(nats-io#1268) Initial commit

ploubser · ploubser · commit d30192f64475 · 2025-02-14T10:33:09.000Z
diff --git a/cli/auth_account_command.go b/cli/auth_account_command.go
@@ -101,6 +101,8 @@ type authAccountCommand struct {
 	prefix                  string
 	tags                    []string
 	rmTags                  []string
+	mapSource               string
+	mapTarget               string
 }
 
 func configureAuthAccountCommand(auth commandHost) {
@@ -278,6 +280,95 @@ func configureAuthAccountCommand(auth commandHost) {
 	skrm.Flag("key", "The key to remove").StringVar(&c.skRole)
 	skrm.Flag("operator", "Operator to act on").StringVar(&c.operatorName)
 	skrm.Flag("force", "Removes without prompting").Short('f').UnNegatableBoolVar(&c.force)
+
+	mappings := acct.Command("mappings", "Manage account level subject mapping and partitioning").Alias("m")
+
+	mappingsaAdd := mappings.Command("add", "Add a new mapping").Alias("new").Alias("a").Action(c.mappingAddAction)
+	mappingsaAdd.Arg("name", "Account to act on").StringVar(&c.accountName)
+	mappingsaAdd.Arg("source", "The source subject of the mapping").StringVar(&c.mapSource)
+	mappingsaAdd.Arg("target", "The target subject of the mapping").StringVar(&c.mapTarget)
+
+	mappingsaAdd.Flag("operator", "Operator to act on").StringVar(&c.operatorName)
+
+	mappingsls := mappings.Command("ls", "List mappings").Alias("list").Action(c.mappingListAction)
+	mappingsls.Arg("name", "Account to act on").StringVar(&c.accountName)
+	mappingsls.Flag("operator", "Operator to act on").StringVar(&c.operatorName)
+
+	mappingsrm := mappings.Command("rm", "Remove a mapping").Action(c.mappingRmAction)
+	mappingsrm.Arg("name", "Account to act on").StringVar(&c.accountName)
+	mappingsrm.Arg("source", "The source subject of the mapping").StringVar(&c.mapSource)
+	mappingsrm.Arg("target", "The target subject of the mapping").StringVar(&c.mapTarget)
+
+	mappingsrm.Flag("operator", "Operator to act on").StringVar(&c.operatorName)
+}
+
+func (c *authAccountCommand) mappingAddAction(_ *fisk.ParseContext) error {
+	_, _, _, err := c.selectAccount(true)
+	if err != nil {
+		return err
+	}
+
+	if c.mapSource == "" {
+		err := iu.AskOne(&survey.Input{
+			Message: "Source stream",
+			Help:    "The source stream of the mapping",
+		}, &c.mapSource, survey.WithValidator(survey.Required))
+		if err != nil {
+			return err
+		}
+	}
+
+	if c.mapTarget == "" {
+		err := iu.AskOne(&survey.Input{
+			Message: "Target stream",
+			Help:    "The target stream of the mapping",
+		}, &c.mapTarget, survey.WithValidator(survey.Required))
+		if err != nil {
+			return err
+		}
+	}
+
+	// Add mapping claim to jwt
+
+	fmt.Printf("Created mapping {%s %s}\n", c.mapSource, c.mapTarget)
+
+	return nil
+}
+
+func (c *authAccountCommand) mappingListAction(_ *fisk.ParseContext) error {
+	_, _, _, err := c.selectAccount(true)
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+func (c *authAccountCommand) mappingRmAction(_ *fisk.ParseContext) error {
+	_, _, _, err := c.selectAccount(true)
+	if err != nil {
+		return err
+	}
+
+	// show all mappings for account
+	mappings := []string{
+		"foo.bar bar.foo",
+		"foo.baz baz.foo",
+		"foo.prod foo.dev"}
+
+	selected := ""
+	err = iu.AskOne(&survey.Select{
+		Message:  "Select a mapping to delete",
+		Options:  mappings,
+		PageSize: iu.SelectPageSize(len(mappings)),
+	}, &selected)
+	if err != nil {
+		return err
+	}
+
+	// Delete selected from the jwt
+
+	fmt.Printf("Deleted mapping {%s}\n", selected)
+	return nil
 }
 
 func (c *authAccountCommand) selectAccount(pick bool) (*ab.AuthImpl, ab.Operator, ab.Account, error) {
