Merge remote-tracking branch 'origin/main' into pkg-deploy-extract-only

Author: krystian-panek-vmltech

.github/workflows/release-perform.yml

@@ -31,7 +31,7 @@ jobs:
 
       - uses: actions/setup-go@v3
         with:
-          go-version: '1.20'
+          go-version: '1.24'
           cache: true
 
       - uses: goreleaser/goreleaser-action@v2

.github/workflows/test.yml

@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Cache Go modules
-        uses: actions/cache@v2
+        uses: actions/cache@v4
         with:
           path: |
             ~/.cache/go-build
@@ -29,13 +29,13 @@ jobs:
             ${{ runner.os }}-go-
 
       - name: Set up Go
-        uses: actions/setup-go@v2
+        uses: actions/setup-go@v5
         with:
-          go-version: '1.20'
+          go-version: '1.24'
         id: go
 
       - name: Checkout source code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
 
       - name: Run build
         run: make

cmd/aem/cli.go

@@ -5,6 +5,14 @@ import (
 	"bytes"
 	"encoding/json"
 	"fmt"
+	"io"
+	"os"
+	"path"
+	"reflect"
+	"sort"
+	"strings"
+	"time"
+
 	"github.com/fatih/color"
 	"github.com/iancoleman/strcase"
 	"github.com/jmespath-community/go-jmespath"
@@ -18,13 +26,6 @@ import (
 	"github.com/wttech/aemc/pkg/common/fmtx"
 	"github.com/wttech/aemc/pkg/common/pathx"
 	"github.com/wttech/aemc/pkg/common/stringsx"
-	"io"
-	"os"
-	"path"
-	"reflect"
-	"sort"
-	"strings"
-	"time"
 )
 
 const (
@@ -206,7 +207,7 @@ func (c *CLI) openOutputLogFile() *os.File {
 	}
 	file, err := os.OpenFile(c.outputLogFile, os.O_RDWR|os.O_CREATE|os.O_APPEND, 0666)
 	if err != nil {
-		log.Fatalf(fmt.Sprintf("cannot open/create CLI output file '%s': %s", c.outputLogFile, err))
+		log.Fatalf("cannot open/create CLI output file '%s': %s", c.outputLogFile, err)
 	}
 	return file
 }
@@ -231,13 +232,13 @@ func (c *CLI) printCommandResult() {
 	if c.outputNoColor {
 		entry := log.WithField("changed", r.Changed).WithField("elapsed", r.Elapsed)
 		if r.Failed {
-			entry.Errorf(msg)
+			entry.Error(msg)
 		} else {
-			entry.Infof(msg)
+			entry.Info(msg)
 		}
 	} else {
 		if r.Failed {
-			log.Errorf(color.RedString(msg))
+			log.Error(color.RedString(msg))
 		} else {
 			if r.Changed {
 				log.Info(color.YellowString(msg))

cmd/aem/user.go

@@ -1,6 +1,10 @@
 package main
 
-import "github.com/spf13/cobra"
+import (
+	"fmt"
+
+	"github.com/spf13/cobra"
+)
 
 func (c *CLI) userCmd() *cobra.Command {
 	cmd := &cobra.Command{
@@ -9,6 +13,8 @@ func (c *CLI) userCmd() *cobra.Command {
 		Aliases: []string{"usr"},
 	}
 	cmd.AddCommand(c.userKeyStore())
+	cmd.AddCommand(c.userKey())
+	cmd.AddCommand(c.userPassword())
 	return cmd
 }
 
@@ -24,10 +30,31 @@ func (c *CLI) userKeyStore() *cobra.Command {
 	return cmd
 }
 
+func (c *CLI) userKey() *cobra.Command {
+	cmd := &cobra.Command{
+		Use:     "key",
+		Short:   "Private keys management",
+		Aliases: []string{"keys"},
+	}
+	cmd.AddCommand(c.userKeyAdd())
+	cmd.AddCommand(c.userKeyDelete())
+	return cmd
+}
+
+func (c *CLI) userPassword() *cobra.Command {
+	cmd := &cobra.Command{
+		Use:     "password",
+		Short:   "Password management",
+		Aliases: []string{"pwd"},
+	}
+	cmd.AddCommand(c.UserPasswordSet())
+	return cmd
+}
+
 func (c *CLI) KeystoreStatus() *cobra.Command {
 	cmd := &cobra.Command{
 		Use:     "status",
-		Short:   "Get status of keystore",
+		Short:   "Get status of a user keystore",
 		Aliases: []string{"show", "get", "read", "describe", "ls"},
 		Run: func(cmd *cobra.Command, args []string) {
 			instance, err := c.aem.InstanceManager().One()
@@ -39,7 +66,7 @@ func (c *CLI) KeystoreStatus() *cobra.Command {
 			id, _ := cmd.Flags().GetString("id")
 			scope, _ := cmd.Flags().GetString("scope")
 
-			result, err := instance.Auth().UserManager().KeystoreStatus(scope, id)
+			result, err := instance.Auth().UserManager().Keystore().Status(scope, id)
 
 			if err != nil {
 				c.Error(err)
@@ -53,14 +80,13 @@ func (c *CLI) KeystoreStatus() *cobra.Command {
 	cmd.Flags().String("id", "", "user id")
 	_ = cmd.MarkFlagRequired("id")
 	cmd.Flags().String("scope", "", "user scope")
-	_ = cmd.MarkFlagRequired("scope")
 	return cmd
 }
 
 func (c *CLI) KeystoreCreate() *cobra.Command {
 	cmd := &cobra.Command{
 		Use:     "create",
-		Short:   "Create user Keystore",
+		Short:   "Create user keystore",
 		Aliases: []string{"make", "new"},
 		Run: func(cmd *cobra.Command, args []string) {
 			instance, err := c.aem.InstanceManager().One()
@@ -72,26 +98,155 @@ func (c *CLI) KeystoreCreate() *cobra.Command {
 			id, _ := cmd.Flags().GetString("id")
 			scope, _ := cmd.Flags().GetString("scope")
 			password, _ := cmd.Flags().GetString("keystore-password")
-			changed, err := instance.Auth().UserManager().KeystoreCreate(scope, id, password)
+			changed, err := instance.Auth().UserManager().Keystore().Create(scope, id, password)
+
+			if err != nil {
+				c.Error(err)
+				return
+			}
+
+			if changed {
+				c.Changed("User keystore created")
+			} else {
+				c.Ok("User keystore already exists")
+			}
+		},
+	}
+
+	cmd.Flags().String("id", "", "user id")
+	_ = cmd.MarkFlagRequired("id")
+	cmd.Flags().String("scope", "", "user scope")
+	cmd.Flags().String("keystore-password", "", "keystore password")
+	_ = cmd.MarkFlagRequired("keystore-password")
+	return cmd
+}
 
+func (c *CLI) userKeyAdd() *cobra.Command {
+	cmd := &cobra.Command{
+		Use:     "add",
+		Short:   "Add user private key to the keystore",
+		Aliases: []string{"create", "new"},
+		Run: func(cmd *cobra.Command, args []string) {
+			instance, err := c.aem.InstanceManager().One()
 			if err != nil {
 				c.Error(err)
 				return
 			}
 
+			changed, err := instance.Auth().UserManager().Keystore().AddKey(
+				cmd.Flag("scope").Value.String(),
+				cmd.Flag("id").Value.String(),
+				cmd.Flag("keystore-file").Value.String(),
+				cmd.Flag("keystore-password").Value.String(),
+				cmd.Flag("key-alias").Value.String(),
+				cmd.Flag("key-password").Value.String(),
+				cmd.Flag("new-alias").Value.String(),
+			)
+
+			if err != nil {
+				c.Error(err)
+				return
+			}
 			if changed {
-				c.Changed("User Keystore created")
+				c.Changed("User key added")
 			} else {
-				c.Ok("User Keystore already exists")
+				c.Ok("User key already exists")
 			}
 		},
 	}
 
 	cmd.Flags().String("id", "", "user id")
 	_ = cmd.MarkFlagRequired("id")
 	cmd.Flags().String("scope", "", "user scope")
-	_ = cmd.MarkFlagRequired("scope")
+	cmd.Flags().String("keystore-file", "", "path to keystore file")
+	_ = cmd.MarkFlagRequired("keystore-file")
 	cmd.Flags().String("keystore-password", "", "keystore password")
 	_ = cmd.MarkFlagRequired("keystore-password")
+	cmd.Flags().String("key-alias", "", "key alias")
+	_ = cmd.MarkFlagRequired("key-alias")
+	cmd.Flags().String("key-password", "", "key password")
+	cmd.Flags().String("new-alias", "", "new key alias (optional)")
+
+	return cmd
+}
+
+func (c *CLI) userKeyDelete() *cobra.Command {
+	cmd := &cobra.Command{
+		Use:     "delete",
+		Short:   "Delete user private key from the keystore",
+		Aliases: []string{"remove", "rm"},
+		Run: func(cmd *cobra.Command, args []string) {
+			instance, err := c.aem.InstanceManager().One()
+			if err != nil {
+				c.Error(err)
+				return
+			}
+
+			changed, err := instance.Auth().UserManager().Keystore().DeleteKey(
+				cmd.Flag("scope").Value.String(),
+				cmd.Flag("id").Value.String(),
+				cmd.Flag("key-alias").Value.String(),
+			)
+
+			if err != nil {
+				c.Error(err)
+				return
+			}
+			if changed {
+				c.Changed("User key deleted")
+			} else {
+				c.Ok("User key does not exist")
+			}
+		},
+	}
+
+	cmd.Flags().String("id", "", "user id")
+	_ = cmd.MarkFlagRequired("id")
+	cmd.Flags().String("scope", "", "user scope")
+	cmd.Flags().String("key-alias", "", "key alias")
+	_ = cmd.MarkFlagRequired("key-alias")
+
+	return cmd
+}
+
+func (c *CLI) UserPasswordSet() *cobra.Command {
+	cmd := &cobra.Command{
+		Use:     "set",
+		Short:   "Set user password. Password is read from input.",
+		Aliases: []string{"update", "change"},
+		Run: func(cmd *cobra.Command, args []string) {
+			instances, err := c.aem.InstanceManager().One()
+			if err != nil {
+				c.Error(err)
+				return
+			}
+
+			id, _ := cmd.Flags().GetString("id")
+			scope, _ := cmd.Flags().GetString("scope")
+
+			var password string
+			if err := c.ReadInput(&password); err != nil {
+				c.Fail(fmt.Sprintf("error reading password from input: %s", err))
+				return
+			}
+
+			changed, err := instances.Auth().UserManager().SetPassword(scope, id, password)
+			if err != nil {
+				c.Error(err)
+				return
+			}
+
+			if changed {
+				c.Changed("User password changed")
+			} else {
+				c.Ok("User password already set")
+			}
+		},
+	}
+
+	cmd.Flags().String("id", "", "user id")
+	_ = cmd.MarkFlagRequired("id")
+	cmd.Flags().String("scope", "", "user scope")
+
 	return cmd
 }

go.mod

@@ -1,6 +1,6 @@
 module github.com/wttech/aemc
 
-go 1.20
+go 1.24
 
 require (
 	github.com/Masterminds/goutils v1.1.1
@@ -23,6 +23,7 @@ require (
 	github.com/mholt/archiver/v3 v3.5.1
 	github.com/olekukonko/tablewriter v0.0.5
 	github.com/otiai10/copy v1.14.0
+	github.com/pavlo-v-chernykh/keystore-go/v4 v4.5.0
 	github.com/sabhiram/go-gitignore v0.0.0-20210923224102-525f6e181f06
 	github.com/samber/lo v1.39.0
 	github.com/segmentio/textio v1.2.0