UNPKG

@dataroadinc/setup-auth

Version:

CLI tool and programmatic API for automated OAuth setup across cloud platforms

github.com/dataroadinc/dr-ts-setup-auth

dataroadinc/dr-ts-setup-auth

85 lines (80 loc) 2.89 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
import { existsSync } from "fs" import { resolve } from "path" import { GcpCloudCliClient } from "../providers/gcp/cloud-cli-client.js" import { Command } from "@commander-js/extra-typings" export async function addCommandLogin(program: Command): Promise<void> { program .command("login") .description( "Perform cloud provider login (GCP user, ADC, service account, Azure, AWS, etc.)" ) .option("--gcp-user", "Perform GCP user login (gcloud auth login)") .option( "--gcp-adc", "Perform GCP ADC login (gcloud auth application-default login)" ) .option( "--gcp-service-account <keyFile>", "Use a GCP service account key for authentication" ) .option("--azure", "Azure login (future)") .option("--aws", "AWS login (future)") .action(async function _action() { const opts = this.optsWithGlobals() const hasOption = opts.gcpUser || opts.gcpAdc || opts.gcpServiceAccount || opts.azure || opts.aws if (!hasOption) { this.help() return } const cli = new GcpCloudCliClient() if (opts.gcpUser) { console.log("Performing GCP user login (gcloud auth login)...") await cli.run(["auth", "login"], false) } if (opts.gcpAdc) { console.log( "Performing GCP ADC login (gcloud auth application-default login)..." ) await cli.run(["auth", "application-default", "login"], false) } if (opts.gcpServiceAccount) { const keyFile = resolve(opts.gcpServiceAccount as string) if (!existsSync(keyFile)) { console.error(`Error: Service account key file not found: ${keyFile}`) process.exit(1) } console.log(`Activating service account using key file: ${keyFile}`) try { // Activate the service account await cli.run( ["auth", "activate-service-account", `--key-file=${keyFile}`], false ) console.log("✅ Service account activated successfully") // Also set it as ADC console.log( "Setting service account as Application Default Credentials..." ) process.env.GOOGLE_APPLICATION_CREDENTIALS = keyFile console.log(`✅ GOOGLE_APPLICATION_CREDENTIALS set to: ${keyFile}`) // Show the active account const activeAccount = await cli.getActiveAccount() console.log(`Active account is now: ${activeAccount}`) } catch (error) { console.error("Failed to activate service account:", error) process.exit(1) } } if (opts.azure) { console.log("Azure login is not yet implemented. Coming soon!") } if (opts.aws) { console.log("AWS login is not yet implemented. Coming soon!") } }) }