fix: Restrict profile command to idc users only (#3306)

* only allow idc user call profile

* delete imports

* change fun type

Author: evanliu048

crates/chat-cli/src/auth/builder_id.rs

@@ -41,10 +41,7 @@ use aws_smithy_runtime_api::client::identity::{
 };
 use aws_smithy_types::error::display::DisplayErrorContext;
 use aws_types::region::Region;
-use eyre::{
-    Result,
-    eyre,
-};
+use eyre::Result;
 use time::OffsetDateTime;
 use tracing::{
     debug,
@@ -614,14 +611,14 @@ impl ResolveIdentity for BearerResolver {
     }
 }
 
-pub async fn is_idc_user(database: &Database) -> Result<bool> {
+pub async fn is_idc_user(database: &Database) -> bool {
     if cfg!(test) {
-        return Ok(false);
+        return false;
     }
     if let Ok(Some(token)) = BuilderIdToken::load(database).await {
-        Ok(token.token_type() == TokenType::IamIdentityCenter)
+        token.token_type() == TokenType::IamIdentityCenter
     } else {
-        Err(eyre!("No auth token found - is the user signed in?"))
+        false
     }
 }
 

crates/chat-cli/src/cli/chat/cli/subscribe.rs

@@ -37,10 +37,7 @@ pub struct SubscribeArgs {
 
 impl SubscribeArgs {
     pub async fn execute(self, os: &mut Os, session: &mut ChatSession) -> Result<ChatState, ChatError> {
-        if is_idc_user(&os.database)
-            .await
-            .map_err(|e| ChatError::Custom(e.to_string().into()))?
-        {
+        if is_idc_user(&os.database).await {
             execute!(
                 session.stderr,
                 StyledText::warning_fg(),

crates/chat-cli/src/cli/chat/mod.rs

@@ -3737,7 +3737,7 @@ enum ActualSubscriptionStatus {
 //
 // Also, it is currently not possible to subscribe or re-subscribe via console, only IDE/CLI.
 async fn get_subscription_status(os: &mut Os) -> Result<ActualSubscriptionStatus> {
-    if is_idc_user(&os.database).await? {
+    if is_idc_user(&os.database).await {
         return Ok(ActualSubscriptionStatus::Active);
     }
 

crates/chat-cli/src/cli/user.rs

@@ -32,6 +32,7 @@ use crate::auth::builder_id::{
     BuilderIdToken,
     PollCreateToken,
     TokenType,
+    is_idc_user,
     poll_create_token,
     start_device_authorization,
 };
@@ -338,10 +339,8 @@ pub enum LicenseType {
 }
 
 pub async fn profile(os: &mut Os) -> Result<ExitCode> {
-    if let Ok(Some(token)) = BuilderIdToken::load(&os.database).await {
-        if matches!(token.token_type(), TokenType::BuilderId) {
-            bail!("This command is only available for Pro users");
-        }
+    if !is_idc_user(&os.database).await {
+        bail!("This command is only available for IAM Identity Center users");
     }
 
     select_profile_interactive(os, false).await?;