feat: make organization ID generally available [HEAD-855] (#4887)

* feat: make organization ID generally available

in golang and TS code

* chore: use env var to support internal orgid

* chore: add orgid to config structure

Author: PeterSchafer

cliv2/internal/cliv2/cliv2.go

@@ -15,6 +15,7 @@ import (
 	"strings"
 
 	"github.com/gofrs/flock"
+	"github.com/snyk/go-application-framework/pkg/configuration"
 	"github.com/snyk/go-application-framework/pkg/utils"
 
 	"github.com/snyk/cli/cliv2/internal/constants"
@@ -35,6 +36,7 @@ type CLI struct {
 	stdout           io.Writer
 	stderr           io.Writer
 	env              []string
+	globalConfig     configuration.Configuration
 }
 
 type EnvironmentWarning struct {
@@ -47,7 +49,10 @@ const (
 	V2_ABOUT   Handler = iota
 )
 
-func NewCLIv2(cacheDirectory string, debugLogger *log.Logger) (*CLI, error) {
+func NewCLIv2(config configuration.Configuration, debugLogger *log.Logger) (*CLI, error) {
+
+	cacheDirectory := config.GetString(configuration.CACHE_PATH)
+
 	v1BinaryLocation, err := cliv1.GetFullCLIV1TargetPath(cacheDirectory)
 	if err != nil {
 		fmt.Println(err)
@@ -63,6 +68,7 @@ func NewCLIv2(cacheDirectory string, debugLogger *log.Logger) (*CLI, error) {
 		stdout:           os.Stdout,
 		stderr:           os.Stderr,
 		env:              os.Environ(),
+		globalConfig:     config,
 	}
 
 	return &cli, nil
@@ -258,6 +264,7 @@ func PrepareV1EnvironmentVariables(
 	integrationVersion string,
 	proxyAddress string,
 	caCertificateLocation string,
+	orgid string,
 ) (result []string, err error) {
 
 	inputAsMap := utils.ToKeyValueMap(input, "=")
@@ -302,6 +309,7 @@ func PrepareV1EnvironmentVariables(
 		inputAsMap[constants.SNYK_HTTPS_PROXY_ENV] = proxyAddress
 		inputAsMap[constants.SNYK_HTTP_PROXY_ENV] = proxyAddress
 		inputAsMap[constants.SNYK_CA_CERTIFICATE_LOCATION_ENV] = caCertificateLocation
+		inputAsMap[constants.SNYK_INTERNAL_ORGID_ENV] = orgid
 
 		// merge user defined (external) and internal no_proxy configuration
 		if len(inputAsMap[constants.SNYK_HTTP_NO_PROXY_ENV_SYSTEM]) > 0 {
@@ -328,9 +336,10 @@ func (c *CLI) PrepareV1Command(
 	integrationVersion string,
 ) (snykCmd *exec.Cmd, err error) {
 	proxyAddress := fmt.Sprintf("http://%s:%[email protected]:%d", proxy.PROXY_USERNAME, proxyInfo.Password, proxyInfo.Port)
+	orgid := c.globalConfig.GetString(configuration.ORGANIZATION)
 
 	snykCmd = exec.Command(cmd, args...)
-	snykCmd.Env, err = PrepareV1EnvironmentVariables(c.env, integrationName, integrationVersion, proxyAddress, proxyInfo.CertificateLocation)
+	snykCmd.Env, err = PrepareV1EnvironmentVariables(c.env, integrationName, integrationVersion, proxyAddress, proxyInfo.CertificateLocation, orgid)
 
 	if len(c.WorkingDirectory) > 0 {
 		snykCmd.Dir = c.WorkingDirectory
@@ -340,6 +349,7 @@ func (c *CLI) PrepareV1Command(
 }
 
 func (c *CLI) executeV1Default(proxyInfo *proxy.ProxyInfo, passThroughArgs []string) error {
+
 	snykCmd, err := c.PrepareV1Command(c.v1BinaryLocation, passThroughArgs, proxyInfo, c.GetIntegrationName(), GetFullVersion())
 
 	if c.DebugLogger.Writer() != io.Discard {

cliv2/internal/cliv2/cliv2_test.go

@@ -10,6 +10,8 @@ import (
 	"testing"
 	"time"
 
+	"github.com/snyk/go-application-framework/pkg/configuration"
+
 	"github.com/snyk/cli/cliv2/internal/cliv2"
 	"github.com/snyk/cli/cliv2/internal/constants"
 	"github.com/snyk/cli/cliv2/internal/proxy"
@@ -54,10 +56,11 @@ func Test_PrepareV1EnvironmentVariables_Fill_and_Filter(t *testing.T) {
 		"SNYK_SYSTEM_NO_PROXY=noProxy",
 		"SNYK_SYSTEM_HTTP_PROXY=httpProxy",
 		"SNYK_SYSTEM_HTTPS_PROXY=httpsProxy",
+		"SNYK_INTERNAL_ORGID=orgid",
 		"NO_PROXY=" + constants.SNYK_INTERNAL_NO_PROXY + ",noProxy",
 	}
 
-	actual, err := cliv2.PrepareV1EnvironmentVariables(input, "foo", "bar", "proxy", "cacertlocation")
+	actual, err := cliv2.PrepareV1EnvironmentVariables(input, "foo", "bar", "proxy", "cacertlocation", "orgid")
 
 	sort.Strings(expected)
 	sort.Strings(actual)
@@ -80,10 +83,11 @@ func Test_PrepareV1EnvironmentVariables_DontOverrideExistingIntegration(t *testi
 		"SNYK_SYSTEM_NO_PROXY=",
 		"SNYK_SYSTEM_HTTP_PROXY=",
 		"SNYK_SYSTEM_HTTPS_PROXY=",
+		"SNYK_INTERNAL_ORGID=orgid",
 		"NO_PROXY=" + constants.SNYK_INTERNAL_NO_PROXY,
 	}
 
-	actual, err := cliv2.PrepareV1EnvironmentVariables(input, "foo", "bar", "proxy", "cacertlocation")
+	actual, err := cliv2.PrepareV1EnvironmentVariables(input, "foo", "bar", "proxy", "cacertlocation", "orgid")
 
 	sort.Strings(expected)
 	sort.Strings(actual)
@@ -106,10 +110,11 @@ func Test_PrepareV1EnvironmentVariables_OverrideProxyAndCerts(t *testing.T) {
 		"SNYK_SYSTEM_NO_PROXY=312123",
 		"SNYK_SYSTEM_HTTP_PROXY=exists",
 		"SNYK_SYSTEM_HTTPS_PROXY=already",
+		"SNYK_INTERNAL_ORGID=orgid",
 		"NO_PROXY=" + constants.SNYK_INTERNAL_NO_PROXY + ",312123",
 	}
 
-	actual, err := cliv2.PrepareV1EnvironmentVariables(input, "foo", "bar", "proxy", "cacertlocation")
+	actual, err := cliv2.PrepareV1EnvironmentVariables(input, "foo", "bar", "proxy", "cacertlocation", "orgid")
 
 	sort.Strings(expected)
 	sort.Strings(actual)
@@ -122,7 +127,7 @@ func Test_PrepareV1EnvironmentVariables_Fail_DontOverrideExisting(t *testing.T)
 	input := []string{"something=1", "in=2", "here=3", "SNYK_INTEGRATION_NAME=exists"}
 	expected := input
 
-	actual, err := cliv2.PrepareV1EnvironmentVariables(input, "foo", "bar", "unused", "unused")
+	actual, err := cliv2.PrepareV1EnvironmentVariables(input, "foo", "bar", "unused", "unused", "orgid")
 
 	sort.Strings(expected)
 	sort.Strings(actual)
@@ -144,7 +149,9 @@ func getProxyInfoForTest() *proxy.ProxyInfo {
 func Test_prepareV1Command(t *testing.T) {
 	expectedArgs := []string{"hello", "world"}
 	cacheDir := getCacheDir(t)
-	cli, _ := cliv2.NewCLIv2(cacheDir, discardLogger)
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, cacheDir)
+	cli, _ := cliv2.NewCLIv2(config, discardLogger)
 
 	snykCmd, err := cli.PrepareV1Command(
 		"someExecutable",
@@ -165,11 +172,13 @@ func Test_prepareV1Command(t *testing.T) {
 func Test_extractOnlyOnce(t *testing.T) {
 	cacheDir := getCacheDir(t)
 	tmpDir := utils.GetTemporaryDirectory(cacheDir, cliv2.GetFullVersion())
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, cacheDir)
 
 	assert.NoDirExists(t, tmpDir)
 
 	// create instance under test
-	cli, _ := cliv2.NewCLIv2(cacheDir, discardLogger)
+	cli, _ := cliv2.NewCLIv2(config, discardLogger)
 
 	// run once
 	assert.Nil(t, cli.Init())
@@ -192,11 +201,13 @@ func Test_extractOnlyOnce(t *testing.T) {
 func Test_init_extractDueToInvalidBinary(t *testing.T) {
 	cacheDir := getCacheDir(t)
 	tmpDir := utils.GetTemporaryDirectory(cacheDir, cliv2.GetFullVersion())
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, cacheDir)
 
 	assert.NoDirExists(t, tmpDir)
 
 	// create instance under test
-	cli, _ := cliv2.NewCLIv2(cacheDir, discardLogger)
+	cli, _ := cliv2.NewCLIv2(config, discardLogger)
 
 	// fill binary with invalid data
 	_ = os.MkdirAll(tmpDir, 0755)
@@ -227,11 +238,13 @@ func Test_executeRunV2only(t *testing.T) {
 
 	cacheDir := getCacheDir(t)
 	tmpDir := utils.GetTemporaryDirectory(cacheDir, cliv2.GetFullVersion())
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, cacheDir)
 
 	assert.NoDirExists(t, tmpDir)
 
 	// create instance under test
-	cli, _ := cliv2.NewCLIv2(cacheDir, discardLogger)
+	cli, _ := cliv2.NewCLIv2(config, discardLogger)
 	assert.Nil(t, cli.Init())
 
 	actualReturnCode := cliv2.DeriveExitCode(cli.Execute(getProxyInfoForTest(), []string{"--version"}))
@@ -244,9 +257,11 @@ func Test_executeUnknownCommand(t *testing.T) {
 	expectedReturnCode := constants.SNYK_EXIT_CODE_ERROR
 
 	cacheDir := getCacheDir(t)
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, cacheDir)
 
 	// create instance under test
-	cli, _ := cliv2.NewCLIv2(cacheDir, discardLogger)
+	cli, _ := cliv2.NewCLIv2(config, discardLogger)
 	assert.Nil(t, cli.Init())
 
 	actualReturnCode := cliv2.DeriveExitCode(cli.Execute(getProxyInfoForTest(), []string{"bogusCommand"}))
@@ -255,9 +270,11 @@ func Test_executeUnknownCommand(t *testing.T) {
 
 func Test_clearCache(t *testing.T) {
 	cacheDir := getCacheDir(t)
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, cacheDir)
 
 	// create instance under test
-	cli, _ := cliv2.NewCLIv2(cacheDir, discardLogger)
+	cli, _ := cliv2.NewCLIv2(config, discardLogger)
 	assert.Nil(t, cli.Init())
 
 	// create folders and files in cache dir
@@ -287,9 +304,11 @@ func Test_clearCache(t *testing.T) {
 
 func Test_clearCacheBigCache(t *testing.T) {
 	cacheDir := getCacheDir(t)
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, cacheDir)
 
 	// create instance under test
-	cli, _ := cliv2.NewCLIv2(cacheDir, discardLogger)
+	cli, _ := cliv2.NewCLIv2(config, discardLogger)
 	assert.Nil(t, cli.Init())
 
 	// create folders and files in cache dir

cliv2/internal/constants/constants.go

@@ -17,6 +17,7 @@ const SNYK_CA_CERTIFICATE_LOCATION_ENV = "NODE_EXTRA_CA_CERTS"
 const SNYK_INTERNAL_NO_PROXY = "localhost,127.0.0.1,::1"
 const SNYK_OAUTH_ACCESS_TOKEN_ENV = "SNYK_OAUTH_TOKEN"
 const SNYK_ANALYTICS_DISABLED_ENV = "SNYK_DISABLE_ANALYTICS"
+const SNYK_INTERNAL_ORGID_ENV = "SNYK_INTERNAL_ORGID"
 const SNYK_OPENSSL_CONF = "OPENSSL_CONF"
 
 const SNYK_HTTPS_PROXY_ENV_SYSTEM = "SNYK_SYSTEM_HTTPS_PROXY"

cliv2/internal/proxy/proxy.go

@@ -12,6 +12,7 @@ import (
 	"os"
 
 	"github.com/google/uuid"
+	"github.com/snyk/go-application-framework/pkg/configuration"
 
 	"github.com/snyk/go-application-framework/pkg/networking/certs"
 	"github.com/snyk/go-httpauth/pkg/httpauth"
@@ -49,12 +50,15 @@ const (
 	PROXY_USERNAME = "snykcli"
 )
 
-func NewWrapperProxy(insecureSkipVerify bool, cacheDirectory string, cliVersion string, debugLogger *log.Logger) (*WrapperProxy, error) {
+func NewWrapperProxy(config configuration.Configuration, cliVersion string, debugLogger *log.Logger) (*WrapperProxy, error) {
 	var p WrapperProxy
 	p.DebugLogger = debugLogger
 	p.cliVersion = cliVersion
 	p.addHeaderFunc = func(request *http.Request) error { return nil }
 
+	cacheDirectory := config.GetString(configuration.CACHE_PATH)
+	insecureSkipVerify := config.GetBool(configuration.INSECURE_HTTPS)
+
 	certName := "snyk-embedded-proxy"
 	certPEMBlock, keyPEMBlock, err := certs.MakeSelfSignedCert(certName, []string{}, p.DebugLogger)
 	if err != nil {

cliv2/internal/proxy/proxy_test.go

@@ -12,11 +12,13 @@ import (
 	"os"
 	"testing"
 
+	"github.com/snyk/go-application-framework/pkg/configuration"
+	"github.com/snyk/go-application-framework/pkg/networking/certs"
+	"github.com/snyk/go-httpauth/pkg/httpauth"
+
 	"github.com/snyk/cli/cliv2/internal/constants"
 	"github.com/snyk/cli/cliv2/internal/proxy"
 	"github.com/snyk/cli/cliv2/internal/utils"
-	"github.com/snyk/go-application-framework/pkg/networking/certs"
-	"github.com/snyk/go-httpauth/pkg/httpauth"
 
 	"github.com/stretchr/testify/assert"
 )
@@ -80,7 +82,11 @@ func Test_closingProxyDeletesTempCert(t *testing.T) {
 	setup(t, basecache, version)
 	defer teardown(t, basecache)
 
-	wp, err := proxy.NewWrapperProxy(false, basecache, version, debugLogger)
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, basecache)
+	config.Set(configuration.INSECURE_HTTPS, false)
+
+	wp, err := proxy.NewWrapperProxy(config, version, debugLogger)
 	assert.Nil(t, err)
 
 	err = wp.Start()
@@ -101,10 +107,14 @@ func basicAuthValue(username string, password string) string {
 func Test_canGoThroughProxy(t *testing.T) {
 	basecache := "testcache"
 	version := "1.1.1"
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, basecache)
+	config.Set(configuration.INSECURE_HTTPS, false)
+
 	setup(t, basecache, version)
 	defer teardown(t, basecache)
 
-	wp, err := proxy.NewWrapperProxy(false, basecache, version, debugLogger)
+	wp, err := proxy.NewWrapperProxy(config, version, debugLogger)
 	assert.Nil(t, err)
 
 	err = wp.Start()
@@ -130,10 +140,14 @@ func Test_canGoThroughProxy(t *testing.T) {
 func Test_proxyRejectsWithoutBasicAuthHeader(t *testing.T) {
 	basecache := "testcache"
 	version := "1.1.1"
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, basecache)
+	config.Set(configuration.INSECURE_HTTPS, false)
+
 	setup(t, basecache, version)
 	defer teardown(t, basecache)
 
-	wp, err := proxy.NewWrapperProxy(false, basecache, version, debugLogger)
+	wp, err := proxy.NewWrapperProxy(config, version, debugLogger)
 	assert.Nil(t, err)
 
 	err = wp.Start()
@@ -158,6 +172,10 @@ func Test_proxyRejectsWithoutBasicAuthHeader(t *testing.T) {
 func Test_SetUpstreamProxy(t *testing.T) {
 	basecache := "testcache"
 	version := "1.1.1"
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, basecache)
+	config.Set(configuration.INSECURE_HTTPS, false)
+
 	setup(t, basecache, version)
 	defer teardown(t, basecache)
 
@@ -178,7 +196,7 @@ func Test_SetUpstreamProxy(t *testing.T) {
 		httpauth.UnknownMechanism,
 	}
 
-	objectUnderTest, err = proxy.NewWrapperProxy(false, basecache, version, debugLogger)
+	objectUnderTest, err = proxy.NewWrapperProxy(config, version, debugLogger)
 	assert.Nil(t, err)
 
 	// running different cases
@@ -210,6 +228,10 @@ func Test_SetUpstreamProxy(t *testing.T) {
 func Test_appendExtraCaCert(t *testing.T) {
 	basecache := "testcache"
 	version := "1.1.1"
+	config := configuration.NewInMemory()
+	config.Set(configuration.CACHE_PATH, basecache)
+	config.Set(configuration.INSECURE_HTTPS, false)
+
 	setup(t, basecache, version)
 	defer teardown(t, basecache)
 
@@ -219,7 +241,7 @@ func Test_appendExtraCaCert(t *testing.T) {
 
 	os.Setenv(constants.SNYK_CA_CERTIFICATE_LOCATION_ENV, file.Name())
 
-	wp, err := proxy.NewWrapperProxy(false, basecache, version, debugLogger)
+	wp, err := proxy.NewWrapperProxy(config, version, debugLogger)
 	assert.Nil(t, err)
 
 	certsPem, err := os.ReadFile(wp.CertificateLocation)

cliv2/pkg/basic_workflows/legacycli.go

@@ -72,9 +72,7 @@ func legacycliWorkflow(
 	args := config.GetStringSlice(configuration.RAW_CMD_ARGS)
 	useStdIo := config.GetBool(configuration.WORKFLOW_USE_STDIO)
 	isDebug := config.GetBool(configuration.DEBUG)
-	cacheDirectory := config.GetString(configuration.CACHE_PATH)
 	workingDirectory := config.GetString(configuration.WORKING_DIRECTORY)
-	insecure := config.GetBool(configuration.INSECURE_HTTPS)
 	proxyAuthenticationMechanismString := config.GetString(configuration.PROXY_AUTHENTICATION_MECHANISM)
 	proxyAuthenticationMechanism := httpauth.AuthenticationMechanismFromString(proxyAuthenticationMechanismString)
 	analyticsDisabled := config.GetBool(configuration.ANALYTICS_DISABLED)
@@ -85,7 +83,7 @@ func legacycliWorkflow(
 
 	// init cli object
 	var cli *cliv2.CLI
-	cli, err = cliv2.NewCLIv2(cacheDirectory, debugLogger)
+	cli, err = cliv2.NewCLIv2(config, debugLogger)
 	if err != nil {
 		return output, err
 	}
@@ -129,7 +127,7 @@ func legacycliWorkflow(
 	}
 
 	// init proxy object
-	wrapperProxy, err := proxy.NewWrapperProxy(insecure, cacheDirectory, cliv2.GetFullVersion(), debugLogger)
+	wrapperProxy, err := proxy.NewWrapperProxy(config, cliv2.GetFullVersion(), debugLogger)
 	if err != nil {
 		return output, errors.Wrap(err, "Failed to create proxy!")
 	}