command: Enable terraform login command, add manual token support #23995
Conversation
| var tokenDiags tfdiags.Diagnostics | ||
|
|
||
| // Prefer Terraform login if available | ||
| if clientConfig != nil { |
There was a problem hiding this comment.
It looks like this if statement is redundant, since we've already exhausted the cases if clientConfig == nil - what do you think?
There was a problem hiding this comment.
I think it's still needed. The previous if statement doesn't result in an early exit, and only triggers an additional service discovery step. So we could still arrive at this line with a non-nil clientConfig, if the target host supports the login.v1 service.
I don't think we can even move this block up to an else clause, because we want to print diagnostics and exit if neither service is supported. The control flow after these changes is definitely more confusing, but I can't find any way to simplify it.
There was a problem hiding this comment.
gotchya, that's really obvious in hindsight - thanks!
alisdair
changed the title
alisdair
changed the title
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further. |
The token generated in the above screen capture has been invalidated 🤫
This is the first in a series of PRs implementing and improving the
terraform loginfeature.Changes
terraform loginsub-commandtfe.v2API (to ensure that we're trying to authenticate against compatible Terraform Cloud/Terraform Enterprise)login.v1is supported, use whichever OAuth grant flow is available (note: none of these are supported by TFC/TFE yet)tfe.v2is supported, open a browser to the user's token settings page, and wait for a token to be pasted back