Migrated login, login status and logout to library (#3266)

* Migrated login, login status and logout to library

* Update azcopy/loginlogout.go

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: Copilot <[email protected]>

Author: gapra-msft

azcopy/loginlogout.go

@@ -0,0 +1,79 @@
+// Copyright © 2025 Microsoft <[email protected]>
+//
+// Permission is hereby granted, free of charge, to any person obtaining a copy
+// of this software and associated documentation files (the "Software"), to deal
+// in the Software without restriction, including without limitation the rights
+// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+// copies of the Software, and to permit persons to whom the Software is
+// furnished to do so, subject to the following conditions:
+//
+// The above copyright notice and this permission notice shall be included in
+// all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+// THE SOFTWARE.
+
+package azcopy
+
+import (
+	"context"
+	"errors"
+	"fmt"
+
+	"github.com/Azure/azure-storage-azcopy/v10/common"
+	"github.com/Azure/azure-storage-azcopy/v10/ste"
+)
+
+type LoginOptions common.LoginOptions
+type LoginResponse common.LoginResponse
+
+func (c *Client) Login(opts LoginOptions) (LoginResponse, error) {
+	resp, err := c.oauthTokenManager.Login(common.LoginOptions(opts))
+	return LoginResponse(resp), err
+}
+
+type GetLoginStatusOptions struct {
+}
+
+type LoginStatus struct {
+	Valid       bool
+	TenantID    string
+	AADEndpoint string
+	LoginType   common.AutoLoginType
+}
+
+func (c *Client) GetLoginStatus(_ GetLoginStatusOptions) (LoginStatus, error) {
+	uotm := c.GetUserOAuthTokenManagerInstance()
+
+	// Get current token info and refresh it with GetTokenInfo()
+	ctx := context.WithValue(context.TODO(), ste.ServiceAPIVersionOverride, ste.DefaultServiceApiVersion)
+	tokenInfo, err := uotm.GetTokenInfo(ctx)
+	if err != nil || tokenInfo.IsExpired() {
+		return LoginStatus{Valid: false}, errors.New("you are currently not logged in, please login using 'azcopy login'")
+	}
+	return LoginStatus{
+		Valid:       true,
+		TenantID:    tokenInfo.Tenant,
+		AADEndpoint: tokenInfo.ActiveDirectoryEndpoint,
+		LoginType:   tokenInfo.LoginType,
+	}, nil
+}
+
+type LogoutOptions struct {
+}
+
+type LogoutResponse struct {
+}
+
+func (c *Client) Logout(_ LogoutOptions) (LogoutResponse, error) {
+	uotm := c.GetUserOAuthTokenManagerInstance()
+	if err := uotm.RemoveCachedToken(); err != nil {
+		return LogoutResponse{}, fmt.Errorf("failed to perform logout command, %v", err)
+	}
+	return LogoutResponse{}, nil
+}

cmd/login.go

@@ -24,28 +24,11 @@ import (
 	"errors"
 	"strings"
 
+	"github.com/Azure/azure-storage-azcopy/v10/azcopy"
 	"github.com/Azure/azure-storage-azcopy/v10/common"
 	"github.com/spf13/cobra"
 )
 
-type LoginOptions struct {
-	TenantID    string
-	AADEndpoint string
-	LoginType   common.AutoLoginType
-
-	IdentityClientID   string
-	IdentityResourceID string
-
-	ApplicationID   string
-	CertificatePath string
-
-	certificatePassword string
-	clientSecret        string
-	persistToken        bool
-
-	identityObjectID string
-}
-
 var loginCmdArg = rawLoginArgs{tenantID: common.DefaultTenantID}
 
 var lgCmd = &cobra.Command{
@@ -91,19 +74,6 @@ var lgCmd = &cobra.Command{
 	},
 }
 
-func RunLogin(args LoginOptions) error {
-	args.certificatePassword = common.GetEnvironmentVariable(common.EEnvironmentVariable.CertificatePassword())
-	args.clientSecret = common.GetEnvironmentVariable(common.EEnvironmentVariable.ClientSecret())
-	args.persistToken = true
-
-	if args.certificatePassword != "" || args.clientSecret != "" {
-		glcm.Info(environmentVariableNotice)
-	}
-
-	return args.process()
-
-}
-
 func init() {
 
 	rootCmd.AddCommand(lgCmd)
@@ -161,70 +131,55 @@ type rawLoginArgs struct {
 	certPath      string
 }
 
-func (args rawLoginArgs) toOptions() (LoginOptions, error) {
+func (args rawLoginArgs) toOptions() (azcopy.LoginOptions, error) {
 	var loginType common.AutoLoginType
 	err := loginType.Parse(loginCmdArg.loginType)
 	if err != nil {
-		return LoginOptions{}, err
+		return azcopy.LoginOptions{}, err
 	}
-	return LoginOptions{
-		TenantID:           args.tenantID,
-		AADEndpoint:        args.aadEndpoint,
-		LoginType:          loginType,
-		IdentityClientID:   args.identityClientID,
-		identityObjectID:   args.identityObjectID,
-		IdentityResourceID: args.identityResourceID,
-		ApplicationID:      args.applicationID,
-		CertificatePath:    args.certPath,
+	certificatePassword := common.GetEnvironmentVariable(common.EEnvironmentVariable.CertificatePassword())
+	clientSecret := common.GetEnvironmentVariable(common.EEnvironmentVariable.ClientSecret())
+
+	if certificatePassword != "" || clientSecret != "" {
+		glcm.Info(environmentVariableNotice)
+	}
+	return azcopy.LoginOptions{
+		TenantID:            args.tenantID,
+		AADEndpoint:         args.aadEndpoint,
+		LoginType:           loginType,
+		IdentityClientID:    args.identityClientID,
+		IdentityObjectID:    args.identityObjectID,
+		IdentityResourceID:  args.identityResourceID,
+		ApplicationID:       args.applicationID,
+		CertificatePath:     args.certPath,
+		PersistToken:        true,
+		CertificatePassword: certificatePassword,
+		ClientSecret:        clientSecret,
 	}, nil
 }
 
-func (options LoginOptions) process() error {
-	uotm := Client.GetUserOAuthTokenManagerInstance()
-	// Persist the token to cache, if login fulfilled successfully.
-
+func RunLogin(options azcopy.LoginOptions) error {
+	_, err := Client.Login(options)
+	if err != nil {
+		return err
+	}
 	switch options.LoginType {
 	case common.EAutoLoginType.SPN():
 		if options.CertificatePath != "" {
-			if err := uotm.CertLogin(options.TenantID, options.AADEndpoint, options.CertificatePath, options.certificatePassword, options.ApplicationID, options.persistToken); err != nil {
-				return err
-			}
 			glcm.Info("SPN Auth via cert succeeded.")
 		} else {
-			if err := uotm.SecretLogin(options.TenantID, options.AADEndpoint, options.clientSecret, options.ApplicationID, options.persistToken); err != nil {
-				return err
-			}
 			glcm.Info("SPN Auth via secret succeeded.")
 		}
 	case common.EAutoLoginType.MSI():
-		if err := uotm.MSILogin(common.IdentityInfo{
-			ClientID: options.IdentityClientID,
-			ObjectID: options.identityObjectID,
-			MSIResID: options.IdentityResourceID,
-		}, options.persistToken); err != nil {
-			return err
-		}
 		// For MSI login, info success message to user.
 		glcm.Info("Login with identity succeeded.")
 	case common.EAutoLoginType.AzCLI():
-		if err := uotm.AzCliLogin(options.TenantID, options.persistToken); err != nil {
-			return err
-		}
 		glcm.Info("Login with AzCliCreds succeeded")
 	case common.EAutoLoginType.PsCred():
-		if err := uotm.PSContextToken(options.TenantID, options.persistToken); err != nil {
-			return err
-		}
 		glcm.Info("Login with Powershell context succeeded")
 	case common.EAutoLoginType.Workload():
-		if err := uotm.WorkloadIdentityLogin(options.persistToken); err != nil {
-			return err
-		}
 		glcm.Info("Login with Workload Identity succeeded")
 	default:
-		if err := uotm.UserLogin(options.TenantID, options.AADEndpoint, options.persistToken); err != nil {
-			return err
-		}
 		// User fulfills login in browser, and there would be message in browser indicating whether login fulfilled successfully.
 		glcm.Info("Login succeeded.")
 	}

cmd/loginStatus.go

@@ -21,13 +21,11 @@
 package cmd
 
 import (
-	"context"
 	"encoding/json"
-	"errors"
 	"fmt"
 
+	"github.com/Azure/azure-storage-azcopy/v10/azcopy"
 	"github.com/Azure/azure-storage-azcopy/v10/common"
-	"github.com/Azure/azure-storage-azcopy/v10/ste"
 	"github.com/spf13/cobra"
 )
 
@@ -37,35 +35,6 @@ type LoginStatusOptions struct {
 	Method      bool
 }
 
-type LoginStatus struct {
-	Valid       bool
-	TenantID    string
-	AADEndpoint string
-	AuthMethod  common.AutoLoginType
-}
-
-func (options LoginStatusOptions) process() (LoginStatus, error) {
-	// getting current token info and refreshing it with GetTokenInfo()
-	ctx := context.WithValue(context.TODO(), ste.ServiceAPIVersionOverride, ste.DefaultServiceApiVersion)
-	uotm := Client.GetUserOAuthTokenManagerInstance()
-	tokenInfo, err := uotm.GetTokenInfo(ctx)
-	var status = LoginStatus{
-		Valid: err == nil && !tokenInfo.IsExpired(),
-	}
-	if status.Valid {
-		status.TenantID = tokenInfo.Tenant
-		status.AADEndpoint = tokenInfo.ActiveDirectoryEndpoint
-		status.AuthMethod = tokenInfo.LoginType
-		return status, nil
-	} else {
-		return status, errors.New("You are currently not logged in. Please login using 'azcopy login'")
-	}
-}
-
-func RunLoginStatus(options LoginStatusOptions) (LoginStatus, error) {
-	return options.process()
-}
-
 type LoginStatusOutput struct {
 	Valid       bool    `json:"valid"`
 	TenantID    *string `json:"tenantID,omitempty"`
@@ -92,7 +61,7 @@ func init() {
 					glcm.Info(fmt.Sprintf(format, a...))
 				}
 			}
-			status, _ := RunLoginStatus(commandLineInput)
+			status, _ := Client.GetLoginStatus(azcopy.GetLoginStatusOptions{})
 			var Info = LoginStatusOutput{
 				Valid: status.Valid,
 			}
@@ -110,8 +79,8 @@ func init() {
 				}
 
 				if commandLineInput.Method {
-					logText(fmt.Sprintf("Authorized using %s", status.AuthMethod))
-					method := status.AuthMethod.String()
+					logText(fmt.Sprintf("Authorized using %s", status.LoginType))
+					method := status.LoginType.String()
 					Info.AuthMethod = &method
 				}
 			} else {

cmd/logout.go

@@ -21,14 +21,11 @@
 package cmd
 
 import (
-	"fmt"
-
+	"github.com/Azure/azure-storage-azcopy/v10/azcopy"
 	"github.com/spf13/cobra"
 )
 
 func init() {
-	logoutCmdArgs := LogoutOptions{}
-
 	// logoutCmd represents the logout command
 	logoutCmd := &cobra.Command{
 		Use:        "logout",
@@ -39,27 +36,14 @@ func init() {
 			return nil
 		},
 		RunE: func(cmd *cobra.Command, args []string) error {
-			return RunLogout(logoutCmdArgs)
+			_, err := Client.Logout(azcopy.LogoutOptions{})
+			if err != nil {
+				return err
+			}
+			glcm.Info("Logout succeeded.")
+			return nil
 		},
 	}
 
 	rootCmd.AddCommand(logoutCmd)
 }
-
-func RunLogout(options LogoutOptions) error {
-	return options.process()
-}
-
-type LogoutOptions struct{}
-
-func (options LogoutOptions) process() error {
-	uotm := Client.GetUserOAuthTokenManagerInstance()
-	if err := uotm.RemoveCachedToken(); err != nil {
-		return fmt.Errorf("failed to perform logout command, %v", err)
-	}
-
-	// For MSI login, info success message to user.
-	glcm.Info("Logout succeeded.")
-
-	return nil
-}