feat(cli): Add flag --offline that will prevent kfutil from reaching out to GitHub for latest releases of resources like store type definitions.

chore(docs): Update docs with `--offline` flag

Signed-off-by: spbsoluble <[email protected]>

Author: spbsoluble

cmd/constants.go

@@ -30,6 +30,7 @@ const (
 	DebugFuncEnter            = "entered: %s"
 	DebugFuncExit             = "exiting: %s"
 	DebugFuncCall             = "calling: %s"
+	MinHttpTimeout            = 3
 )
 
 var ProviderTypeChoices = []string{

cmd/root.go

@@ -45,6 +45,7 @@ var (
 	kfcAPIPath   string
 	logInsecure  bool
 	outputFormat string
+	offline      bool
 )
 
 func hashSecretValue(secretValue string) string {
@@ -361,6 +362,12 @@ func init() {
 		false,
 		"Enable expEnabled features. (USE AT YOUR OWN RISK, these features are not supported and may change or be removed at any time.)",
 	)
+	RootCmd.PersistentFlags().BoolVar(
+		&offline,
+		"offline",
+		false,
+		"Will not attempt to connect to GitHub for latest release information and resources.",
+	)
 	RootCmd.PersistentFlags().BoolVar(&debugFlag, "debug", false, "Enable debugFlag logging.")
 	RootCmd.PersistentFlags().BoolVar(
 		&logInsecure,

cmd/storeTypes.go

@@ -23,6 +23,7 @@ import (
 	"os"
 	"sort"
 	"strings"
+	"time"
 
 	"github.com/AlecAivazis/survey/v2"
 	"github.com/Keyfactor/keyfactor-go-client/v2/api"
@@ -174,7 +175,7 @@ var storesTypeCreateCmd = &cobra.Command{
 		} else {
 			typesToCreate = validStoreTypes
 		}
-		storeTypeConfig, stErr := readStoreTypesConfig("", gitRef)
+		storeTypeConfig, stErr := readStoreTypesConfig("", gitRef, offline)
 		if stErr != nil {
 			log.Error().Err(stErr).Send()
 			return stErr
@@ -364,7 +365,7 @@ var fetchStoreTypesCmd = &cobra.Command{
 		if gitRef == "" {
 			gitRef = "main"
 		}
-		templates, err := readStoreTypesConfig("", gitRef)
+		templates, err := readStoreTypesConfig("", gitRef, offline)
 		if err != nil {
 			log.Error().Err(err).Send()
 			return err
@@ -454,7 +455,14 @@ func getStoreTypesInternet(gitRef string) (map[string]interface{}, error) {
 		Str("url", url).
 		Msg("Getting store types from internet")
 
-	resp, rErr := http.Get(url)
+	// Define the timeout duration
+	timeout := MinHttpTimeout * time.Second
+
+	// Create a custom http.Client with the timeout
+	client := &http.Client{
+		Timeout: timeout,
+	}
+	resp, rErr := client.Get(url)
 	if rErr != nil {
 		return nil, rErr
 	}
@@ -489,7 +497,7 @@ func getValidStoreTypes(fp string, gitRef string) []string {
 		Str("file", fp).
 		Str("gitRef", gitRef).
 		Msg("Reading store types config.")
-	validStoreTypes, rErr := readStoreTypesConfig(fp, gitRef)
+	validStoreTypes, rErr := readStoreTypesConfig(fp, gitRef, offline)
 	if rErr != nil {
 		log.Error().Err(rErr).Msg("unable to read store types")
 		return nil
@@ -502,12 +510,22 @@ func getValidStoreTypes(fp string, gitRef string) []string {
 	return validStoreTypesList
 }
 
-func readStoreTypesConfig(fp, gitRef string) (map[string]interface{}, error) {
+func readStoreTypesConfig(fp, gitRef string, offline bool) (map[string]interface{}, error) {
 	log.Debug().Str("file", fp).Str("gitRef", gitRef).Msg("Entering readStoreTypesConfig")
 
-	sTypes, stErr := getStoreTypesInternet(gitRef)
+	var (
+		sTypes map[string]interface{}
+		stErr  error
+	)
+	if offline {
+		log.Debug().Msg("Reading store types config from file")
+	} else {
+		log.Debug().Msg("Reading store types config from internet")
+		sTypes, stErr = getStoreTypesInternet(gitRef)
+	}
+
 	if stErr != nil || sTypes == nil || len(sTypes) == 0 {
-		log.Warn().Err(stErr).Msg("Unable to read store types from internet, using embedded definitions")
+		log.Warn().Err(stErr).Msg("Using embedded store-type definitions")
 		var emStoreTypes []interface{}
 		if err := json.Unmarshal(EmbeddedStoreTypesJSON, &emStoreTypes); err != nil {
 			log.Error().Err(err).Msg("Unable to unmarshal embedded store type definitions")

cmd/storeTypes_test.go

@@ -22,6 +22,7 @@ import (
 	"strings"
 	"testing"
 
+	"github.com/spf13/cobra"
 	"github.com/stretchr/testify/assert"
 )
 
@@ -204,88 +205,107 @@ func Test_StoreTypesCreateFromTemplatesCmd(t *testing.T) {
 	createAllStoreTypes(t, storeTypes)
 }
 
-func createAllStoreTypes(t *testing.T, storeTypes map[string]interface{}) {
-	t.Run(
-		fmt.Sprintf("Create ALL StoreTypes"), func(t *testing.T) {
-			testCmd := RootCmd
-			// check if I'm running inside a GitHub Action
-			testArgs := []string{"store-types", "create", "--all"}
-			isGhAction := os.Getenv("GITHUB_ACTIONS")
-			t.Log("GITHUB_ACTIONS: ", isGhAction)
-			if isGhAction == "true" {
-				ghBranch := os.Getenv("GITHUB_REF")
-				ghBranch = strings.Replace(ghBranch, "refs/heads/", "", 1)
-				// url escape the branch name
-				ghBranch = url.QueryEscape(ghBranch)
-				testArgs = append(testArgs, "--git-ref", fmt.Sprintf("%s", ghBranch))
-				t.Log("GITHUB_REF: ", ghBranch)
-			}
-			t.Log("testArgs: ", testArgs)
-			allowFail := false
-			// Attempt to get the AWS store type because it comes with the product
-			testCmd.SetArgs(testArgs)
-			output := captureOutput(
-				func() {
-					err := testCmd.Execute()
-
-					if err != nil {
-						eMsg := err.Error()
-						eMsg = strings.Replace(eMsg, "while creating store types:", "", -1)
-						for _, exception := range UndeleteableExceptions {
-							eMsg = strings.Replace(eMsg, exception, "", -1)
-						}
-						eMsg = strings.TrimSpace(eMsg)
-						if eMsg == "" {
-							return
-						}
-						t.Error("Emsg: ", eMsg)
-						if !allowFail {
-							assert.NoError(t, err)
-						}
-					}
-					if !allowFail {
-						assert.NoError(t, err)
-					}
-				},
-			)
+func testCreateStoreType(
+	t *testing.T,
+	testCmd *cobra.Command,
+	testArgs []string,
+	storeTypes map[string]interface{},
+) error {
+	isGhAction := os.Getenv("GITHUB_ACTIONS")
+	t.Log("GITHUB_ACTIONS: ", isGhAction)
+	if isGhAction == "true" {
+		ghBranch := os.Getenv("GITHUB_REF")
+		ghBranch = strings.Replace(ghBranch, "refs/heads/", "", 1)
+		// url escape the branch name
+		ghBranch = url.QueryEscape(ghBranch)
+		testArgs = append(testArgs, "--git-ref", fmt.Sprintf("%s", ghBranch))
+		t.Log("GITHUB_REF: ", ghBranch)
+	}
+	t.Log("testArgs: ", testArgs)
+	allowFail := false
+	// Attempt to get the AWS store type because it comes with the product
+	testCmd.SetArgs(testArgs)
+	output := captureOutput(
+		func() {
+			err := testCmd.Execute()
 
+			if err != nil {
+				eMsg := err.Error()
+				eMsg = strings.Replace(eMsg, "while creating store types:", "", -1)
+				for _, exception := range UndeleteableExceptions {
+					eMsg = strings.Replace(eMsg, exception, "", -1)
+				}
+				eMsg = strings.TrimSpace(eMsg)
+				if eMsg == "" {
+					return
+				}
+				t.Error("Emsg: ", eMsg)
+				if !allowFail {
+					assert.NoError(t, err)
+				}
+			}
 			if !allowFail {
-				assert.NotNil(t, output, "No output returned from create all command")
+				assert.NoError(t, err)
 			}
+		},
+	)
 
-			// iterate over the store types and verify that each has a name shortname and storetype
-			for sType := range storeTypes {
-				storeType := storeTypes[sType].(map[string]interface{})
-				assert.NotNil(t, storeType["Name"], "Expected store type to have a name")
-				assert.NotNil(t, storeType["ShortName"], "Expected store type to have short name")
-
-				// verify short name is a string
-				_, ok := storeType["ShortName"].(string)
-				assert.True(t, ok, "Expected short name to be a string")
-				// verify name is a string
-				_, ok = storeType["Name"].(string)
-				assert.True(t, ok, "Expected name to be a string")
-
-				// Attempt to create the store type
-				shortName := storeType["ShortName"].(string)
-				allowStoreTypeFail := false
-				if checkIsUnDeleteable(shortName) {
-					t.Logf("WARNING: Skipping check for un-deletable store-type: %s", shortName)
-					allowStoreTypeFail = true
-				}
+	if !allowFail {
+		assert.NotNil(t, output, "No output returned from create all command")
+	}
 
-				if !allowStoreTypeFail {
-					assert.Contains(
-						t,
-						output,
-						fmt.Sprintf("Certificate store type %s created with ID", shortName),
-						"Expected output to contain store type created message",
-					)
-				}
+	// iterate over the store types and verify that each has a name shortname and storetype
+	for sType := range storeTypes {
+		storeType := storeTypes[sType].(map[string]interface{})
+		assert.NotNil(t, storeType["Name"], "Expected store type to have a name")
+		assert.NotNil(t, storeType["ShortName"], "Expected store type to have short name")
 
-				// Delete again after create
-				deleteStoreTypeTest(t, shortName, allowStoreTypeFail)
-			}
+		// verify short name is a string
+		_, ok := storeType["ShortName"].(string)
+		assert.True(t, ok, "Expected short name to be a string")
+		// verify name is a string
+		_, ok = storeType["Name"].(string)
+		assert.True(t, ok, "Expected name to be a string")
+
+		// Attempt to create the store type
+		shortName := storeType["ShortName"].(string)
+		allowStoreTypeFail := false
+		if checkIsUnDeleteable(shortName) {
+			t.Logf("WARNING: Skipping check for un-deletable store-type: %s", shortName)
+			allowStoreTypeFail = true
+		}
+
+		if !allowStoreTypeFail {
+			assert.Contains(
+				t,
+				output,
+				fmt.Sprintf("Certificate store type %s created with ID", shortName),
+				"Expected output to contain store type created message",
+			)
+		}
+
+		// Delete again after create
+		deleteStoreTypeTest(t, shortName, allowStoreTypeFail)
+	}
+	return nil
+}
+
+func createAllStoreTypes(t *testing.T, storeTypes map[string]interface{}) {
+	t.Run(
+		fmt.Sprintf("ONLINE Create ALL StoreTypes"), func(t *testing.T) {
+			testCmd := RootCmd
+			// check if I'm running inside a GitHub Action
+			testArgs := []string{"store-types", "create", "--all"}
+			testCreateStoreType(t, testCmd, testArgs, storeTypes)
+
+		},
+	)
+	t.Run(
+		fmt.Sprintf("OFFLINE Create ALL StoreTypes"), func(t *testing.T) {
+			testCmd := RootCmd
+			// check if I'm running inside a GitHub Action
+			testArgs := []string{"store-types", "create", "--all", "--offline"}
+			testCreateStoreType(t, testCmd, testArgs, storeTypes)
 		},
 	)
 }

docs/kfutil.md

@@ -21,6 +21,7 @@ A CLI wrapper around the Keyfactor Platform API.
       --hostname string                Hostname to use for authenticating to Keyfactor Command.
       --log-insecure                   Log insecure API requests. (USE AT YOUR OWN RISK, this WILL log sensitive information to the console.)
       --no-prompt                      Do not prompt for any user input and assume defaults or environmental variables are set.
+      --offline                        Will not attempt to connect to GitHub for latest release information and resources.
       --password string                Password to use for authenticating to Keyfactor Command. WARNING: Remember to delete your console history if providing kfcPassword here in plain text.
       --profile string                 Use a specific profile from your config file. If not specified the config named 'default' will be used if it exists.
       --username string                Username to use for authenticating to Keyfactor Command.
@@ -42,4 +43,4 @@ A CLI wrapper around the Keyfactor Platform API.
 * [kfutil stores](kfutil_stores.md)	 - Keyfactor certificate stores APIs and utilities.
 * [kfutil version](kfutil_version.md)	 - Shows version of kfutil
 
-###### Auto generated by spf13/cobra on 27-Feb-2024
+###### Auto generated by spf13/cobra on 8-Sep-2024

docs/kfutil_completion.md

@@ -28,6 +28,7 @@ See each sub-command's help for details on how to use the generated script.
       --hostname string                Hostname to use for authenticating to Keyfactor Command.
       --log-insecure                   Log insecure API requests. (USE AT YOUR OWN RISK, this WILL log sensitive information to the console.)
       --no-prompt                      Do not prompt for any user input and assume defaults or environmental variables are set.
+      --offline                        Will not attempt to connect to GitHub for latest release information and resources.
       --password string                Password to use for authenticating to Keyfactor Command. WARNING: Remember to delete your console history if providing kfcPassword here in plain text.
       --profile string                 Use a specific profile from your config file. If not specified the config named 'default' will be used if it exists.
       --username string                Username to use for authenticating to Keyfactor Command.
@@ -41,4 +42,4 @@ See each sub-command's help for details on how to use the generated script.
 * [kfutil completion powershell](kfutil_completion_powershell.md)	 - Generate the autocompletion script for powershell
 * [kfutil completion zsh](kfutil_completion_zsh.md)	 - Generate the autocompletion script for zsh
 
-###### Auto generated by spf13/cobra on 27-Feb-2024
+###### Auto generated by spf13/cobra on 8-Sep-2024

docs/kfutil_completion_bash.md

@@ -51,6 +51,7 @@ kfutil completion bash
       --hostname string                Hostname to use for authenticating to Keyfactor Command.
       --log-insecure                   Log insecure API requests. (USE AT YOUR OWN RISK, this WILL log sensitive information to the console.)
       --no-prompt                      Do not prompt for any user input and assume defaults or environmental variables are set.
+      --offline                        Will not attempt to connect to GitHub for latest release information and resources.
       --password string                Password to use for authenticating to Keyfactor Command. WARNING: Remember to delete your console history if providing kfcPassword here in plain text.
       --profile string                 Use a specific profile from your config file. If not specified the config named 'default' will be used if it exists.
       --username string                Username to use for authenticating to Keyfactor Command.
@@ -60,4 +61,4 @@ kfutil completion bash
 
 * [kfutil completion](kfutil_completion.md)	 - Generate the autocompletion script for the specified shell
 
-###### Auto generated by spf13/cobra on 27-Feb-2024
+###### Auto generated by spf13/cobra on 8-Sep-2024

docs/kfutil_completion_fish.md

@@ -42,6 +42,7 @@ kfutil completion fish [flags]
       --hostname string                Hostname to use for authenticating to Keyfactor Command.
       --log-insecure                   Log insecure API requests. (USE AT YOUR OWN RISK, this WILL log sensitive information to the console.)
       --no-prompt                      Do not prompt for any user input and assume defaults or environmental variables are set.
+      --offline                        Will not attempt to connect to GitHub for latest release information and resources.
       --password string                Password to use for authenticating to Keyfactor Command. WARNING: Remember to delete your console history if providing kfcPassword here in plain text.
       --profile string                 Use a specific profile from your config file. If not specified the config named 'default' will be used if it exists.
       --username string                Username to use for authenticating to Keyfactor Command.
@@ -51,4 +52,4 @@ kfutil completion fish [flags]
 
 * [kfutil completion](kfutil_completion.md)	 - Generate the autocompletion script for the specified shell
 
-###### Auto generated by spf13/cobra on 27-Feb-2024
+###### Auto generated by spf13/cobra on 8-Sep-2024

docs/kfutil_completion_powershell.md

@@ -39,6 +39,7 @@ kfutil completion powershell [flags]
       --hostname string                Hostname to use for authenticating to Keyfactor Command.
       --log-insecure                   Log insecure API requests. (USE AT YOUR OWN RISK, this WILL log sensitive information to the console.)
       --no-prompt                      Do not prompt for any user input and assume defaults or environmental variables are set.
+      --offline                        Will not attempt to connect to GitHub for latest release information and resources.
       --password string                Password to use for authenticating to Keyfactor Command. WARNING: Remember to delete your console history if providing kfcPassword here in plain text.
       --profile string                 Use a specific profile from your config file. If not specified the config named 'default' will be used if it exists.
       --username string                Username to use for authenticating to Keyfactor Command.
@@ -48,4 +49,4 @@ kfutil completion powershell [flags]
 
 * [kfutil completion](kfutil_completion.md)	 - Generate the autocompletion script for the specified shell
 
-###### Auto generated by spf13/cobra on 27-Feb-2024
+###### Auto generated by spf13/cobra on 8-Sep-2024

docs/kfutil_completion_zsh.md

@@ -53,6 +53,7 @@ kfutil completion zsh [flags]
       --hostname string                Hostname to use for authenticating to Keyfactor Command.
       --log-insecure                   Log insecure API requests. (USE AT YOUR OWN RISK, this WILL log sensitive information to the console.)
       --no-prompt                      Do not prompt for any user input and assume defaults or environmental variables are set.
+      --offline                        Will not attempt to connect to GitHub for latest release information and resources.
       --password string                Password to use for authenticating to Keyfactor Command. WARNING: Remember to delete your console history if providing kfcPassword here in plain text.
       --profile string                 Use a specific profile from your config file. If not specified the config named 'default' will be used if it exists.
       --username string                Username to use for authenticating to Keyfactor Command.
@@ -62,4 +63,4 @@ kfutil completion zsh [flags]
 
 * [kfutil completion](kfutil_completion.md)	 - Generate the autocompletion script for the specified shell
 
-###### Auto generated by spf13/cobra on 27-Feb-2024
+###### Auto generated by spf13/cobra on 8-Sep-2024