Add the get-tokens command

[xer0x]

Description

Adds a command to get a token that can be used to access an API via curl, postman, insomnia, etc.

References

• https://auth0team.atlassian.net/browse/A0CLI-20

Screenshot

Unfortunately, the output has some extra whitespace around the token. :/

Testing

• This change adds test coverage for new/changed/fixed functionality

Checklist

• I have added documentation for new/changed functionality in this PR or in auth0.com/docs
• All active GitHub checks for tests, formatting, and security are passing
• The correct base branch is being used, if not master

[cyx]

Looking great!

[jfatta]

just 👀

[xer0x]

Lol, well we've got a roughed out API call here now.

I'm hoping to get to the json parsing this evening. Maybe add real values instead of the hard coded configuration.

[xer0x]

Updated the PR to move the command into Auth0 get-token. This code triggers for M2M applications.

@cyx anything more to update here?

[paddycarey]

We already do this at the top of the command itself, could we just pass the tenant in to this function perhaps?

[xer0x]

Totally..

[xer0x]

Change the code to pass an extra tenant parameter to runClientCredentialsFlow()

[paddycarey]

This will print to stdout which might mess with piping the result to another process (like jq), have you tried that?

[xer0x]

jq won't be confused by whitespace.

However, we could switch to cli.renderer.Infof("") if that would be prettier. I didn't use it because it would put the green triangle.

[xer0x]

🤔 actually, it would be nice if auth0 get-token --format json would output only json. Do you know if the tool already has logic like this? Seeing an example of the tool hiding output would be great.

[paddycarey]

So that's what this line is doing https://github.com/auth0/auth0-cli/pull/56/files#diff-32da9d2d97d78dec736cae68c2195111921918696567466ad99f78a291237298R52

fmt.Fprint(cli.renderer.MessageWriter, "\n") MessageWriter goes to stderr, while ResultWriter goes to stdout. That means we can print whatever we want to stderr but the only things that'll get piped onwards are results printed via the results writer.

A --quiet flag or similar might be a good addition though, avoid even writing the informational stuff to stderr.

[xer0x]

Awesome! Okay that helps. Thanks Paddy

[xer0x]

The STDOUT split seems to work

$ go run ./cmd/auth0 get-token --audience https://cli.test.auth0.fake  --client-id wgxFPH6hY3JRwYjAjiFUxU9sjxNheLOm --format json > /dev/null | jq '.access_token' | pbcopy

...token is on my clipboard!  ready to paste into Insomnia

[paddycarey]

This might be useful at the command-level, so it works for both types of flow, have you considered moving it up there?

[paddycarey]

You can use url.Values to avoid building up the payload string manually, it'll also take care of all sorts of encoding edge cases for you.

[xer0x]

Neat, I've switched!

[paddycarey]

You can use url.URL here, might be safer/cleaner than building the URL manually, there's an example at https://github.com/auth0/auth0-cli/blob/main/internal/auth/authutil/login.go#L34

[xer0x]

yes! I was feeling like there must be a better way!

[paddycarey]

Might http.PostForm be a little cleaner here/more succinct? there's an example at https://github.com/auth0/auth0-cli/blob/main/internal/auth/auth.go#L89-L98

[xer0x]

PostForm?! What's this? Hello new friend.

[cyx]

Nice