MalloZup
diff --git a/‎cmd/juju/cloud/addcredential.go
Lines changed: 33 additions & 2 deletions b/‎cmd/juju/cloud/addcredential.go
Lines changed: 33 additions & 2 deletions
diff --git a/‎cmd/juju/cloud/addcredential_test.go
Lines changed: 34 additions & 2 deletions b/‎cmd/juju/cloud/addcredential_test.go
Lines changed: 34 additions & 2 deletions
diff --git a/‎cmd/juju/cloud/detectcredentials_test.go
Lines changed: 16 additions & 0 deletions b/‎cmd/juju/cloud/detectcredentials_test.go
Lines changed: 16 additions & 0 deletions
diff --git a/‎cmd/juju/commands/bootstrap.go
Lines changed: 6 additions & 1 deletion b/‎cmd/juju/commands/bootstrap.go
Lines changed: 6 additions & 1 deletion
diff --git a/‎cmd/juju/controller/addmodel.go
Lines changed: 6 additions & 2 deletions b/‎cmd/juju/controller/addmodel.go
Lines changed: 6 additions & 2 deletions
diff --git a/‎cmd/juju/controller/listcontrollersformatters.go
Lines changed: 2 additions & 1 deletion b/‎cmd/juju/controller/listcontrollersformatters.go
Lines changed: 2 additions & 1 deletion
diff --git a/‎cmd/modelcmd/base.go
Lines changed: 19 additions & 6 deletions b/‎cmd/modelcmd/base.go
Lines changed: 19 additions & 6 deletions
diff --git a/‎cmd/modelcmd/credentials.go
Lines changed: 52 additions & 8 deletions b/‎cmd/modelcmd/credentials.go
Lines changed: 52 additions & 8 deletions
@@ -215,8 +215,39 @@ func (c *addCredentialCommand) interactiveAddCredential(ctxt *cmd.Context, schem
 	if err != nil {
 		return errors.Trace(err)
 	}
-	newCredential := jujucloud.NewCredential(authType, attrs)
-	existingCredentials.AuthCredentials[credentialName] = newCredential
+
+	cloudEndpoint := c.cloud.Endpoint
+	cloudIdentityEndpoint := c.cloud.IdentityEndpoint
+	if len(c.cloud.Regions) > 0 {
+		// NOTE(axw) we use the first region in the cloud,
+		// because this is all we need for Azure right now.
+		// Each region has the same endpoints, so it does
+		// not matter which one we use. If we expand
+		// credential generation to other providers, and
+		// they do have region-specific endpoints, then we
+		// should prompt the user for the region to use.
+		// That would be better left to the provider, though.
+		region := c.cloud.Regions[0]
+		cloudEndpoint = region.Endpoint
+		cloudIdentityEndpoint = region.IdentityEndpoint
+	}
+
+	credentialsProvider, err := environs.Provider(c.cloud.Type)
+	if err != nil {
+		return errors.Trace(err)
+	}
+	newCredential, err := credentialsProvider.FinalizeCredential(
+		ctxt, environs.FinalizeCredentialParams{
+			Credential:            jujucloud.NewCredential(authType, attrs),
+			CloudEndpoint:         cloudEndpoint,
+			CloudIdentityEndpoint: cloudIdentityEndpoint,
+		},
+	)
+	if err != nil {
+		return errors.Annotate(err, "finalizing credential")
+	}
+
+	existingCredentials.AuthCredentials[credentialName] = *newCredential
 	err = c.store.UpdateCredential(c.CloudName, *existingCredentials)
 	if err != nil {
 		return errors.Trace(err)
 
@@ -44,8 +44,10 @@ func (s *addCredentialSuite) SetUpSuite(c *gc.C) {
 			return nil, errors.NotFoundf("cloud %v", cloud)
 		}
 		return &jujucloud.Cloud{
-			Type:      "mock-addcredential-provider",
-			AuthTypes: s.authTypes,
+			Type:             "mock-addcredential-provider",
+			AuthTypes:        s.authTypes,
+			Endpoint:         "cloud-endpoint",
+			IdentityEndpoint: "cloud-identity-endpoint",
 		}, nil
 	}
 }
@@ -207,6 +209,36 @@ func (s *addCredentialSuite) TestAddCredentialMultipleAuthType(c *gc.C) {
 	s.assertAddUserpassCredential(c, "fred\nuserpass\nuser\npassword\n", nil)
 }
 
+func (s *addCredentialSuite) TestAddCredentialInteractive(c *gc.C) {
+	s.authTypes = []jujucloud.AuthType{"interactive"}
+	s.schema = map[jujucloud.AuthType]jujucloud.CredentialSchema{
+		"interactive": {{"username", jujucloud.CredentialAttr{}}},
+	}
+
+	stdin := strings.NewReader("bobscreds\nbob\n")
+	ctx, err := s.run(c, stdin, "somecloud")
+	c.Assert(err, jc.ErrorIsNil)
+
+	c.Assert(testing.Stderr(ctx), gc.Equals, `
+Enter credential name: Using auth-type "interactive".
+Enter username: generating userpass credential
+`[1:])
+
+	// FinalizeCredential should have generated a userpass credential
+	// based on the input from the interactive credential.
+	c.Assert(s.store.Credentials, jc.DeepEquals, map[string]jujucloud.CloudCredential{
+		"somecloud": {
+			AuthCredentials: map[string]jujucloud.Credential{
+				"bobscreds": jujucloud.NewCredential(jujucloud.UserPassAuthType, map[string]string{
+					"username":             "bob",
+					"password":             "cloud-endpoint",
+					"application-password": "cloud-identity-endpoint",
+				}),
+			},
+		},
+	})
+}
+
 func (s *addCredentialSuite) TestAddCredentialReplace(c *gc.C) {
 	s.store.Credentials = map[string]jujucloud.CloudCredential{
 		"somecloud": {
 
@@ -76,6 +76,22 @@ func (p *mockProvider) CredentialSchemas() map[jujucloud.AuthType]jujucloud.Cred
 	return *p.credSchemas
 }
 
+func (p *mockProvider) FinalizeCredential(
+	ctx environs.FinalizeCredentialContext,
+	args environs.FinalizeCredentialParams,
+) (*jujucloud.Credential, error) {
+	if args.Credential.AuthType() == "interactive" {
+		fmt.Fprintln(ctx.GetStderr(), "generating userpass credential")
+		out := jujucloud.NewCredential(jujucloud.UserPassAuthType, map[string]string{
+			"username":             args.Credential.Attributes()["username"],
+			"password":             args.CloudEndpoint,
+			"application-password": args.CloudIdentityEndpoint,
+		})
+		return &out, nil
+	}
+	return &args.Credential, nil
+}
+
 func (s *detectCredentialsSuite) SetUpSuite(c *gc.C) {
 	environs.RegisterProvider("mock-provider", &mockProvider{detectedCreds: &s.aCredential})
 }
 
@@ -421,7 +421,12 @@ func (c *bootstrapCommand) Run(ctx *cmd.Context) (resultErr error) {
 	store := c.ClientStore()
 	var detectedCredentialName string
 	credential, credentialName, regionName, err := modelcmd.GetCredentials(
-		ctx, store, c.Region, c.CredentialName, c.Cloud, cloud.Type,
+		ctx, store, modelcmd.GetCredentialsParams{
+			Cloud:          *cloud,
+			CloudName:      c.Cloud,
+			CloudRegion:    c.Region,
+			CredentialName: c.CredentialName,
+		},
 	)
 	if errors.Cause(err) == modelcmd.ErrMultipleCredentials {
 		return ambiguousCredentialError
 
@@ -426,8 +426,12 @@ func (c *addModelCommand) maybeUploadCredential(
 
 	// Upload the credential from the client, if it exists locally.
 	credential, _, _, err := modelcmd.GetCredentials(
-		ctx, c.ClientStore(), c.CloudRegion, credentialTag.Name(),
-		cloudTag.Id(), cloud.Type,
+		ctx, c.ClientStore(), modelcmd.GetCredentialsParams{
+			Cloud:          cloud,
+			CloudName:      cloudTag.Id(),
+			CloudRegion:    c.CloudRegion,
+			CredentialName: credentialTag.Name(),
+		},
 	)
 	if err != nil {
 		return names.CloudCredentialTag{}, errors.Trace(err)
 
@@ -35,7 +35,8 @@ func formatControllersTabular(writer io.Writer, set ControllerSet, promptRefresh
 	w := output.Wrapper{tw}
 
 	if promptRefresh && len(set.Controllers) > 0 {
-		fmt.Fprintln(writer, "Use --refresh to see the latest information.\n")
+		fmt.Fprintln(writer, "Use --refresh to see the latest information.")
+		fmt.Fprintln(writer)
 	}
 	w.Println("CONTROLLER", "MODEL", "USER", "ACCESS", "CLOUD/REGION", "MODELS", "MACHINES", "HA", "VERSION")
 	tw.SetColumnAlignRight(5)
 
@@ -392,13 +392,26 @@ func (g bootstrapConfigGetter) getBootstrapConfigParams(controllerName string) (
 
 	var credential *cloud.Credential
 	if bootstrapConfig.Credential != "" {
+		bootstrapCloud := cloud.Cloud{
+			Type:             bootstrapConfig.CloudType,
+			Endpoint:         bootstrapConfig.CloudEndpoint,
+			IdentityEndpoint: bootstrapConfig.CloudIdentityEndpoint,
+		}
+		if bootstrapConfig.CloudRegion != "" {
+			bootstrapCloud.Regions = []cloud.Region{{
+				Name:             bootstrapConfig.CloudRegion,
+				Endpoint:         bootstrapConfig.CloudEndpoint,
+				IdentityEndpoint: bootstrapConfig.CloudIdentityEndpoint,
+			}}
+		}
 		credential, _, _, err = GetCredentials(
-			g.ctx,
-			g.store,
-			bootstrapConfig.CloudRegion,
-			bootstrapConfig.Credential,
-			bootstrapConfig.Cloud,
-			bootstrapConfig.CloudType,
+			g.ctx, g.store,
+			GetCredentialsParams{
+				Cloud:          bootstrapCloud,
+				CloudName:      bootstrapConfig.Cloud,
+				CloudRegion:    bootstrapConfig.CloudRegion,
+				CredentialName: bootstrapConfig.Credential,
+			},
 		)
 		if err != nil {
 			return nil, nil, errors.Trace(err)
 
@@ -21,26 +21,62 @@ var (
 	ErrMultipleCredentials = errors.New("more than one credential detected")
 )
 
+// GetCredentialsParams contains parameters for the GetCredentials function.
+type GetCredentialsParams struct {
+	// Cloud is the cloud definition.
+	Cloud cloud.Cloud
+
+	// CloudName is the name of the cloud for which credentials are being
+	// obtained.
+	CloudName string
+
+	// CloudRegion is the name of the region that the user has specified.
+	// If this is empty, then GetCredentials will determine the default
+	// region, and return that. The default region is the one set by the
+	// user in credentials.yaml, or if there is none set, the first region
+	// in the cloud's list.
+	CloudRegion string
+
+	// CredentialName is the name of the credential to get.
+	CredentialName string
+}
+
 // GetCredentials returns a curated set of credential values for a given cloud.
 // The credential key values are read from the credentials store and the provider
 // finalises the values to resolve things like json files.
 // If region is not specified, the default credential region is used.
 func GetCredentials(
 	ctx *cmd.Context,
 	store jujuclient.CredentialGetter,
-	region, credentialName, cloudName, cloudType string,
+	args GetCredentialsParams,
 ) (_ *cloud.Credential, chosenCredentialName, regionName string, _ error) {
 
 	credential, credentialName, defaultRegion, err := credentialByName(
-		store, cloudName, credentialName,
+		store, args.CloudName, args.CredentialName,
 	)
 	if err != nil {
 		return nil, "", "", errors.Trace(err)
 	}
 
-	regionName = region
+	regionName = args.CloudRegion
 	if regionName == "" {
 		regionName = defaultRegion
+		if regionName == "" && len(args.Cloud.Regions) > 0 {
+			// No region was specified, use the first region
+			// in the list.
+			regionName = args.Cloud.Regions[0].Name
+		}
+	}
+
+	cloudEndpoint := args.Cloud.Endpoint
+	cloudIdentityEndpoint := args.Cloud.IdentityEndpoint
+	if regionName != "" {
+		region, err := cloud.RegionByName(args.Cloud.Regions, regionName)
+		if err != nil {
+			return nil, "", "", errors.Trace(err)
+		}
+		cloudEndpoint = region.Endpoint
+		cloudIdentityEndpoint = region.IdentityEndpoint
 	}
 
 	readFile := func(f string) ([]byte, error) {
@@ -52,7 +88,7 @@ func GetCredentials(
 	}
 
 	// Finalize credential against schemas supported by the provider.
-	provider, err := environs.Provider(cloudType)
+	provider, err := environs.Provider(args.Cloud.Type)
 	if err != nil {
 		return nil, "", "", errors.Trace(err)
 	}
@@ -63,17 +99,25 @@ func GetCredentials(
 	if err != nil {
 		return nil, "", "", errors.Annotatef(
 			err, "finalizing %q credential for cloud %q",
-			credentialName, cloudName,
+			credentialName, args.CloudName,
 		)
 	}
-	finalizedCredential, err := provider.FinalizeCredential(ctx, *credential)
+
+	credential, err = provider.FinalizeCredential(
+		ctx, environs.FinalizeCredentialParams{
+			Credential:            *credential,
+			CloudEndpoint:         cloudEndpoint,
+			CloudIdentityEndpoint: cloudIdentityEndpoint,
+		},
+	)
 	if err != nil {
 		return nil, "", "", errors.Annotatef(
 			err, "finalizing %q credential for cloud %q",
-			credentialName, cloudName,
+			credentialName, args.CloudName,
 		)
 	}
-	return &finalizedCredential, credentialName, regionName, nil
+
+	return credential, credentialName, regionName, nil
 }
 
 // credentialByName returns the credential and default region to use for the
Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,8 @@ func formatControllersTabular(writer io.Writer, set ControllerSet, promptRefresh`
`35`	`35`	`w := output.Wrapper{tw}`
`36`	`36`
`37`	`37`	`if promptRefresh && len(set.Controllers) > 0 {`
`38`		`- fmt.Fprintln(writer, "Use --refresh to see the latest information.\n")`
	`38`	`+ fmt.Fprintln(writer, "Use --refresh to see the latest information.")`
	`39`	`+ fmt.Fprintln(writer)`
`39`	`40`	`}`
`40`	`41`	`w.Println("CONTROLLER", "MODEL", "USER", "ACCESS", "CLOUD/REGION", "MODELS", "MACHINES", "HA", "VERSION")`
`41`	`42`	`tw.SetColumnAlignRight(5)`