function to get control plane peer, and return enrollment token to user

Author: jhrv

apiserver/config/config.go

@@ -8,6 +8,7 @@ type Config struct {
 	PrivateKeyPath           string
 	ControlPlaneWGConfigPath string
 	SkipSetupInterface       bool
+	ControlPlaneEndpoint     string
 }
 
 func DefaultConfig() Config {

apiserver/database/database.go

@@ -190,6 +190,30 @@ INSERT
 	return tx.Commit(ctx)
 }
 
+func (d *APIServerDB) ReadControlPlanePeer(serial string) (*Peer, error) {
+	ctx := context.Background()
+
+	query := `
+SELECT public_key, ip
+  FROM client_peer
+         JOIN client on id = client_id
+         JOIN peer on id = peer_id
+ WHERE c.serial = $1
+   AND p.type = 'control'
+ LIMIT 1;`
+
+	row := d.conn.QueryRow(ctx, query)
+
+	var peer Peer
+	err := row.Scan(&peer.PublicKey, &peer.IP)
+
+	if err != nil {
+		return nil, fmt.Errorf("scanning row: %s", err)
+	}
+
+	return &peer, nil
+}
+
 func ips(tx pgx.Tx, ctx context.Context) ([]string, error) {
 	rows, err := tx.Query(ctx, "SELECT ip FROM peer;")
 	if err != nil {

apiserver/slack/slack.go

@@ -1,6 +1,8 @@
 package slack
 
 import (
+	"encoding/base64"
+	"encoding/json"
 	"fmt"
 	"strings"
 
@@ -12,8 +14,16 @@ import (
 const Usage = `register publicKey serialNumber`
 
 type slackbot struct {
-	api      *slack.Client
-	database *database.APIServerDB
+	api                  *slack.Client
+	database             *database.APIServerDB
+	controlPlaneEndpoint string
+}
+
+type EnrollmentConfig struct {
+	ClientIP    string `json:"clientIP"`
+	PublicKey   string `json:"publicKey"`
+	Endpoint    string `json:"endpoint"`
+	APIServerIP string `json:"apiServerIP"`
 }
 
 func New(token string, database *database.APIServerDB) *slackbot {
@@ -39,9 +49,27 @@ func (s *slackbot) handleRegister(msg slack.Msg) string {
 	err = s.database.AddClient(email, publicKey, serial)
 	if err != nil {
 		log.Errorf("adding client to database: %v", err)
-		return "Something went wrong during registration :sweat_smile:, I've notified the nais device team for you."
+		return "Something went wrong during registration :sweat_smile:, I've notified the nais device team for you. (1)"
 	} else {
-		return "Successfully registered :partyparrot:"
+		c, err := s.database.ReadControlPlanePeer(serial)
+		if err != nil {
+			return "Something went wrong during registration :sweat_smile:, I've notified the nais device team for you. (2)"
+		}
+
+		ec := EnrollmentConfig{
+			ClientIP:    c.IP,
+			PublicKey:   c.PublicKey,
+			Endpoint:    s.controlPlaneEndpoint,
+			APIServerIP: "10.255.240.1",
+		}
+
+		b, err := json.Marshal(&ec)
+		if err != nil {
+			return "Something went wrong during registration :sweat_smile:, I've notified the nais device team for you. (3)"
+		}
+
+		token := base64.StdEncoding.EncodeToString(b)
+		return fmt.Sprintf("Successfully registered :partyparrot:, copy and paste this command on your command line: `sudo tee /usr/local/etc/nais-device/enrollment.token <<< '%s'`", token)
 	}
 }
 

cmd/apiserver/main.go

@@ -27,6 +27,7 @@ func init() {
 	flag.StringVar(&cfg.SlackToken, "slack-token", os.Getenv("SLACK_TOKEN"), "Slack token")
 	flag.StringVar(&cfg.BindAddress, "bind-address", cfg.BindAddress, "Bind address")
 	flag.StringVar(&cfg.ConfigDir, "config-dir", cfg.ConfigDir, "Path to configuration directory")
+	flag.StringVar(&cfg.ControlPlaneEndpoint, "control-plane-endpoint", cfg.ControlPlaneEndpoint, "Control Plane public endpoint (ip:port)")
 	flag.BoolVar(&cfg.SkipSetupInterface, "skip-setup-interface", cfg.SkipSetupInterface, "Skip setting up WireGuard control plane interface")
 
 	flag.Parse()