Global Options
Under normal circumstances, only info
, warn
and error
logs are printed to the console. For development, you may also want to see debug
logs.
log.level
: The minimum level log messages must have to be shown
By default the CLI assumes that it is connecting to servers that use TLS certificates that are trusted by the operating system. When connecting to servers with self-signed certificates or a custom CA, the ca
option can be used to trust those certificates. When connecting servers that don’t use TLS, the insecure
option can be used.
ca
: CA certificate fileinsecure
: Connect without TLS
The CLI can keep track of multiple configurations and multiple credentials. The credentials-id
flag selects the set of credentials that are used to connect to servers. The login
command registers the hosts that are configured at that moment, and will prevent leaking credentials to other hosts. This can be circumvented with the allow-unknown-hosts
option.
credentials-id
: Credentials ID (if using multiple configurations)allow-unknown-hosts
: Allow sending credentials to unknown hosts
By default the CLI uses JSON as the input and output format. It is also possible to use a Go template as output format.
input-format
: Input formatoutput-format
: Output format
The CLI is capable of retrying requests that were rejected by the rate limiter: errors of type ResourceExausthed
and Unavailable
. By default, this behavior is disabled but can be set through the following configurations:
retry-config.max
: Maximum amount of times that a request can be reattempted.retry-config.default-timeout
: Default timeout between retry attempts.retry-config.enable-metadata
: Enables use of the request response metadata to dynamically calculate a timeout for the retry attempts.retry-config.jitter
: Fraction that creates a deviation of the timeout used between retry attempts.
API Options
The CLI needs to be configured with the addresses of the OAuth server. The Getting Started guide gives a good example configuration for a typical deployment.
oauth-server-address
: OAuth Server addressidentity-server-grpc-address
: Identity Server addressgateway-server-enabled
: Gateway Server enabledgateway-server-grpc-address
: Gateway Server addressnetwork-server-enabled
: Network Server enablednetwork-server-grpc-address
: Network Server addressapplication-server-enabled
: Application Server enabledapplication-server-grpc-address
: Application Server addressjoin-server-enabled
: Join Server enabledjoin-server-grpc-address
: Join Server addressdevice-claiming-server-grpc-address
: Device Claiming Server addressdevice-template-converter-grpc-address
: Device Template Converter addressqr-code-generator-grpc-address
: QR Code Generator address