shift7-ch
diff --git a/‎admin-cli/pom.xml‎
Lines changed: 157 additions & 0 deletions b/‎admin-cli/pom.xml‎
Lines changed: 157 additions & 0 deletions
diff --git a/‎admin-cli/src/main/java/cloud/katta/cli/KattaSetupCli.java‎
Lines changed: 26 additions & 0 deletions b/‎admin-cli/src/main/java/cloud/katta/cli/KattaSetupCli.java‎
Lines changed: 26 additions & 0 deletions
diff --git a/‎admin-cli/src/main/java/cloud/katta/cli/commands/AbstractAuthorizationCode.java‎
Lines changed: 57 additions & 0 deletions b/‎admin-cli/src/main/java/cloud/katta/cli/commands/AbstractAuthorizationCode.java‎
Lines changed: 57 additions & 0 deletions
diff --git a/‎admin-cli/src/main/java/cloud/katta/cli/commands/AuthorizationCode.java‎
Lines changed: 51 additions & 0 deletions b/‎admin-cli/src/main/java/cloud/katta/cli/commands/AuthorizationCode.java‎
Lines changed: 51 additions & 0 deletions
@@ -0,0 +1,157 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <parent>
+        <groupId>cloud.katta</groupId>
+        <artifactId>katta-clientlib</artifactId>
+        <version>1.0.0-SNAPSHOT</version>
+    </parent>
+    <artifactId>admin-cli</artifactId>
+
+    <properties>
+        <maven.compiler.source>21</maven.compiler.source>
+        <maven.compiler.target>21</maven.compiler.target>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+        <picocli.version>4.7.6</picocli.version>
+    </properties>
+
+    <dependencies>
+        <dependency>
+            <groupId>cloud.katta</groupId>
+            <artifactId>katta-clientlib-hub</artifactId>
+            <version>${project.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>cloud.katta</groupId>
+            <artifactId>katta-clientlib-hub</artifactId>
+            <version>${project.version}</version>
+            <classifier>tests</classifier>
+            <type>test-jar</type>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>ch.cyberduck</groupId>
+            <artifactId>core</artifactId>
+            <type>test-jar</type>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>ch.cyberduck</groupId>
+            <artifactId>test</artifactId>
+            <type>pom</type>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>io.github.coffeelibs</groupId>
+            <artifactId>tiny-oauth2-client</artifactId>
+            <version>0.8.1</version>
+        </dependency>
+        <dependency>
+            <groupId>commons-codec</groupId>
+            <artifactId>commons-codec</artifactId>
+            <version>1.18.0</version>
+        </dependency>
+        <dependency>
+            <groupId>software.amazon.awssdk</groupId>
+            <artifactId>iam</artifactId>
+            <version>2.31.27</version>
+            <scope>compile</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.json</groupId>
+            <artifactId>json</artifactId>
+            <version>20250107</version>
+            <scope>compile</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.commons</groupId>
+            <artifactId>commons-compress</artifactId>
+            <version>1.27.0</version>
+            <scope>compile</scope>
+        </dependency>
+        <dependency>
+            <groupId>info.picocli</groupId>
+            <artifactId>picocli</artifactId>
+            <version>${picocli.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>io.rest-assured</groupId>
+            <artifactId>rest-assured</artifactId>
+            <version>5.5.0</version>
+        </dependency>
+
+        <dependency>
+            <groupId>com.fasterxml.jackson.core</groupId>
+            <artifactId>jackson-databind</artifactId>
+            <version>2.18.2</version>
+            <scope>compile</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.testcontainers</groupId>
+            <artifactId>testcontainers</artifactId>
+        </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-dependency-plugin</artifactId>
+                <version>3.8.1</version>
+                <executions>
+                    <execution>
+                        <id>unpack</id>
+                        <phase>process-sources</phase>
+                        <goals>
+                            <goal>unpack</goal>
+                        </goals>
+                        <configuration>
+                            <artifactItems>
+                                <artifactItem>
+                                    <groupId>cloud.katta</groupId>
+                                    <artifactId>katta-clientlib-hub</artifactId>
+                                    <version>${project.version}</version>
+                                    <classifier>tests</classifier>
+                                    <type>test-jar</type>
+                                    <overWrite>false</overWrite>
+                                    <outputDirectory>${project.build.directory}/test-classes</outputDirectory>
+                                    <includes>**/*</includes>
+                                </artifactItem>
+                            </artifactItems>
+                            <includes>**/*.java</includes>
+                            <excludes>**/*.properties</excludes>
+                            <outputDirectory>${project.build.directory}/wars</outputDirectory>
+                            <overWriteReleases>false</overWriteReleases>
+                            <overWriteSnapshots>true</overWriteSnapshots>
+                        </configuration>
+                    </execution>
+                </executions>
+            </plugin>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-enforcer-plugin</artifactId>
+                <version>3.5.0</version>
+                <executions>
+                    <execution>
+                        <id>enforce-bytecode-version</id>
+                        <goals>
+                            <goal>enforce</goal>
+                        </goals>
+                        <configuration>
+                            <skip>true</skip>
+                        </configuration>
+                    </execution>
+                </executions>
+                <dependencies>
+                    <dependency>
+                        <groupId>org.codehaus.mojo</groupId>
+                        <artifactId>extra-enforcer-rules</artifactId>
+                        <version>1.10.0</version>
+                    </dependency>
+                </dependencies>
+            </plugin>
+        </plugins>
+    </build>
+</project>
@@ -0,0 +1,26 @@
+/*
+ * Copyright (c) 2025 shift7 GmbH. All rights reserved.
+ */
+
+package cloud.katta.cli;
+
+import cloud.katta.cli.commands.*;
+import picocli.CommandLine;
+
+@CommandLine.Command(name = "katta-admin-cli",
+        mixinStandardHelpOptions = true,
+        subcommands = {
+                AwsSTSSetup.class, CommandLine.HelpCommand.class, StorageProfileAWSSTSSetup.class, StorageProfileAWSStaticSetup.class,
+                AuthorizationCode.class,
+                StorageProfileArchive.class
+        })
+public class KattaSetupCli {
+
+    public static void main(String... args) {
+        var app = new KattaSetupCli();
+        int exitCode = new CommandLine(app)
+                .setPosixClusteredShortOptionsAllowed(false)
+                .execute(args);
+        System.exit(exitCode);
+    }
+}
@@ -0,0 +1,57 @@
+/*
+ * Copyright (c) 2025 shift7 GmbH. All rights reserved.
+ */
+
+package cloud.katta.cli.commands;
+
+import org.apache.commons.lang3.StringUtils;
+
+import java.io.IOException;
+import java.net.URI;
+import java.net.http.HttpClient;
+import java.net.http.HttpResponse;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import io.github.coffeelibs.tinyoauth2client.TinyOAuth2;
+import picocli.CommandLine;
+
+public class AbstractAuthorizationCode {
+
+    @CommandLine.Option(names = {"--tokenUrl"}, description = "Keycloak realm URL with scheme. Example: \"https://testing.katta.cloud/kc/realms/tamarind/protocol/openid-connect/token\"", required = false)
+    String tokenUrl;
+
+    @CommandLine.Option(names = {"--authUrl"}, description = "Keycloak realm URL with scheme. Example: \"https://testing.katta.cloud/kc/realms/tamarind/protocol/openid-connect/auth\"", required = false)
+    String authUrl;
+
+    @CommandLine.Option(names = {"--clientId"}, description = "Keycloak realm URL with scheme. Example: \"cryptomator\"", required = false)
+    String clientId;
+
+    @CommandLine.Option(names = {"--accessToken"}, description = "The access token. Requires admin role in the hub.", required = false)
+    String accessToken;
+
+    protected String login() throws IOException, InterruptedException {
+        if(StringUtils.isEmpty(accessToken)) {
+            var authResponse = TinyOAuth2.client(clientId)
+                    .withTokenEndpoint(URI.create(tokenUrl))
+                    .authorizationCodeGrant(URI.create(authUrl))
+                    .authorize(HttpClient.newHttpClient(), uri -> {
+                        System.out.println("Please login on " + uri);
+                    });
+            return extractAccessToken(authResponse);
+        }
+        else {
+            return accessToken;
+        }
+    }
+
+    private static String extractAccessToken(HttpResponse<String> response) throws JsonProcessingException {
+        var statusCode = response.statusCode();
+        if(statusCode != 200) {
+            System.err.println("""
+                    Request was responded with code %d and body:\n%s\n""".formatted(statusCode, response.body()));
+            return null;
+        }
+        return new ObjectMapper().reader().readTree(response.body()).get("access_token").asText();
+    }
+}
@@ -0,0 +1,51 @@
+package cloud.katta.cli.commands;
+
+import java.net.URI;
+import java.net.http.HttpClient;
+import java.net.http.HttpResponse;
+import java.util.concurrent.Callable;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import io.github.coffeelibs.tinyoauth2client.TinyOAuth2;
+import picocli.CommandLine;
+
+// https://github.com/cryptomator/hub-cli/commit/bffcf2805530976c4a758990958ff75f9df68c0e#diff-c349f933a7698e31cfe25bd0a638ae487a02ac6fcb429bcce3e315aa8832be8b
+@CommandLine.Command(name = "authorizationCode", description = "Get token using authorization code flow.", mixinStandardHelpOptions = true)
+public class AuthorizationCode implements Callable<Void> {
+
+    @CommandLine.Option(names = {"--tokenUrl"}, description = "Keycloak realm URL with scheme. Example: \"https://testing.katta.cloud/kc/realms/tamarind/protocol/openid-connect/token\"", required = true)
+    String tokenUrl;
+
+    @CommandLine.Option(names = {"--authUrl"}, description = "Keycloak realm URL with scheme. Example: \"https://testing.katta.cloud/kc/realms/tamarind/protocol/openid-connect/auth\"", required = true)
+    String authUrl;
+
+    @CommandLine.Option(names = {"--clientId"}, description = "Keycloak realm URL with scheme. Example: \"cryptomator\"", required = true)
+    String clientId;
+
+
+    @Override
+    public Void call() throws Exception {
+        var authResponse = TinyOAuth2.client(clientId)
+                .withTokenEndpoint(URI.create(tokenUrl))
+                .authorizationCodeGrant(URI.create(authUrl))
+                .authorize(HttpClient.newHttpClient(), uri -> {
+                    System.out.println("Please login on " + uri);
+                });
+        System.out.println(authResponse);
+        printAccessToken(authResponse);
+        return null;
+    }
+
+    private static int printAccessToken(HttpResponse<String> response) throws JsonProcessingException {
+        var statusCode = response.statusCode();
+        if(statusCode != 200) {
+            System.err.println("""
+                    Request was responded with code %d and body:\n%s\n""".formatted(statusCode, response.body()));
+            return statusCode;
+        }
+        var token = new ObjectMapper().reader().readTree(response.body()).get("access_token").asText();
+        System.out.println(token);
+        return 0;
+    }
+}