opal-security 3.2.1 → 3.2.2

package/oclif.manifest.json

@@ -376,14 +376,12 @@
         "identity.js"
       ]
     },
-    "iam-roles:start": {
+    "groups:get": {
       "aliases": [],
       "args": {},
-      "description": "Starts a session to assume an IAM role.",
+      "description": "Get group info for a particular group.",
       "examples": [
-        "opal iam-roles:start",
-        "opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398",
-        "opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --profileName \"custom-profile\""
+        "opal groups:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4"
       ],
       "flags": {
         "help": {
@@ -400,33 +398,11 @@
           "hasDynamicHelp": false,
           "multiple": false,
           "type": "option"
-        },
-        "sessionId": {
-          "char": "s",
-          "description": "The Opal ID of the session to connect to. Uses an existing session that was created via the web flow.",
-          "name": "sessionId",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        },
-        "refresh": {
-          "char": "r",
-          "description": "Starts a new session even if one already exists. Useful if a session is about to expire.",
-          "name": "refresh",
-          "allowNo": false,
-          "type": "boolean"
-        },
-        "profileName": {
-          "description": "Uses a custom AWS profile name for the IAM role. Default value is the role's name.",
-          "name": "profileName",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
         }
       },
       "hasDynamicHelp": false,
       "hiddenAliases": [],
-      "id": "iam-roles:start",
+      "id": "groups:get",
       "pluginAlias": "opal-security",
       "pluginName": "opal-security",
       "pluginType": "core",
@@ -436,16 +412,18 @@
       "relativePath": [
         "lib",
         "commands",
-        "iam-roles",
-        "start.js"
+        "groups",
+        "get.js"
       ]
     },
-    "groups:get": {
+    "iam-roles:start": {
       "aliases": [],
       "args": {},
-      "description": "Get group info for a particular group.",
+      "description": "Starts a session to assume an IAM role.",
       "examples": [
-        "opal groups:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4"
+        "opal iam-roles:start",
+        "opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398",
+        "opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --profileName \"custom-profile\""
       ],
       "flags": {
         "help": {
@@ -462,11 +440,33 @@
           "hasDynamicHelp": false,
           "multiple": false,
           "type": "option"
+        },
+        "sessionId": {
+          "char": "s",
+          "description": "The Opal ID of the session to connect to. Uses an existing session that was created via the web flow.",
+          "name": "sessionId",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
+        },
+        "refresh": {
+          "char": "r",
+          "description": "Starts a new session even if one already exists. Useful if a session is about to expire.",
+          "name": "refresh",
+          "allowNo": false,
+          "type": "boolean"
+        },
+        "profileName": {
+          "description": "Uses a custom AWS profile name for the IAM role. Default value is the role's name.",
+          "name": "profileName",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
         }
       },
       "hasDynamicHelp": false,
       "hiddenAliases": [],
-      "id": "groups:get",
+      "id": "iam-roles:start",
       "pluginAlias": "opal-security",
       "pluginName": "opal-security",
       "pluginType": "core",
@@ -476,8 +476,8 @@
       "relativePath": [
         "lib",
         "commands",
-        "groups",
-        "get.js"
+        "iam-roles",
+        "start.js"
       ]
     },
     "kube-roles:start": {
@@ -658,6 +658,22 @@
           "hasDynamicHelp": false,
           "multiple": false,
           "type": "option"
+        },
+        "template": {
+          "char": "t",
+          "description": "A request ID of a previously finished request (cancelled/denied/approved) to create a new request based on the completed request.",
+          "name": "template",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
+        },
+        "bundle": {
+          "char": "b",
+          "description": "A bundle ID to create a new request based on the assets in the bundle.",
+          "name": "bundle",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
         }
       },
       "hasDynamicHelp": false,
@@ -679,7 +695,7 @@
     "request:get": {
       "aliases": [],
       "args": {},
-      "description": "Lists access requests",
+      "description": "Fetch details of an access request by request ID",
       "examples": [
         "opal request get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4",
         "opal request get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4 --verbose"
@@ -1031,5 +1047,5 @@
       ]
     }
   },
-  "version": "3.2.1"
+  "version": "3.2.2"
 }

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "opal-security",
   "description": "Opal allows you to centrally manage access to all of your sensitive systems.",
-  "version": "3.2.1",
+  "version": "3.2.2",
   "author": "Stephen Cobbe",
   "bin": {
     "opal": "./bin/run"

package/lib/lib/requests.d.ts

@@ -1,54 +0,0 @@
-import type { NormalizedCacheObject } from "@apollo/client/core";
-import type { ApolloClient } from "@apollo/client/core/ApolloClient";
-import type { Command } from "@oclif/core/lib/command";
-import { type AppType, type ConnectionType, EntityType } from "../graphql/graphql";
-type AppNode = {
-    appId: string;
-    appName: string;
-    appType?: AppType | ConnectionType;
-    assets: Record<string, AssetNode>;
-};
-type AssetNode = {
-    assetId: string;
-    assetName: string;
-    type: EntityType;
-    roles?: Record<string, RoleNode>;
-};
-type RoleNode = {
-    roleId: string;
-    roleName: string;
-};
-export type RequestMap = Record<string, AppNode>;
-export declare const DISPLAY_LABELS: Partial<Record<EntityType, string>>;
-type DurationOption = {
-    durationInMinutes: number;
-    label: string;
-};
-type RequestDefaults = {
-    durationOptions?: DurationOption[];
-    recommendedDurationInMinutes?: number | null;
-    defaultDurationInMinutes?: number;
-    maxDurationInMinutes?: number | null;
-    requireSupportTicket?: boolean;
-    reasonOptional?: boolean;
-    requesterIsAdmin?: boolean;
-};
-export type RequestMetadata = {
-    requestMap: RequestMap;
-    requestDefaults: RequestDefaults;
-    durationLabel: string;
-    durationInMinutes?: number;
-    reason: string;
-};
-export declare function initEmptyRequestMetadata(): RequestMetadata;
-export declare function selectRequestableItems(cmd: Command, client: ApolloClient<NormalizedCacheObject>, requestMap: RequestMap): Promise<void>;
-export declare function doneSelectingAssets(): Promise<boolean>;
-export declare function setRequestDefaults(cmd: Command, client: ApolloClient<NormalizedCacheObject>, metadata: RequestMetadata): Promise<void>;
-export declare function promptForReason(metadata: RequestMetadata): Promise<void>;
-export declare function promptForExpiration(metadata: RequestMetadata): Promise<void>;
-export declare function promptRequestSubmission(cmd: Command, metadata: RequestMetadata): Promise<boolean>;
-export declare function submitFinalRequest(cmd: Command, client: ApolloClient<NormalizedCacheObject>, metadata: RequestMetadata): Promise<void>;
-export declare function getRequestLink(cmd: Command, id: string): string;
-export declare function bypassRequestSelection(cmd: Command, client: ApolloClient<NormalizedCacheObject>, flagValue: string[], metadata: RequestMetadata): Promise<void>;
-export declare function bypassDuration(cmd: Command, duration: number, metadata: RequestMetadata): void;
-export {};