mirror of
https://github.com/argoproj/argo-cd
synced 2026-04-21 17:07:16 +00:00
4d9835927d
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: crenshaw-dev <350466+crenshaw-dev@users.noreply.github.com>
40 lines
1.2 KiB
Go
40 lines
1.2 KiB
Go
package commands
|
|
|
|
import (
|
|
"fmt"
|
|
"os"
|
|
|
|
"github.com/spf13/cobra"
|
|
"golang.org/x/oauth2/google"
|
|
|
|
"github.com/argoproj/argo-cd/v3/util/errors"
|
|
)
|
|
|
|
// defaultGCPScopes:
|
|
// - cloud-platform is the base scope to authenticate to GCP.
|
|
// - userinfo.email is used to authenticate to GKE APIs with gserviceaccount
|
|
// email instead of numeric uniqueID.
|
|
//
|
|
// https://github.com/kubernetes/client-go/blob/be758edd136e61a1bffadf1c0235fceb8aee8e9e/plugin/pkg/client/auth/gcp/gcp.go#L59
|
|
var defaultGCPScopes = []string{
|
|
"https://www.googleapis.com/auth/cloud-platform",
|
|
"https://www.googleapis.com/auth/userinfo.email",
|
|
}
|
|
|
|
func newGCPCommand() *cobra.Command {
|
|
command := &cobra.Command{
|
|
Use: "gcp",
|
|
Run: func(c *cobra.Command, _ []string) {
|
|
ctx := c.Context()
|
|
|
|
// Preferred way to retrieve GCP credentials
|
|
// https://github.com/golang/oauth2/blob/9780585627b5122c8cc9c6a378ac9861507e7551/google/doc.go#L54-L68
|
|
cred, err := google.FindDefaultCredentials(ctx, defaultGCPScopes...)
|
|
errors.CheckError(err)
|
|
token, err := cred.TokenSource.Token()
|
|
errors.CheckError(err)
|
|
_, _ = fmt.Fprint(os.Stdout, formatJSON(token.AccessToken, token.Expiry))
|
|
},
|
|
}
|
|
return command
|
|
}
|