cmem-cmemc 24.1.5__py3-none-any.whl → 24.2.0__py3-none-any.whl

cmem_cmemc/__init__.py

@@ -118,11 +118,11 @@ def cli(
     ctx.obj.set_config_file(config_file)
     try:
         ctx.obj.set_connection(connection)
-    except InvalidConfigurationError as error:
+    except InvalidConfigurationError:
         # if config is broken still allow for "config edit"
         # means: do not forward this exception if "config edit"
         if " ".join(sys.argv).find("config edit") == -1:
-            raise ValueError("Broken config") from error
+            raise
 
 
 cli.add_command(admin.admin)

cmem_cmemc/commands/__init__.py

@@ -64,6 +64,7 @@ class CmemcGroup(HelpColorsGroup, DYMGroup):
                 "client": COLOR_FOR_COMMAND_GROUPS,
                 "variable": COLOR_FOR_COMMAND_GROUPS,
                 "validation": COLOR_FOR_COMMAND_GROUPS,
+                "migrate": COLOR_FOR_WRITING_COMMANDS,
             },
         )
         super().__init__(*args, **kwargs)

cmem_cmemc/commands/acl.py

@@ -2,7 +2,7 @@
 
 import click
 import requests.exceptions
-from click import Option, UsageError
+from click import Option
 from cmem.cmempy.dp.authorization.conditions import (
     create_access_condition,
     delete_access_condition,
@@ -17,20 +17,30 @@ from cmem_cmemc import completion
 from cmem_cmemc.commands import CmemcCommand, CmemcGroup
 from cmem_cmemc.constants import NS_ACL, NS_GROUP, NS_USER
 from cmem_cmemc.context import ApplicationContext
-from cmem_cmemc.utils import convert_iri_to_qname, convert_qname_to_iri, struct_to_table
+from cmem_cmemc.utils import (
+    convert_iri_to_qname,
+    convert_qname_to_iri,
+    get_query_text,
+    struct_to_table,
+)
 
 # option descriptions
 HELP_TEXTS = {
-    "name": "A short name or label.",
+    "name": "A optional name.",
     "id": "An optional ID (will be an UUID otherwise).",
     "description": "An optional description.",
     "user": "A specific user account required by the access condition.",
-    "group": "A membership in a user group required by the access condition",
+    "group": "A membership in a user group required by the access condition.",
     "read_graph": "Grants read access to a graph.",
     "write_graph": "Grants write access to a graph (includes read access).",
     "action": "Grants usage permissions to an action / functionality.",
+    "query": "Dynamic access condition query (file or the query catalog IRI).",
 }
 
+WARNING_UNKNOWN_USER = "Unknown User or no access to get user info."
+WARNING_NO_GROUP_ACCESS = "You do not have the permission to retrieve user groups"
+WARNING_USE_GROUP = "Use the --group option to assign groups manually (what-if-scenario)."
+
 PUBLIC_USER_URI = "urn:elds-backend-anonymous-user"
 PUBLIC_GROUP_URI = "urn:elds-backend-public-group"
 
@@ -57,10 +67,10 @@ def _value_to_acl_url(
     """
     if value in KNOWN_ACCESS_CONDITION_URLS:
         return value
-    if value == "":
-        return ""
-    if value is None:
-        return None
+    if value == "" or value is None:
+        return value
+    if value.startswith(("http://", "https://")):
+        return value
     match param.name:
         case "groups":
             return f"{NS_GROUP}{value}"
@@ -69,8 +79,10 @@ def _value_to_acl_url(
     return f"{NS_ACL}{value}"
 
 
-def generate_acl_name(user: str | None, groups: list[str]) -> str:
+def generate_acl_name(user: str | None, groups: list[str], query: str | None) -> str:
     """Create an access condition name based on user and group assignments."""
+    if query is not None:
+        return "Query based Dynamic Access Condition"
     if len(groups) > 0:
         group_term = "groups" if len(groups) > 1 else "group"
         groups_labels = ", ".join(
@@ -137,24 +149,6 @@ def inspect_command(app: ApplicationContext, access_condition_id: str, raw: bool
 
 
 @click.command(cls=CmemcCommand, name="create")
-@click.option(
-    "--name",
-    "name",
-    type=click.STRING,
-    help=HELP_TEXTS["name"],
-)
-@click.option(
-    "--id",
-    "id_",
-    type=click.STRING,
-    help=HELP_TEXTS["id"],
-)
-@click.option(
-    "--description",
-    "description",
-    type=click.STRING,
-    help=HELP_TEXTS["description"],
-)
 @click.option(
     "--user",
     type=click.STRING,
@@ -195,6 +189,31 @@ def inspect_command(app: ApplicationContext, access_condition_id: str, raw: bool
     shell_complete=completion.acl_actions,
     help=HELP_TEXTS["action"],
 )
+@click.option(
+    "--query",
+    "query",
+    type=click.STRING,
+    shell_complete=completion.remote_queries_and_sparql_files,
+    help=HELP_TEXTS["query"],
+)
+@click.option(
+    "--id",
+    "id_",
+    type=click.STRING,
+    help=HELP_TEXTS["id"],
+)
+@click.option(
+    "--name",
+    "name",
+    type=click.STRING,
+    help=HELP_TEXTS["name"],
+)
+@click.option(
+    "--description",
+    "description",
+    type=click.STRING,
+    help=HELP_TEXTS["description"],
+)
 @click.pass_obj
 # pylint: disable-msg=too-many-arguments
 def create_command(  # noqa: PLR0913
@@ -207,20 +226,43 @@ def create_command(  # noqa: PLR0913
     read_graphs: tuple[str],
     write_graphs: tuple[str],
     actions: tuple[str],
+    query: str,
 ) -> None:
-    """Create an access condition."""
-    if not read_graphs and not write_graphs and not actions:
+    """Create an access condition.
+
+    With this command, new access conditions can be created.
+
+    An access condition captures information about WHO gets access to WHAT.
+    In order to specify WHO gets access, use the `--user` and / or `--group` options.
+    In order to specify WHAT an account get access to, use the `--read-graph`,
+    `--write-graph` and `--action` options.`
+
+    In addition to that, you can specify a name, a description and an ID (all optional).
+
+    A special case are dynamic access conditions, based on a SPARQL query: Here you
+    have to provide a query with the projection variables `user`, `group` `readGraph`
+    and `writeGraph` to create multiple grants at once. You can either provide a query file
+    or a query URL from the query catalog.
+
+    Note: Queries for dynamic access conditions are copied into the ACL, so changing the
+    query in the query catalog does not change it in the access condition.
+
+    Example: cmemc admin acl create --group local-users --write-graph https://example.org/
+    """
+    if not read_graphs and not write_graphs and not actions and not query:
         raise click.UsageError(
             "Missing access / usage grant. Use at least one of the following options: "
-            "--read-graph, --write-graph or --action."
-        )
-    if not user and not groups:
-        app.echo_warning(
-            "Access conditions without a user and without a group assignment " "affect ALL users."
+            "--read-graph, --write-graph, --action or --query."
         )
+    query_str = None
+    if query:
+        query_str = get_query_text(query, {"user", "group", "readGraph", "writeGraph"})
+
+    if not user and not groups and not query:
+        app.echo_warning("Access conditions without a user or group assignment affect ALL users.")
 
     if not name:
-        name = generate_acl_name(user=user, groups=groups)
+        name = generate_acl_name(user=user, groups=groups, query=query)
 
     if not description:
         description = "This access condition was created with cmemc."
@@ -238,6 +280,7 @@ def create_command(  # noqa: PLR0913
         read_graphs=list(read_graphs),
         write_graphs=list(write_graphs),
         actions=list(actions),
+        query=query_str,
     )
     app.echo_success("done")
 
@@ -302,6 +345,13 @@ def create_command(  # noqa: PLR0913
     shell_complete=completion.acl_actions,
     help=HELP_TEXTS["action"],
 )
+@click.option(
+    "--query",
+    "query",
+    type=click.STRING,
+    shell_complete=completion.remote_queries_and_sparql_files,
+    help=HELP_TEXTS["query"],
+)
 @click.pass_obj
 # pylint: disable-msg=too-many-arguments
 def update_command(  # noqa: PLR0913
@@ -314,6 +364,7 @@ def update_command(  # noqa: PLR0913
     read_graphs: tuple[str],
     write_graphs: tuple[str],
     actions: tuple[str],
+    query: str,
 ) -> None:
     """Update an access condition.
 
@@ -326,6 +377,9 @@ def update_command(  # noqa: PLR0913
         f"Updating access condition {payload['name']} ... ",
         nl=False,
     )
+    query_str = None
+    if query:
+        query_str = get_query_text(query, {"user", "group", "readGraph", "writeGraph"})
 
     update_access_condition(
         iri=iri,
@@ -336,6 +390,7 @@ def update_command(  # noqa: PLR0913
         read_graphs=read_graphs,
         write_graphs=write_graphs,
         actions=actions,
+        query=query_str,
     )
     app.echo_success("done")
 
@@ -394,10 +449,9 @@ def review_command(app: ApplicationContext, raw: bool, user: str, groups: list[s
     """Review grants for a given account.
 
     This command has two working modes: (1) You can review the access conditions
-    of an actual account - this needs access to keycloak and the access condition API,
+    of an actual account,
     (2) You can review the access conditions of an imaginary account with a set of
-    freely added groups (what-if-scenario) - this only needs access to the access
-    condition API.
+    freely added groups (what-if-scenario).
 
     The output of the command is a list of grants the account has based on your input
     and all access conditions loaded in the store. In addition to that, some metadata
@@ -407,19 +461,15 @@ def review_command(app: ApplicationContext, raw: bool, user: str, groups: list[s
         app.echo_debug("Trying to fetch groups from keycloak.")
         keycloak_user = get_user_by_username(username=user)
         if not keycloak_user:
-            raise UsageError(
-                "Unknown User or no access to get user info.\n"
-                "Use the --group option to assign groups manually (what-if-scenario)."
-            )
-        try:
-            keycloak_user_groups = user_groups(user_id=keycloak_user[0]["id"])
-            groups = [f"{NS_GROUP}{_['name']}" for _ in keycloak_user_groups]
-        except requests.exceptions.HTTPError as error:
-            raise UsageError(
-                f"You do not have the permission to retrieve the groups for user {user}"
-                " from Keycloak.\n"
-                "Use the --group option to assign groups manually (what-if-scenario)."
-            ) from error
+            app.echo_warning(WARNING_UNKNOWN_USER)
+            app.echo_warning(WARNING_USE_GROUP)
+        else:
+            try:
+                keycloak_user_groups = user_groups(user_id=keycloak_user[0]["id"])
+                groups = [f"{NS_GROUP}{_['name']}" for _ in keycloak_user_groups]
+            except (requests.exceptions.HTTPError, IndexError):
+                app.echo_warning(WARNING_NO_GROUP_ACCESS)
+                app.echo_warning(WARNING_USE_GROUP)
     app.echo_debug(f"Got groups: {groups}")
     review_info: dict = review_graph_rights(
         account_iri=f"{NS_USER}{user}", group_iris=groups

cmem_cmemc/commands/admin.py

@@ -20,6 +20,15 @@ from cmem_cmemc.commands.workspace import workspace
 from cmem_cmemc.context import ApplicationContext
 from cmem_cmemc.utils import struct_to_table
 
+WARNING_MIGRATION = (
+    "Your workspace configuration version does not match your DataPlatform version. "
+    "Please consider migrating your workspace configuration (admin store migrate command)."
+)
+WARNING_SHAPES = (
+    "Your ShapeCatalog version does not match your DataPlatform version. "
+    "Please consider updating your bootstrap data (admin store boostrap command)."
+)
+
 
 def _check_cmem_license(app: ApplicationContext, data: dict, exit_1: str) -> None:
     """Check grace period of CMEM license."""
@@ -136,14 +145,17 @@ def status_command(  # noqa: C901
         app.echo_info_table(table, headers=["Key", "Value"], sort_column=0)
         return
     app.check_versions()
+    _workspace_config = _["dp"]["info"].get("workspaceConfiguration", {})
+    if _workspace_config.get("workspacesToMigrate"):
+        if exit_1 == "always":
+            raise ValueError(WARNING_MIGRATION)
+        app.echo_warning(WARNING_MIGRATION)
+
     if _["shapes"]["version"] not in (_["dp"]["version"], "UNKNOWN"):
-        output = (
-            "Your ShapeCatalog version does not match your DataPlatform "
-            "version. Please consider updating your bootstrap data."
-        )
         if exit_1 == "always":
-            raise ValueError(output)
-        app.echo_warning(output)
+            raise ValueError(WARNING_SHAPES)
+        app.echo_warning(WARNING_SHAPES)
+
     _check_cmem_license(app=app, data=_, exit_1=exit_1)
     _check_graphdb_license(app=app, data=_, months=1, exit_1=exit_1)
     table = [

cmem_cmemc/commands/dataset.py

@@ -2,7 +2,6 @@
 
 import json
 import re
-from pathlib import Path
 
 import click
 import requests.exceptions
@@ -27,6 +26,8 @@ from cmem_cmemc import completion
 from cmem_cmemc.commands import CmemcCommand, CmemcGroup
 from cmem_cmemc.commands.resource import resource
 from cmem_cmemc.context import ApplicationContext
+from cmem_cmemc.parameter_types.path import ClickSmartPath
+from cmem_cmemc.smart_path import SmartPath as Path
 from cmem_cmemc.utils import check_or_select_project, struct_to_table
 
 DATASET_FILTER_TYPES = sorted(["project", "regex", "tag", "type"])
@@ -138,7 +139,7 @@ def _post_file_resource(
     post_resource(
         project_id=project_id,
         dataset_id=dataset_id,
-        file_resource=click.open_file(local_file_name, "rb"),
+        file_resource=ClickSmartPath.open(local_file_name),
     )
     app.echo_success("done")
 
@@ -188,7 +189,7 @@ def _upload_file_resource(
     create_resource(
         project_name=project_id,
         resource_name=remote_file_name,
-        file_resource=click.open_file(local_file_name, "rb"),
+        file_resource=ClickSmartPath.open(local_file_name),
         replace=replace,
     )
     app.echo_success("done")
@@ -526,7 +527,9 @@ def delete_command(
 @click.command(cls=CmemcCommand, name="download")
 @click.argument("dataset_id", type=click.STRING, shell_complete=completion.dataset_ids)
 @click.argument(
-    "output_path", required=True, type=click.Path(allow_dash=True, dir_okay=False, writable=True)
+    "output_path",
+    required=True,
+    type=ClickSmartPath(allow_dash=True, dir_okay=False, writable=True),
 )
 @click.option(
     "--replace",
@@ -589,7 +592,7 @@ def download_command(
     "input_path",
     required=True,
     shell_complete=completion.dataset_files,
-    type=click.Path(allow_dash=True, dir_okay=False, writable=True),
+    type=ClickSmartPath(allow_dash=True, dir_okay=False, writable=True, remote_okay=True),
 )
 @click.pass_obj
 def upload_command(app: ApplicationContext, dataset_id: str, input_path: str) -> None:
@@ -643,7 +646,7 @@ def inspect_command(app: ApplicationContext, dataset_id: str, raw: bool) -> None
     "DATASET_FILE",
     required=False,
     shell_complete=completion.dataset_files,
-    type=click.Path(allow_dash=False, readable=True, exists=True),
+    type=ClickSmartPath(allow_dash=False, readable=True, exists=True, remote_okay=True),
 )
 @click.option(
     "--type",
@@ -726,9 +729,7 @@ def create_command(  # noqa: PLR0913
         return
 
     # transform the parameter list of tuple to a dictionary
-    parameter_dict = {}
-    for key, value in parameter:
-        parameter_dict[key] = value
+    parameter_dict = dict(parameter)
 
     dataset_type = _check_or_set_dataset_type(
         app=app,
@@ -763,6 +764,7 @@ def create_command(  # noqa: PLR0913
         # add file parameter for the project if needed
         if "file" not in parameter_dict:
             parameter_dict["file"] = Path(dataset_file).name
+
         _upload_file_resource(
             app=app,
             project_id=project_id,

cmem_cmemc/commands/graph.py

@@ -1,9 +1,9 @@
 """graph commands for cmem command line interface."""
 
 import hashlib
+import io
 import json
 import os
-from pathlib import Path
 from xml.dom import minidom  # nosec
 from xml.etree.ElementTree import (  # nosec
     Element,
@@ -26,6 +26,8 @@ from cmem_cmemc import completion
 from cmem_cmemc.commands import CmemcCommand, CmemcGroup
 from cmem_cmemc.commands.validation import validation_group
 from cmem_cmemc.context import ApplicationContext
+from cmem_cmemc.parameter_types.path import ClickSmartPath
+from cmem_cmemc.smart_path import SmartPath as Path
 from cmem_cmemc.utils import (
     convert_uri_to_filename,
     get_graphs,
@@ -481,12 +483,12 @@ def list_command(
 )
 @click.option(
     "--output-dir",
-    type=click.Path(writable=True, file_okay=False),
+    type=ClickSmartPath(writable=True, file_okay=False),
     help="Export to this directory.",
 )
 @click.option(
     "--output-file",
-    type=click.Path(writable=True, allow_dash=True, dir_okay=False),
+    type=ClickSmartPath(writable=True, allow_dash=True, dir_okay=False),
     default="-",
     show_default=True,
     shell_complete=completion.triple_files,
@@ -612,7 +614,7 @@ def export_command(  # noqa: PLR0913
     "input_path",
     required=True,
     shell_complete=completion.triple_files,
-    type=click.Path(allow_dash=False, readable=True),
+    type=ClickSmartPath(allow_dash=False, readable=True, remote_okay=True),
 )
 @click.argument("iri", type=click.STRING, required=False, shell_complete=completion.graph_uris)
 @click.pass_obj
@@ -679,7 +681,17 @@ def import_command(
             continue
         # prevents re-replacing of graphs in a single run
         _replace = False if graph_iri in processed_graphs else replace
-        graph_api.post_streamed(graph_iri, triple_file, replace=_replace)
+        _buffer = io.BytesIO()
+        transport_prams = {}
+        if Path(str(triple_file)).schema in ["http", "https"]:
+            transport_prams["headers"] = {
+                "Accept": "text/turtle; q=1.0, application/x-turtle; q=0.9, text/n3;"
+                " q=0.8, application/rdf+xml; q=0.5, text/plain; q=0.1"
+            }
+        with ClickSmartPath.open(triple_file, transport_params=transport_prams) as _:
+            _buffer.write(_.read())
+        _buffer.seek(0)
+        graph_api.post_streamed(graph_iri, _buffer, replace=_replace)
         app.echo_success("replaced" if _replace else "added")
         # refresh access conditions in case of dropped AC graph
         if graph_iri == refresh.AUTHORIZATION_GRAPH_URI:

cmem_cmemc/commands/project.py

@@ -1,9 +1,9 @@
 """DataIntegration project commands for the cmem command line interface."""
 
 import os
+import pathlib
 import shutil
 import tempfile
-from pathlib import Path
 from zipfile import ZipFile
 
 import click
@@ -33,6 +33,8 @@ from cmem_cmemc import completion
 from cmem_cmemc.commands import CmemcCommand, CmemcGroup
 from cmem_cmemc.commands.variable import variable
 from cmem_cmemc.context import ApplicationContext
+from cmem_cmemc.parameter_types.path import ClickSmartPath
+from cmem_cmemc.smart_path import SmartPath as Path
 
 
 def _validate_projects_to_process(project_ids: tuple[str], all_flag: bool) -> list[str]:
@@ -290,7 +292,7 @@ def create_command(
     "--output-dir",
     default=".",
     show_default=True,
-    type=click.Path(writable=True, file_okay=False),
+    type=ClickSmartPath(writable=True, file_okay=False),
     help="The base directory, where the project files will be created. "
     "If this directory does not exist, it will be silently created.",
 )
@@ -385,7 +387,7 @@ def export_command(  # noqa: PLR0913
                 + get_extension_by_plugin(marshalling_plugin)
             )
         # join with given output directory and normalize full path
-        export_path = os.path.normpath(Path(output_dir) / local_name)
+        export_path = os.path.normpath(str(Path(output_dir) / local_name))
 
         app.echo_info(
             f"Export project {current}/{count}: " f"{project_id} to {export_path} ... ", nl=False
@@ -419,7 +421,9 @@ def export_command(  # noqa: PLR0913
 @click.argument(
     "path",
     shell_complete=completion.project_files,
-    type=click.Path(allow_dash=False, dir_okay=True, readable=True, exists=True),
+    type=ClickSmartPath(
+        allow_dash=False, dir_okay=True, readable=True, exists=True, remote_okay=True
+    ),
 )
 @click.argument(
     "project_id",
@@ -445,7 +449,7 @@ def import_command(app: ApplicationContext, path: str, project_id: str, overwrit
         raise ValueError(f"Project {project_id} is already there.")
 
     if Path(path).is_dir():
-        if not Path(Path(path) / "config.xml").is_file():
+        if not (Path(path) / "config.xml").is_file():
             # fail early if directory is not an export
             raise ValueError(f"Directory {path} seems not to be a export directory.")
 
@@ -454,17 +458,25 @@ def import_command(app: ApplicationContext, path: str, project_id: str, overwrit
         app.echo_info("zipping ... ", nl=False)
         with tempfile.NamedTemporaryFile() as _:
             shutil.make_archive(
-                _.name, "zip", base_dir=Path(path).name, root_dir=Path(path).parent.absolute()
+                _.name,
+                "zip",
+                base_dir=pathlib.Path(path).name,
+                root_dir=str(Path(path).parent.absolute()),
             )
             # make_archive adds a .zip automatically ...
             uploaded_file = _.name + ".zip"
             app.echo_debug(f"Uploaded file is {uploaded_file}")
     else:
         app.echo_info(f"Import file {path} to project {project_id} ... ", nl=False)
-        uploaded_file = path
+        with tempfile.NamedTemporaryFile(suffix=".zip", delete=False) as _:
+            with ClickSmartPath.open(path) as _buffer:
+                _.write(_buffer.read())
+            uploaded_file = _.name
 
     # upload file and get validation report
     validation_response = upload_project(uploaded_file)
+    # Remove the temporary file
+    pathlib.Path.unlink(pathlib.Path(uploaded_file))
     if "errorMessage" in validation_response:
         raise ValueError(validation_response["errorMessage"])
     import_id = validation_response["projectImportId"]

cmem_cmemc/commands/python.py

@@ -18,6 +18,7 @@ from cmem.cmempy.workspace.python import (
 from cmem_cmemc import completion
 from cmem_cmemc.commands import CmemcCommand, CmemcGroup
 from cmem_cmemc.context import ApplicationContext
+from cmem_cmemc.parameter_types.path import ClickSmartPath
 from cmem_cmemc.utils import get_published_packages
 
 
@@ -28,16 +29,14 @@ def _get_package_id(module_name: str) -> str:
 
 def _looks_like_a_package(package: str) -> bool:
     """Check if a string looks like a package requirement string."""
-    if match(r"^[a-zA-Z0-9]+(-[a-zA-Z0-9]+)*((==|<=|>=|>|<).*)?$", package):
-        return True
-    return False
+    return bool(match("^[a-zA-Z0-9]+(-[a-zA-Z0-9]+)*((==|<=|>=|>|<).*)?$", package))
 
 
 @click.command(cls=CmemcCommand, name="install")
 @click.argument(
     "PACKAGE",
     shell_complete=completion.installable_packages,
-    type=click.Path(readable=True, allow_dash=False, dir_okay=False),
+    type=ClickSmartPath(readable=True, allow_dash=False, dir_okay=False),
 )
 @click.pass_obj
 def install_command(app: ApplicationContext, package: str) -> None:
@@ -57,30 +56,41 @@ def install_command(app: ApplicationContext, package: str) -> None:
     """
     app.echo_info(f"Install package {package} ... ", nl=False)
     try:
-        response = install_package_by_file(package_file=package)
-    except FileNotFoundError as error:
+        install_response = install_package_by_file(package_file=package)
+    except FileNotFoundError as not_found_error:
         if not _looks_like_a_package(package):
             raise ValueError(
                 f"{package} does not look like a package name or requirement "
                 "string, and a file with this name also does not exists."
-            ) from error
-        response = install_package_by_name(package_name=package)
+            ) from not_found_error
+        install_response = install_package_by_name(package_name=package)
 
     # DI >= 24.1 has a combine 'output' key, before 24.1 'standardOutput' and 'errorOutput' existed
-    output: list[str] = []
-    output.extend(response.get("output", "").splitlines())
-    output.extend(response.get("standardOutput", "").splitlines())
-    output.extend(response.get("errorOutput", "").splitlines())
-    for output_line in output:
-        app.echo_debug(output_line)
-
-    if response["success"]:
+    install_output: list[str] = []
+    install_output.extend(install_response.get("output", "").splitlines())
+    install_output.extend(install_response.get("standardOutput", "").splitlines())
+    install_output.extend(install_response.get("errorOutput", "").splitlines())
+    app.echo_debug(install_output)
+
+    update_plugin_response = update_plugins()
+    app.echo_debug(f"Updated Plugins: {update_plugin_response!s}")
+    update_errors = update_plugin_response.get("errors", [])
+    if install_response["success"] is True and len(update_errors) == 0:
         app.echo_success("done")
-    else:
-        app.echo_error("error")
-        for output_line in output:
-            app.echo_error(output_line)
-    app.echo_debug("Updated Plugins: " + str(update_plugins()))
+        return
+
+    # something went wrong
+    app.echo_error("error")
+    app.echo_error(install_output, prepend_line=True)
+    for update_error in update_errors:
+        app.echo_error(
+            f"Error while updating the plugins of "
+            f"{update_error.get('packageName')}: {update_error.get('errorMessage')} "
+            f"({update_error.get('errorType')})",
+            prepend_line=True,
+        )
+        app.echo_error(update_error.get("stackTrace"))
+    sys.exit(1)
 
 
 @click.command(cls=CmemcCommand, name="uninstall")