summaryrefslogtreecommitdiff
path: root/src/bin/cli.rs
blob: 837ef80f2ed6ac7446b5f8281e6aa644639e294c (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94

use authzd::EntitiesRepository;
use authzd::gitlab::Api;
use clap::{Parser, Subcommand};

#[derive(Parser, Debug)]
#[command(
    author,
    version,
    about = "Authorization CLI for managing Cedar entities and policies"
)]
struct Args {
    #[command(subcommand)]
    command: Commands,
}

#[derive(Subcommand, Debug)]
enum Commands {
    /// Generate entities from GitLab API
    Generate {
        /// Project ID or path (e.g., gitlab-org/gitlab)
        #[arg(short, long)]
        project: String,

        /// Output file path
        #[arg(short, long, default_value = "entities.json")]
        output: String,

        /// GitLab API token
        #[arg(short, long, env = "GITLAB_TOKEN")]
        token: String,

        /// GitLab instance URL
        #[arg(
            short = 'H',
            long,
            env = "GITLAB_HOST",
            default_value = "https://gitlab.com"
        )]
        host: String,
    },
    Server {
        /// Address to bind to
        #[arg(short, long, env = "BIND_ADDR", default_value = "127.0.0.1:50051")]
        addr: String,
    },
}

#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    let args = Args::parse();

    match args.command {
        Commands::Generate {
            project,
            output,
            token,
            host,
        } => {
            let repository = EntitiesRepository::new(Api::new(token, host));
            let entities = repository.all(project).await?;
            EntitiesRepository::is_valid(&entities)?;
            let json = serde_json::to_string_pretty(&entities)?;
            std::fs::write(&output, json)?;

            println!(
                "Successfully generated {} entities to {}",
                entities.len(),
                output
            );
        }
        Commands::Server { addr } => {
            tracing_subscriber::fmt()
                .json()
                .with_ansi(false)
                .with_current_span(true)
                .with_file(true)
                .with_level(false)
                .with_line_number(true)
                .with_max_level(tracing::Level::INFO)
                .with_span_list(true)
                .with_target(false)
                .with_thread_ids(false)
                .with_thread_names(false)
                .init();

            tracing::info!(address = %addr, "Starting");
            authzd::authorization::Server::new(authzd::authorization::CedarAuthorizer::default())?
                .serve(addr.parse().unwrap())
                .await?;
        }
    }

    Ok(())
}
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 02:29:14 +0000