o :F¶dvIã@sòddlmZddlmZddlmZddlmZddlmZddlmZddl m Z ddl Z ddl Z ddl Z ddlZddlZdd lmZddlZdd lmZmZmZddlZddlZddlZddlZddlmmZd Zd Zd Z ej!dddej"dd„ƒƒZ#e#j$ddde j%dd &ej'j(¡de j%ddde j%ddddej%de   ¡dde j%d ej)d!d"ej%d#ej*d$d"e j%d%d&de j%d'd(de j%d)dd*dej+e j,ej-d+d„ƒƒƒƒƒƒƒƒƒƒƒƒƒZ.e#j$d,d-dej%d.dd/dej+e j,ej-d0d,„ƒƒƒƒƒZ/e#j$d1d2dej+e j,ej-d3d1„ƒƒƒƒZ0e#j$d4d5dej+e j,ej-d6d4„ƒƒƒƒZ1e#j$d7d8dej%d9dd:e   ¡d;ej+ej%dd7„ƒƒƒƒƒƒZ2e#j$d?d@dej%dAddBe   ¡d;ej+ej%dtjd |¡t j dt   d¡t|dƒ }| ¡}Wdƒn1sRwYtjj d|¡}|rs| ¡srtjd t j dt   d¡n7t d d |¡}z| ¡Wn)tjjy©} z| jd krtjd t j dt   d¡n| ‚WYd} ~ nd} ~ ww| ¡}tj |d ¡ d¡} tjd| t j ddS)Nr(r'Úsecurity_token_filezAERROR: No security_token_file was found in config for profile: {}©Úfilerz*ERROR: 'security_token_file' not found: {}ÚrzSession has expiredZidentityé‘z%Session was deemed invalid by serviceÚexpz%Y-%m-%d %H:%M:%SzSession is valid until )rr;r)rÚ build_configÚgetr,r-r:r.Ústderrr/r1r2ÚexistsÚopenÚreadÚocir(Úsecurity_token_containerZSecurityTokenContainerÚvalidr0Z list_regionsÚ exceptionsZ ServiceErrorÚstatusZget_jwtÚdatetimeÚ fromtimestampÚstrftime) r<ÚlocalÚ client_configr!Zsecurity_token_locationrDrrQr=Z service_errorZ expiry_timerrrrCysB         ÿ €    þ€ýÚ terminatezpTerminates a CLI session by removing the entry from the config and removing all referenced resources (e.g. keys)cCs t |j¡}| d¡}|stjdtjdt d¡t j   |jd¡}|jd}t   ¡}| |¡dd„| ¡Dƒ}|d krKtjd tjdt d¡||vr\tjd tjdt d¡t ||¡t j  tj|¡}t j  |¡rxtt j  |¡ƒtjd  ||¡tjddS) NrDzVERROR: Cannot terminate a profile that does not have a value for 'security_token_file'rErr&r'cSóg|]\}}|‘qSrr©Ú.0ÚkeyÚvaluerrrÚ ·ózterminate..ÚDEFAULTz'ERROR: Cannot terminate DEFAULT profilezERROR: Profile does not existz0Successfully removed profile: {} from config: {})rrJr)rKr,r-r.rLr/r1r2r4Ú configparserÚ ConfigParserrOÚitemsrÚremove_profile_from_configÚjoinÚDEFAULT_TOKEN_DIRECTORYrMr Úabspathr:)r<rYrr&Zprofile_name_to_terminater"Úcurrent_profilesZprofile_to_terminaterrrrZ¦s*         ÚrefreshzRefreshes a CLI sessionc Cst |j¡}| d¡}|stjdtjdt d¡t j   |¡}t j   |¡s3t d  |¡¡t d¡t|dƒ }| ¡}Wdƒn1sGwYztj | d¡| d¡¡}Wntjjyyt ¡|d<tj | d¡| d¡¡}Ynwtjj ||¡}d j tj d | d ¡¡d }tjd j |dtjdtj|ddit d|i¡|d}|jdkråt  |j! "d¡¡d} t|dƒ }| #| ¡Wdƒn1sÑwYt $|¡tjdtjddS|jdkrùtjdtjdt d¡dSt d  t%|j! "d¡ƒ¡¡t d¡dS)NrDzTERROR: Cannot refresh a profile that does not have a value for 'security_token_file'rErzEERROR: Cannot refresh token, 'security_token_file' does not exist: {}rGZkey_fileZ pass_phrasez${endpoint}/v1/authentication/refreshr(r)Zendpointz.Attempting to refresh token from {refresh_url})Ú refresh_urlz content-typezapplication/jsonZ currentToken)Úheadersr8r(éÈrrÚwzSuccessfully refreshed tokenrHzwYour session is no longer valid and cannot be refreshed. Please use 'oci session authenticate' to create a new session.z+ERROR: Failed to refresh sesison. Error: {})&rrJr)rKr,r-r.rLr/r1r2r4rMr:rNrOrPZsignerZload_private_key_from_filerSZMissingPrivateKeyPassphraseZprompt_for_passphraser(ZsignersZSecurityTokenSignerÚregionsZ endpoint_forr ÚpostÚjsonÚdumpsZ status_codeÚloadsÚcontentr7ÚwriteÚ"apply_user_only_access_permissionsÚstr) r<rYrDZ expanded_security_token_locationrr?r(rlrBZrefreshed_tokenrrrrkËsT        ÿ þÿÿø   ÿ  Úexportz«Exports a CLI session into a zip that can be imported. The session exported is the active profile (specified either by defaults or the --config-file / --profile arguments.z --output-filez_The name of the export file to create, including the path, minus any format-specific extension.)Úrequiredrrz--forcez[If the ouptut zip already exists, overwrite the existing zip without a confirmation prompt.c Cs’tj |jd¡}|jd}t ¡}| |¡dd„|| ¡Dƒ}d|vr3tj dt j dt   d¡|d t }tj |¡rV|sVt d  |¡¡sVtj d t j dt   d ¡tj d  ||¡t j dzTt ¡}ttj |d¡dƒ} t ¡}t|ƒ||<| | ¡Wdƒn1s‹wYt |¡D]\} } |  ttf¡r©ttj | ¡|ƒq•t|t |d} Wt|ƒnt|ƒwtj d | ¡t j ddS)Nr&r'cSsi|]\}}||“qSrrr\rrrÚ szexport..rDzhERROR: Specified profile is not a valid token profile. Please specify valid token profile with --profilerErÚ.z4File {} already exists, do you want to overwrite it?zExport canceled.rz*Exporting profile: {} from config file: {}r"ro)Úroot_dirzExport file written to: {})r1r2r4r)rcrdrOrer,r-r.rLr/ÚZIP_FILE_FORMATrMZconfirmr:ÚtempfileÚmkdtemprNrgÚ$translate_config_filepaths_to_prefixrvÚsixÚ iteritemsÚendswithÚCONFIG_KEY_FILE_SUFFIXÚTOKEN_FILE_SUFFIXr r r ) r<Ú output_fileÚforcer&r'r"Zprofile_to_exportÚ zip_filenameÚ temp_dir_nameZexport_config_filer^r_Ú archive_namerrrrys8       ý€Úimportz&Imports a CLI session from an archive.z--session-archivezThe session archive to import.zkIf the profile being imported already exists, overwrite the existing profile without a confirmation prompt.cCsˆtj |¡stjd |¡tjdt d¡tj  |j d¡}|j d}t   ¡}|  |¡dd„| ¡Dƒ}zît ¡}t |¡Ö}| |¡tj |d¡} tj | ¡sctjd  |¡tjdt d¡t   ¡} |   | ¡d d„|  ¡Dƒ} t| ƒdkrˆtjd tjdt d¡t| ƒd} | | } | | }d |vr§tjd tjdt d¡|r¯t || ¡| |vrÃ|sÃt d | ¡¡} | |vrÃ|rµtj tj| ¡}tj |¡sÖt |¡t |¡D]#\}}| ttf¡rþtj ||¡}tj ||¡}t ||ƒt! "|¡qÛt#||ƒ}tj$d|| dœ|¤ŽWdƒn 1swYWt%|ƒnt%|ƒwtjd | |¡tjdt dj|| t&j'd¡dS)NzFile {} does not exist.rErr&r'cSr[rrr\rrrr`?raz"import_session..r"z=Session archive {} is invalid. Did not contain file 'config'.cSr[rrr\rrrr`Nraz;ERROR: The archived config does not contain valid profiles.rDzbERROR: Cannot import non token based profile (profile must contain value for security_token_file).z†Config already contains a profile with the same name as the archived profile: {}. Provide an alternative name for the imported profile)Úfilenamer!z"Imported profile {} written to: {}z° Try out your newly imported session credentials with the following example command: oci iam region list --config-file {config_file} --profile {profile} --auth {auth} r%r)(r1r2rMr,r-r:r.rLr/r4r)rcrdrOrerr€ÚzipfileÚZipFileÚ extractallrgÚlenrrfÚpromptrhÚmakedirsr‚rƒr„r…r†r rrwrZ write_configr rr;)r<Zsession_archiverˆr&r'r"rjrŠÚzfZarchived_config_locationZarchived_configZarchived_profilesZ profile_noZarchived_profile_nameZarchived_profileZimported_resources_dirr^r_Znew_file_locationZexisting_file_locationrrrÚimport_session/sh                ÿ    € Ѐ2  ür•ÚcCsRi}t |¡D]\}}| ttf¡r"tj |¡}tj ||¡||<q|||<q|Sr) r‚rƒr„r…r†r1r2Úbasenamerg)r"ÚprefixZtranslated_configr^r_r—rrrrs  r)r–)5Ú __future__rZoci_cli.cli_rootrÚoci_clirrrrÚpathlibrr,rcrrrPr1Z oci._vendorr r‚Úshutilr r r r.rrŽrUZoci._vendor.jwtÚ_vendorr9r…r†r~ÚgroupZhelp_option_grouprÚcommandÚoptionrgrpZREGIONSr+rhÚ help_optionZ pass_contextZwrap_exceptionsrrCrZrkryr•rrrrrÚsŽ              " E ( ! 3 &L