@axway/axway-central-cli 2.31.0 → 2.32.0

package/dist/commands/install/agents.js

@@ -3,7 +3,7 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.prompts = exports.localhost = exports.agents = void 0;
+exports.validateFrequency = exports.prompts = exports.localhost = exports.agents = void 0;
 var _chalk = _interopRequireDefault(require("chalk"));
 var _snooplogg = _interopRequireDefault(require("snooplogg"));
 var _ApiServerClient = require("../../common/ApiServerClient");
@@ -103,7 +103,6 @@ const agents = exports.agents = {
         region
       });
       const defsManager = await new _DefinitionsManager.DefinitionsManager(apiServerClient).init();
-
       // Verify account has permission to create an environment and service account.
       const accountInfo = await platformClient.getAccountInfo();
       const isCentralAdmin = accountInfo === null || accountInfo === void 0 ? void 0 : (_accountInfo$roles = accountInfo.roles) === null || _accountInfo$roles === void 0 ? void 0 : _accountInfo$roles.includes(_CoreConfigController.AccountRole.ApiCentralAdmin);
@@ -184,6 +183,11 @@ const agents = exports.agents = {
       // Create the object of GatewayTypes -> GatewayConnectivity functions
       installConfig.gatewayConfig = await agentInstallFlow.AskGatewayQuestions(installConfig, apiServerClient, defsManager);
 
+      // create the Identity Provider configuration
+      if (agentInstallFlow.AddIDP) {
+        installConfig.idpConfig = await helpers.idpTestables.addIdentityProvider();
+      }
+
       // traceability options
       if (installConfig.switches.isTaEnabled && !installConfig.switches.isHostedInstall) {
         installConfig.traceabilityConfig = await platform.getTraceabilityConfig(installConfig);
@@ -240,4 +244,20 @@ function checkUserRole(isCentralAdmin, isPlatformAdmin, accountInfo, render) {
     }
     process.exit(1);
   }
-}
+}
+const validateFrequency = () => input => {
+  let val = (0, _basicPrompts.validateRegex)(helpers.frequencyRegex, helpers.invalidValueExampleErrMsg('frequency', '3d5h12m'))(input);
+  if (typeof val === 'string') {
+    return val;
+  }
+  let r = input.toString().match(/^(\d*)m/);
+  if (r) {
+    // only minutes
+    let mins = r[1];
+    if (parseInt(mins, 10) < 30) {
+      return 'Minimum frequency is 30m';
+    }
+  }
+  return true;
+};
+exports.validateFrequency = validateFrequency;

package/dist/commands/install/awsSaasAgents.js

@@ -9,6 +9,7 @@ var _snooplogg = _interopRequireDefault(require("snooplogg"));
 var _basicPrompts = require("../../common/basicPrompts");
 var _types = require("../../common/types");
 var _utils = require("../../common/utils");
+var _agents = require("./agents");
 var helpers = _interopRequireWildcard(require("./helpers"));
 var _crypto = _interopRequireDefault(require("crypto"));
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
@@ -318,21 +319,6 @@ const askForAWSCredentials = async hostedAgentValues => {
   }
   return hostedAgentValues;
 };
-const validateFrequency = () => input => {
-  let val = (0, _basicPrompts.validateRegex)(helpers.frequencyRegex, helpers.invalidValueExampleErrMsg('frequency', '3d5h12m'))(input);
-  if (typeof val === 'string') {
-    return val;
-  }
-  let r = input.toString().match(/^(\d*)m/);
-  if (r) {
-    // only minutes
-    let mins = r[1];
-    if (parseInt(mins, 10) < 30) {
-      return 'Minimum frequency is 30m';
-    }
-  }
-  return true;
-};
 
 // @ts-ignore
 const gatewayConnectivity = async installConfig => {
@@ -364,7 +350,7 @@ const gatewayConnectivity = async installConfig => {
   console.log(_chalk.default.gray('\n00d00h00m format, where 30m = 30 minutes, 1h = 1 hour, 7d = 7 days, and 7d1h30m = 7 days 1 hour and 30 minutes. Minimum of 30m.'));
   hostedAgentValues.frequencyDA = await (0, _basicPrompts.askInput)({
     msg: SaasPrompts.DA_FREQUENCY,
-    validate: validateFrequency(),
+    validate: (0, _agents.validateFrequency)(),
     allowEmptyInput: true
   });
   hostedAgentValues.queueDA = (await (0, _basicPrompts.askList)({
@@ -377,7 +363,7 @@ const gatewayConnectivity = async installConfig => {
     hostedAgentValues.frequencyTA = await (0, _basicPrompts.askInput)({
       msg: SaasPrompts.TA_FREQUENCY,
       defaultValue: '30m',
-      validate: validateFrequency(),
+      validate: (0, _agents.validateFrequency)(),
       allowEmptyInput: true
     });
     hostedAgentValues = await askForSampling(hostedAgentValues);

package/dist/commands/install/azureSaasAgents.js

@@ -9,6 +9,7 @@ var _snooplogg = _interopRequireDefault(require("snooplogg"));
 var _basicPrompts = require("../../common/basicPrompts");
 var _types = require("../../common/types");
 var _utils = require("../../common/utils");
+var _agents = require("./agents");
 var helpers = _interopRequireWildcard(require("./helpers"));
 var _crypto = _interopRequireDefault(require("crypto"));
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
@@ -314,21 +315,6 @@ const askForAzureCredentials = async (hostedAgentValues, installConfig) => {
   }
   return hostedAgentValues;
 };
-const validateFrequency = () => input => {
-  let val = (0, _basicPrompts.validateRegex)(helpers.frequencyRegex, helpers.invalidValueExampleErrMsg('frequency', '3d5h12m'))(input);
-  if (typeof val === 'string') {
-    return val;
-  }
-  let r = input.toString().match(/^(\d*)m/);
-  if (r) {
-    // only minutes
-    let mins = r[1];
-    if (parseInt(mins, 10) < 30) {
-      return 'Minimum frequency is 30m';
-    }
-  }
-  return true;
-};
 
 // @ts-ignore
 const gatewayConnectivity = async installConfig => {
@@ -360,7 +346,7 @@ const gatewayConnectivity = async installConfig => {
   console.log(_chalk.default.gray('\n00d00h00m format, where 30m = 30 minutes, 1h = 1 hour, 7d = 7 days, and 7d1h30m = 7 days 1 hour and 30 minutes. Minimum of 30m.'));
   hostedAgentValues.frequencyDA = await (0, _basicPrompts.askInput)({
     msg: SaasPrompts.DA_FREQUENCY,
-    validate: validateFrequency(),
+    validate: (0, _agents.validateFrequency)(),
     allowEmptyInput: true
   });
   hostedAgentValues.queueDA = (await (0, _basicPrompts.askList)({
@@ -373,7 +359,7 @@ const gatewayConnectivity = async installConfig => {
     hostedAgentValues.frequencyTA = await (0, _basicPrompts.askInput)({
       msg: SaasPrompts.TA_FREQUENCY,
       defaultValue: '30m',
-      validate: validateFrequency(),
+      validate: (0, _agents.validateFrequency)(),
       allowEmptyInput: true
     });
     hostedAgentValues = await askForSampling(hostedAgentValues);
@@ -384,7 +370,7 @@ const gatewayConnectivity = async installConfig => {
 const generateOutput = async installConfig => {
   return `Install complete of hosted agent for ${installConfig.gatewayType} region`;
 };
-const createEncryptedAccessData = async (hostedAgentValues, dataplaneRes) => {
+const createEncryptedAccessData = async (agentValues, dataplaneRes) => {
   var _dataplaneRes$securit, _dataplaneRes$securit2;
   // grab key from data plane resource
   let key = ((_dataplaneRes$securit = dataplaneRes.security) === null || _dataplaneRes$securit === void 0 ? void 0 : _dataplaneRes$securit.encryptionKey) || '';
@@ -396,7 +382,7 @@ const createEncryptedAccessData = async (hostedAgentValues, dataplaneRes) => {
     key: key,
     padding: _crypto.default.constants.RSA_PKCS1_OAEP_PADDING,
     oaepHash: hash
-  }, Buffer.from(hostedAgentValues.getAccessData()));
+  }, Buffer.from(agentValues.getAccessData()));
   return encData.toString('base64');
 };
 const completeInstall = async (installConfig, apiServerClient, defsManager) => {
@@ -405,12 +391,59 @@ const completeInstall = async (installConfig, apiServerClient, defsManager) => {
    */
   console.log('\n');
   let azureAgentValues = installConfig.gatewayConfig;
-
+  let resourceFuncsForCleanup = [];
+  let referencedIDPs = [];
+  let providedIDPs = installConfig.idpConfig[0];
+  let providedIDPAuths = installConfig.idpConfig[1];
+  // create Identity Provider resource
+  try {
+    for (let i = 0; i < providedIDPs.length; i++) {
+      let idpResource = await helpers.createNewIDPResource(apiServerClient, defsManager, providedIDPs[i]);
+      let cleanupFunc = async () => await helpers.deleteByResourceType(apiServerClient, defsManager, idpResource === null || idpResource === void 0 ? void 0 : idpResource.name, 'IdentityProvider', 'idp');
+      resourceFuncsForCleanup.push(cleanupFunc);
+      referencedIDPs.push({
+        name: idpResource === null || idpResource === void 0 ? void 0 : idpResource.name
+      });
+      log(idpResource);
+      let encryptedAccessData = await createEncryptedAccessData(providedIDPAuths[i], idpResource);
+      providedIDPAuths[i].setAccessData(encryptedAccessData);
+      let idpSecResource = await helpers.createNewIDPSecretResource(apiServerClient, defsManager, providedIDPAuths[i], idpResource);
+      let anotherCleanupFunc = async () => await helpers.deleteByResourceType(apiServerClient, defsManager, idpSecResource === null || idpSecResource === void 0 ? void 0 : idpSecResource.name, 'IdentityProviderSecret', 'idpsec', idpResource === null || idpResource === void 0 ? void 0 : idpResource.name);
+      resourceFuncsForCleanup.push(anotherCleanupFunc);
+    }
+  } catch (error) {
+    log(error);
+    console.log(_chalk.default.redBright('rolling back installation. Could not create the Identity Provider resources'));
+    await cleanResources(resourceFuncsForCleanup);
+    return;
+  }
+  let refIDPsSubResources = {
+    references: {
+      identityProviders: referencedIDPs
+    }
+  };
   // create the environment, if necessary
-  installConfig.centralConfig.environment = installConfig.centralConfig.ampcEnvInfo.isNew ? await helpers.createByResourceType(apiServerClient, defsManager, installConfig.centralConfig.ampcEnvInfo.name, 'Environment', 'env', {
-    axwayManaged: installConfig.centralConfig.axwayManaged,
-    production: installConfig.centralConfig.production
-  }) : installConfig.centralConfig.ampcEnvInfo.name;
+  if (installConfig.centralConfig.ampcEnvInfo.isNew) {
+    installConfig.centralConfig.environment = await helpers.createByResourceType(apiServerClient, defsManager, installConfig.centralConfig.ampcEnvInfo.name, 'Environment', 'env', {
+      axwayManaged: installConfig.centralConfig.axwayManaged,
+      production: installConfig.centralConfig.production
+    }, '', refIDPsSubResources);
+    let cleanupFunc = async () => await helpers.deleteByResourceType(apiServerClient, defsManager, installConfig.centralConfig.ampcEnvInfo.name, 'Environment', 'env');
+    resourceFuncsForCleanup.push(cleanupFunc);
+  } else {
+    // if the env exists, we simply update the references with the newly created IDPs, while preserving the existing IDP references
+    // In the case of any failure during the whole process, we return everything back to how it was before.
+    installConfig.centralConfig.environment = installConfig.centralConfig.ampcEnvInfo.name;
+    refIDPsSubResources.references.identityProviders.push(...installConfig.centralConfig.ampcEnvInfo.referencedIdentityProviders);
+    await helpers.updateSubResourceType(apiServerClient, defsManager, installConfig.centralConfig.ampcEnvInfo.name, 'Environment', 'env', '', refIDPsSubResources);
+    let oldIDPRef = {
+      references: {
+        identityProviders: installConfig.centralConfig.ampcEnvInfo.referencedIdentityProviders
+      }
+    };
+    let cleanupFunc = async () => await helpers.updateSubResourceType(apiServerClient, defsManager, installConfig.centralConfig.ampcEnvInfo.name, 'Environment', 'env', '', oldIDPRef);
+    resourceFuncsForCleanup.push(cleanupFunc);
+  }
   if (installConfig.gatewayType === _types.GatewayTypes.AZURE_GATEWAY) {
     azureAgentValues.dataplaneConfig = new AzureDataplaneConfig(azureAgentValues.tenantId, azureAgentValues.resourceGroup, azureAgentValues.subscriptionId, azureAgentValues.apimManagementServiceName);
     if (installConfig.switches.isTaEnabled) {
@@ -421,24 +454,22 @@ const completeInstall = async (installConfig, apiServerClient, defsManager) => {
   let dataplaneRes;
   try {
     dataplaneRes = await helpers.createNewDataPlaneResource(apiServerClient, defsManager, installConfig.centralConfig.environment, _types.GatewayTypeToDataPlane[installConfig.gatewayType], azureAgentValues.dataplaneConfig);
+    let cleanupFunc = async () => await helpers.deleteByResourceType(apiServerClient, defsManager, dataplaneRes.name, 'Dataplane', 'dp', installConfig.centralConfig.environment);
+    resourceFuncsForCleanup.push(cleanupFunc);
   } catch (error) {
     console.log(_chalk.default.redBright('rolling back installation. Please check the configuration data before re-running install'));
-    if (installConfig.centralConfig.ampcEnvInfo.isNew) {
-      await helpers.deleteByResourceType(apiServerClient, defsManager, installConfig.centralConfig.ampcEnvInfo.name, 'Environment', 'env');
-    }
+    await cleanResources(resourceFuncsForCleanup);
     return;
   }
 
   // create data plane secret resource
   try {
-    await helpers.createNewDataPlaneSecretResource(apiServerClient, defsManager, installConfig.centralConfig.environment, _types.GatewayTypeToDataPlane[installConfig.gatewayType], dataplaneRes.name, await createEncryptedAccessData(azureAgentValues, dataplaneRes));
+    let dataplaneSecretRes = await helpers.createNewDataPlaneSecretResource(apiServerClient, defsManager, installConfig.centralConfig.environment, _types.GatewayTypeToDataPlane[installConfig.gatewayType], dataplaneRes.name, await createEncryptedAccessData(azureAgentValues, dataplaneRes));
+    let cleanupFunc = async () => await helpers.deleteByResourceType(apiServerClient, defsManager, dataplaneSecretRes === null || dataplaneSecretRes === void 0 ? void 0 : dataplaneSecretRes.name, 'DataplaneSecret', 'dps', installConfig.centralConfig.environment);
+    resourceFuncsForCleanup.push(cleanupFunc);
   } catch (error) {
     console.log(_chalk.default.redBright('rolling back installation. Please check the credential data before re-running install'));
-    if (installConfig.centralConfig.ampcEnvInfo.isNew) {
-      await helpers.deleteByResourceType(apiServerClient, defsManager, installConfig.centralConfig.ampcEnvInfo.name, 'Environment', 'env');
-    } else {
-      await helpers.deleteByResourceType(apiServerClient, defsManager, dataplaneRes.name, 'Dataplane', 'dp', installConfig.centralConfig.environment);
-    }
+    await cleanResources(resourceFuncsForCleanup);
     return;
   }
 
@@ -459,6 +490,7 @@ const AzureSaaSInstallMethods = exports.AzureSaaSInstallMethods = {
   GetBundleType: askBundleType,
   GetDeploymentType: askConfigType,
   AskGatewayQuestions: gatewayConnectivity,
+  AddIDP: true,
   FinalizeGatewayInstall: completeInstall,
   ConfigFiles: [],
   AgentNameMap: {
@@ -474,4 +506,12 @@ const testables = exports.testables = {
   SaasAzureAgentValues,
   SaasPrompts,
   ConfigFiles
+};
+// These are useful because there are multiple resources created in a specific order and in case of failure, this goes through
+// everything that was created and deletes it one by one. It deletes the resources in opposite order because resources added
+// at the beginning might be referred by resources added afterwards
+const cleanResources = async cleanupFuncs => {
+  for (let i = cleanupFuncs.length - 1; i >= 0; i--) {
+    await cleanupFuncs[i]();
+  }
 };

package/dist/commands/install/helpers/creators.js

@@ -3,7 +3,7 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.updateSubResourceType = exports.createSecret = exports.createNewDataPlaneSecretResource = exports.createNewDataPlaneResource = exports.createNewAgentResource = exports.createDosaAndCerts = exports.createByResourceType = exports.createBackUpConfigs = void 0;
+exports.updateSubResourceType = exports.createSecret = exports.createNewIDPSecretResource = exports.createNewIDPResource = exports.createNewDataPlaneSecretResource = exports.createNewDataPlaneResource = exports.createNewAgentResource = exports.createDosaAndCerts = exports.createByResourceType = exports.createBackUpConfigs = void 0;
 var _chalk = _interopRequireDefault(require("chalk"));
 var _snooplogg = _interopRequireDefault(require("snooplogg"));
 var _fsExtra = _interopRequireDefault(require("fs-extra"));
@@ -257,13 +257,91 @@ const createNewDataPlaneSecretResource = async (client, defsManager, envName, da
   return result.data;
 };
 
+/**
+ * @description Helper func to create a new Identity Provider resource
+ * @param client API Service Client
+ * @param defsManager Definition Manager
+ * @param idpConfig IDP Configuration from inputs
+ */
+exports.createNewDataPlaneSecretResource = createNewDataPlaneSecretResource;
+const createNewIDPResource = async (client, defsManager, idpConfig) => {
+  console.log(`Creating a new Identity Provider resource.`);
+  // NOTE: only a first found set is used
+  const defs = defsManager.findDefsByWord("idp");
+  if (!defs) {
+    throw Error(`the server doesn't have a resource type Identity Provider`);
+  }
+  const result = await client.createResource({
+    // @ts-ignore payload
+    resource: {
+      title: idpConfig.title,
+      spec: idpConfig.getSpec()
+    },
+    resourceDef: defs[0].resource,
+    scopeDef: defs[0].scope ? defs[0].scope : undefined
+  });
+  log(result);
+  if (!result.data) {
+    var _result$error5;
+    const errMsg = `cannot create a new agent`;
+    if ((_result$error5 = result.error) !== null && _result$error5 !== void 0 && _result$error5.length) {
+      throw Error(`${errMsg}: ${result.error[0].detail}.`);
+    } else {
+      throw Error(`${errMsg}.`);
+    }
+  } else {
+    console.log(`New Identity Provider of type "${defs[0].resource.name}" named "${result.data.name}" has been successfully created.`);
+  }
+  return result.data;
+};
+
+/**
+ * @description Helper func to create a new Identity Provider Secret resource
+ * @param client API Service Client
+ * @param defsManager Definition Manager
+ * @param idpAuthConfig IDP Auth Configuration from inputs
+ * @param idpResource IDP Configuration received after creating the IDP from inputs
+ */
+exports.createNewIDPResource = createNewIDPResource;
+const createNewIDPSecretResource = async (client, defsManager, idpAuthConfig, idpResource) => {
+  console.log(`Creating a new Identity Provider Secret resource.`);
+  // NOTE: only a first found set is used
+  const defs = defsManager.findDefsByWord("idpsec");
+  if (!defs) {
+    throw Error(`the server doesn't have a resource type Identity Provider Secret`);
+  }
+  const result = await client.createResource({
+    // @ts-ignore payload
+    resource: {
+      title: idpResource.title + ' IDPSecret',
+      spec: idpAuthConfig.getSpec()
+    },
+    resourceDef: defs[0].resource,
+    scopeDef: defs[0].scope ? defs[0].scope : undefined,
+    scopeName: idpResource.name
+  });
+  log(result);
+  if (!result.data) {
+    var _result$error6;
+    const errMsg = `cannot create a new agent`;
+    if ((_result$error6 = result.error) !== null && _result$error6 !== void 0 && _result$error6.length) {
+      throw Error(`${errMsg}: ${result.error[0].detail}.`);
+    } else {
+      throw Error(`${errMsg}.`);
+    }
+  } else {
+    console.log(`New Identity Provider of type "${defs[0].resource.name}" named "${result.data.name}" has been successfully created.`);
+  }
+  return result.data;
+};
+
 /**
  * @description Helper func to check for existing secret, and clean up old secret before creating a new one.
  * @param namespace Namespace to create the secret in.
  * @param secretName The name of the secret.
  * @param createFunc A function that will create the secret
  */
-exports.createNewDataPlaneSecretResource = createNewDataPlaneSecretResource;
+exports.createNewIDPSecretResource = createNewIDPSecretResource;
 const createSecret = async (namespace, secretName, createFunc) => {
   const secrets = await _Kubectl.kubectl.get('secrets', `-n ${namespace} ${secretName}`);
   // NotFound errors are ok. Throw an error for anything else.

package/dist/commands/install/helpers/inputs.js

@@ -3,8 +3,9 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.transactionLoggingMessages = exports.serviceAccountNameAlreadyExists = exports.selectServiceAccount = exports.selectIngestionProtocol = exports.selectAWSRegion = exports.secretAlreadyExists = exports.namespaceAlreadyExists = exports.k8sClusterMessages = exports.envMessages = exports.enterServiceAccountName = exports.enterPublicKeyPath = exports.enterPrivateKeyPath = exports.enterNamespaceName = exports.enterAWSRegion = exports.createNamespace = exports.createGatewayAgentCredsSecret = exports.createAmplifyAgentKeysSecret = exports.askToEnableTransactionLogging = exports.askServiceAccountName = exports.askReferencedEnvironments = exports.askPublicKeyPath = exports.askPublicAndPrivateKeysPath = exports.askPrivateKeyPath = exports.askNamespace = exports.askK8sClusterName = exports.askIngestionProtocol = exports.askForSecretName = exports.askEnvironmentName = exports.askDosaClientId = exports.askBundleType = exports.askAgentName = exports.askAWSRegion = exports.agentMessages = void 0;
+exports.transactionLoggingMessages = exports.serviceAccountNameAlreadyExists = exports.selectServiceAccount = exports.selectIngestionProtocol = exports.selectAWSRegion = exports.secretAlreadyExists = exports.namespaceAlreadyExists = exports.k8sClusterMessages = exports.idpTestables = exports.idpMessages = exports.envMessages = exports.enterServiceAccountName = exports.enterPublicKeyPath = exports.enterPrivateKeyPath = exports.enterNamespaceName = exports.enterAWSRegion = exports.createNamespace = exports.createGatewayAgentCredsSecret = exports.createAmplifyAgentKeysSecret = exports.askToEnableTransactionLogging = exports.askServiceAccountName = exports.askReferencedEnvironments = exports.askPublicKeyPath = exports.askPublicAndPrivateKeysPath = exports.askPrivateKeyPath = exports.askNamespace = exports.askKeyValuePairLoop = exports.askK8sClusterName = exports.askIngestionProtocol = exports.askForSecretName = exports.askForIDPConfiguration = exports.askForIDPAuthConfiguration = exports.askEnvironmentName = exports.askDosaClientId = exports.askBundleType = exports.askArrayLoop = exports.askAgentName = exports.askAWSRegion = exports.agentMessages = exports.addIdentityProvider = void 0;
 var _chalk = _interopRequireDefault(require("chalk"));
+var _snooplogg = _interopRequireDefault(require("snooplogg"));
 var _inquirer = _interopRequireDefault(require("inquirer"));
 var _basicPrompts = require("../../../common/basicPrompts");
 var _Kubectl = require("../../../common/Kubectl");
@@ -13,6 +14,9 @@ var _types = require("../../../common/types");
 var _getters = require("./getters");
 var _regex = require("./regex");
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
+const {
+  log
+} = (0, _snooplogg.default)('central: install: agents: saas');
 const cliNowString = `cli-${Date.now()}`;
 const envMessages = exports.envMessages = {
   createNewEnvironment: 'Create a new environment',
@@ -38,6 +42,24 @@ const agentMessages = exports.agentMessages = {
   agentAlreadyExists: 'Agent already exists. Please enter a new name.',
   selectAgentType: 'Select the type of agent(s) you want to install'
 };
+const idpMessages = exports.idpMessages = {
+  addIDP: 'Choose if you want to add an IDP Configuration. Multiple Identity providers can be configured',
+  enterTitle: 'Enter the title of the IDP config',
+  selectType: 'Select the type of the IDP',
+  enterMetadataURL: 'Enter the metadata URL',
+  provideReqHeadersRegistration: 'Add request headers used for registration calls as key-value pairs. Stops when empty key is provided',
+  provideQueryParamsRegistration: 'Add query parameters used for registration calls as key-value pairs. Stops when empty key is provided',
+  provideClientProperties: "Enter additional client properties used for registration calls as key-value pairs. Stops when empty key is provided",
+  enterClientTimeout: "Enter client timeout (in seconds) for dynamic registration calls. Defaults to 60s. Minimum 30s",
+  selectAuthType: "Select the auth type",
+  enterToken: "Enter the access token",
+  selectClientSecretAuthMethod: "Select the auth method for ClientSecret based auth",
+  enterClientID: "Enter the clientID",
+  enterClientSecret: "Enter the clientSecret",
+  enterClientScopes: "Enter the list of scope names",
+  provideReqHeadersForTokenFetch: "Enter the request headers used for the token fetch call as key-value pairs. Stops when empty input is provided",
+  provideQueryParamsForTokenFetch: "Enter the query parameters used for the token fetch call as key-value pairs. Stops when empty input is provided"
+};
 const transactionLoggingMessages = exports.transactionLoggingMessages = {
   askToEnableLogging: 'Would you like to enable transaction logging?',
   transactionLoggingInfoMsg: 'Transaction logging is optional and not required for usage and metrics logging.\nTurning on transaction logging can have an impact on performance.',
@@ -242,12 +264,13 @@ const askEnvironmentName = async (client, defsManager, isAxwayManaged = null) =>
       isNew: true
     };
   } else {
-    var _selectedEnv$referenc;
+    var _selectedEnv$referenc, _selectedEnv$referenc2, _selectedEnv$referenc3, _selectedEnv$referenc4;
     const selectedEnv = envs.find(env => env.name == answer);
     return {
       name: answer,
       isNew: false,
-      referencedEnvironments: selectedEnv === null || selectedEnv === void 0 ? void 0 : (_selectedEnv$referenc = selectedEnv.references) === null || _selectedEnv$referenc === void 0 ? void 0 : _selectedEnv$referenc.managedEnvironments
+      referencedEnvironments: selectedEnv !== null && selectedEnv !== void 0 && (_selectedEnv$referenc = selectedEnv.references) !== null && _selectedEnv$referenc !== void 0 && _selectedEnv$referenc.managedEnvironments ? selectedEnv === null || selectedEnv === void 0 ? void 0 : (_selectedEnv$referenc2 = selectedEnv.references) === null || _selectedEnv$referenc2 === void 0 ? void 0 : _selectedEnv$referenc2.managedEnvironments : [],
+      referencedIdentityProviders: selectedEnv !== null && selectedEnv !== void 0 && (_selectedEnv$referenc3 = selectedEnv.references) !== null && _selectedEnv$referenc3 !== void 0 && _selectedEnv$referenc3.identityProviders ? selectedEnv === null || selectedEnv === void 0 ? void 0 : (_selectedEnv$referenc4 = selectedEnv.references) === null || _selectedEnv$referenc4 === void 0 ? void 0 : _selectedEnv$referenc4.identityProviders : []
     };
   }
 };
@@ -448,4 +471,166 @@ const askToEnableTransactionLogging = async () => {
     };
   }
 };
-exports.askToEnableTransactionLogging = askToEnableTransactionLogging;
+exports.askToEnableTransactionLogging = askToEnableTransactionLogging;
+const askKeyValuePairLoop = async (msg, keyLabel, validateFunc) => {
+  let key = "non-empty";
+  let map = new Map();
+  console.log(_chalk.default.cyan(msg));
+  while (key != "") {
+    key = await (0, _basicPrompts.askInput)({
+      msg: `Enter the ${keyLabel} name`,
+      allowEmptyInput: true,
+      validate: validateFunc
+    });
+    if (key === "") {
+      return map;
+    }
+    let value = await (0, _basicPrompts.askInput)({
+      msg: `Enter the ${keyLabel} value`
+    });
+    map.set(key, value);
+  }
+  return map;
+};
+exports.askKeyValuePairLoop = askKeyValuePairLoop;
+const askArrayLoop = async msg => {
+  let value = "non-empty";
+  let array = [];
+  console.log(_chalk.default.gray(msg));
+  while (value != "") {
+    value = await (0, _basicPrompts.askInput)({
+      msg: "Enter the value",
+      allowEmptyInput: true
+    });
+    if (value === "") {
+      return array;
+    }
+    array.push(value);
+  }
+  return array;
+};
+exports.askArrayLoop = askArrayLoop;
+const addIdentityProvider = async () => {
+  let providedIDPs = [];
+  let providedIDPAuths = [];
+  while ((await (0, _basicPrompts.askList)({
+    msg: idpMessages.addIDP,
+    choices: _types.YesNoChoices,
+    default: _types.YesNo.Yes
+  })) === _types.YesNo.Yes) {
+    console.log("starting IDP Configuration process");
+    let idpConfig = new _types.IDPConfiguration();
+    idpConfig = await askForIDPConfiguration(idpConfig);
+    providedIDPs.push(idpConfig);
+    let idpAuthConfig = new _types.IDPAuthConfiguration();
+    idpAuthConfig = await askForIDPAuthConfiguration(idpAuthConfig);
+    providedIDPAuths.push(idpAuthConfig);
+  }
+  return [providedIDPs, providedIDPAuths];
+};
+exports.addIdentityProvider = addIdentityProvider;
+const askForIDPAuthAccessToken = async idpAuth => {
+  console.log(_chalk.default.gray('gathering the access token auth configuration'));
+  idpAuth.token = await (0, _basicPrompts.askInput)({
+    msg: idpMessages.enterToken
+  });
+  return idpAuth;
+};
+const askForIDPAuthClientSecret = async idpAuth => {
+  console.log(_chalk.default.gray('gathering the client secret auth configuration'));
+  idpAuth.authMethod = await (0, _basicPrompts.askList)({
+    msg: idpMessages.selectClientSecretAuthMethod,
+    choices: [{
+      name: _types.IDPClientSecretAuthMethod.ClientSecretBasic,
+      value: _types.IDPClientSecretAuthMethod.ClientSecretBasic
+    }, {
+      name: _types.IDPClientSecretAuthMethod.ClientSecretPost,
+      value: _types.IDPClientSecretAuthMethod.ClientSecretPost
+    }, {
+      name: _types.IDPClientSecretAuthMethod.ClientSecretJWT,
+      value: _types.IDPClientSecretAuthMethod.ClientSecretJWT
+    }]
+  });
+  idpAuth.clientID = await (0, _basicPrompts.askInput)({
+    msg: idpMessages.enterClientID
+  });
+  idpAuth.clientSecret = await (0, _basicPrompts.askInput)({
+    msg: idpMessages.enterClientSecret
+  });
+  idpAuth.clientScopes = await idpTestables.askArrayLoop(idpMessages.enterClientScopes);
+  return idpAuth;
+};
+const askForIDPConfiguration = async idpConfigValues => {
+  console.log(_chalk.default.gray('gathering idp configuration for azure'));
+  idpConfigValues.title = await (0, _basicPrompts.askInput)({
+    msg: idpMessages.enterTitle
+  });
+  idpConfigValues.type = await (0, _basicPrompts.askList)({
+    msg: idpMessages.selectType,
+    choices: [{
+      name: _types.IDPType.Generic,
+      value: _types.IDPType.Generic
+    }, {
+      name: _types.IDPType.KeyCloak,
+      value: _types.IDPType.KeyCloak
+    }, {
+      name: _types.IDPType.Okta,
+      value: _types.IDPType.Okta
+    }]
+  });
+  idpConfigValues.metadataURL = await (0, _basicPrompts.askInput)({
+    msg: idpMessages.enterMetadataURL,
+    validate: (0, _basicPrompts.validateRegex)(_regex.GitLabRegexPatterns.gitLabBaseURLRegex, 'metadataURL must have a valid URL format')
+  });
+  idpConfigValues.requestHeaders = await idpTestables.askKeyValuePairLoop(idpMessages.provideReqHeadersRegistration, "request header", (0, _basicPrompts.validateRegex)(_regex.keyFromKeyValuePairRegex, 'Please enter a valid value'));
+  idpConfigValues.queryParameters = await idpTestables.askKeyValuePairLoop(idpMessages.provideQueryParamsRegistration, "query parameter", (0, _basicPrompts.validateRegex)(_regex.keyFromKeyValuePairRegex, 'Please enter a valid value'));
+  idpConfigValues.clientProperties = await idpTestables.askKeyValuePairLoop(idpMessages.provideClientProperties, "client property", (0, _basicPrompts.validateRegex)(_regex.keyFromKeyValuePairRegex, 'Please enter a valid value'));
+  idpConfigValues.clientTimeout = await (0, _basicPrompts.askInput)({
+    type: 'number',
+    msg: idpMessages.enterClientTimeout,
+    validate: (0, _basicPrompts.validateValueRange)(30, 600),
+    defaultValue: 60,
+    allowEmptyInput: true
+  });
+  return idpConfigValues;
+};
+exports.askForIDPConfiguration = askForIDPConfiguration;
+const askForIDPAuthConfiguration = async idpConfigValues => {
+  console.log(_chalk.default.gray('gathering idp auth configuration for azure'));
+  idpConfigValues.authType = await (0, _basicPrompts.askList)({
+    msg: idpMessages.selectAuthType,
+    choices: [{
+      name: _types.IDPAuthType.AccessToken,
+      value: _types.IDPAuthType.AccessToken
+    }, {
+      name: _types.IDPAuthType.ClientSecret,
+      value: _types.IDPAuthType.ClientSecret
+    }]
+  });
+  log(idpConfigValues.authType);
+  switch (idpConfigValues.authType) {
+    case _types.IDPAuthType.AccessToken:
+      {
+        let auth = new _types.IDPAuthAccessToken();
+        idpConfigValues.authConfig = await askForIDPAuthAccessToken(auth);
+        break;
+      }
+    case _types.IDPAuthType.ClientSecret:
+      {
+        let auth = new _types.IDPAuthClientSecret();
+        idpConfigValues.authConfig = await askForIDPAuthClientSecret(auth);
+        break;
+      }
+  }
+  idpConfigValues.requestHeaders = await idpTestables.askKeyValuePairLoop(idpMessages.provideReqHeadersForTokenFetch, "request header", (0, _basicPrompts.validateRegex)(_regex.keyFromKeyValuePairRegex, 'Please enter a valid value'));
+  idpConfigValues.queryParameters = await idpTestables.askKeyValuePairLoop(idpMessages.provideQueryParamsForTokenFetch, "query parameter", (0, _basicPrompts.validateRegex)(_regex.keyFromKeyValuePairRegex, 'Please enter a valid value'));
+  return idpConfigValues;
+};
+
+// exported inside another object because we want to mock this function when testing
+exports.askForIDPAuthConfiguration = askForIDPAuthConfiguration;
+const idpTestables = exports.idpTestables = {
+  addIdentityProvider,
+  askKeyValuePairLoop,
+  askArrayLoop
+};

package/dist/commands/install/helpers/regex.js

@@ -3,7 +3,7 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.resourceRegex = exports.percentageRegex = exports.namespaceRegex = exports.maskingRegex = exports.invalidResourceMsg = exports.invalidPercentage = exports.invalidNamespace = exports.invalidDosaName = exports.invalidDomainName = exports.frequencyRegex = exports.dosaRegex = exports.domainNameRegex = exports.KafkaRegexPatterns = exports.GitLabRegexPatterns = exports.GitHubRegexPatterns = exports.AzureRegexPatterns = exports.AWSRegexPatterns = exports.APIGEEXRegexPatterns = void 0;
+exports.resourceRegex = exports.percentageRegex = exports.namespaceRegex = exports.maskingRegex = exports.keyFromKeyValuePairRegex = exports.invalidResourceMsg = exports.invalidPercentage = exports.invalidNamespace = exports.invalidDosaName = exports.invalidDomainName = exports.frequencyRegex = exports.dosaRegex = exports.domainNameRegex = exports.KafkaRegexPatterns = exports.GitLabRegexPatterns = exports.GitHubRegexPatterns = exports.AzureRegexPatterns = exports.AWSRegexPatterns = exports.APIGEEXRegexPatterns = void 0;
 const resourceRegex = exports.resourceRegex = '^(?:[a-z0-9]*(?:\\.(?=[a-z0-9])|-+(?=[a-z0-9]))?)+[a-z0-9]$';
 const namespaceRegex = exports.namespaceRegex = '^[a-z0-9]?(?:[-a-z0-9]*[a-z0-9]){1,100}?$';
 const domainNameRegex = exports.domainNameRegex = '^(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])\\.)+([A-Za-z]){2,}$';
@@ -11,6 +11,7 @@ const dosaRegex = exports.dosaRegex = '^[\\w\\s-()[\\]]{1,100}$';
 const percentageRegex = exports.percentageRegex = '^[1-9]$|10$';
 const frequencyRegex = exports.frequencyRegex = '^(\\d*[d])?(\\d*[h])?(\\d*[m])?$|^$';
 const maskingRegex = exports.maskingRegex = '^[a-zA-Z0-9-*#^~.{}]{0,5}$';
+const keyFromKeyValuePairRegex = exports.keyFromKeyValuePairRegex = '^[A-Za-z]+[_\-\w]+$';
 const invalidPercentage = exports.invalidPercentage = 'Percentage must be an integer between 1-10';
 const invalidDosaName = exports.invalidDosaName = 'Account name can contain A-z 0-9 _ - ( ) [ ] and can include 1-100 characters.';
 const invalidNamespace = exports.invalidNamespace = `Namespace must consist of lower case alphanumeric characters or '-', and must start and end with an alphanumeric character, and be fewer than 100 characters long.`;

package/dist/common/types.js

@@ -3,8 +3,9 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.docsUrl = exports.commonCmdArgsDescription = exports.cliVersionHeader = exports.YesNoChoices = exports.YesNo = exports.WAIT_TIMEOUT = exports.TrueFalseChoices = exports.TrueFalse = exports.TraceabilityConfig = exports.SingleEntryPointUrls = exports.SaaSGatewayTypes = exports.Regions = exports.PublicRepoUrl = exports.PublicDockerRepoBaseUrl = exports.Protocol = exports.ProdBaseUrls = exports.Platforms = exports.OutputTypes = exports.MAX_TABLE_STRING_LENGTH = exports.MAX_FILE_SIZE = exports.MAX_CACHE_FILE_SIZE = exports.LoggingSource = exports.KindTypes = exports.Kind = exports.IstioProfileChoices = exports.IstioInstallValues = exports.IstioAgentValues = exports.IngestionProtocolToHosts = exports.IngestionProtocol = exports.IngestionHostsHTTP = exports.IngestionHosts = exports.IngestionHTTPHosts = exports.GatewayTypes = exports.GatewayTypeToDataPlane = exports.GatewayMode = exports.EnvironmentConfigInfo = exports.DosaAccount = exports.DataPlaneNames = exports.DOSAConfigInfo = exports.ConfigTypes = exports.CloudFormationConfig = exports.Certificate = exports.CentralAgentConfig = exports.CACHE_FILE_TTL_MILLISECONDS = exports.BundleType = exports.BasePaths = exports.AuthUrls = exports.AgentTypes = exports.AgentResourceKind = exports.AgentNames = exports.AgentInstallSwitches = exports.AgentInstallConfig = exports.AgentConfigTypes = exports.AWSRegions = exports.APIGEEXDISCOVERYMODES = exports.APICDeployments = exports.ABORT_TIMEOUT = void 0;
+exports.docsUrl = exports.commonCmdArgsDescription = exports.cliVersionHeader = exports.YesNoChoices = exports.YesNo = exports.WAIT_TIMEOUT = exports.TrueFalseChoices = exports.TrueFalse = exports.TraceabilityConfig = exports.SingleEntryPointUrls = exports.SaaSGatewayTypes = exports.Regions = exports.PublicRepoUrl = exports.PublicDockerRepoBaseUrl = exports.Protocol = exports.ProdBaseUrls = exports.Platforms = exports.OutputTypes = exports.MAX_TABLE_STRING_LENGTH = exports.MAX_FILE_SIZE = exports.MAX_CACHE_FILE_SIZE = exports.LoggingSource = exports.KindTypes = exports.Kind = exports.IstioProfileChoices = exports.IstioInstallValues = exports.IstioAgentValues = exports.IngestionProtocolToHosts = exports.IngestionProtocol = exports.IngestionHostsHTTP = exports.IngestionHosts = exports.IngestionHTTPHosts = exports.IDPType = exports.IDPConfiguration = exports.IDPClientSecretAuthMethod = exports.IDPAuthType = exports.IDPAuthConfiguration = exports.IDPAuthClientSecret = exports.IDPAuthAccessToken = exports.GatewayTypes = exports.GatewayTypeToDataPlane = exports.GatewayMode = exports.EnvironmentConfigInfo = exports.DosaAccount = exports.DataPlaneNames = exports.DOSAConfigInfo = exports.ConfigTypes = exports.CloudFormationConfig = exports.Certificate = exports.CentralAgentConfig = exports.CACHE_FILE_TTL_MILLISECONDS = exports.BundleType = exports.BasePaths = exports.AuthUrls = exports.AgentTypes = exports.AgentResourceKind = exports.AgentNames = exports.AgentInstallSwitches = exports.AgentInstallConfig = exports.AgentConfigTypes = exports.AWSRegions = exports.APIGEEXDISCOVERYMODES = exports.APICDeployments = exports.ABORT_TIMEOUT = void 0;
 var _dataService = require("./dataService");
+var _utils = require("./utils");
 function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
 function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
 function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
@@ -310,10 +311,12 @@ class EnvironmentConfigInfo {
     _defineProperty(this, "isNew", void 0);
     _defineProperty(this, "isUpdated", void 0);
     _defineProperty(this, "referencedEnvironments", void 0);
+    _defineProperty(this, "referencedIdentityProviders", void 0);
     this.name = '';
     this.isNew = false;
     this.isUpdated = false;
     this.referencedEnvironments = [];
+    this.referencedIdentityProviders = [];
   }
 }
 exports.EnvironmentConfigInfo = EnvironmentConfigInfo;
@@ -404,6 +407,7 @@ class AgentInstallConfig {
     _defineProperty(this, "daVersion", void 0);
     _defineProperty(this, "taVersion", void 0);
     _defineProperty(this, "gatewayConfig", void 0);
+    _defineProperty(this, "idpConfig", void 0);
     _defineProperty(this, "traceabilityConfig", void 0);
     _defineProperty(this, "switches", void 0);
     this.centralConfig = new CentralAgentConfig();
@@ -411,6 +415,7 @@ class AgentInstallConfig {
     this.gatewayType = GatewayTypes.EDGE_GATEWAY;
     this.deploymentType = AgentConfigTypes.DOCKERIZED;
     this.gatewayConfig = new Object();
+    this.idpConfig = [[], []];
     this.daVersion = 'latest';
     this.taVersion = 'latest';
     this.switches = new AgentInstallSwitches();
@@ -599,4 +604,131 @@ class IstioInstallValues {
  * Invoked multiple times to indicate progress on something, such as download progress.
  * @param progress Value ranging from 0 to 100.
  */
-exports.IstioInstallValues = IstioInstallValues;
+exports.IstioInstallValues = IstioInstallValues;
+class ReqHeadersQParams {
+  constructor() {
+    _defineProperty(this, "requestHeaders", void 0);
+    _defineProperty(this, "queryParameters", void 0);
+  }
+}
+class IDPConfiguration extends ReqHeadersQParams {
+  constructor() {
+    super();
+    _defineProperty(this, "title", void 0);
+    _defineProperty(this, "type", void 0);
+    _defineProperty(this, "metadataURL", void 0);
+    _defineProperty(this, "clientProperties", void 0);
+    _defineProperty(this, "clientTimeout", void 0);
+    this.title = '';
+    this.type = IDPType.Generic;
+    this.metadataURL = '';
+    this.clientTimeout = 60;
+  }
+  getSpec() {
+    let spec = new Map([["metadataUrl", this.metadataURL], ["providerType", this.type], ["clientTimeout", this.clientTimeout], ["requestHeaders", this.requestHeaders ? (0, _utils.KeyValueMapToNameValueArray)(this.requestHeaders) : undefined], ["queryParameters", this.queryParameters ? (0, _utils.KeyValueMapToNameValueArray)(this.queryParameters) : undefined], ["additionalClientProperties", this.clientProperties ? (0, _utils.KeyValueMapToNameValueArray)(this.clientProperties) : undefined]]);
+    let omitUndefinedSpec = new Map();
+    spec.forEach((v, k) => {
+      if (v !== undefined) {
+        omitUndefinedSpec.set(k, v);
+      }
+    });
+    return Object.fromEntries(omitUndefinedSpec.entries());
+  }
+}
+exports.IDPConfiguration = IDPConfiguration;
+class IDPAuthConfiguration extends ReqHeadersQParams {
+  constructor() {
+    super();
+    _defineProperty(this, "authType", void 0);
+    _defineProperty(this, "authConfig", void 0);
+    this.authType = IDPAuthType.AccessToken;
+    this.authConfig = new IDPAuthAccessToken();
+  }
+  getAccessData() {
+    return this.authConfig.getAccessData();
+  }
+  setAccessData(data) {
+    this.authConfig.setAccessData(data);
+  }
+  getSpec() {
+    let spec = new Map([["type", this.authType], ["config", this.authConfig.getSpec(this.authType)], ["requestHeaders", this.requestHeaders ? (0, _utils.KeyValueMapToNameValueArray)(this.requestHeaders) : undefined], ["queryParameters", this.queryParameters ? (0, _utils.KeyValueMapToNameValueArray)(this.queryParameters) : undefined]]);
+    let omitUndefinedSpec = new Map();
+    spec.forEach((v, k) => {
+      if (v !== undefined) {
+        omitUndefinedSpec.set(k, v);
+      }
+    });
+    return Object.fromEntries(omitUndefinedSpec.entries());
+  }
+}
+
+// IDPType - which idp configuration can be used
+exports.IDPAuthConfiguration = IDPAuthConfiguration;
+let IDPType = exports.IDPType = /*#__PURE__*/function (IDPType) {
+  IDPType["KeyCloak"] = "keycloak";
+  IDPType["Okta"] = "okta";
+  IDPType["Generic"] = "generic";
+  return IDPType;
+}({});
+class IDPAuthAccessToken {
+  constructor() {
+    _defineProperty(this, "token", void 0);
+    this.token = '';
+  }
+  getAccessData() {
+    return JSON.stringify({
+      token: this.token
+    });
+  }
+  setAccessData(data) {
+    this.token = data;
+  }
+  getSpec(authType) {
+    return {
+      type: authType,
+      token: this.token
+    };
+  }
+}
+exports.IDPAuthAccessToken = IDPAuthAccessToken;
+class IDPAuthClientSecret {
+  constructor() {
+    _defineProperty(this, "authMethod", void 0);
+    _defineProperty(this, "clientID", void 0);
+    _defineProperty(this, "clientSecret", void 0);
+    _defineProperty(this, "clientScopes", void 0);
+    this.authMethod = IDPClientSecretAuthMethod.ClientSecretBasic;
+    this.clientID = '';
+    this.clientSecret = '';
+  }
+  getAccessData() {
+    return JSON.stringify({
+      clientSecret: this.clientSecret
+    });
+  }
+  setAccessData(data) {
+    this.clientSecret = data;
+  }
+  getSpec(authType) {
+    let spec = new Map([["type", authType], ["authMethod", this.authMethod], ["clientId", this.clientID], ["clientSecret", this.clientSecret], ["clientScopes", this.clientScopes ? this.clientScopes : undefined]]);
+    let omitUndefinedSpec = new Map();
+    spec.forEach((v, k) => {
+      if (v !== undefined) {
+        omitUndefinedSpec.set(k, v);
+      }
+    });
+    return Object.fromEntries(omitUndefinedSpec.entries());
+  }
+}
+exports.IDPAuthClientSecret = IDPAuthClientSecret;
+let IDPClientSecretAuthMethod = exports.IDPClientSecretAuthMethod = /*#__PURE__*/function (IDPClientSecretAuthMethod) {
+  IDPClientSecretAuthMethod["ClientSecretBasic"] = "client_secret_basic";
+  IDPClientSecretAuthMethod["ClientSecretPost"] = "client_secret_post";
+  IDPClientSecretAuthMethod["ClientSecretJWT"] = "client_secret_jwt";
+  return IDPClientSecretAuthMethod;
+}({});
+let IDPAuthType = exports.IDPAuthType = /*#__PURE__*/function (IDPAuthType) {
+  IDPAuthType["AccessToken"] = "AccessToken";
+  IDPAuthType["ClientSecret"] = "ClientSecret";
+  return IDPAuthType;
+}({});

package/dist/common/utils.js

@@ -4,6 +4,7 @@ Object.defineProperty(exports, "__esModule", {
   value: true
 });
 exports.FormatString = FormatString;
+exports.KeyValueMapToNameValueArray = KeyValueMapToNameValueArray;
 exports.parseScopeParam = exports.loadAndVerifySpecs = exports.loadAndVerifyApigeeXCredentialFile = exports.isWindows = exports.isValidJson = exports.isApiServerErrorType = exports.isApiServerErrorResponseType = exports.hbsCompare = exports.getConfig = exports.configFile = exports.compareResourcesByKindDesc = exports.compareResourcesByKindAsc = exports.buildTemplate = exports.buildGenericResource = void 0;
 exports.sanitizeMetadata = sanitizeMetadata;
 exports.writeToFile = exports.writeTemplates = exports.verifyScopeParam = exports.verifyFile = exports.transformSimpleFilters = void 0;
@@ -376,4 +377,17 @@ const loadAndVerifyApigeeXCredentialFile = async credentialFilePath => {
   // Return loaded info.
   return fileInfo;
 };
-exports.loadAndVerifyApigeeXCredentialFile = loadAndVerifyApigeeXCredentialFile;
+exports.loadAndVerifyApigeeXCredentialFile = loadAndVerifyApigeeXCredentialFile;
+function KeyValueMapToNameValueArray(m) {
+  let array = [];
+  m.forEach((value, key) => {
+    array.push({
+      name: key,
+      value: value
+    });
+  });
+  if (array.length == 0) {
+    return undefined;
+  }
+  return array;
+}

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@axway/axway-central-cli",
-	"version": "2.31.0",
+	"version": "2.32.0",
 	"description": "Manage APIs, services and publish to the Unified Catalog",
 	"homepage": "https://platform.axway.com",
 	"author": {