Add new commands for openid and ldap configuration

This change also hides the following commands and adds a deprecation
notice:

mc admin idp set|ls|rm|info

Author: donatello

cmd/admin-idp-info.go

@@ -18,14 +18,8 @@
 package cmd
 
 import (
-	"fmt"
-	"strings"
-
-	"github.com/charmbracelet/lipgloss"
 	"github.com/minio/cli"
-	json "github.com/minio/colorjson"
 	"github.com/minio/madmin-go"
-	"github.com/minio/mc/pkg/probe"
 )
 
 var adminIDPInfoCmd = cli.Command{
@@ -34,6 +28,7 @@ var adminIDPInfoCmd = cli.Command{
 	Before:       setGlobalsFromContext,
 	Action:       mainAdminIDPGet,
 	OnUsageError: onUsageError,
+	Hidden:       true,
 	Flags:        globalFlags,
 	CustomHelpTemplate: `NAME:
   {{.HelpName}} - {{.Usage}}
@@ -43,6 +38,9 @@ USAGE:
 
   ID_TYPE must be one of 'ldap' or 'openid'.
 
+  **DEPRECATED**: This command will be removed in a future version. Please use
+  "mc admin idp ldap|openid" instead.
+
 FLAGS:
    {{range .VisibleFlags}}{{.}}
   {{end}}
@@ -62,78 +60,14 @@ func mainAdminIDPGet(ctx *cli.Context) error {
 	}
 
 	args := ctx.Args()
-	aliasedURL := args.Get(0)
-
-	// Create a new MinIO Admin Client
-	client, err := newAdminClient(aliasedURL)
-	fatalIf(err, "Unable to initialize admin connection.")
-
 	idpType := args.Get(1)
 	validateIDType(idpType)
+	isOpenID := idpType == madmin.OpenidIDPCfg
 
 	var cfgName string
 	if len(args) == 3 {
 		cfgName = args.Get(2)
 	}
 
-	result, e := client.GetIDPConfig(globalContext, idpType, cfgName)
-	fatalIf(probe.NewError(e), "Unable to get IDP config for '%s' to server", idpType)
-
-	// Print set config result
-	printMsg(idpConfig(result))
-
-	return nil
-}
-
-type idpConfig madmin.IDPConfig
-
-func (i idpConfig) JSON() string {
-	bs, e := json.MarshalIndent(i, "", "  ")
-	fatalIf(probe.NewError(e), "Unable to marshal into JSON.")
-
-	return string(bs)
-}
-
-func (i idpConfig) String() string {
-	// Determine required width for key column.
-	fieldColWidth := 0
-	for _, kv := range i.Info {
-		if fieldColWidth < len(kv.Key) {
-			fieldColWidth = len(kv.Key)
-		}
-	}
-	// Add 1 for the colon-suffix in each entry.
-	fieldColWidth++
-
-	fieldColStyle := lipgloss.NewStyle().
-		Width(fieldColWidth).
-		Foreground(lipgloss.Color("#04B575")). // green
-		Bold(true).
-		Align(lipgloss.Right)
-	valueColStyle := lipgloss.NewStyle().
-		PaddingLeft(1).
-		Align(lipgloss.Left)
-	envMarkStyle := lipgloss.NewStyle().
-		Foreground(lipgloss.Color("201")). // pinkish-red
-		PaddingLeft(1)
-
-	var lines []string
-	for _, kv := range i.Info {
-		envStr := ""
-		if kv.IsCfg && kv.IsEnv {
-			envStr = " (environment)"
-		}
-		lines = append(lines, fmt.Sprintf("%s%s%s",
-			fieldColStyle.Render(kv.Key+":"),
-			valueColStyle.Render(kv.Value),
-			envMarkStyle.Render(envStr),
-		))
-	}
-
-	boxContent := strings.Join(lines, "\n")
-
-	boxStyle := lipgloss.NewStyle().
-		BorderStyle(lipgloss.RoundedBorder())
-
-	return boxStyle.Render(boxContent)
+	return adminIDPInfo(ctx, isOpenID, cfgName)
 }

cmd/admin-idp-ldap-add.go

@@ -0,0 +1,89 @@
+// Copyright (c) 2015-2022 MinIO, Inc.
+//
+// This file is part of MinIO Object Storage stack
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package cmd
+
+import (
+	"strings"
+
+	"github.com/minio/cli"
+	"github.com/minio/madmin-go"
+	"github.com/minio/mc/pkg/probe"
+)
+
+var adminIDPLdapAddCmd = cli.Command{
+	Name:         "add",
+	Usage:        "Create an LDAP IDP server configuration",
+	Action:       mainAdminIDPLDAPAdd,
+	Before:       setGlobalsFromContext,
+	Flags:        globalFlags,
+	OnUsageError: onUsageError,
+	CustomHelpTemplate: `NAME:
+  {{.HelpName}} - {{.Usage}}
+
+USAGE:
+  {{.HelpName}} TARGET [CFG_NAME] [CFG_PARAMS...]
+
+FLAGS:
+  {{range .VisibleFlags}}{{.}}
+  {{end}}
+EXAMPLES:
+  1. Create a default LDAP IDP configuration (CFG_NAME is omitted).
+     {{.Prompt}} {{.HelpName}} myminio/ \
+          server_addr=myldapserver:636 \
+          lookup_bind_dn=cn=admin,dc=min,dc=io \
+          lookup_bind_password=somesecret \
+          user_dn_search_base_dn=dc=min,dc=io \
+          user_dn_search_filter="(uid=%s)" \
+          group_search_base_dn=ou=swengg,dc=min,dc=io \
+          group_search_filter="(&(objectclass=groupofnames)(member=%d))"
+`,
+}
+
+func mainAdminIDPLDAPAdd(ctx *cli.Context) error {
+	if len(ctx.Args()) < 2 {
+		showCommandHelpAndExit(ctx, 1)
+	}
+
+	args := ctx.Args()
+
+	aliasedURL := args.Get(0)
+
+	// Create a new MinIO Admin Client
+	client, err := newAdminClient(aliasedURL)
+	fatalIf(err, "Unable to initialize admin connection.")
+
+	cfgName := madmin.Default
+	input := args[1:]
+	if !strings.Contains(args.Get(1), "=") {
+		cfgName = args.Get(1)
+		input = args[2:]
+	}
+
+	inputCfg := strings.Join(input, " ")
+
+	restart, e := client.AddOrUpdateIDPConfig(globalContext, madmin.LDAPIDPCfg, cfgName, inputCfg, false)
+	fatalIf(probe.NewError(e), "Unable to add LDAP IDP config to server")
+
+	// Print set config result
+	printMsg(configSetMessage{
+		targetAlias: aliasedURL,
+		restart:     restart,
+	})
+
+	return nil
+}

cmd/admin-idp-ldap-disable.go

@@ -0,0 +1,51 @@
+// Copyright (c) 2015-2022 MinIO, Inc.
+//
+// This file is part of MinIO Object Storage stack
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package cmd
+
+import (
+	"github.com/minio/cli"
+)
+
+var adminIDPLdapDisableCmd = cli.Command{
+	Name:         "disable",
+	Usage:        "Disable an LDAP IDP server configuration",
+	Action:       mainAdminIDPLDAPDisable,
+	Before:       setGlobalsFromContext,
+	Flags:        globalFlags,
+	OnUsageError: onUsageError,
+	CustomHelpTemplate: `NAME:
+  {{.HelpName}} - {{.Usage}}
+
+USAGE:
+  {{.HelpName}} TARGET [CFG_NAME]
+
+FLAGS:
+  {{range .VisibleFlags}}{{.}}
+  {{end}}
+EXAMPLES:
+  1. Disable the default LDAP IDP configuration (CFG_NAME is omitted).
+     {{.Prompt}} {{.HelpName}} play/
+  2. Disable LDAP IDP configuration named "dex_test".
+     {{.Prompt}} {{.HelpName}} play/ dex_test
+`,
+}
+
+func mainAdminIDPLDAPDisable(ctx *cli.Context) error {
+	isOpenID, enable := false, false
+	return adminIDPEnableDisable(ctx, isOpenID, enable)
+}

cmd/admin-idp-ldap-enable.go

@@ -0,0 +1,51 @@
+// Copyright (c) 2015-2022 MinIO, Inc.
+//
+// This file is part of MinIO Object Storage stack
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package cmd
+
+import (
+	"github.com/minio/cli"
+)
+
+var adminIDPLdapEnableCmd = cli.Command{
+	Name:         "enable",
+	Usage:        "manage LDAP IDP server configuration",
+	Action:       mainAdminIDPLDAPEnable,
+	Before:       setGlobalsFromContext,
+	Flags:        globalFlags,
+	OnUsageError: onUsageError,
+	CustomHelpTemplate: `NAME:
+  {{.HelpName}} - {{.Usage}}
+
+USAGE:
+  {{.HelpName}} TARGET [CFG_NAME]
+
+FLAGS:
+  {{range .VisibleFlags}}{{.}}
+  {{end}}
+EXAMPLES:
+  1. Enable the default LDAP IDP configuration (CFG_NAME is omitted).
+     {{.Prompt}} {{.HelpName}} play/
+  2. Enable LDAP IDP configuration named "dex_test".
+     {{.Prompt}} {{.HelpName}} play/ dex_test
+`,
+}
+
+func mainAdminIDPLDAPEnable(ctx *cli.Context) error {
+	isOpenID, enable := false, true
+	return adminIDPEnableDisable(ctx, isOpenID, enable)
+}

cmd/admin-idp-ldap-info.go

@@ -0,0 +1,60 @@
+// Copyright (c) 2015-2022 MinIO, Inc.
+//
+// This file is part of MinIO Object Storage stack
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+package cmd
+
+import (
+	"github.com/minio/cli"
+)
+
+var adminIDPLdapInfoCmd = cli.Command{
+	Name:         "info",
+	Usage:        "get LDAP IDP server configuration info",
+	Action:       mainAdminIDPLDAPInfo,
+	Before:       setGlobalsFromContext,
+	Flags:        globalFlags,
+	OnUsageError: onUsageError,
+	CustomHelpTemplate: `NAME:
+  {{.HelpName}} - {{.Usage}}
+
+USAGE:
+  {{.HelpName}} TARGET [CFG_NAME]
+
+FLAGS:
+  {{range .VisibleFlags}}{{.}}
+  {{end}}
+EXAMPLES:
+  1. Get configuration info on the default LDAP IDP configuration (CFG_NAME is omitted).
+     {{.Prompt}} {{.HelpName}} play/
+  2. Get configuration info on LDAP IDP configuration named "dex_test".
+     {{.Prompt}} {{.HelpName}} play/ dex_test
+`,
+}
+
+func mainAdminIDPLDAPInfo(ctx *cli.Context) error {
+	if len(ctx.Args()) < 1 || len(ctx.Args()) > 2 {
+		showCommandHelpAndExit(ctx, 1)
+	}
+
+	args := ctx.Args()
+	var cfgName string
+	if len(args) == 2 {
+		cfgName = args.Get(1)
+	}
+
+	return adminIDPInfo(ctx, false, cfgName)
+}