1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
open Core
open Async
let json_arg = Command.Arg_type.create Yojson.Safe.from_string
let call ?endpoint_url ?profile ?region f m result_to_json error_to_json =
let region =
match region with
| Some region -> Some (Awso.Region.of_string region)
| None -> None in
(Awso_async.Cfg.get_exn ?profile ?region ()) >>=
(fun cfg ->
(f ?endpoint_url ?cfg:(Some cfg) m) >>=
(fun result ->
match result with
| Error err ->
(match error_to_json with
| None ->
failwithf
"endpoint error, but no error values defined in boto"
()
| Some to_json ->
let s = (err |> to_json) |> Yojson.Safe.to_string in
failwithf "AWS error: %s" s ())
| Ok result ->
((match result_to_json with
| None -> print_endline "ok response from endpoint"
| Some to_json ->
((result |> to_json) |> Yojson.Safe.to_string) |>
print_endline);
return ())))
let create_token =
Command.async ~summary:""
([%map_open.Command
let cli_profile =
flag "-cli-profile" (optional string) ~doc:"NAME aws profile to use"
and cli_region =
flag "-cli-region" (optional string) ~doc:"REGION override region"
and endpoint_url =
flag "-endpoint-url" (optional string)
~doc:"URL override endpoint url"
and deviceCode =
flag "device-code" (optional string) ~doc:"STRING DeviceCode"
and code = flag "code" (optional string) ~doc:"STRING AuthCode"
and refreshToken =
flag "refresh-token" (optional string) ~doc:"STRING RefreshToken"
and scope = flag "scope" (optional json_arg) ~doc:"JSON Scopes"
and redirectUri =
flag "redirect-uri" (optional string) ~doc:"STRING URI"
and codeVerifier =
flag "code-verifier" (optional string) ~doc:"STRING CodeVerifier"
and clientId =
flag "client-id" (required string) ~doc:"STRING ClientId"
and clientSecret =
flag "client-secret" (required string) ~doc:"STRING ClientSecret"
and grantType =
flag "grant-type" (required string) ~doc:"STRING GrantType" in
fun () ->
call ?endpoint_url ?profile:cli_profile ?region:cli_region
Io.create_token
(Values.CreateTokenRequest.make ?deviceCode ?code ?refreshToken
?scope:(Option.map ~f:Values.Scopes.of_json scope) ?redirectUri
?codeVerifier ~clientId ~clientSecret ~grantType ())
(Some Values.CreateTokenResponse.to_json)
(Some Values.CreateTokenResponse.error_to_json)])
let create_token_with_i_a_m =
Command.async ~summary:""
([%map_open.Command
let cli_profile =
flag "-cli-profile" (optional string) ~doc:"NAME aws profile to use"
and cli_region =
flag "-cli-region" (optional string) ~doc:"REGION override region"
and endpoint_url =
flag "-endpoint-url" (optional string)
~doc:"URL override endpoint url"
and code = flag "code" (optional string) ~doc:"STRING AuthCode"
and refreshToken =
flag "refresh-token" (optional string) ~doc:"STRING RefreshToken"
and assertion =
flag "assertion" (optional string) ~doc:"STRING Assertion"
and scope = flag "scope" (optional json_arg) ~doc:"JSON Scopes"
and redirectUri =
flag "redirect-uri" (optional string) ~doc:"STRING URI"
and subjectToken =
flag "subject-token" (optional string) ~doc:"STRING SubjectToken"
and subjectTokenType =
flag "subject-token-type" (optional string)
~doc:"STRING TokenTypeURI"
and requestedTokenType =
flag "requested-token-type" (optional string)
~doc:"STRING TokenTypeURI"
and codeVerifier =
flag "code-verifier" (optional string) ~doc:"STRING CodeVerifier"
and clientId =
flag "client-id" (required string) ~doc:"STRING ClientId"
and grantType =
flag "grant-type" (required string) ~doc:"STRING GrantType" in
fun () ->
call ?endpoint_url ?profile:cli_profile ?region:cli_region
Io.create_token_with_i_a_m
(Values.CreateTokenWithIAMRequest.make ?code ?refreshToken
?assertion ?scope:(Option.map ~f:Values.Scopes.of_json scope)
?redirectUri ?subjectToken ?subjectTokenType
?requestedTokenType ?codeVerifier ~clientId ~grantType ())
(Some Values.CreateTokenWithIAMResponse.to_json)
(Some Values.CreateTokenWithIAMResponse.error_to_json)])
let register_client =
Command.async ~summary:""
([%map_open.Command
let cli_profile =
flag "-cli-profile" (optional string) ~doc:"NAME aws profile to use"
and cli_region =
flag "-cli-region" (optional string) ~doc:"REGION override region"
and endpoint_url =
flag "-endpoint-url" (optional string)
~doc:"URL override endpoint url"
and scopes = flag "scopes" (optional json_arg) ~doc:"JSON Scopes"
and redirectUris =
flag "redirect-uris" (optional json_arg) ~doc:"JSON RedirectUris"
and grantTypes =
flag "grant-types" (optional json_arg) ~doc:"JSON GrantTypes"
and issuerUrl = flag "issuer-url" (optional string) ~doc:"STRING URI"
and entitledApplicationArn =
flag "entitled-application-arn" (optional string)
~doc:"STRING ArnType"
and clientName =
flag "client-name" (required string) ~doc:"STRING ClientName"
and clientType =
flag "client-type" (required string) ~doc:"STRING ClientType" in
fun () ->
call ?endpoint_url ?profile:cli_profile ?region:cli_region
Io.register_client
(Values.RegisterClientRequest.make
?scopes:(Option.map ~f:Values.Scopes.of_json scopes)
?redirectUris:(Option.map ~f:Values.RedirectUris.of_json
redirectUris)
?grantTypes:(Option.map ~f:Values.GrantTypes.of_json grantTypes)
?issuerUrl ?entitledApplicationArn ~clientName ~clientType ())
(Some Values.RegisterClientResponse.to_json)
(Some Values.RegisterClientResponse.error_to_json)])
let start_device_authorization =
Command.async ~summary:""
([%map_open.Command
let cli_profile =
flag "-cli-profile" (optional string) ~doc:"NAME aws profile to use"
and cli_region =
flag "-cli-region" (optional string) ~doc:"REGION override region"
and endpoint_url =
flag "-endpoint-url" (optional string)
~doc:"URL override endpoint url"
and clientId =
flag "client-id" (required string) ~doc:"STRING ClientId"
and clientSecret =
flag "client-secret" (required string) ~doc:"STRING ClientSecret"
and startUrl = flag "start-url" (required string) ~doc:"STRING URI" in
fun () ->
call ?endpoint_url ?profile:cli_profile ?region:cli_region
Io.start_device_authorization
(Values.StartDeviceAuthorizationRequest.make ~clientId
~clientSecret ~startUrl ())
(Some Values.StartDeviceAuthorizationResponse.to_json)
(Some Values.StartDeviceAuthorizationResponse.error_to_json)])
let main =
Command.group
~summary:((Awso.Service.to_string Values.service) ^ " commands")
[("create-token", create_token);
("create-token-with-i-a-m", create_token_with_i_a_m);
("register-client", register_client);
("start-device-authorization", start_device_authorization)]