cscli: handle sigint/sigterm, cancel context of ongoing http req (#3660)

* cscli: handle sigint/sigterm, cancel context of ongoing http req

* lint

* format error correctly from initialize()

Author: mmetc

cmd/crowdsec-cli/main.go

@@ -1,10 +1,13 @@
 package main
 
 import (
+	"context"
 	"fmt"
 	"os"
+	"os/signal"
 	"path/filepath"
 	"slices"
+	"syscall"
 	"time"
 
 	"github.com/fatih/color"
@@ -171,6 +174,7 @@ func (cli *cliRoot) initialize() error {
 	if csConfig.DbConfig != nil {
 		csConfig.DbConfig.LogLevel = ptr.Of(cli.wantedLogLevel())
 	}
+
 	return nil
 }
 
@@ -295,7 +299,7 @@ It is meant to allow you to manage bans, parsers/scenarios/etc, api and generall
 		cobra.OnInitialize(
 			func() {
 				if err := cli.initialize(); err != nil {
-					log.Fatal(err)
+					fatal(err)
 				}
 			},
 		)
@@ -304,15 +308,27 @@ It is meant to allow you to manage bans, parsers/scenarios/etc, api and generall
 	return cmd, nil
 }
 
-func main() {
+func fatal(err error) {
+	red := color.New(color.FgRed).SprintFunc()
+	fmt.Fprintln(os.Stderr, red("Error:"), err)
+	os.Exit(1)
+}
+
+func mainWrap() error {
+	ctx, stop := signal.NotifyContext(context.Background(), os.Interrupt, syscall.SIGTERM)
+	defer stop()
+
 	cmd, err := newCliRoot().NewCommand()
 	if err != nil {
-		log.Fatal(err)
+		return err
 	}
 
-	if err := cmd.Execute(); err != nil {
-		red := color.New(color.FgRed).SprintFunc()
-		fmt.Fprintln(os.Stderr, red("Error:"), err)
-		os.Exit(1)
+	return cmd.ExecuteContext(ctx)
+}
+
+func main() {
+	err := mainWrap()
+	if err != nil {
+		fatal(err)
 	}
 }

pkg/apiclient/auth_jwt.go

@@ -36,11 +36,9 @@ type JWTTransport struct {
 	TokenSave         TokenSave
 }
 
-func (t *JWTTransport) refreshJwtToken() error {
+func (t *JWTTransport) refreshJwtToken(ctx context.Context) error {
 	var err error
 
-	ctx := context.TODO()
-
 	if t.UpdateScenario != nil {
 		t.Scenarios, err = t.UpdateScenario(ctx)
 		if err != nil {
@@ -141,6 +139,7 @@ func (t *JWTTransport) refreshJwtToken() error {
 			log.Errorf("unable to save token: %s", err)
 		}
 	}
+
 	log.Debugf("token %s will expire on %s", t.Token, t.Expiration.String())
 
 	return nil
@@ -160,7 +159,7 @@ func (t *JWTTransport) prepareRequest(req *http.Request) (*http.Request, error)
 	// We bypass the refresh if we are requesting the login endpoint, as it does not require a token,
 	// and it leads to do 2 requests instead of one (refresh + actual login request).
 	if req.URL.Path != "/"+t.VersionPrefix+"/watchers/login" && t.needsTokenRefresh() {
-		if err := t.refreshJwtToken(); err != nil {
+		if err := t.refreshJwtToken(req.Context()); err != nil {
 			return nil, err
 		}
 	}