The CLI provides a reusable authentication mechanism that you can use with any command requiring valid DataRobot credentials. Cobra's PreRunE hooks handle authentication and ensure credentials are valid before a command executes.
Use the auth.EnsureAuthenticatedE(ctx) function in your command's PreRunE hook.
import "github.com/datarobot/cli/cmd/auth"
var MyCmd = &cobra.Command{
Use: "mycommand",
Short: "My command description",
PreRunE: func(cmd *cobra.Command, _ []string) error {
return auth.EnsureAuthenticatedE(cmd.Context())
},
Run: func(_ *cobra.Command, _ []string) {
// Command implementation
// Authentication is guaranteed to be valid here
},
}The hook functions are outlined below.
- Checks for valid credentials: Checks if a valid API key already exists.
- Auto-configures URL if missing: If no DataRobot URL is configured, prompts you to set it up.
- Retrieves new credentials: If credentials are missing or expired, the hook automatically triggers the browser-based login flow.
- Fails early: If authentication cannot be established, the command will not run and returns an error.
For code that isn't a Cobra command, you can use auth.EnsureAuthenticated() directly.
import "github.com/datarobot/cli/cmd/auth"
func MyFunction() error {
// Ensure valid authentication before proceeding.
if !auth.EnsureAuthenticated() {
return errors.New("authentication failed")
}
// Continue with authenticated operations.
apiKey := config.GetAPIKey()
// ... use apiKey for API calls
return nil
}Use a direct call to add authentication to any command that does the following:
- Makes API calls to DataRobot endpoints.
- Needs to populate DataRobot credentials in configuration files.
- Requires valid authentication to function correctly.
The following commands use PreRunE to ensure authentication:
dr dotenv update: Automatically ensures authentication before updating environment variables.dr templates list: Requires authentication to fetch templates from the API.dr templates setup: Requires authentication to fetch template details.
For advanced use cases where authentication is handled externally or not required, you can bypass authentication checks using the --skip-auth global flag.
Use the --skip-auth global flag to skip authentication for any command. You can also skip authentication with an environment variable.
# Skip authentication for any command
dr templates list --skip-auth
dr dotenv update --skip-auth
# Skip authentication with environment variable
DATAROBOT_CLI_SKIP_AUTH=true dr templates setupWhen --skip-auth is enabled, it expect the following behavior:
- Bypass all authentication checks: The
EnsureAuthenticated()function returnstrueimmediately without validating credentials. - Emit a warning: Logs a warning message:
Authentication checks are disabled via --skip-auth flag. This may cause API calls to fail. - May cause API failures: Commands that make API calls will likely fail if no valid credentials are present.
The --skip-auth flag is intended for advanced scenarios such as:
- Testing: Test command logic without requiring valid credentials.
- CI/CD pipelines: Use when authentication is managed through environment variables (
DATAROBOT_API_TOKEN). - Offline development: When working in environments without internet access or access to DataRobot.
- Debugging: Isolate authentication issues from other command behavior.
Warning
The --skip-auth flag should only be used when you understand the implications. Most users should rely on the standard authentication flow via dr auth login.
You can still manually run dr auth login to refresh credentials or change accounts. The LoginAction() function provides the interactive login experience with confirmation prompts for overwriting existing credentials.
The auth package writes configuration through Viper.
WriteConfigFileSilent()—writes the config file and returns an error.WriteConfigFile()—writes the config file, prints a success message, and returns an error.SetURLAction()—prompts for a DataRobot URL, optionally overwrites an existing value, and returns a boolean indicating whether the URL changed.