slawek/sk-az-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Bump version to 0.3.0 and add get-token command for Azure token retrieval

Browse Source
This commit is contained in:
Sławek Koszewski
2026-03-05 22:39:42 +01:00
parent 21b8179d40
commit 71ec95b52b
3 changed files with 61 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
package.json
View File

@@ -1,6 +1,6 @@
{ {
"name": "@slawek/sk-az-tools", "name": "@slawek/sk-az-tools",
"version": "0.2.1", "version": "0.3.0",
"type": "module", "type": "module",
"files": [ "files": [
"dist", "dist",

12
src/cli.ts
View File

@@ -14,6 +14,7 @@ import {
type CliValues = { type CliValues = {
help?: boolean; help?: boolean;
type?: string;
"display-name"?: string; "display-name"?: string;
"app-id"?: string; "app-id"?: string;
resources?: string; resources?: string;
@@ -37,6 +38,7 @@ function usage(): string {
Commands: Commands:
login Authenticate selected resources login Authenticate selected resources
logout Sign out and clear login state logout Sign out and clear login state
get-token Get access token (azurerm|devops)
list-apps List Entra applications list-apps List Entra applications
list-app-permissions List required permissions for an app list-app-permissions List required permissions for an app
list-app-grants List OAuth2 grants for an app list-app-grants List OAuth2 grants for an app
@@ -79,6 +81,13 @@ Options:
--all Clear login state and remove all cached accounts`; --all Clear login state and remove all cached accounts`;
} }
function usageGetToken(): string {
return `Usage: sk-az-tools get-token --type|-t <azurerm|devops> [global options]
Options:
-t, --type <value> Token type: azurerm|devops`;
}
function usageListAppPermissions(): string { function usageListAppPermissions(): string {
return `Usage: sk-az-tools list-app-permissions --app-id|-i <appId> [--resolve|-r] [--short|-s] [--filter|-f <glob>] [global options] return `Usage: sk-az-tools list-app-permissions --app-id|-i <appId> [--resolve|-r] [--short|-s] [--filter|-f <glob>] [global options]
@@ -120,6 +129,8 @@ function usageCommand(command: string): string {
return usageListApps(); return usageListApps();
case "logout": case "logout":
return usageLogout(); return usageLogout();
case "get-token":
return usageGetToken();
case "list-app-permissions": case "list-app-permissions":
return usageListAppPermissions(); return usageListAppPermissions();
case "list-app-grants": case "list-app-grants":
@@ -150,6 +161,7 @@ async function main(): Promise<void> {
args: argv.slice(1), args: argv.slice(1),
options: { options: {
help: { type: "boolean", short: "h" }, help: { type: "boolean", short: "h" },
type: { type: "string", short: "t" },
"display-name": { type: "string", short: "n" }, "display-name": { type: "string", short: "n" },
"app-id": { type: "string", short: "i" }, "app-id": { type: "string", short: "i" },
resources: { type: "string" }, resources: { type: "string" },

49
src/cli/commands.ts
View File

@@ -4,7 +4,8 @@ import { minimatch } from "minimatch";
import { loadPublicConfig } from "../index.ts"; import { loadPublicConfig } from "../index.ts";
import { getGraphClient } from "../graph/auth.ts"; import { getGraphClient } from "../graph/auth.ts";
import { login, logout } from "../azure/index.ts"; import { acquireResourceTokenFromLogin, login, logout } from "../azure/index.ts";
import { getDevOpsApiToken } from "../devops/index.ts";
import { import {
listApps, listApps,
listAppPermissions, listAppPermissions,
@@ -16,6 +17,7 @@ import { readJsonFromStdin } from "./utils.ts";
type CommandValues = { type CommandValues = {
[key: string]: string | boolean | undefined; [key: string]: string | boolean | undefined;
type?: string;
resources?: string; resources?: string;
"use-device-code"?: boolean; "use-device-code"?: boolean;
"no-browser"?: boolean; "no-browser"?: boolean;
@@ -142,6 +144,49 @@ async function runListResourcePermissionsCommand(values: CommandValues): Promise
return result; return result;
} }
async function runGetTokenCommand(values: CommandValues): Promise<unknown> {
const tokenType = (values.type ?? "").toString().trim().toLowerCase();
if (!tokenType) {
throw new Error("--type is required for get-token (allowed: azurerm, devops)");
}
const config = await loadPublicConfig();
if (!config.tenantId) {
throw new Error("tenantId is required");
}
if (!config.clientId) {
throw new Error("clientId is required");
}
if (tokenType === "azurerm") {
const result = await acquireResourceTokenFromLogin({
tenantId: config.tenantId,
clientId: config.clientId,
resource: "arm",
});
const accessToken = result?.accessToken;
if (!accessToken) {
throw new Error("Failed to obtain AzureRM token");
}
return {
tokenType,
accessToken,
};
}
if (tokenType === "devops") {
const accessToken = await getDevOpsApiToken(config.tenantId, config.clientId);
return {
tokenType,
accessToken,
};
}
throw new Error(`Invalid --type '${values.type}'. Allowed: azurerm, devops`);
}
export async function runCommand(command: string, values: CommandValues): Promise<unknown> { export async function runCommand(command: string, values: CommandValues): Promise<unknown> {
switch (command) { switch (command) {
case "login": case "login":
@@ -158,6 +203,8 @@ export async function runCommand(command: string, values: CommandValues): Promis
return runListAppGrantsCommand(values); return runListAppGrantsCommand(values);
case "list-resource-permissions": case "list-resource-permissions":
return runListResourcePermissionsCommand(values); return runListResourcePermissionsCommand(values);
case "get-token":
return runGetTokenCommand(values);
default: default:
throw new Error(`Unknown command: ${command}`); throw new Error(`Unknown command: ${command}`);
} }