1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
|
import getopt
import sys
import jwt
def usage():
progname = sys.argv[0]
print(f'Usage: {progname} [-p <path>] [-w <value>] [-r <value>]\n' +
' -p <path to private key>\n' +
' -w <write, comma separated list of domains>\n' +
' -r <read, comma separated list of domains>')
sys.exit(0)
def create_token(private_key, write_domains, read_domains):
write_claim = list()
read_claim = list()
if write_domains:
write_claim = write_domains.split(',')
if read_domains:
read_claim = read_domains.split(',')
payload = {
'sub': 'test',
'fresh': False,
'type': 'access',
'write': write_claim,
'read': read_claim
}
with open(private_key, "r") as fd:
key = fd.read()
return jwt.encode(payload=payload, algorithm='ES256', key=key)
if __name__ == '__main__':
read_domains = None
write_domains = None
private_key = None
try:
opts, args = getopt.getopt(sys.argv[1:], 'p:w:r:h')
except getopt.GetoptError:
usage()
for opt, arg in opts:
if opt == '-p':
private_key = arg
elif opt == '-w':
write_domains = arg
elif opt == '-r':
read_domains = arg
elif opt == '-h':
usage()
else:
usage()
if not private_key:
usage()
if not write_domains and not read_domains:
usage()
token = create_token(private_key, write_domains,
read_domains)
print(f'{token}')
|
