmd *cobra.Command, args []string) {
|
||||||
|
|
||||||
parseConfig()
|
parseConfig()
|
||||||
|
|
||||||
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun), retriever)
|
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun, true), retriever)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fatalf(err.Error())
|
fatalf(err.Error())
|
||||||
}
|
}
|
||||||
|
|
@ -107,7 +110,7 @@ func tufInit(cmd *cobra.Command, args []string) {
|
||||||
gun := args[0]
|
gun := args[0]
|
||||||
parseConfig()
|
parseConfig()
|
||||||
|
|
||||||
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun), retriever)
|
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun, false), retriever)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fatalf(err.Error())
|
fatalf(err.Error())
|
||||||
}
|
}
|
||||||
|
|
@ -149,7 +152,7 @@ func tufList(cmd *cobra.Command, args []string) {
|
||||||
gun := args[0]
|
gun := args[0]
|
||||||
parseConfig()
|
parseConfig()
|
||||||
|
|
||||||
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun), retriever)
|
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun, true), retriever)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fatalf(err.Error())
|
fatalf(err.Error())
|
||||||
}
|
}
|
||||||
|
|
@ -175,7 +178,7 @@ func tufLookup(cmd *cobra.Command, args []string) {
|
||||||
targetName := args[1]
|
targetName := args[1]
|
||||||
parseConfig()
|
parseConfig()
|
||||||
|
|
||||||
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun), retriever)
|
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun, true), retriever)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fatalf(err.Error())
|
fatalf(err.Error())
|
||||||
}
|
}
|
||||||
|
|
@ -199,7 +202,7 @@ func tufPublish(cmd *cobra.Command, args []string) {
|
||||||
|
|
||||||
fmt.Println("Pushing changes to ", gun, ".")
|
fmt.Println("Pushing changes to ", gun, ".")
|
||||||
|
|
||||||
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun), retriever)
|
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun, false), retriever)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fatalf(err.Error())
|
fatalf(err.Error())
|
||||||
}
|
}
|
||||||
|
|
@ -220,7 +223,7 @@ func tufRemove(cmd *cobra.Command, args []string) {
|
||||||
parseConfig()
|
parseConfig()
|
||||||
|
|
||||||
repo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer,
|
repo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer,
|
||||||
getTransport(gun), retriever)
|
getTransport(gun, false), retriever)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fatalf(err.Error())
|
fatalf(err.Error())
|
||||||
}
|
}
|
||||||
|
|
@ -247,7 +250,7 @@ func verify(cmd *cobra.Command, args []string) {
|
||||||
|
|
||||||
gun := args[0]
|
gun := args[0]
|
||||||
targetName := args[1]
|
targetName := args[1]
|
||||||
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun), retriever)
|
nRepo, err := notaryclient.NewNotaryRepository(trustDir, gun, remoteTrustServer, getTransport(gun, true), retriever)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fatalf(err.Error())
|
fatalf(err.Error())
|
||||||
}
|
}
|
||||||
|
|
@ -272,14 +275,47 @@ func verify(cmd *cobra.Command, args []string) {
|
||||||
}
|
}
|
||||||
|
|
||||||
type passwordStore struct {
|
type passwordStore struct {
|
||||||
|
anonymous bool
|
||||||
}
|
}
|
||||||
|
|
||||||
func (ps passwordStore) Basic(u *url.URL) (string, string) {
|
func (ps passwordStore) Basic(u *url.URL) (string, string) {
|
||||||
// TODO(dmcgowan): Prompt user and cache
|
if ps.anonymous {
|
||||||
return "", ""
|
return "", ""
|
||||||
|
}
|
||||||
|
|
||||||
|
stdin := bufio.NewReader(os.Stdin)
|
||||||
|
fmt.Fprintf(os.Stdout, "Enter username: ")
|
||||||
|
|
||||||
|
userIn, err := stdin.ReadBytes('\n')
|
||||||
|
if err != nil {
|
||||||
|
logrus.Errorf("error processing username input: %s", err)
|
||||||
|
return "", ""
|
||||||
|
}
|
||||||
|
|
||||||
|
username := strings.TrimSpace(string(userIn))
|
||||||
|
|
||||||
|
state, err := term.SaveState(0)
|
||||||
|
if err != nil {
|
||||||
|
logrus.Errorf("error saving terminal state, cannot retrieve password: %s", err)
|
||||||
|
return "", ""
|
||||||
|
}
|
||||||
|
term.DisableEcho(0, state)
|
||||||
|
defer term.RestoreTerminal(0, state)
|
||||||
|
|
||||||
|
fmt.Fprintf(os.Stdout, "Enter password: ")
|
||||||
|
|
||||||
|
userIn, err = stdin.ReadBytes('\n')
|
||||||
|
fmt.Fprintln(os.Stdout)
|
||||||
|
if err != nil {
|
||||||
|
logrus.Errorf("error processing password input: %s", err)
|
||||||
|
return "", ""
|
||||||
|
}
|
||||||
|
password := strings.TrimSpace(string(userIn))
|
||||||
|
|
||||||
|
return username, password
|
||||||
}
|
}
|
||||||
|
|
||||||
func getTransport(gun string) http.RoundTripper {
|
func getTransport(gun string, readOnly bool) http.RoundTripper {
|
||||||
tlsConfig := &tls.Config{
|
tlsConfig := &tls.Config{
|
||||||
InsecureSkipVerify: viper.GetBool("skipTLSVerify"),
|
InsecureSkipVerify: viper.GetBool("skipTLSVerify"),
|
||||||
}
|
}
|
||||||
|
|
@ -318,7 +354,7 @@ func getTransport(gun string) http.RoundTripper {
|
||||||
fatalf(err.Error())
|
fatalf(err.Error())
|
||||||
}
|
}
|
||||||
|
|
||||||
ps := passwordStore{}
|
ps := passwordStore{anonymous: readOnly}
|
||||||
tokenHandler := auth.NewTokenHandler(authTransport, ps, gun, "push", "pull")
|
tokenHandler := auth.NewTokenHandler(authTransport, ps, gun, "push", "pull")
|
||||||
basicHandler := auth.NewBasicHandler(ps)
|
basicHandler := auth.NewBasicHandler(ps)
|
||||||
modifier := transport.RequestModifier(auth.NewAuthorizer(challengeManager, tokenHandler, basicHandler))
|
modifier := transport.RequestModifier(auth.NewAuthorizer(challengeManager, tokenHandler, basicHandler))
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue