Merge branch 'release/0.7.0'

Author: msqr

common/src/main/java/s10k/tool/common/util/OutputUtils.java

@@ -0,0 +1,33 @@
+package s10k.tool.common.util;
+
+import static org.springframework.util.StreamUtils.nonClosing;
+import static s10k.tool.common.util.SystemUtils.systemConsoleIsTerminal;
+
+import java.io.IOException;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+
+/**
+ * Output helper methods.
+ */
+public final class OutputUtils {
+
+	private OutputUtils() {
+		// not available
+	}
+
+	/**
+	 * Write a single object as JSON to standard out.
+	 * 
+	 * @param objectMapper the object mapper to use
+	 * @param result       the object to write
+	 * @throws IOException if any IO error occurs
+	 */
+	public static void writeJsonObject(ObjectMapper objectMapper, Object result) throws IOException {
+		(systemConsoleIsTerminal() ? objectMapper.writerWithDefaultPrettyPrinter() : objectMapper.writer())
+				.writeValue(nonClosing(System.out), result);
+		if (systemConsoleIsTerminal()) {
+			System.out.println();
+		}
+	}
+}

docs/docs/commands/datum/list.md

@@ -46,7 +46,7 @@ s10k datum list [-S] [-stream=streamId[,streamId...]]...
 | `-min=` | `--min-date=` | a minimum date to limit results to, like `2020-10-30` or `2020-10-30T12:45` |
 | `-max=` | `--max-date=` | a maximum date (exclusive) to limit results to, in same form as `-min` |
 | `-local` | `--local-dates` | treat the min/max dates as "node local" dates, instead of UTC (or the local time zone when `-tz` used) |
-| `-tz=` | `--time-zone=` | a time zone ID to treat the min/max dates as, instead of the local time zone, like `Pacific/Auckland` or `-05:00` or `UTC` |
+| `-tz=` | `--time-zone=` | a time zone ID to treat the min/max dates as instead of the local time zone, like `Pacific/Auckland` or `-05:00` or `UTC` |
 | `-recent` | `--most-recent` | show just the most recently available data, within min/max dates if specified |
 | `-agg=` | `--aggregation=` | the [aggregation type][aggregation] to return |
 | `-pagg=` | `--partial-aggregation=` | a [partial aggregation][partial-aggregation] level to use |

docs/docs/commands/sec-tokens/.pages

@@ -0,0 +1 @@
+title: sec-tokens

docs/docs/commands/sec-tokens/create.md

@@ -0,0 +1,165 @@
+---
+title: create
+---
+# Sec-Tokens Create
+
+Create a new security token.
+
+## Usage
+
+```
+s10k sec-tokens create [-r] -t=<tokenType> [-n=<name>]
+						[-D=<description>] [-node=nodeId[,nodeId...]]...
+						[-source=sourceId[,sourceId...]]...
+						[-N=metaPath[,metaPath...]]...
+						[-U=metaPath[,metaPath...]]...
+						[-A=path[,path...]]...
+						[-exp=<expirationDate>] [-tz=<zone>]
+						[-mode=<displayMode>]
+						[-agg=aggregation |
+							--aggregation=aggregation[,aggregation...]...]
+						[-loc=precision |
+							--location-precision=precision[,precision...]...]
+```
+
+## Options
+
+<div markdown="1" class="options-explicit-col-widths">
+
+| Option | Long Version | Description |
+|:-------|:-------------|:------------|
+| `-A=` | `--api-path=` | an API path(s) to restrict access to ([wildcard patterns][wildcard-pats] allowed) |
+| `-agg=` | `--min-aggregation=` | a minimum [aggregation][aggregation] to restrict access to |
+|   | `--aggregation=` | an [aggregation][aggregation] to restrict access to |
+| `-D=` | `--description=` | a description for the token |
+| `-exp=` | `--expiration-date=` | an expiration date for the token,like `2020-10-30` or `2020-10-30T12:45` |
+| `-loc=` | `--min-location-precision=` | a minimum location precision to restrict access to |
+|   | `--location-precision=` | a location precision to restrict access to |
+| `-n=` | `--name=` | a brief name for the token |
+| `-N=` | `--node-metadata-path=` | node [metadata paths][metadata-paths] to restrict access to ([wildcard patterns][wildcard-pats] allowed) |
+| `-node=` | `--node-id=` | node ID(s) to restrict access to |
+| `-r` | `--refresh-allowed` | allow signing keys for the token to be refreshed |
+| `-source=` | `--source-id=` | source ID(s) to restrict access to |
+| `-t=` | `--type=` | the type of token to create, one of `ReadNodeData` or `User` |
+| `-tz=` | `--time-zone=` | a time zone ID to treat expiration date as instead of the local time zone, like `Pacific/Auckland` or `-05:00` or `UTC` |
+| `-U=` | `--user-metadata-path=` |  user [metadata paths][metadata-paths] to restrict access to ([wildcard patterns][wildcard-pats] allowed) |
+| `-mode=` | `--display-mode=` | the format to display the data as, one of `CSV`, `JSON`, or `PRETTY`; defaults to `PRETTY` |
+
+
+</div>
+
+## Output
+
+The new security token, with its associated secret.
+
+!!! warning
+
+	You must copy the **token secret** to a safe place, as SolarNetwork will not show you its value
+	ever again.
+
+## Examples
+
+Create a basic `ReadNodeData` token with no policy restrictions:
+
+=== "Create basic token"
+
+	```sh
+	s10k sec-tokens create --type ReadNodeData
+	```
+
+=== "Pretty Output"
+
+	```
+	+----------------------+---------------------------+--------------------------------+---------+--------------+------+-------------+--------+
+	| Token ID             | Token Secret              | Created                        | User ID | Type         | Name | Description | Policy |
+	+----------------------+---------------------------+--------------------------------+---------+--------------+------+-------------+--------+
+	| ZCv5FUjlTlIQGjigLhSW | i.3R5qMQ-4sKg8uUV0XoxBY5y | 2025-09-29T03:51:32.388051375Z |     123 | ReadNodeData |      |             |        |
+	+----------------------+---------------------------+--------------------------------+---------+--------------+------+-------------+--------+
+	```
+
+=== "CSV Output"
+
+	```csv
+	Token ID,Token Secret,Created,User ID,Type,Name,Description,Policy
+	Lqc8Z_KzpD8.L0_em0Au,QlmQCrZaemdXmUNISggGF7ed,2025-09-29T03:52:13.248686631Z,123,ReadNodeData,,,
+	```
+
+=== "JSON Output"
+
+	```json
+	{
+		"id" : "WoRxAChcFZ.x7s2zT5Y6",
+		"authSecret" : "zcqVddxS0YTr6rzAtSA.Wq.x0tRzZL",
+		"created" : "2025-09-29 04:13:52.673034405Z",
+		"userId" : 123,
+		"status" : "Active",
+		"type" : "ReadNodeData",
+		"expired" : false
+	}
+	```
+
+Create a `User` token with a name, description, and various policy restrictions:
+
+=== "Create token with policy"
+
+	```sh
+	s10k sec-tokens create --type User --name 'Reporting: region 1' \
+		--description 'Allow access to region 1 for reporting team.' \
+		--node-id 100,101 --source-id '/REGION1/**' \
+		--min-aggregation Hour \
+		--refresh-allowed
+	```
+
+=== "Pretty Output"
+
+	```
+	+----------------------+----------------------------+--------------------------------+---------+------+---------------------+----------------------------------------------+------------------------------------+
+	| Token ID             | Token Secret               | Created                        | User ID | Type | Name                | Description                                  | Policy                             |
+	+----------------------+----------------------------+--------------------------------+---------+------+---------------------+----------------------------------------------+------------------------------------+
+	| kF67p6g30eUXQICUgzQf | PDX3VpOKmrc58HOOqUOv3HTmv0 | 2025-09-29T04:23:20.302916611Z |     123 | User | Reporting: region 1 | Allow access to region 1 for reporting team. | {                                  |
+	|                      |                            |                                |         |      |                     |                                              |   "nodeIds" : [ 100, 101 ],        |
+	|                      |                            |                                |         |      |                     |                                              |   "sourceIds" : [ "/REGION1/**" ], |
+	|                      |                            |                                |         |      |                     |                                              |   "minAggregation" : "Hour",       |
+	|                      |                            |                                |         |      |                     |                                              |   "refreshAllowed" : true          |
+	|                      |                            |                                |         |      |                     |                                              | }                                  |
+	+----------------------+----------------------------+--------------------------------+---------+------+---------------------+----------------------------------------------+------------------------------------+
+	```
+
+=== "CSV Output"
+
+	```csv
+	Token ID,Token Secret,Created,User ID,Type,Name,Description,Policy
+	vWLOCdFTaB8IeF6__bl5,HQyeON_XND0YgkYlMHGz.7qPoYlP,2025-09-29T04:25:03.335116516Z,123,User,Reporting: region 1,Allow access to region 1 for reporting team.,"{
+	  ""nodeIds"" : [ 100, 101 ],
+	  ""sourceIds"" : [ ""/REGION1/**"" ],
+	  ""minAggregation"" : ""Hour"",
+	  ""refreshAllowed"" : true
+	}"
+	```
+
+=== "JSON Output"
+
+	```json
+	{
+		"id" : "0a.vDUsIQFDM.pOShkqf",
+		"authSecret" : "mvBMxQukn1TsvmyjxQb6lWEZyebUWp",
+		"created" : "2025-09-29 04:25:43.884356539Z",
+		"userId" : 123,
+		"name" : "Reporting: region 1",
+		"description" : "Allow access to region 1 for reporting team.",
+		"status" : "Active",
+		"type" : "User",
+		"expired" : false,
+		"policy" : {
+			"nodeIds" : [ 100, 101 ],
+			"sourceIds" : [ "/REGION1/**" ],
+			"minAggregation" : "Hour",
+			"refreshAllowed" : true
+		}
+	}
+	```
+
+
+[aggregation]: https://github.com/SolarNetwork/solarnetwork/wiki/SolarQuery-API-enumerated-types#aggregation-types
+[metadata-paths]: https://github.com/SolarNetwork/solarnetwork/wiki/SolarNet-API-global-objects#metadata-filter-key-paths
+[wildcard-pats]: https://github.com/SolarNetwork/solarnetwork/wiki/SolarNet-API-global-objects#wildcard-patterns

docs/docs/commands/sec-tokens/delete.md

@@ -0,0 +1,41 @@
+---
+title: delete
+---
+# Sec-Tokens Delete
+
+Delete a security token.
+
+## Usage
+
+```
+s10k sec-tokens delete -id=tokenId
+```
+
+## Options
+
+<div markdown="1" class="options-explicit-col-widths">
+
+| Option | Long Version | Description |
+|:-------|:-------------|:------------|
+| `-id=` | `--identifier=` | the token ID to delete |
+
+</div>
+
+## Output
+
+A success message.
+
+## Examples
+
+=== "Delete token"
+
+	```sh
+	s10k sec-tokens delete --identifier ZCv5FUjlTlIQGjigLhSW
+	```
+
+=== "Output"
+
+	```
+	Security token deleted.
+	```
+

docs/docs/commands/sec-tokens/index.md

@@ -0,0 +1,7 @@
+# Sec-Tokens Commands
+
+The `sec-tokens` group of commands deal with SolarNetwork security token related actions.
+
+!!! note
+
+	All `sec-tokens` commands require a **User** security token to operate.

docs/docs/commands/sec-tokens/list.md

@@ -0,0 +1,114 @@
+---
+title: list
+---
+# Sec-Tokens List
+
+List security tokens matching a search filter.
+
+## Usage
+
+```
+s10k sec-tokens list [-id=tokenId[,tokenId...]]... [-t=<tokenType>]
+                    [-mode=<displayMode>] [-a | -d]
+```
+
+## Options
+
+<div markdown="1" class="options-explicit-col-widths">
+
+| Option | Long Version | Description |
+|:-------|:-------------|:------------|
+| `-a` | `--active` | show only active tokens |
+| `-d` | `--disabled` | show only disabled tokens |
+| `-id=` | `--identifier=` | the ID(s) of the tokens to show |
+| `-t=` | `--type=` | the type of token to show, one of `ReadNodeData` or `User` |
+| `-mode=` | `--display-mode=` | the format to display the data as, one of `CSV`, `JSON`, or `PRETTY`; defaults to `PRETTY` |
+
+</div>
+
+## Output
+
+A listing of security tokens matching the search criteria.
+
+## Examples
+
+List all `ReadNodeData` tokens:
+
+=== "List `ReadNodeData` tokens"
+
+	```sh
+	s10k sec-tokens list --type ReadNodeData
+	```
+
+=== "Pretty Output"
+
+	```
+	+----------------------+-----------------------------+---------+--------------+----------+----------------+-------------------------------------+------------------------------------------------------+
+	| Token ID             | Created                     | User ID | Type         | Status   | Name           | Description                         | Policy                                               |
+	+----------------------+-----------------------------+---------+--------------+----------+----------------+-------------------------------------+------------------------------------------------------+
+	| Lqc8Z_KzpD8.L0_em0Au | 2025-09-29T03:52:13.248687Z |     123 | ReadNodeData | Active   |                |                                     |                                                      |
+	+----------------------+-----------------------------+---------+--------------+----------+----------------+-------------------------------------+------------------------------------------------------+
+	| zLgbyhRvcMhQ83QRFJqh | 2025-09-29T04:05:46.562370Z |     123 | ReadNodeData | Disabled | Student access | Allow access to school system data. | {                                                    |
+	|                      |                             |         |              |          |                |                                     |   "nodeIds" : [ 100, 101 ],                          |
+	|                      |                             |         |              |          |                |                                     |   "sourceIds" : [ "mock/**", "test/**" ],            |
+	|                      |                             |         |              |          |                |                                     |   "minAggregation" : "Hour",                         |
+	|                      |                             |         |              |          |                |                                     |   "minLocationPrecision" : "PostalCode",             |
+	|                      |                             |         |              |          |                |                                     |   "nodeMetadataPaths" : [ "/pm/test/**" ],           |
+	|                      |                             |         |              |          |                |                                     |   "userMetadataPaths" : [ "/pm/account/public/**" ], |
+	|                      |                             |         |              |          |                |                                     |   "notAfter" : 1759143600000,                        |
+	|                      |                             |         |              |          |                |                                     |   "refreshAllowed" : true                            |
+	|                      |                             |         |              |          |                |                                     | }                                                    |
+	+----------------------+-----------------------------+---------+--------------+----------+----------------+-------------------------------------+------------------------------------------------------+
+	```
+
+=== "CSV Output"
+
+	```csv
+	Token ID,Created,User ID,Type,Status,Name,Description,Policy
+	Lqc8Z_KzpD8.L0_em0Au,2025-09-29T03:52:13.248687Z,123,ReadNodeData,Active,,,
+	zLgbyhRvcMhQ83QRFJqh,2025-09-29T04:05:46.562370Z,123,ReadNodeData,Disabled,Student access,Allow access to school system data.,"{
+	  ""nodeIds"" : [ 100, 101 ],
+	  ""sourceIds"" : [ ""mock/**"", ""test/**"" ],
+	  ""minAggregation"" : ""Hour"",
+	  ""minLocationPrecision"" : ""PostalCode"",
+	  ""nodeMetadataPaths"" : [ ""/pm/test/**"" ],
+	  ""userMetadataPaths"" : [ ""/pm/account/public/**"" ],
+	  ""notAfter"" : 1759143600000,
+	  ""refreshAllowed"" : true
+	}"
+	```
+
+=== "JSON Output"
+
+	```json
+	[
+		{
+			"id" : "Lqc8Z_KzpD8.L0_em0Au",
+			"created" : "2025-09-29 03:52:13.248687Z",
+			"userId" : 123,
+			"status" : "Active",
+			"type" : "ReadNodeData",
+			"expired" : false
+		},
+		{
+			"id" : "zLgbyhRvcMhQ83QRFJqh",
+			"created" : "2025-09-29 04:05:46.56237Z",
+			"userId" : 123,
+			"name" : "Student access",
+			"description" : "Allow access to school system data.",
+			"status" : "Disabled",
+			"type" : "ReadNodeData",
+			"expired" : false,
+			"policy" : {
+				"nodeIds" :   [ 100, 101 ],
+				"sourceIds" :   [ "mock/**", "test/**" ],
+				"minAggregation" : "Hour",
+				"minLocationPrecision" : "PostalCode",
+				"nodeMetadataPaths" :   [ "/pm/test/**" ],
+				"userMetadataPaths" :   [ "/pm/account/public/**" ],
+				"notAfter" : 1759143600000,
+				"refreshAllowed" : true
+			}
+		}
+	]
+	```