cloudflared-mirror/cmd/cloudflared/tunnel/login.go

package tunnel

import (
	"fmt"
	"net/url"
	"os"
	"path/filepath"
	"syscall"

	"github.com/cloudflare/cloudflared/cmd/cloudflared/config"
	"github.com/cloudflare/cloudflared/cmd/cloudflared/transfer"
	"github.com/cloudflare/cloudflared/logger"
	homedir "github.com/mitchellh/go-homedir"
	"github.com/pkg/errors"
	cli "github.com/urfave/cli/v2"
)

const (
	baseLoginURL     = "https://dash.cloudflare.com/argotunnel"
	callbackStoreURL = "https://login.argotunnel.com/"
)

func login(c *cli.Context) error {
	logger, err := logger.New()
	if err != nil {
		return errors.Wrap(err, "error setting up logger")
	}

	path, ok, err := checkForExistingCert()
	if ok {
		fmt.Fprintf(os.Stdout, "You have an existing certificate at %s which login would overwrite.\nIf this is intentional, please move or delete that file then run this command again.\n", path)
		return nil
	} else if err != nil {
		return err
	}

	loginURL, err := url.Parse(baseLoginURL)
	if err != nil {
		// shouldn't happen, URL is hardcoded
		return err
	}

	_, err = transfer.Run(loginURL, "cert", "callback", callbackStoreURL, path, false, false, logger)
	if err != nil {
		fmt.Fprintf(os.Stderr, "Failed to write the certificate due to the following error:\n%v\n\nYour browser will download the certificate instead. You will have to manually\ncopy it to the following path:\n\n%s\n", err, path)
		return err
	}

	fmt.Fprintf(os.Stdout, "You have successfully logged in.\nIf you wish to copy your credentials to a server, they have been saved to:\n%s\n", path)
	return nil
}

func checkForExistingCert() (string, bool, error) {
	configPath, err := homedir.Expand(config.DefaultConfigSearchDirectories()[0])
	if err != nil {
		return "", false, err
	}
	ok, err := config.FileExists(configPath)
	if !ok && err == nil {
		// create config directory if doesn't already exist
		err = os.Mkdir(configPath, 0700)
	}
	if err != nil {
		return "", false, err
	}
	path := filepath.Join(configPath, config.DefaultCredentialFile)
	fileInfo, err := os.Stat(path)
	if err == nil && fileInfo.Size() > 0 {
		return path, true, nil
	}
	if err != nil && err.(*os.PathError).Err != syscall.ENOENT {
		return path, false, err
	}

	return path, false, nil
}
TUN-1099: Bring back changes in 2018.10.1 2018-10-08 19:20:28 +00:00			`package tunnel`

			`import (`
			`"fmt"`
			`"net/url"`
			`"os"`
			`"path/filepath"`
			`"syscall"`

			`"github.com/cloudflare/cloudflared/cmd/cloudflared/config"`
			`"github.com/cloudflare/cloudflared/cmd/cloudflared/transfer"`
AUTH-2596 added new logger package and replaced logrus 2020-04-29 20:51:32 +00:00			`"github.com/cloudflare/cloudflared/logger"`
TUN-1099: Bring back changes in 2018.10.1 2018-10-08 19:20:28 +00:00			`homedir "github.com/mitchellh/go-homedir"`
AUTH-2596 added new logger package and replaced logrus 2020-04-29 20:51:32 +00:00			`"github.com/pkg/errors"`
TUN-3233: List tunnels support filtering by deleted, name, existed at and id 2020-08-05 10:49:53 +00:00			`cli "github.com/urfave/cli/v2"`
TUN-1099: Bring back changes in 2018.10.1 2018-10-08 19:20:28 +00:00			`)`

			`const (`
			`baseLoginURL = "https://dash.cloudflare.com/argotunnel"`
TUN-2201: change SRV records used by cloudflared This changes cloudflarewarp.com to argotunnel.com and _warp to _origintunneld. We've changed which zone we host the SRV records for Argo Tunnel on. 2019-09-04 18:21:45 +00:00			`callbackStoreURL = "https://login.argotunnel.com/"`
TUN-1099: Bring back changes in 2018.10.1 2018-10-08 19:20:28 +00:00			`)`

			`func login(c *cli.Context) error {`
AUTH-2596 added new logger package and replaced logrus 2020-04-29 20:51:32 +00:00			`logger, err := logger.New()`
			`if err != nil {`
			`return errors.Wrap(err, "error setting up logger")`
			`}`

TUN-1099: Bring back changes in 2018.10.1 2018-10-08 19:20:28 +00:00			`path, ok, err := checkForExistingCert()`
			`if ok {`
			`fmt.Fprintf(os.Stdout, "You have an existing certificate at %s which login would overwrite.\nIf this is intentional, please move or delete that file then run this command again.\n", path)`
			`return nil`
			`} else if err != nil {`
			`return err`
			`}`

			`loginURL, err := url.Parse(baseLoginURL)`
			`if err != nil {`
			`// shouldn't happen, URL is hardcoded`
			`return err`
			`}`

AUTH-2902 redirect with just the root host on curl commands 2020-07-17 16:08:05 +00:00			`_, err = transfer.Run(loginURL, "cert", "callback", callbackStoreURL, path, false, false, logger)`
TUN-1099: Bring back changes in 2018.10.1 2018-10-08 19:20:28 +00:00			`if err != nil {`
			`fmt.Fprintf(os.Stderr, "Failed to write the certificate due to the following error:\n%v\n\nYour browser will download the certificate instead. You will have to manually\ncopy it to the following path:\n\n%s\n", err, path)`
			`return err`
			`}`

			`fmt.Fprintf(os.Stdout, "You have successfully logged in.\nIf you wish to copy your credentials to a server, they have been saved to:\n%s\n", path)`
			`return nil`
			`}`

			`func checkForExistingCert() (string, bool, error) {`
AUTH-2975 don't check /etc on windows 2020-08-14 20:52:47 +00:00			`configPath, err := homedir.Expand(config.DefaultConfigSearchDirectories()[0])`
TUN-1099: Bring back changes in 2018.10.1 2018-10-08 19:20:28 +00:00			`if err != nil {`
			`return "", false, err`
			`}`
			`ok, err := config.FileExists(configPath)`
			`if !ok && err == nil {`
			`// create config directory if doesn't already exist`
			`err = os.Mkdir(configPath, 0700)`
			`}`
			`if err != nil {`
			`return "", false, err`
			`}`
			`path := filepath.Join(configPath, config.DefaultCredentialFile)`
			`fileInfo, err := os.Stat(path)`
			`if err == nil && fileInfo.Size() > 0 {`
			`return path, true, nil`
			`}`
			`if err != nil && err.(*os.PathError).Err != syscall.ENOENT {`
			`return path, false, err`
			`}`

			`return path, false, nil`
			`}`