Nice! Let's also please make it so that if the user runs dbc install or dbc sync to install a private driver, dbc checks to see whether:

1. the user is authenticated
2. the user has an active trial license
3. the user has not yet downloaded columnar.lic and put it in the required location.

If all three of those things are true, dbc should download columnar.lic and put it in the required location for the user.

@ianmcook updated per your suggestion

Added @lidavidm so he can see where dbc is putting the license

@ianmcook updated per your suggestion

Nice! I tested it successfully.

I'm not sure if this is the same error as @lidavidm got but here's what I did:

1. Ran go run ./cmd/dbc auth login
2. In my browser, saw the user code, clicked Confirm
3. Logged in to Columnar with Google
4. Got to my account details page (https://cloud.columnar.tech/account)

Back in my terminal, the CLI is stuck on

Authentication successful!
⠙ Waiting for confirmation...

I note that my trial is expired. Also I notice that the text says

Expires: Thu, 25 Dec 2025 23:16:09 GMT

but it should probably tell me that my license is expired.

@amoeba can you try again? It looks good to me (and I'll update the website to be more explicit when the trial is expired)

Thanks @zeroshade. I can't reproduce anymore as I don't have an expired license but dbc auth login works fine now.

I ran into an issue while testing driver list support for this,

$ go run ./cmd/dbc info red-o
Driver: red-o
Version: 0.3.0
Title: Columnar ADBC Driver red-o
License: LicenseRef-PBL
Description: An ADBC driver for Oracle Database developed by Columnar
Available Packages:
   - linux_amd64
   - linux_arm64
   - macos_arm64
   - windows_amd64
   
~/src/columnar-tech/dbc auth-fetch-license
$ go run ./cmd/dbc init

~/src/columnar-tech/dbc auth-fetch-license
$ go run ./cmd/dbc add red-o
added red-o to driver list
use `dbc sync` to install the drivers in the list

~/src/columnar-tech/dbc auth-fetch-license
$ go run ./cmd/dbc sync
Error: failed to download driver: failed to download driver https://dbc-cdn-private.columnar.tech/red-o/v0.3.0/red-o_macos_arm64_v0.3.0.tar.gz: 401 Unauthorized
exit status 1

This was go running from 7a4e818e9e20269d133df301dbfa9cf63d2c1de7.

I ran dbc auth login and it worked after I did that. I can't remember how I got the token that 401's but, looking at it decoded, the biggest difference is that,

• The token that 401s had "permissions":[]
• The token that worked fine had "permissions":["access:index","access:red-o"]

Otherwise things looked structurally similar.

sigh yea, looks like I might have to do part of what I was discussing with Ian. I was trying to reduce calls and latency but I guess there's no way around it. I'll do some stuff tomorrow to make this more robust and handle things better instead of relying on the (potentially stale) login token

@amoeba Okay, I've updated the lambda func to fallback and make a call to heimdall.columnar.tech for the latest token when the token came from Auth0 and doesn't contain the appropriate permissions. This will cover the scenario you had where you had to re-login.

Nice! Let me test that out in a sec and I'll report back.

I wasn't able to get this to work how I expected. I deleted my account in auth0, signed up with a fresh account, logged in but did not start my trial, ran dbc auth login, started my trial, and ran dbc install oracle. It hung for a good 5-10 seconds and then error'd with,

$ go run ./cmd/dbc install oracle
Error: failed to download driver https://dbc-cdn-private.columnar.tech/oracle/v0.4.0/oracle_macos_arm64_v0.4.0.tar.gz: 401 Unauthorized
exit status 1

I had mitmproxy running dbc made two requests (amongst others) to install the driver. The first 401 had a JWT with "permissions":[] as expected. The second 401 had "permissions":["access:index","access:red-o"]}

Maybe something else is going on. I went back to the preview Cloud site and the UI didn't show I had a trial. I then tried to restart my trial and it kept failing after I hit Accept with a 400 "Trial already started" in the console. I'll file a bug since the registry site needs to handle that.