Skip to content

Commit

Permalink
Add tctl workload-identity ls
Browse files Browse the repository at this point in the history
  • Loading branch information
@strideynet
strideynet committed Dec 9, 2024
1 parent e26070f commit 9f5a6d4
Showing 1 changed file with 46 additions and 2 deletions.
48 changes: 46 additions & 2 deletions tool/tctl/common/workload_identity_command.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,8 +27,10 @@ import (

"github.com/gravitational/teleport"
workloadidentityv1pb "github.com/gravitational/teleport/api/gen/proto/go/teleport/workloadidentity/v1"
"github.com/gravitational/teleport/lib/asciitable"
"github.com/gravitational/teleport/lib/auth/authclient"
"github.com/gravitational/teleport/lib/service/servicecfg"
"github.com/gravitational/teleport/lib/utils"
)

// WorkloadIdentityCommand is a group of commands pertaining to Teleport
Expand Down Expand Up @@ -86,8 +88,7 @@ func (c *WorkloadIdentityCommand) TryRun(
) (match bool, err error) {
switch cmd {
case c.listCmd.FullCommand():
panic("unimplemented")
//err = c.ListWorkloadIdentities(ctx, client)
err = c.ListWorkloadIdentities(ctx, client)
case c.rmCmd.FullCommand():
err = c.DeleteWorkloadIdentity(ctx, client)
default:
Expand Down Expand Up @@ -118,3 +119,46 @@ func (c *WorkloadIdentityCommand) DeleteWorkloadIdentity(

return nil
}

// ListWorkloadIdentities writes a listing of the WorkloadIdentity resources
func (c *WorkloadIdentityCommand) ListWorkloadIdentities(
ctx context.Context, client *authclient.Client,
) error {
workloadIdentityClient := client.WorkloadIdentityResourceServiceClient()
var workloadIdentities []*workloadidentityv1pb.WorkloadIdentity
req := &workloadidentityv1pb.ListWorkloadIdentitiesRequest{}
for {
resp, err := workloadIdentityClient.ListWorkloadIdentities(ctx, req)
if err != nil {
return trace.Wrap(err)
}

workloadIdentities = append(
workloadIdentities, resp.WorkloadIdentities...,
)
if resp.NextPageToken == "" {
break
}
req.PageToken = resp.NextPageToken
}

if c.format == teleport.Text {
if len(workloadIdentities) == 0 {
fmt.Fprintln(c.stdout, "No workload identities configured")
return nil
}
t := asciitable.MakeTable([]string{"Name", "SPIFFE ID"})
for _, u := range workloadIdentities {
t.AddRow([]string{
u.GetMetadata().GetName(), u.GetSpec().GetSpiffe().GetId(),
})
}
fmt.Fprintln(c.stdout, t.AsBuffer().String())
} else {
err := utils.WriteJSONArray(c.stdout, workloadIdentities)
if err != nil {
return trace.Wrap(err, "failed to marshal workload identities")
}
}
return nil
}

0 comments on commit 9f5a6d4

Please sign in to comment.