opal-security 3.1.1-beta.65d1a96 → 3.1.1-beta.778ef29

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. package/README.md +18 -18
  2. package/lib/commands/request/get.d.ts +1 -5
  3. package/lib/commands/request/get.js +5 -81
  4. package/lib/graphql/gql.d.ts +0 -5
  5. package/lib/graphql/gql.js +0 -1
  6. package/lib/graphql/graphql.d.ts +0 -46
  7. package/lib/graphql/graphql.js +1 -224
  8. package/oclif.manifest.json +65 -81
  9. package/package.json +1 -1
package/README.md CHANGED
@@ -22,7 +22,7 @@ $ npm install -g opal-security
22
22
  $ opal COMMAND
23
23
  running command...
24
24
  $ opal (--version)
25
- opal-security/3.1.1-beta.65d1a96 linux-x64 node-v20.19.1
25
+ opal-security/3.1.1-beta.778ef29 linux-x64 node-v20.19.1
26
26
  $ opal --help [COMMAND]
27
27
  USAGE
28
28
  $ opal COMMAND
@@ -101,7 +101,7 @@ EXAMPLES
101
101
  $ opal aws:identity
102
102
  ```
103
103
 
104
- _See code: [src/commands/aws/identity.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/aws/identity.ts)_
104
+ _See code: [src/commands/aws/identity.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/aws/identity.ts)_
105
105
 
106
106
  ## `opal clear-auth-provider`
107
107
 
@@ -121,7 +121,7 @@ EXAMPLES
121
121
  $ opal clear-auth-provider
122
122
  ```
123
123
 
124
- _See code: [src/commands/clear-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/clear-auth-provider.ts)_
124
+ _See code: [src/commands/clear-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/clear-auth-provider.ts)_
125
125
 
126
126
  ## `opal curl-example`
127
127
 
@@ -138,7 +138,7 @@ DESCRIPTION
138
138
  Prints out an example cURL command containing the parameters the CLI uses to query the Opal server.
139
139
  ```
140
140
 
141
- _See code: [src/commands/curl-example.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/curl-example.ts)_
141
+ _See code: [src/commands/curl-example.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/curl-example.ts)_
142
142
 
143
143
  ## `opal groups get`
144
144
 
@@ -159,7 +159,7 @@ EXAMPLES
159
159
  $ opal groups:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4
160
160
  ```
161
161
 
162
- _See code: [src/commands/groups/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/groups/get.ts)_
162
+ _See code: [src/commands/groups/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/groups/get.ts)_
163
163
 
164
164
  ## `opal help [COMMANDS]`
165
165
 
@@ -209,7 +209,7 @@ EXAMPLES
209
209
  $ opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --profileName "custom-profile"
210
210
  ```
211
211
 
212
- _See code: [src/commands/iam-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/iam-roles/start.ts)_
212
+ _See code: [src/commands/iam-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/iam-roles/start.ts)_
213
213
 
214
214
  ## `opal kube-roles start`
215
215
 
@@ -240,7 +240,7 @@ EXAMPLES
240
240
  $ opal kube-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId "arn:aws:iam::712234975475:role/acme-eks-cluster-admin-role"
241
241
  ```
242
242
 
243
- _See code: [src/commands/kube-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/kube-roles/start.ts)_
243
+ _See code: [src/commands/kube-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/kube-roles/start.ts)_
244
244
 
245
245
  ## `opal login`
246
246
 
@@ -261,7 +261,7 @@ EXAMPLES
261
261
  $ opal login
262
262
  ```
263
263
 
264
- _See code: [src/commands/login.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/login.ts)_
264
+ _See code: [src/commands/login.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/login.ts)_
265
265
 
266
266
  ## `opal logout`
267
267
 
@@ -281,7 +281,7 @@ EXAMPLES
281
281
  $ opal logout
282
282
  ```
283
283
 
284
- _See code: [src/commands/logout.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/logout.ts)_
284
+ _See code: [src/commands/logout.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/logout.ts)_
285
285
 
286
286
  ## `opal postgres-instances start`
287
287
 
@@ -318,7 +318,7 @@ EXAMPLES
318
318
  $ opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId fullaccess --action view
319
319
  ```
320
320
 
321
- _See code: [src/commands/postgres-instances/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/postgres-instances/start.ts)_
321
+ _See code: [src/commands/postgres-instances/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/postgres-instances/start.ts)_
322
322
 
323
323
  ## `opal resources get`
324
324
 
@@ -339,7 +339,7 @@ EXAMPLES
339
339
  $ opal resources:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4
340
340
  ```
341
341
 
342
- _See code: [src/commands/resources/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/resources/get.ts)_
342
+ _See code: [src/commands/resources/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/resources/get.ts)_
343
343
 
344
344
  ## `opal set-auth-provider`
345
345
 
@@ -365,7 +365,7 @@ EXAMPLES
365
365
  $ opal set-auth-provider --clientID 1234asdf --issuerUrl https://auth.example.com
366
366
  ```
367
367
 
368
- _See code: [src/commands/set-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/set-auth-provider.ts)_
368
+ _See code: [src/commands/set-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/set-auth-provider.ts)_
369
369
 
370
370
  ## `opal set-custom-header`
371
371
 
@@ -386,7 +386,7 @@ EXAMPLES
386
386
  $ opal set-custom-header --header 'cf-access-token: $TOKEN'
387
387
  ```
388
388
 
389
- _See code: [src/commands/set-custom-header.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/set-custom-header.ts)_
389
+ _See code: [src/commands/set-custom-header.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/set-custom-header.ts)_
390
390
 
391
391
  ## `opal set-token`
392
392
 
@@ -406,7 +406,7 @@ EXAMPLES
406
406
  $ opal set-token
407
407
  ```
408
408
 
409
- _See code: [src/commands/set-token.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/set-token.ts)_
409
+ _See code: [src/commands/set-token.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/set-token.ts)_
410
410
 
411
411
  ## `opal set-url [URL]`
412
412
 
@@ -430,7 +430,7 @@ EXAMPLES
430
430
  $ opal set-url
431
431
  ```
432
432
 
433
- _See code: [src/commands/set-url.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/set-url.ts)_
433
+ _See code: [src/commands/set-url.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/set-url.ts)_
434
434
 
435
435
  ## `opal ssh copyFrom`
436
436
 
@@ -461,7 +461,7 @@ EXAMPLES
461
461
  $ opal ssh:copyFrom --src instance/dir --dest my/dir --id 51f7176b-0464-4a6f-8369-e951e187b398
462
462
  ```
463
463
 
464
- _See code: [src/commands/ssh/copyFrom.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/ssh/copyFrom.ts)_
464
+ _See code: [src/commands/ssh/copyFrom.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/ssh/copyFrom.ts)_
465
465
 
466
466
  ## `opal ssh copyTo`
467
467
 
@@ -492,7 +492,7 @@ EXAMPLES
492
492
  $ opal ssh:copyTo --src my/dir --dest instance/dir --id 51f7176b-0464-4a6f-8369-e951e187b398
493
493
  ```
494
494
 
495
- _See code: [src/commands/ssh/copyTo.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/ssh/copyTo.ts)_
495
+ _See code: [src/commands/ssh/copyTo.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/ssh/copyTo.ts)_
496
496
 
497
497
  ## `opal ssh start`
498
498
 
@@ -519,7 +519,7 @@ EXAMPLES
519
519
  $ opal ssh:start --id 51f7176b-0464-4a6f-8369-e951e187b398
520
520
  ```
521
521
 
522
- _See code: [src/commands/ssh/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.65d1a96/src/commands/ssh/start.ts)_
522
+ _See code: [src/commands/ssh/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.778ef29/src/commands/ssh/start.ts)_
523
523
 
524
524
  ## `opal version`
525
525
 
package/lib/commands/request/get.d.ts CHANGED
@@ -1,10 +1,6 @@
1
1
  import { Command } from "@oclif/core";
2
- export default class GetRequest extends Command {
2
+ export default class RequestGet extends Command {
3
3
  static hidden: boolean;
4
4
  static description: string;
5
- static flags: {
6
- help: import("@oclif/core/lib/interfaces").BooleanFlag<void>;
7
- id: import("@oclif/core/lib/interfaces").OptionFlag<string | undefined, import("@oclif/core/lib/interfaces").CustomOptions>;
8
- };
9
5
  run(): Promise<void>;
10
6
  }
package/lib/commands/request/get.js CHANGED
@@ -1,89 +1,13 @@
1
1
  "use strict";
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
3
  const core_1 = require("@oclif/core");
4
- const graphql_1 = require("../../graphql");
5
- const apollo_1 = require("../../lib/apollo");
6
- const cmd_1 = require("../../lib/cmd");
7
- const config_1 = require("../../lib/config");
8
- const flags_1 = require("../../lib/flags");
9
4
  const utils_1 = require("../../utils/utils");
10
- const GET_REQUEST = (0, graphql_1.graphql)(`
11
- query GetRequest(
12
- $id: RequestId!
13
- ) {
14
- request(input: {id: $id}) {
15
- __typename
16
- ... on RequestResult {
17
- request {
18
- id
19
- status
20
- requestedResources {
21
- resource {
22
- displayName
23
- id
24
- }
25
- accessLevel {
26
- accessLevelName
27
- accessLevelRemoteId
28
- }
29
- }
30
- durationInMinutes
31
- requestedGroups {
32
- group {
33
- id
34
- name
35
- }
36
- accessLevel {
37
- accessLevelName
38
- accessLevelRemoteId
39
- }
40
- }
41
- reason
42
- }
43
- }
44
- ... on RequestNotFoundError {
45
- message
46
- }
47
- }
48
- }
49
- `);
50
- class GetRequest extends core_1.Command {
5
+ class RequestGet extends core_1.Command {
51
6
  async run() {
52
7
  (0, utils_1.restrictToDev)(); //TODO: Remove after development is complete
53
- (0, cmd_1.setMostRecentCommand)(this);
54
- const configData = (0, config_1.getOrCreateConfigData)(this.config.configDir);
55
- const client = await (0, apollo_1.getClient)(this, true);
56
- // Verify id tag was provided
57
- const { flags } = await this.parse(GetRequest);
58
- if (!flags.id) {
59
- this.log("Error: Please provide a group ID using the --id flag.");
60
- this.log("ex. opal request get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4");
61
- return;
62
- }
63
- const resp = await client.query({
64
- query: GET_REQUEST,
65
- variables: {
66
- id: flags.id,
67
- },
68
- fetchPolicy: "network-only", // to avoid caching
69
- });
70
- switch (resp.data.request.__typename) {
71
- case "RequestResult":
72
- (0, apollo_1.printResponse)(this, resp);
73
- this.log(`\n💡Click to see request details on web: ${configData[config_1.urlKey]}/requests/sent/${flags.id}`);
74
- return;
75
- case "RequestNotFoundError":
76
- this.log(`🚫 Request with id ${flags.id} was not found`);
77
- return;
78
- default:
79
- this.log("🚫 Error retrieving request data");
80
- }
8
+ this.log("Running the get command");
81
9
  }
82
10
  }
83
- GetRequest.hidden = true;
84
- GetRequest.description = "Lists access requests";
85
- GetRequest.flags = {
86
- help: flags_1.SHARED_FLAGS.help,
87
- id: flags_1.SHARED_FLAGS.id,
88
- };
89
- exports.default = GetRequest;
11
+ RequestGet.hidden = true;
12
+ RequestGet.description = "Lists access requests";
13
+ exports.default = RequestGet;
package/lib/graphql/gql.d.ts CHANGED
@@ -13,7 +13,6 @@ import * as types from "./graphql";
13
13
  */
14
14
  type Documents = {
15
15
  "\nquery GetGroup($id: GroupId!) {\n group(input: { id: $id }) {\n __typename\n ... on GroupResult {\n group {\n name\n id\n description\n groupType\n adminOwnerId\n groupLeaders {\n fullName\n email\n id\n }\n connection {\n name\n id\n connectionType\n }\n paginatedGroupUsers {\n totalNumGroupUsers\n groupUsers {\n user {\n fullName\n email\n id\n }\n }\n }\n }\n }\n ... on GroupNotFoundError {\n message\n }\n }\n}": typeof types.GetGroupDocument;
16
- "\n query GetRequest(\n $id: RequestId!\n) {\n request(input: {id: $id}) {\n __typename\n ... on RequestResult {\n request {\n id\n status\n requestedResources {\n resource {\n displayName\n id\n }\n accessLevel {\n accessLevelName\n accessLevelRemoteId\n }\n }\n durationInMinutes\n requestedGroups {\n group {\n id\n name\n }\n accessLevel {\n accessLevelName\n accessLevelRemoteId\n }\n }\n reason\n }\n }\n ... on RequestNotFoundError {\n message\n }\n }\n}\n": typeof types.GetRequestDocument;
17
16
  "\nquery CheckAuthSessionQuery {\n organizationSettings {\n ... on OrganizationSettingsResult {\n settings {\n id\n }\n }\n }\n}\n": typeof types.CheckAuthSessionQueryDocument;
18
17
  '\n query GetRequestableAppsQuery($searchQuery: String) {\n appsV2(\n filters: {\n access: REQUESTABLE\n searchQuery: $searchQuery\n }\n ) @connection(key: "paginated-app-dropdown") {\n edges {\n node {\n id\n displayName\n ... on Connection {\n connectionType\n }\n ... on Resource {\n resourceType\n }\n }\n }\n pageInfo {\n hasNextPage\n hasPreviousPage\n startCursor\n endCursor\n }\n }\n }\n ': typeof types.GetRequestableAppsQueryDocument;
19
18
  "\n query PaginatedEntityDropdown(\n $id: UUID!\n $searchQuery: String\n) {\n app(id: $id) {\n __typename\n ... on App {\n id\n items(\n input: {\n access: REQUESTABLE\n searchQuery: $searchQuery\n includeOnlyRequestable: true\n }\n ) {\n items {\n key\n resource {\n id\n name\n }\n group {\n id\n name\n }\n }\n cursor\n }\n }\n ... on AppNotFoundError {\n message\n }\n }\n}\n": typeof types.PaginatedEntityDropdownDocument;
@@ -37,10 +36,6 @@ export declare function graphql(source: string): unknown;
37
36
  * The graphql function is used to parse GraphQL queries into a document that can be used by GraphQL clients.
38
37
  */
39
38
  export declare function graphql(source: "\nquery GetGroup($id: GroupId!) {\n group(input: { id: $id }) {\n __typename\n ... on GroupResult {\n group {\n name\n id\n description\n groupType\n adminOwnerId\n groupLeaders {\n fullName\n email\n id\n }\n connection {\n name\n id\n connectionType\n }\n paginatedGroupUsers {\n totalNumGroupUsers\n groupUsers {\n user {\n fullName\n email\n id\n }\n }\n }\n }\n }\n ... on GroupNotFoundError {\n message\n }\n }\n}"): (typeof documents)["\nquery GetGroup($id: GroupId!) {\n group(input: { id: $id }) {\n __typename\n ... on GroupResult {\n group {\n name\n id\n description\n groupType\n adminOwnerId\n groupLeaders {\n fullName\n email\n id\n }\n connection {\n name\n id\n connectionType\n }\n paginatedGroupUsers {\n totalNumGroupUsers\n groupUsers {\n user {\n fullName\n email\n id\n }\n }\n }\n }\n }\n ... on GroupNotFoundError {\n message\n }\n }\n}"];
40
- /**
41
- * The graphql function is used to parse GraphQL queries into a document that can be used by GraphQL clients.
42
- */
43
- export declare function graphql(source: "\n query GetRequest(\n $id: RequestId!\n) {\n request(input: {id: $id}) {\n __typename\n ... on RequestResult {\n request {\n id\n status\n requestedResources {\n resource {\n displayName\n id\n }\n accessLevel {\n accessLevelName\n accessLevelRemoteId\n }\n }\n durationInMinutes\n requestedGroups {\n group {\n id\n name\n }\n accessLevel {\n accessLevelName\n accessLevelRemoteId\n }\n }\n reason\n }\n }\n ... on RequestNotFoundError {\n message\n }\n }\n}\n"): (typeof documents)["\n query GetRequest(\n $id: RequestId!\n) {\n request(input: {id: $id}) {\n __typename\n ... on RequestResult {\n request {\n id\n status\n requestedResources {\n resource {\n displayName\n id\n }\n accessLevel {\n accessLevelName\n accessLevelRemoteId\n }\n }\n durationInMinutes\n requestedGroups {\n group {\n id\n name\n }\n accessLevel {\n accessLevelName\n accessLevelRemoteId\n }\n }\n reason\n }\n }\n ... on RequestNotFoundError {\n message\n }\n }\n}\n"];
44
39
  /**
45
40
  * The graphql function is used to parse GraphQL queries into a document that can be used by GraphQL clients.
46
41
  */
package/lib/graphql/gql.js CHANGED
@@ -5,7 +5,6 @@ exports.graphql = graphql;
5
5
  const types = require("./graphql");
6
6
  const documents = {
7
7
  "\nquery GetGroup($id: GroupId!) {\n group(input: { id: $id }) {\n __typename\n ... on GroupResult {\n group {\n name\n id\n description\n groupType\n adminOwnerId\n groupLeaders {\n fullName\n email\n id\n }\n connection {\n name\n id\n connectionType\n }\n paginatedGroupUsers {\n totalNumGroupUsers\n groupUsers {\n user {\n fullName\n email\n id\n }\n }\n }\n }\n }\n ... on GroupNotFoundError {\n message\n }\n }\n}": types.GetGroupDocument,
8
- "\n query GetRequest(\n $id: RequestId!\n) {\n request(input: {id: $id}) {\n __typename\n ... on RequestResult {\n request {\n id\n status\n requestedResources {\n resource {\n displayName\n id\n }\n accessLevel {\n accessLevelName\n accessLevelRemoteId\n }\n }\n durationInMinutes\n requestedGroups {\n group {\n id\n name\n }\n accessLevel {\n accessLevelName\n accessLevelRemoteId\n }\n }\n reason\n }\n }\n ... on RequestNotFoundError {\n message\n }\n }\n}\n": types.GetRequestDocument,
9
8
  "\nquery CheckAuthSessionQuery {\n organizationSettings {\n ... on OrganizationSettingsResult {\n settings {\n id\n }\n }\n }\n}\n": types.CheckAuthSessionQueryDocument,
10
9
  '\n query GetRequestableAppsQuery($searchQuery: String) {\n appsV2(\n filters: {\n access: REQUESTABLE\n searchQuery: $searchQuery\n }\n ) @connection(key: "paginated-app-dropdown") {\n edges {\n node {\n id\n displayName\n ... on Connection {\n connectionType\n }\n ... on Resource {\n resourceType\n }\n }\n }\n pageInfo {\n hasNextPage\n hasPreviousPage\n startCursor\n endCursor\n }\n }\n }\n ': types.GetRequestableAppsQueryDocument,
11
10
  "\n query PaginatedEntityDropdown(\n $id: UUID!\n $searchQuery: String\n) {\n app(id: $id) {\n __typename\n ... on App {\n id\n items(\n input: {\n access: REQUESTABLE\n searchQuery: $searchQuery\n includeOnlyRequestable: true\n }\n ) {\n items {\n key\n resource {\n id\n name\n }\n group {\n id\n name\n }\n }\n cursor\n }\n }\n ... on AppNotFoundError {\n message\n }\n }\n}\n": types.PaginatedEntityDropdownDocument,
package/lib/graphql/graphql.d.ts CHANGED
@@ -11440,51 +11440,6 @@ export type GetGroupQuery = {
11440
11440
  };
11441
11441
  };
11442
11442
  };
11443
- export type GetRequestQueryVariables = Exact<{
11444
- id: Scalars["RequestId"]["input"];
11445
- }>;
11446
- export type GetRequestQuery = {
11447
- __typename?: "Query";
11448
- request: {
11449
- __typename: "RequestNotFoundError";
11450
- message: string;
11451
- } | {
11452
- __typename: "RequestResult";
11453
- request: {
11454
- __typename?: "Request";
11455
- id: string;
11456
- status: RequestStatus;
11457
- durationInMinutes?: number | null;
11458
- reason: string;
11459
- requestedResources: Array<{
11460
- __typename?: "RequestedResource";
11461
- resource?: {
11462
- __typename?: "Resource";
11463
- displayName: string;
11464
- id: string;
11465
- } | null;
11466
- accessLevel: {
11467
- __typename?: "ResourceAccessLevel";
11468
- accessLevelName: string;
11469
- accessLevelRemoteId: string;
11470
- };
11471
- }>;
11472
- requestedGroups: Array<{
11473
- __typename?: "RequestedGroup";
11474
- group?: {
11475
- __typename?: "Group";
11476
- id: string;
11477
- name: string;
11478
- } | null;
11479
- accessLevel?: {
11480
- __typename?: "GroupAccessLevel";
11481
- accessLevelName: string;
11482
- accessLevelRemoteId: string;
11483
- } | null;
11484
- }>;
11485
- };
11486
- };
11487
- };
11488
11443
  export type CheckAuthSessionQueryQueryVariables = Exact<{
11489
11444
  [key: string]: never;
11490
11445
  }>;
@@ -11580,7 +11535,6 @@ export type ResourceAccessLevelsQuery = {
11580
11535
  };
11581
11536
  };
11582
11537
  export declare const GetGroupDocument: DocumentNode<GetGroupQuery, GetGroupQueryVariables>;
11583
- export declare const GetRequestDocument: DocumentNode<GetRequestQuery, GetRequestQueryVariables>;
11584
11538
  export declare const CheckAuthSessionQueryDocument: DocumentNode<CheckAuthSessionQueryQuery, CheckAuthSessionQueryQueryVariables>;
11585
11539
  export declare const GetRequestableAppsQueryDocument: DocumentNode<GetRequestableAppsQueryQuery, GetRequestableAppsQueryQueryVariables>;
11586
11540
  export declare const PaginatedEntityDropdownDocument: DocumentNode<PaginatedEntityDropdownQuery, PaginatedEntityDropdownQueryVariables>;
package/lib/graphql/graphql.js CHANGED
@@ -2,7 +2,7 @@
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.HealthStatus = exports.GroupUserSource = exports.GroupUserSortByField = exports.GroupType = exports.GroupResourceSource = exports.GroupBindingsSortByField = exports.GroupBindingSuggestionsSortByField = exports.GeneralSettingType = exports.FiltersMatchMode = exports.FactorType = exports.EventType = exports.EventSeverity = exports.ErrorNotificationSettingType = exports.EntityType = exports.ConnectionValidationStatus = exports.ConnectionValidationSeverity = exports.ConnectionType = exports.BundlesSortByField = exports.BundleItemsSortByField = exports.AuthType = exports.AuthSessionStatus = exports.AuthFlowType = exports.AssociatedItemsSortByField = exports.AssignmentsSortByField = exports.AppsSortByField = exports.AppType = exports.AppItemsSortByField = exports.AppCategory = exports.ApiAuthType = exports.ApiAccessLevel = exports.AldwinRole = exports.AccessType = exports.AccessRuleStatus = exports.AccessReviewUserWarningType = exports.AccessReviewType = exports.AccessReviewTab = exports.AccessReviewSummaryStatus = exports.AccessReviewStatus = exports.AccessReviewReviewerAssignmentPolicy = exports.AccessReviewItemsSortByField = exports.AccessReviewItemStatus = exports.AccessReviewItemOutcome = exports.AccessReviewGroupResourceVisibilityPolicy = exports.AccessReviewGroupItemKind = exports.AccessReviewEndUserView = exports.AccessReviewAssignedStatus = exports.AccessReviewAction = exports.AccessOption = exports.AccessChangeType = exports.AwsIdentityCenterImportSetting = void 0;
4
4
  exports.TaskTrigger = exports.TagsSortByField = exports.TagFilterMatchMode = exports.SyncType = exports.SyncTaskStatus = exports.SubEventsSortByField = exports.StringFormatType = exports.SortDirection = exports.ServiceType = exports.SearchType = exports.RolePermissionTargetType = exports.RolePermission = exports.RoleAssignmentsSortByField = exports.RoleAssignmentSource = exports.RiskLevel = exports.ReviewerUserStatus = exports.ReviewerAction = exports.ReviewStageOperator = exports.ResourceUserSource = exports.ResourceUserSortByField = exports.ResourceType = exports.RequestsSortByField = exports.RequestType = exports.RequestTemplateCustomFieldType = exports.RequestStatus = exports.RequestMessageLevel = exports.RequestMessageCode = exports.RequestApprovalType = exports.RecommendationsSubscoreType = exports.RecommendationsMetricType = exports.RecommendationsFeedbackType = exports.RecommendationsEntityType = exports.PubsubPublishMessageType = exports.PubsubPublishMessageStatusCode = exports.PubsubPublishConnectionType = exports.ProvisionSource = exports.PropagationTaskType = exports.PropagationStatusCode = exports.OwnersSortByField = exports.OrganizationType = exports.OidcProviderType = exports.NotificationType = exports.MessageChannelType = exports.MfaProvider = exports.IntegrationType = exports.ImportSetting = exports.IdpConnectionUserAttributeUseAs = exports.IdpConnectionType = exports.IdentityCategory = exports.HrIdpStatus = void 0;
5
- exports.ResourceAccessLevelsDocument = exports.PaginatedEntityDropdownDocument = exports.GetRequestableAppsQueryDocument = exports.CheckAuthSessionQueryDocument = exports.GetRequestDocument = exports.GetGroupDocument = exports.RequestDecisionLevel = exports.WebhookPubsubPublishConnectionAuthType = exports.WebhookPubsubPublishConnectionApiKeyLocation = exports.Visibility = exports.VerifyFactorStatus = exports.UsersSortByField = exports.UserProductRole = exports.UserErrorType = exports.UsageAttributionType = exports.UiSource = exports.TimePeriod = exports.TimeBucket = exports.ThirdPartyProvider = void 0;
5
+ exports.ResourceAccessLevelsDocument = exports.PaginatedEntityDropdownDocument = exports.GetRequestableAppsQueryDocument = exports.CheckAuthSessionQueryDocument = exports.GetGroupDocument = exports.RequestDecisionLevel = exports.WebhookPubsubPublishConnectionAuthType = exports.WebhookPubsubPublishConnectionApiKeyLocation = exports.Visibility = exports.VerifyFactorStatus = exports.UsersSortByField = exports.UserProductRole = exports.UserErrorType = exports.UsageAttributionType = exports.UiSource = exports.TimePeriod = exports.TimeBucket = exports.ThirdPartyProvider = void 0;
6
6
  var AwsIdentityCenterImportSetting;
7
7
  (function (AwsIdentityCenterImportSetting) {
8
8
  AwsIdentityCenterImportSetting["All"] = "ALL";
@@ -1657,229 +1657,6 @@ exports.GetGroupDocument = {
1657
1657
  },
1658
1658
  ],
1659
1659
  };
1660
- exports.GetRequestDocument = {
1661
- kind: "Document",
1662
- definitions: [
1663
- {
1664
- kind: "OperationDefinition",
1665
- operation: "query",
1666
- name: { kind: "Name", value: "GetRequest" },
1667
- variableDefinitions: [
1668
- {
1669
- kind: "VariableDefinition",
1670
- variable: { kind: "Variable", name: { kind: "Name", value: "id" } },
1671
- type: {
1672
- kind: "NonNullType",
1673
- type: {
1674
- kind: "NamedType",
1675
- name: { kind: "Name", value: "RequestId" },
1676
- },
1677
- },
1678
- },
1679
- ],
1680
- selectionSet: {
1681
- kind: "SelectionSet",
1682
- selections: [
1683
- {
1684
- kind: "Field",
1685
- name: { kind: "Name", value: "request" },
1686
- arguments: [
1687
- {
1688
- kind: "Argument",
1689
- name: { kind: "Name", value: "input" },
1690
- value: {
1691
- kind: "ObjectValue",
1692
- fields: [
1693
- {
1694
- kind: "ObjectField",
1695
- name: { kind: "Name", value: "id" },
1696
- value: {
1697
- kind: "Variable",
1698
- name: { kind: "Name", value: "id" },
1699
- },
1700
- },
1701
- ],
1702
- },
1703
- },
1704
- ],
1705
- selectionSet: {
1706
- kind: "SelectionSet",
1707
- selections: [
1708
- { kind: "Field", name: { kind: "Name", value: "__typename" } },
1709
- {
1710
- kind: "InlineFragment",
1711
- typeCondition: {
1712
- kind: "NamedType",
1713
- name: { kind: "Name", value: "RequestResult" },
1714
- },
1715
- selectionSet: {
1716
- kind: "SelectionSet",
1717
- selections: [
1718
- {
1719
- kind: "Field",
1720
- name: { kind: "Name", value: "request" },
1721
- selectionSet: {
1722
- kind: "SelectionSet",
1723
- selections: [
1724
- {
1725
- kind: "Field",
1726
- name: { kind: "Name", value: "id" },
1727
- },
1728
- {
1729
- kind: "Field",
1730
- name: { kind: "Name", value: "status" },
1731
- },
1732
- {
1733
- kind: "Field",
1734
- name: {
1735
- kind: "Name",
1736
- value: "requestedResources",
1737
- },
1738
- selectionSet: {
1739
- kind: "SelectionSet",
1740
- selections: [
1741
- {
1742
- kind: "Field",
1743
- name: { kind: "Name", value: "resource" },
1744
- selectionSet: {
1745
- kind: "SelectionSet",
1746
- selections: [
1747
- {
1748
- kind: "Field",
1749
- name: {
1750
- kind: "Name",
1751
- value: "displayName",
1752
- },
1753
- },
1754
- {
1755
- kind: "Field",
1756
- name: { kind: "Name", value: "id" },
1757
- },
1758
- ],
1759
- },
1760
- },
1761
- {
1762
- kind: "Field",
1763
- name: {
1764
- kind: "Name",
1765
- value: "accessLevel",
1766
- },
1767
- selectionSet: {
1768
- kind: "SelectionSet",
1769
- selections: [
1770
- {
1771
- kind: "Field",
1772
- name: {
1773
- kind: "Name",
1774
- value: "accessLevelName",
1775
- },
1776
- },
1777
- {
1778
- kind: "Field",
1779
- name: {
1780
- kind: "Name",
1781
- value: "accessLevelRemoteId",
1782
- },
1783
- },
1784
- ],
1785
- },
1786
- },
1787
- ],
1788
- },
1789
- },
1790
- {
1791
- kind: "Field",
1792
- name: {
1793
- kind: "Name",
1794
- value: "durationInMinutes",
1795
- },
1796
- },
1797
- {
1798
- kind: "Field",
1799
- name: { kind: "Name", value: "requestedGroups" },
1800
- selectionSet: {
1801
- kind: "SelectionSet",
1802
- selections: [
1803
- {
1804
- kind: "Field",
1805
- name: { kind: "Name", value: "group" },
1806
- selectionSet: {
1807
- kind: "SelectionSet",
1808
- selections: [
1809
- {
1810
- kind: "Field",
1811
- name: { kind: "Name", value: "id" },
1812
- },
1813
- {
1814
- kind: "Field",
1815
- name: { kind: "Name", value: "name" },
1816
- },
1817
- ],
1818
- },
1819
- },
1820
- {
1821
- kind: "Field",
1822
- name: {
1823
- kind: "Name",
1824
- value: "accessLevel",
1825
- },
1826
- selectionSet: {
1827
- kind: "SelectionSet",
1828
- selections: [
1829
- {
1830
- kind: "Field",
1831
- name: {
1832
- kind: "Name",
1833
- value: "accessLevelName",
1834
- },
1835
- },
1836
- {
1837
- kind: "Field",
1838
- name: {
1839
- kind: "Name",
1840
- value: "accessLevelRemoteId",
1841
- },
1842
- },
1843
- ],
1844
- },
1845
- },
1846
- ],
1847
- },
1848
- },
1849
- {
1850
- kind: "Field",
1851
- name: { kind: "Name", value: "reason" },
1852
- },
1853
- ],
1854
- },
1855
- },
1856
- ],
1857
- },
1858
- },
1859
- {
1860
- kind: "InlineFragment",
1861
- typeCondition: {
1862
- kind: "NamedType",
1863
- name: { kind: "Name", value: "RequestNotFoundError" },
1864
- },
1865
- selectionSet: {
1866
- kind: "SelectionSet",
1867
- selections: [
1868
- {
1869
- kind: "Field",
1870
- name: { kind: "Name", value: "message" },
1871
- },
1872
- ],
1873
- },
1874
- },
1875
- ],
1876
- },
1877
- },
1878
- ],
1879
- },
1880
- },
1881
- ],
1882
- };
1883
1660
  exports.CheckAuthSessionQueryDocument = {
1884
1661
  kind: "Document",
1885
1662
  definitions: [
package/oclif.manifest.json CHANGED
@@ -452,15 +452,14 @@
452
452
  "start.js"
453
453
  ]
454
454
  },
455
- "postgres-instances:start": {
455
+ "kube-roles:start": {
456
456
  "aliases": [],
457
457
  "args": {},
458
- "description": "Starts a session to connect to a Postgres database.",
458
+ "description": "Starts a session to assume a Kubernetes cluster IAM role.",
459
459
  "examples": [
460
- "opal postgres-instances:start",
461
- "opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398",
462
- "opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId fullaccess",
463
- "opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId fullaccess --action view"
460
+ "opal kube-roles:start",
461
+ "opal kube-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398",
462
+ "opal kube-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId \"arn:aws:iam::712234975475:role/acme-eks-cluster-admin-role\""
464
463
  ],
465
464
  "flags": {
466
465
  "help": {
@@ -500,22 +499,11 @@
500
499
  "name": "refresh",
501
500
  "allowNo": false,
502
501
  "type": "boolean"
503
- },
504
- "action": {
505
- "description": "Method of connecting to the database.\n- psql: Start psql session in shell\n- view: View connection configuration details",
506
- "name": "action",
507
- "hasDynamicHelp": false,
508
- "multiple": false,
509
- "options": [
510
- "psql",
511
- "view"
512
- ],
513
- "type": "option"
514
502
  }
515
503
  },
516
504
  "hasDynamicHelp": false,
517
505
  "hiddenAliases": [],
518
- "id": "postgres-instances:start",
506
+ "id": "kube-roles:start",
519
507
  "pluginAlias": "opal-security",
520
508
  "pluginName": "opal-security",
521
509
  "pluginType": "core",
@@ -525,18 +513,19 @@
525
513
  "relativePath": [
526
514
  "lib",
527
515
  "commands",
528
- "postgres-instances",
516
+ "kube-roles",
529
517
  "start.js"
530
518
  ]
531
519
  },
532
- "kube-roles:start": {
520
+ "postgres-instances:start": {
533
521
  "aliases": [],
534
522
  "args": {},
535
- "description": "Starts a session to assume a Kubernetes cluster IAM role.",
523
+ "description": "Starts a session to connect to a Postgres database.",
536
524
  "examples": [
537
- "opal kube-roles:start",
538
- "opal kube-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398",
539
- "opal kube-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId \"arn:aws:iam::712234975475:role/acme-eks-cluster-admin-role\""
525
+ "opal postgres-instances:start",
526
+ "opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398",
527
+ "opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId fullaccess",
528
+ "opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId fullaccess --action view"
540
529
  ],
541
530
  "flags": {
542
531
  "help": {
@@ -576,51 +565,22 @@
576
565
  "name": "refresh",
577
566
  "allowNo": false,
578
567
  "type": "boolean"
579
- }
580
- },
581
- "hasDynamicHelp": false,
582
- "hiddenAliases": [],
583
- "id": "kube-roles:start",
584
- "pluginAlias": "opal-security",
585
- "pluginName": "opal-security",
586
- "pluginType": "core",
587
- "strict": true,
588
- "enableJsonFlag": false,
589
- "isESM": false,
590
- "relativePath": [
591
- "lib",
592
- "commands",
593
- "kube-roles",
594
- "start.js"
595
- ]
596
- },
597
- "resources:get": {
598
- "aliases": [],
599
- "args": {},
600
- "description": "Get resource info for a particular resource.",
601
- "examples": [
602
- "opal resources:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4"
603
- ],
604
- "flags": {
605
- "help": {
606
- "char": "h",
607
- "description": "Show CLI help.",
608
- "name": "help",
609
- "allowNo": false,
610
- "type": "boolean"
611
568
  },
612
- "id": {
613
- "char": "i",
614
- "description": "The Opal ID of the resource. You can find this from the URL, e.g. https://opal.dev/resources/[ID]",
615
- "name": "id",
569
+ "action": {
570
+ "description": "Method of connecting to the database.\n- psql: Start psql session in shell\n- view: View connection configuration details",
571
+ "name": "action",
616
572
  "hasDynamicHelp": false,
617
573
  "multiple": false,
574
+ "options": [
575
+ "psql",
576
+ "view"
577
+ ],
618
578
  "type": "option"
619
579
  }
620
580
  },
621
581
  "hasDynamicHelp": false,
622
582
  "hiddenAliases": [],
623
- "id": "resources:get",
583
+ "id": "postgres-instances:start",
624
584
  "pluginAlias": "opal-security",
625
585
  "pluginName": "opal-security",
626
586
  "pluginType": "core",
@@ -630,8 +590,8 @@
630
590
  "relativePath": [
631
591
  "lib",
632
592
  "commands",
633
- "resources",
634
- "get.js"
593
+ "postgres-instances",
594
+ "start.js"
635
595
  ]
636
596
  },
637
597
  "request:create": {
@@ -660,23 +620,7 @@
660
620
  "aliases": [],
661
621
  "args": {},
662
622
  "description": "Lists access requests",
663
- "flags": {
664
- "help": {
665
- "char": "h",
666
- "description": "Show CLI help.",
667
- "name": "help",
668
- "allowNo": false,
669
- "type": "boolean"
670
- },
671
- "id": {
672
- "char": "i",
673
- "description": "The Opal ID of the resource. You can find this from the URL, e.g. https://opal.dev/resources/[ID]",
674
- "name": "id",
675
- "hasDynamicHelp": false,
676
- "multiple": false,
677
- "type": "option"
678
- }
679
- },
623
+ "flags": {},
680
624
  "hasDynamicHelp": false,
681
625
  "hidden": true,
682
626
  "hiddenAliases": [],
@@ -716,6 +660,46 @@
716
660
  "list.js"
717
661
  ]
718
662
  },
663
+ "resources:get": {
664
+ "aliases": [],
665
+ "args": {},
666
+ "description": "Get resource info for a particular resource.",
667
+ "examples": [
668
+ "opal resources:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4"
669
+ ],
670
+ "flags": {
671
+ "help": {
672
+ "char": "h",
673
+ "description": "Show CLI help.",
674
+ "name": "help",
675
+ "allowNo": false,
676
+ "type": "boolean"
677
+ },
678
+ "id": {
679
+ "char": "i",
680
+ "description": "The Opal ID of the resource. You can find this from the URL, e.g. https://opal.dev/resources/[ID]",
681
+ "name": "id",
682
+ "hasDynamicHelp": false,
683
+ "multiple": false,
684
+ "type": "option"
685
+ }
686
+ },
687
+ "hasDynamicHelp": false,
688
+ "hiddenAliases": [],
689
+ "id": "resources:get",
690
+ "pluginAlias": "opal-security",
691
+ "pluginName": "opal-security",
692
+ "pluginType": "core",
693
+ "strict": true,
694
+ "enableJsonFlag": false,
695
+ "isESM": false,
696
+ "relativePath": [
697
+ "lib",
698
+ "commands",
699
+ "resources",
700
+ "get.js"
701
+ ]
702
+ },
719
703
  "ssh:copyFrom": {
720
704
  "aliases": [],
721
705
  "args": {},
@@ -923,5 +907,5 @@
923
907
  ]
924
908
  }
925
909
  },
926
- "version": "3.1.1-beta.65d1a96"
910
+ "version": "3.1.1-beta.778ef29"
927
911
  }
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "opal-security",
3
3
  "description": "Opal allows you to centrally manage access to all of your sensitive systems.",
4
- "version": "3.1.1-beta.65d1a96",
4
+ "version": "3.1.1-beta.778ef29",
5
5
  "author": "Stephen Cobbe",
6
6
  "bin": {
7
7
  "opal": "./bin/run"